r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6071
Expires: Sun, 04 Dec 2022 17:48:43 GMT
Date: Sun, 04 Dec 2022 16:07:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5135
Cache-Control: max-age=157760
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:32 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:56:52 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13578
Expires: Sun, 04 Dec 2022 19:53:50 GMT
Date: Sun, 04 Dec 2022 16:07:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 15:20:07 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2845
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: beAOj3k7eOjv1XyQORK3k/kk5iF8ky0qmGILA+1izyb9a7ZgEqgeHCKd+y03mHv8EDqpQr/dtsw=
x-amz-request-id: MVZQKS9M848HM3EH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 15:47:36 GMT
age: 1196
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 16:07:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 15:08:58 GMT
cache-control: public,max-age=3600
age: 3514
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
phoenix-apotheke.org/kontakt
217.160.0.101200 OK 36 kB URL HTTP/1.1 phoenix-apotheke.org/kontakt
IP 217.160.0.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10363), with CRLF, LF line terminators
Hash b84bdae2a4dcf643c52461c3da0bad67
acd8966c97e36e39e3474d98b7d6861566c26eb0
748c362c9632c1682af0d5423b0e77feeb3535d58f3d27e33b79be6b8f07aeb4
GET /kontakt HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Link: <https://phoenix-apotheke.org/wp-json/>; rel="https://api.w.org/", <https://phoenix-apotheke.org/wp-json/wp/v2/pages/9>; rel="alternate"; type="application/json", <https://phoenix-apotheke.org/?p=9>; rel=shortlink
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5123
Cache-Control: max-age=152682
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:32 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:32:14 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5
217.160.0.101200 OK 751 B URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5
IP 217.160.0.101:0
File type ASCII text, with very long lines (2723), with no line terminators
Hash ca32f8eaccedb9d2a26b10812f7ba143
c9209ca4deee13ddfc7df16c0386cd7e69461fca
a0bd75ac1796cdd041182828afe4754619e77a2abade3d5d52a5e25329cb7cd3
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.3.5 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 751
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 23:34:34 GMT
ETag: "aa3-5ece9ddafed1c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-includes/css/dist/block-library/theme.min.css?ver=5.7.8
217.160.0.101200 OK 820 B URL HTTP/1.1 phoenix-apotheke.org/wp-includes/css/dist/block-library/theme.min.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with very long lines (2714), with no line terminators
Hash 90da9b89df98e14fc36673918f21ae99
f901435929658463352e9b61c1a5286df3d34657
75723cf534539cfeaf76d91ef41311a178e851bd5ba8b390fd97d7565b4d96ee
GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 820
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:30:45 GMT
ETag: "a9a-5bd58956aba00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/floating-social-media-icon/css/style.css?v=4.3.4&ver=5.7.8
217.160.0.101200 OK 265 B URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/floating-social-media-icon/css/style.css?v=4.3.4&ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with CRLF line terminators
Hash 46ce61fdd2c8ddf3110c33fa7eb9e4b2
82b2a43d8deff56ddcef26faf8f816c0c492de1a
0eaa4154753aa6fceac832dacbad6c4b5554cd60e603479e553e963fb929ecda
GET /wp-content/plugins/floating-social-media-icon/css/style.css?v=4.3.4&ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 265
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:32:25 GMT
ETag: "1f1-5bd589b6145ac-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20190105
217.160.0.101200 OK 2.2 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20190105
IP 217.160.0.101:0
File type ASCII text, with CRLF line terminators
Hash 3bb8fb2539908102bd9b988cdb360a20
dc5dc5487033a8a42df5d44f9363ee343e2adfd9
34cbdcb88b102b34099d329f44df6cef4fa51e7c43d964f21e61e7e43dc5f618
GET /wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=20190105 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2234
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:23:47 GMT
ETag: "29d4-5bd587c8c671c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8
217.160.0.101200 OK 11 kB URL HTTP/1.1 phoenix-apotheke.org/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8
IP 217.160.0.101:0
File type Unicode text, UTF-8 text, with very long lines (29677)
Hash bbe9061af390a205549c9755efc9c31c
7544b9265c3ade3dfe77a158ae543000f8c4861e
f7394e16a8bf3a0e930cf83ba657682d276b4b067c991b7c678260507cb257d3
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 10975
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 19:38:17 GMT
ETag: "e33b-5c0080150a658-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/themes/twentyseventeen/style.css?ver=20201208
217.160.0.101200 OK 21 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/themes/twentyseventeen/style.css?ver=20201208
IP 217.160.0.101:0
File type Unicode text, UTF-8 text, with very long lines (463), with CRLF line terminators
Hash 600ba14c429b39f898d2df11f5aa5bd4
5f97872121cf335ba791a885c2e022051a3b54c4
81999f4aec6cfa799bab86ce9d982a4a34faac8d87f4ab5e7ca2f1b02f4702ff
GET /wp-content/themes/twentyseventeen/style.css?ver=20201208 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 20806
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:23:47 GMT
ETag: "1592b-5bd587c8dde20-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t2cFui6J/n7+FUA4ZhVLbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xAh2yVIWBk8jcqw42ZqNFiCat80=
phoenix-apotheke.org/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.4.1
217.160.0.101200 OK 5.1 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.4.1
IP 217.160.0.101:0
File type ASCII text, with very long lines (1003)
Hash ed54c41464abbef9e1773096c15faced
c01a9dbda80bdd84f734c811e7680093c55cebf3
a6e4e67e297c63e5d008e09332b226fdc437d1e6edb6ac4c6e2069a8d61a23c7
GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.4.1 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5120
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 23:35:03 GMT
ETag: "35f9-5ec5d0e8bd1bd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1.4.1
217.160.0.101200 OK 2.0 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1.4.1
IP 217.160.0.101:0
File type ASCII text, with very long lines (8319)
Hash 7bd952a6114b2403bd410c47671f3b78
c352fa7bfa928e43fb416ac1fa5df81a3c456dec
fa18ac771c844b0fd8c67d0261a6aa6946493329ecae87c512461072daf335dd
GET /wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1.4.1 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2008
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 23:35:03 GMT
ETag: "2080-5ec5d0e8cfaa0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/styles/msf-vendor.min.css?ver=1.7.6
217.160.0.101200 OK 20 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/styles/msf-vendor.min.css?ver=1.7.6
IP 217.160.0.101:0
File type ASCII text, with very long lines (2450)
Hash 60210ccc1967f1a1837bb1699386764d
32b6cd7f3d6c5529d3b2e621b9dab3095e099a18
706224e005cb28be1fcee6b842ad38b585fffde8703e69de14729f7c96c95052
GET /wp-content/plugins/multi-step-form/dist/styles/msf-vendor.min.css?ver=1.7.6 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 19786
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Mon, 30 May 2022 11:26:13 GMT
ETag: "12f57-5e038ec76f0ff-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
217.160.0.101200 OK 4.6 kB URL HTTP/1.1 phoenix-apotheke.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 217.160.0.101:0
File type ASCII text, with very long lines (11126)
Hash 7cec71a53f4e94ce6da66a0fd94b9e5c
ac8f00b06df2956b97202b24ce8d818934283b5b
9bdd49aa215000ec53e722aa93cbe0e30f509bd1430ac5b5b509bf9b78a78d31
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 4563
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Sun, 13 Dec 2020 21:44:47 GMT
ETag: "2bd8-5b65f6f36990d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/styles/msf-frontend.min.css?ver=1.7.6
217.160.0.101200 OK 4.9 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/styles/msf-frontend.min.css?ver=1.7.6
IP 217.160.0.101:0
File type ASCII text, with very long lines (573)
Hash 1e4fc66a9ebf26415e9601c99a9194e2
462f63c604e21104c3ef8c79a8b233afc8f0f354
310461bb06357299e47e27ac198c6c95a20b7bafde593ee559a450cefa6a4cf7
GET /wp-content/plugins/multi-step-form/dist/styles/msf-frontend.min.css?ver=1.7.6 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 4883
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 30 May 2022 11:26:13 GMT
ETag: "564a-5e038ec76f0ff-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/lib/ol.css?ver=5.7.8
217.160.0.101200 OK 1.4 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/lib/ol.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with very long lines (4071), with CRLF line terminators
Hash 479b1b4ff7fca675aa3b556d864d57e4
77c4a70dfd609d299ffc76c8ee6927d190b4bf96
def51a79414e62682ca78c1abcc84b9cc3e89ff0fcf8163951aa3940eaeb9f25
GET /wp-content/plugins/wp-google-maps/lib/ol.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1410
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:16 GMT
ETag: "100b-5ec66fe040871-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/font-awesome.min.css?ver=5.7.8
217.160.0.101200 OK 7.9 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/font-awesome.min.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with very long lines (30556), with CRLF line terminators
Hash 1bdbee6c85ecacd120c4ed6fd6d8b51a
5b456c0316dd4fc1a3c4c0de4b2873e3cf8059ba
3ad4f36abc0b31ecd5b30e1b80af02fdf3f8dccb036b9ba292c0615817bcc77f
GET /wp-content/plugins/wp-google-maps/css/font-awesome.min.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 7870
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:15 GMT
ETag: "7803-5ec66fdf7852f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/open-layers.css?ver=5.7.8
217.160.0.101200 OK 1.3 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/open-layers.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with CRLF line terminators
Hash 19f3a418b8c9e9061163641fac6c0e21
d0b1a99b8b8540c33a066ff136c097358d981589
f6edf2eda69a97f15c0e66f261ce7b10f7ddc65fad02e9d573bce76c8b2df2e5
GET /wp-content/plugins/wp-google-maps/css/open-layers.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1343
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:15 GMT
ETag: "f8b-5ec66fdf794cf-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
phoenix-apotheke.org/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
217.160.0.101200 OK 36 kB URL HTTP/1.1 phoenix-apotheke.org/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 217.160.0.101:0
File type ASCII text, with very long lines (65451)
Hash 32249fc6d92d1992450d0d7df22cd934
51c4da50055a1329a1f5c5b8d455e2233cea0a79
cd867ce1c970ee323dfbb9497a6c6c307f72e04a44cb2957aef4850f4409a3dc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 36153
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:32 GMT
Server: Apache
Last-Modified: Sun, 13 Dec 2020 21:44:47 GMT
ETag: "15d98-5b65f6f36990d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/common.css?ver=9.0.13
217.160.0.101200 OK 4.5 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/common.css?ver=9.0.13
IP 217.160.0.101:0
File type ASCII text, with CRLF line terminators
Hash ed27933baa62575731f92a2ecc780917
085938e47f3cc5e833abfa8ca0acec80ccb45da1
93ad6207223b93ddcb7bae3e0d134190bc262b40aa3852fa360101acda819bf9
GET /wp-content/plugins/wp-google-maps/css/common.css?ver=9.0.13 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 4541
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:15 GMT
ETag: "3f99-5ec66fdf7758f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/lib/remodal.css?ver=5.7.8
217.160.0.101200 OK 704 B URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/lib/remodal.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with CRLF line terminators
Hash bbda1f6c1f5700276074bb6a08cdf252
b08b0827fe40c0ee107793552434c83a2406b0bd
f6fffc95251e05dfe8927600baca382d759c9be74c023fe4397b990a27c1787a
GET /wp-content/plugins/wp-google-maps/lib/remodal.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 704
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:16 GMT
ETag: "69f-5ec66fe0427b1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/lib/remodal-default-theme.css?ver=5.7.8
217.160.0.101200 OK 1.5 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/lib/remodal-default-theme.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with CRLF line terminators
Hash 28654ea7c6c3dfeeaa2b1888b93b47e7
b109f520e495065d6a7f2ae7fa00eb322c0c73f6
14e002e76958c5492028f7911c3ad2e82470b60881fc55a5519d62bb6a777599
GET /wp-content/plugins/wp-google-maps/lib/remodal-default-theme.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1530
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:16 GMT
ETag: "1799-5ec66fe0427b1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/jquery.dataTables.min.css?ver=5.7.8
217.160.0.101200 OK 2.5 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/jquery.dataTables.min.css?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with very long lines (15127), with CRLF line terminators
Hash 3289191c3ed45a3325733215f4ab4185
6d2c5c58f170c732aa6794c44a88669d80b2bd1e
51247fa48e5e69e188dc353fdd4d4967e742ddb4873d94012d366ff696da6fc0
GET /wp-content/plugins/wp-google-maps/css/jquery.dataTables.min.css?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2466
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:15 GMT
ETag: "3b19-5ec66fdf794cf-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2
217.160.0.101200 OK 2.6 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2
IP 217.160.0.101:0
Hash 126e08d987a5141b50bed2c7f6123950
2aada100105bfd6e0aee9879d4263a2d3b6955b2
3778687a664ad869eddc03d1d7ef393d661c1fca22cc66cb803fbfcdc7950bd0
GET /wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2628
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:23:47 GMT
ETag: "16cc-5bd587c8cc4dd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121
217.160.0.101200 OK 2.9 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121
IP 217.160.0.101:0
Hash 9cbd7cc00afdd3e51c654c829b8ddf2f
20e7261bccfea49b33c09d081200522ff674b591
82f5b86ccdb5adbd9a4b4cfcd18e222f639e9286ea5dbd179b32433201fb1639
GET /wp-content/themes/twentyseventeen/assets/js/global.js?ver=20190121 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2911
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:23:47 GMT
ETag: "1e62-5bd587c8ca59d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/styles/legacy.css?ver=9.0.13
217.160.0.101200 OK 4.5 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/styles/legacy.css?ver=9.0.13
IP 217.160.0.101:0
File type ASCII text, with very long lines (332), with CRLF line terminators
Hash 415a0613c57eeff7aacff8aa34b400f2
ff9c6941798807a4ee53a87693b45947b22d336b
771c0ccab686bd61ae5735a2a5e1ff413ac6d3da810a15a401413121294c3f88
GET /wp-content/plugins/wp-google-maps/css/styles/legacy.css?ver=9.0.13 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 4493
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:15 GMT
ETag: "3f67-5ec66fdf7758f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/cookiebanner/js/migrate.min.js?ver=6.3.5
217.160.0.101200 OK 980 B URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/cookiebanner/js/migrate.min.js?ver=6.3.5
IP 217.160.0.101:0
File type ASCII text, with very long lines (4011), with no line terminators
Hash b1810ce7db6c3c884bb2c1bafb132968
87cb202728b872338346076d8b5107e804fd08b2
613d9ac6f67ba6a86c3c63fe2c276141b205d040fcab6e74c10e0d161a313322
GET /wp-content/plugins/complianz-gdpr/cookiebanner/js/migrate.min.js?ver=6.3.5 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 980
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 23:34:36 GMT
ETag: "fab-5ece9ddd6bf05-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a3dbb7aef0a6e56c844d00cc2db174d2
51a4a6eeefd555b79ff2649c4bc0dd12cac222be
43ba87db55288b446fd16fbc38d1fdd7060c6077962754ed2271103090931382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: ECS (amb/6BA2)
Content-Length: 279
phoenix-apotheke.org/wp-includes/js/wp-embed.min.js?ver=5.7.8
217.160.0.101200 OK 779 B URL HTTP/1.1 phoenix-apotheke.org/wp-includes/js/wp-embed.min.js?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with very long lines (1391)
Hash 486a47be050402b880cee1fe757e75e6
32c0ec9b315a3792473702782b357307fc248f84
7dd0219de45f3257c695aeb1d3b398aaa895c9b62461b0b91e6ca84acbe21acb
GET /wp-includes/js/wp-embed.min.js?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 779
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Wed, 03 Feb 2021 23:28:21 GMT
ETag: "592-5ba76f150ab08-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.5
217.160.0.101200 OK 14 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.5
IP 217.160.0.101:0
File type C source textAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (48616), with no line terminators
Hash 300322b60801069c1c8ee2c64523c4da
75d0131e2ec3fa89092bea77b9cccfe6e75f971b
cb2c8b335fa51939d84df0d1db6d7bd18efa2e178a82b3952a56a1f5ef63e35d
GET /wp-content/plugins/complianz-gdpr/cookiebanner/js/complianz.min.js?ver=6.3.5 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 13786
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 23:34:36 GMT
ETag: "bde8-5ece9ddd6bf05-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 72f4d887ee309535558ad6336d80948a
ad7734283503bf2cd4ce24554cf40172209ce7ed
dffbccfb014b9b3184f9e9d1ba320de5abdafdca01a3bac87bb3536dab35f229
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=115183
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Etag: "638be4b4-1d7"
Expires: Tue, 06 Dec 2022 00:07:16 GMT
Last-Modified: Sun, 04 Dec 2022 00:07:16 GMT
Server: nginx
Content-Length: 471
fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 27268, version 1.0\012- data
Hash cd83836443d658985c464d7021aa3e83
83a2915021f30c4ed54752b02e0c999e3c56798c
0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055
GET /s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://phoenix-apotheke.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 06:10:23 GMT
expires: Tue, 28 Nov 2023 06:10:23 GMT
cache-control: public, max-age=31536000
age: 554230
last-modified: Mon, 11 Jul 2022 18:56:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librefranklin/v13/jizBREVItHgc8qDIbSTKq4XkRiUa6zUTjg.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/librefranklin/v13/jizBREVItHgc8qDIbSTKq4XkRiUa6zUTjg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30628, version 1.0\012- data
Hash 382038c99f2fe2d8c483a68cfd9d1ce1
e370f2cbdd640ccff2cf6d4fb933f72e9b9260c2
efe16fd64edb961d670fd35ee4a211ec22cb9e2fa6850cbbf13464dace1b39e2
GET /s/librefranklin/v13/jizBREVItHgc8qDIbSTKq4XkRiUa6zUTjg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://phoenix-apotheke.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:31:08 GMT
expires: Fri, 01 Dec 2023 12:31:08 GMT
cache-control: public, max-age=31536000
age: 272185
last-modified: Mon, 11 Jul 2022 18:55:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114
217.160.0.101200 OK 425 B URL HTTP/1.1 phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114
IP 217.160.0.101:0
Hash 08da1fd7db40b18b523801def54cfe30
157d5a4b53cd0e0dc545e932f1806fcc986e0e1c
284f37a55702b9778603ebeeb39a28fed9443eb94c43b064419bdb7773fdabe6
GET /wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=20161114 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 425
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:23:47 GMT
ETag: "2ab-5bd587c8cc4dd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203
217.160.0.101200 OK 1.3 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203
IP 217.160.0.101:0
File type assembler source, ASCII text
Hash dceaecb4d0383c8b263bf0720c17fb80
e6455928655ad88046711f78ca9612ad3a2dcb79
875df8151eea75400649342275282aede47125c8022beaad8b494d0d36d3712e
GET /wp-content/themes/twentyseventeen/assets/js/navigation.js?ver=20161203 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1297
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:23:47 GMT
ETag: "eb0-5bd587c8cc4dd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/scripts/msf-frontend.min.js?ver=1.7.6
217.160.0.101200 OK 6.4 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/scripts/msf-frontend.min.js?ver=1.7.6
IP 217.160.0.101:0
File type ASCII text, with very long lines (21410), with no line terminators
Hash ee13ec112f16e9da07a5e2bbd07d8433
f66a7dc28380721a5c52217dddee592b0b7267f8
5df517ca88164d1315c1a7e0800b465b05ffc7228f548fb12526e4033fc3b7df
GET /wp-content/plugins/multi-step-form/dist/scripts/msf-frontend.min.js?ver=1.7.6 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 6424
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 30 May 2022 11:26:13 GMT
ETag: "53a2-5e038ec76e15f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.4.1
217.160.0.101200 OK 1.1 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.4.1
IP 217.160.0.101:0
File type HTML document, ASCII text, with very long lines (3102)
Hash 1f6d8ac31af279341c4794f71b5c770d
f17be58b7dff9df05b52ae6ff5da726724a7c67e
a9aebe1d8fbd6c5e33f6720551a0359bb89a7d0d548c25fed45644e7e72e0725
GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.4.1 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1133
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 23:35:03 GMT
ETag: "c1f-5ec5d0e8ba2dd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
217.160.0.101200 OK 5.3 kB URL HTTP/1.1 phoenix-apotheke.org/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
IP 217.160.0.101:0
File type ASCII text, with very long lines (11272)
Hash 7e85783271cdaecb2b4ec865c71cddee
db082129c7a75034a2cba609c0eb508a7e0219b7
b9ad3cb7770b67f344b35547459f2aba21d93f1ec949c1e353fa7b012a7099ef
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5273
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Wed, 03 Feb 2021 23:28:21 GMT
ETag: "3795-5ba76f150ab08-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/scripts/msf-vendor.min.js?ver=1.7.6
217.160.0.101200 OK 23 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/multi-step-form/dist/scripts/msf-vendor.min.js?ver=1.7.6
IP 217.160.0.101:0
File type Unicode text, UTF-8 text, with very long lines (64213), with no line terminators
Hash b8c424274e2fb50473253a771717091a
4ec0a193870c5dcfd7190f38d2e2a62f1d205704
ecdede3d2a58eb4fdc2cfe6c521544bef6e3e25709f3456a675673e91d5725fa
GET /wp-content/plugins/multi-step-form/dist/scripts/msf-vendor.min.js?ver=1.7.6 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 23201
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 30 May 2022 11:26:13 GMT
ETag: "10ed6-5e038ec76e15f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-content/plugins/statify/js/snippet.min.js?ver=1.8.4
217.160.0.101200 OK 256 B URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/statify/js/snippet.min.js?ver=1.8.4
IP 217.160.0.101:0
File type ASCII text, with very long lines (409), with no line terminators
Hash fd93bce936de12af3e52b4298c527b68
dbc1def9403a3007f3ef64b25f4cad39a091aee8
fce069e9c6028cdea559ebcbb70926438d3d95e9958f0ae0e86a04aef6ae7131
GET /wp-content/plugins/statify/js/snippet.min.js?ver=1.8.4 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 256
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Sat, 05 Nov 2022 23:25:20 GMT
ETag: "199-5ecc180f7c454-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-includes/images/rss.png
217.160.0.101200 OK 608 B URL HTTP/1.1 phoenix-apotheke.org/wp-includes/images/rss.png
IP 217.160.0.101:0
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash a5b05bbf28f294b02efd942a4e5ab806
fd8211de3485d2ec75c242c6faa32a62e504f135
0c6daa646e0a867e5f721b5017c98cfd2c82c26c60b614531ddae8a5d9986be8
GET /wp-includes/images/rss.png HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 608
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2017 15:39:06 GMT
ETag: "260-545e7847b7a80"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
phoenix-apotheke.org/wp-content/plugins/floating-social-media-icon/images/themes/7/instagram.png
217.160.0.101200 OK 7.1 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/floating-social-media-icon/images/themes/7/instagram.png
IP 217.160.0.101:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 23ab5a06878d755a1519e809e47f27e1
da00eaf84a291841105d9ce62ea8b3f64f0e21c4
beee4b2a88292c81d2cc59ccdb303f39d83c2f93cc0543b2843dde87e2888b0c
GET /wp-content/plugins/floating-social-media-icon/images/themes/7/instagram.png HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 7062
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 15:32:25 GMT
ETag: "1b96-5bd589b6915bf"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
phoenix-apotheke.org/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.12.1
217.160.0.101200 OK 13 kB URL HTTP/1.1 phoenix-apotheke.org/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.12.1
IP 217.160.0.101:0
File type ASCII text, with very long lines (35965)
Hash 479f692686f88fcea301e287e417eb8a
68cb394890f0bfa7228434c232c5b2b99dabb96c
19d74b07c36e7c495c06b4a7a78587f573ed4af1ca323915f44579198db7dcaf
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.12.1 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 12599
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 19:38:18 GMT
ETag: "8d34-5c0080158766c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
phoenix-apotheke.org/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
217.160.0.101200 OK 7.7 kB URL HTTP/1.1 phoenix-apotheke.org/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 217.160.0.101:0
File type ASCII text, with very long lines (7973)
Hash ee8ec2d5dc0892f2727e0fe3a8e78687
9c9b21ea2d0b02a6ab48fe294ae95808fe31b7a3
2efff327f1515dcb995c5618b885f53a265b3cd15824f631d473c8938bf3a451
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 7668
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 19:38:18 GMT
ETag: "5133-5c0080158766c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a3dbb7aef0a6e56c844d00cc2db174d2
51a4a6eeefd555b79ff2649c4bc0dd12cac222be
43ba87db55288b446fd16fbc38d1fdd7060c6077962754ed2271103090931382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:33 GMT
Last-Modified: Sun, 04 Dec 2022 16:07:33 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
phoenix-apotheke.org/wp-content/uploads/2019/08/HeaderBild_neu2.jpg
217.160.0.101200 OK 169 kB URL HTTP/2 phoenix-apotheke.org/wp-content/uploads/2019/08/HeaderBild_neu2.jpg
IP 217.160.0.101:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=A. Starostzik], baseline, precision 8, 2000x1200, components 3\012- data
Size 169 kB (169335 bytes)
Hash 1d9a02ed122f263654e72d69d2e25d8a
21dda2d6bddd0c57c320c92ebed2873fd7baf2d2
eb2eaa2ce76274f702f3084051386db383aeda31a58dec0863862ec2e9521a55
GET /wp-content/uploads/2019/08/HeaderBild_neu2.jpg HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 169335
date: Sun, 04 Dec 2022 16:07:33 GMT
server: Apache
last-modified: Sun, 25 Aug 2019 15:51:17 GMT
etag: "29577-590f30283d9b2"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Sun, 01 Jan 2023 16:07:33 GMT
X-Firefox-Spdy: h2
phoenix-apotheke.org/wp-content/uploads/2017/01/Header950x125_trsp.png
217.160.0.101200 OK 474 kB URL HTTP/2 phoenix-apotheke.org/wp-content/uploads/2017/01/Header950x125_trsp.png
IP 217.160.0.101:0
File type PNG image data, 950 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size 474 kB (473885 bytes)
Hash 999fcca3432023a8090fc24d96ddc844
3d388182a74b1b4432137e6ff8b73fa23361e9e5
4df5652e293663bc8d0a2cf0ddf39675dc1d2baae7198b03201b2eec8be22d14
GET /wp-content/uploads/2017/01/Header950x125_trsp.png HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 473885
date: Sun, 04 Dec 2022 16:07:33 GMT
server: Apache
last-modified: Sat, 21 Jan 2017 18:35:07 GMT
etag: "73b1d-5469f0689ecc0"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Sun, 01 Jan 2023 16:07:33 GMT
X-Firefox-Spdy: h2
phoenix-apotheke.org/wp-content/uploads/complianz/css/banner-1-optin.css?v=15
217.160.0.101200 OK 2.9 kB URL HTTP/2 phoenix-apotheke.org/wp-content/uploads/complianz/css/banner-1-optin.css?v=15
IP 217.160.0.101:0
File type ASCII text, with very long lines (12557), with no line terminators
Hash 089ee0b84b32399e2723a024e5a7cd07
bd116650e6cebdc1747174cf5a6200cbbfae4864
94d4275b30050b5ecc0a00975ea4aa944606c38c6dc03f10ab270bd8338f2177
GET /wp-content/uploads/complianz/css/banner-1-optin.css?v=15 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2860
date: Sun, 04 Dec 2022 16:07:33 GMT
server: Apache
last-modified: Fri, 14 Oct 2022 23:46:57 GMT
etag: "310d-5eb073dc6232d-gzip"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Sun, 01 Jan 2023 16:07:33 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/assets/images/placeholders/google-maps-minimal-1280x920.jpg
217.160.0.101200 OK 55 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/complianz-gdpr/assets/images/placeholders/google-maps-minimal-1280x920.jpg
IP 217.160.0.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1280x921, components 3\012- data
Hash ef79b2e9d7bea4ec51b624cc6a74fc36
38d85f93643c115904ec40fb07ba9c0a51a3f8c6
d786761b1da154c98a575d07e00a22db545bd5e8e7781e2ffa322b6648ba0b32
GET /wp-content/plugins/complianz-gdpr/assets/images/placeholders/google-maps-minimal-1280x920.jpg HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/kontakt
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 55264
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 23:34:34 GMT
ETag: "d7e0-5ece9ddb15480"
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 01 Jan 2023 16:07:33 GMT
phoenix-apotheke.org/wp-content/plugins/wp-google-maps/fonts/fontawesome-webfont.woff2?v=4.7.0
217.160.0.101200 OK 77 kB URL HTTP/1.1 phoenix-apotheke.org/wp-content/plugins/wp-google-maps/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 217.160.0.101:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/wp-google-maps/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://phoenix-apotheke.org/wp-content/plugins/wp-google-maps/css/font-awesome.min.css?ver=5.7.8
HTTP/1.1 200 OK
Content-Length: 77160
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sun, 04 Dec 2022 16:07:33 GMT
Server: Apache
Last-Modified: Tue, 01 Nov 2022 11:26:15 GMT
ETag: "12d68-5ec66fdf7f290"
Accept-Ranges: bytes
phoenix-apotheke.org/wp-content/uploads/2017/01/cropped-Icon512x512-192x192.jpg
217.160.0.101200 OK 6.0 kB URL HTTP/2 phoenix-apotheke.org/wp-content/uploads/2017/01/cropped-Icon512x512-192x192.jpg
IP 217.160.0.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 805a9752ad96ace533b800f04a8bc8dd
507b6ac4e0383970b3a0b7442fa8d4efaa64815c
0f2b7f663638e122d484c3e35cbfe3337f44ef01831282fe06fd255bf5166f92
GET /wp-content/uploads/2017/01/cropped-Icon512x512-192x192.jpg HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5952
date: Sun, 04 Dec 2022 16:07:33 GMT
server: Apache
last-modified: Sat, 21 Jan 2017 12:09:29 GMT
etag: "1740-54699a3681040"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Sun, 01 Jan 2023 16:07:33 GMT
X-Firefox-Spdy: h2
phoenix-apotheke.org/wp-content/uploads/2017/01/cropped-Icon512x512-32x32.jpg
217.160.0.101200 OK 1.0 kB URL HTTP/2 phoenix-apotheke.org/wp-content/uploads/2017/01/cropped-Icon512x512-32x32.jpg
IP 217.160.0.101:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 2385ef0ed3142ec534a4f238422206cb
792c65a916c8494088e47d24d159b0bfddbe9899
61753e25772528e450b9aafe7ed26eaf4c820cfe84855cd26caa476013d01f99
GET /wp-content/uploads/2017/01/cropped-Icon512x512-32x32.jpg HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1006
date: Sun, 04 Dec 2022 16:07:33 GMT
server: Apache
last-modified: Sat, 21 Jan 2017 12:09:29 GMT
etag: "3ee-54699a3681040"
accept-ranges: bytes
cache-control: max-age=2419200
expires: Sun, 01 Jan 2023 16:07:33 GMT
X-Firefox-Spdy: h2
weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
104.21.29.149200 OK 4.4 kB URL HTTP/1.1 weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
IP 104.21.29.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1639)
Hash b6b863c4443395889c8ccdf269366519
dfa30d26c359302d8deb4209b6af1b205988d9f0
4843e86c06f7faf637104e96cbe057eaf5f653096479849387ef7f333a56f957
GET /widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ORZvWOOGbruXHWJc68es9SXVxCAoS9fyCn8i9s0JQUW2xvoTCdcnNkNm2FUVF1TmOs9s4dA8vWgqvDwNZrLEUMF4Q9rjf%2BW8hejTIs1H6XfaWQ4QvErqqIFDOMDm5DW8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb3bb4fb4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
weatherfor.us/static/style/weather-icons/weather-icons.css
104.21.29.149200 OK 3.8 kB URL HTTP/1.1 weatherfor.us/static/style/weather-icons/weather-icons.css
IP 104.21.29.149:0
File type ASCII text, with very long lines (25011)
Hash 611c17862f464dbb16b35aef70d446a0
e7a2308cf4239617fe7079ccfeed82219fb5fb0a
959c840e64460410dd3bcb0dc1b7fb7e56d849bea44a34735d75f766e0262e5a
GET /static/style/weather-icons/weather-icons.css HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://premium.weatherfor.us
Cache-Control: public, max-age=86400
Cf-Bgj: minify
Cf-Polished: origSize=30728
ETag: W/"7808-1823874fbd8"
Last-Modified: Tue, 26 Jul 2022 03:02:47 GMT
Vary: Origin, Accept-Encoding
X-Powered-By: Express
CF-Cache-Status: HIT
Age: 24780
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UopgI1dEO%2FW8I92G616WyoH34DHk8KgC2PbQ%2B8YxxvCpPB08Z6ePZE%2FjGtf1b8T793zXijtoHjfkIV%2BnMMg8GwfMvgSU0jlUiMVDGVsM%2B9wq4VUXoNc8%2BuM4E9Jus56L"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb62e4bb4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
weatherfor.us/static/js/datacommons.js
104.21.29.149200 OK 1.8 kB URL HTTP/1.1 weatherfor.us/static/js/datacommons.js
IP 104.21.29.149:0
File type ASCII text, with very long lines (4407), with no line terminators
Hash 85667e5ff6c0b2d1ed8faeacb1c915e2
143a8afdca35e3d596c42405d039822f2f0bfb71
6b5c105c0e8914de199a4a18ae9a5ef6dfef4fce957177da7b765fa802bceb1d
Analyzer Verdict Alert fortinet Malware
GET /static/js/datacommons.js HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://premium.weatherfor.us
Cache-Control: public, max-age=86400
Cf-Bgj: minify
ETag: W/"1137-1827f16d8e0"
Last-Modified: Mon, 08 Aug 2022 20:13:00 GMT
Vary: Origin, Accept-Encoding
X-Powered-By: Express
CF-Cache-Status: HIT
Age: 24780
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d4xO3CgRGzEzTE9Ryqmw0DkJmd6sX%2B10gSYp%2Fz3qth8soV%2FWyZV0%2FWgONTol1YXMNUYWSP%2FhoLzzdS53ZPTBOYn%2BGUfqCr%2FBqMwQltiC00xGT5aKiNU3mcPmXnD4QqGX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb64e6ab4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
weatherfor.us/static/style/reset.css
104.21.29.149200 OK 437 B URL HTTP/1.1 weatherfor.us/static/style/reset.css
IP 104.21.29.149:0
File type ASCII text, with very long lines (773), with no line terminators
Hash 5bcd6972d9d527b258da74330a836f31
268a327846e2e0b8d110d5b83354da22325d9699
ea060493ab5804231dfc39a9b7df66db644c47a79b6d4081bed18aee55367743
GET /static/style/reset.css HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://premium.weatherfor.us
Cache-Control: public, max-age=86400
Cf-Bgj: minify
Cf-Polished: origSize=1106
ETag: W/"452-1823874ec38"
Last-Modified: Tue, 26 Jul 2022 03:02:43 GMT
Vary: Origin, Accept-Encoding
X-Powered-By: Express
CF-Cache-Status: HIT
Age: 24780
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eQBflrXppxZkeeHC0xP4MWl6uA5zIMFH99YMfdEkM9%2BdgBa7Rmmdusu83AvNtw4Llcqnpah80Vfd3oqxNxGgoH4CCFR3AoC7zjQIUKEGEFjCTlI2fwz9qTXXQr7zuKoV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb63d52b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
weatherfor.us/static/style/weather-icons/weather-icons-wind.css
104.21.29.149200 OK 11 kB URL HTTP/1.1 weatherfor.us/static/style/weather-icons/weather-icons-wind.css
IP 104.21.29.149:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3f8ea788e9053ee8037da0be10e01cd5
a8ed0e2c43fada7072ed388df99e7a462aff6c51
2621100003b0e552110204b190d127e83f7a221bd075c7e11547bcf8bef69dff
GET /static/style/weather-icons/weather-icons-wind.css HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://premium.weatherfor.us
Cache-Control: public, max-age=86400
Cf-Bgj: minify
Cf-Polished: origSize=145200
ETag: W/"23730-1823874fbd8"
Last-Modified: Tue, 26 Jul 2022 03:02:47 GMT
Vary: Origin, Accept-Encoding
X-Powered-By: Express
CF-Cache-Status: HIT
Age: 24780
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vY4ZfknxSatHKRwQx2%2FjdhwYqAc%2BzcXct%2FM8Vq3Xg4DRCTrvjgiNDMUxLIDJwLh02N%2Bjo9FPSVuhpH5Nei2AtpD7D7w%2FetqQPOQuAmRj9rYHhA2DxO6UCsNe7K4BLO57"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb6291db4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.googleapis.com/css?family=Arvo
142.250.74.106200 OK 260 B URL HTTP/1.1 fonts.googleapis.com/css?family=Arvo
IP 142.250.74.106:0
Hash 72c7536ac725f24aeceae59299b0aecd
42f8ab9ad0aea92d229b96f0baba856837989e4d
92fec8528aa768d64debaad00ca72bdae487981bdb2b4a3c54c948f97aa0a66a
GET /css?family=Arvo HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 04 Dec 2022 16:07:34 GMT
Date: Sun, 04 Dec 2022 16:07:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
weatherfor.us/static/js/sherlock.min.js
104.21.29.149200 OK 40 kB URL HTTP/1.1 weatherfor.us/static/js/sherlock.min.js
IP 104.21.29.149:0
File type ASCII text, with very long lines (54754)
Hash 5ceef2113c7b9b4677bda540f4ef2382
f247ccfff65616a7a22031e2eed3428bad48329d
a7c37e9ff27784959a7b22aff9f394496bcbdf5d0deb450b49d6d86f11522558
Analyzer Verdict Alert fortinet Malware
GET /static/js/sherlock.min.js HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin, Accept-Encoding
Cache-Control: public, max-age=86400
Last-Modified: Sat, 20 Aug 2022 18:51:29 GMT
ETag: W/"1d74e-182bc988768"
CF-Cache-Status: HIT
Age: 24780
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pftw2VzEUTc09mQcqwYE2mU7bzrb4I%2Fk8nu05GEJ7hsCaZnepeu%2B6qursTWbHHeAcr68ORZ72GoQqtr8lbWOnTk7HRcfQNp7ThpiLcW263WXxLGG6Ongi5YpDqFY4ILO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb65e85b4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
weatherfor.us/static/js/jquery.js
104.21.29.149200 OK 37 kB URL HTTP/1.1 weatherfor.us/static/js/jquery.js
IP 104.21.29.149:0
File type ASCII text, with very long lines (41056)
Hash 76b7270230bcb7b33d7c669d7b22a0aa
5be700a8da98e4c1bb4b996fe32f91c0b9030dde
2b2ccc3cf09f9a5ccda7c690ac147a1ea7b50d66d345aef2c351bbb01e58129f
Analyzer Verdict Alert fortinet Malware
GET /static/js/jquery.js HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://premium.weatherfor.us
Cache-Control: public, max-age=86400
Cf-Bgj: minify
Cf-Polished: origSize=104881
ETag: W/"199b1-1823874ec38"
Last-Modified: Tue, 26 Jul 2022 03:02:43 GMT
Vary: Origin, Accept-Encoding
X-Powered-By: Express
CF-Cache-Status: HIT
Age: 24780
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cKXfOSVQqfU57IRQ9fypJ4goMc9bxWzJzfrn1j5PzHwAJT1ZGwq4yxytORq2zNuZmIHhcgdcPqfEuNmeUxZxqSBjwwXY30QZ1Ejn7W5NdyYZiUi%2BiwKthInnoz2sGSB7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb64e64fac4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13024
Expires: Sun, 04 Dec 2022 19:44:38 GMT
Date: Sun, 04 Dec 2022 16:07:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13024
Expires: Sun, 04 Dec 2022 19:44:38 GMT
Date: Sun, 04 Dec 2022 16:07:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13024
Expires: Sun, 04 Dec 2022 19:44:38 GMT
Date: Sun, 04 Dec 2022 16:07:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13024
Expires: Sun, 04 Dec 2022 19:44:38 GMT
Date: Sun, 04 Dec 2022 16:07:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 07:26:41 GMT
age: 31253
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2636f91bb8fa4d9bb7bef114c248a9ae
8637105f41058bc0d2b259d462b560881928adb6
3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10431
x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsCGEwxIAMF34g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQ7xh995cd1UVi3z42EVZGjQjHLLvtAP5BBC-xLEEGr4mEiXS6fC-w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:47:06 GMT
age: 66028
etag: "8637105f41058bc0d2b259d462b560881928adb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:38 GMT
age: 65696
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1521243a6fc065bb631bfbde22886fa2
527220e4e8cd1065ce05fcd0694d0d703d817e2e
b83ebf768bbfb34f49d5467f3dfb43ceb3ca3d30d3454e6f37db9aef72d7689a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11482
x-amzn-requestid: d1db05ab-bd5d-4ad4-96b4-8f439152e435
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clssNEeAoAMFh_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc181-0221c53842a2f5ef071e8071;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t1vmY4fBoLpFjqHbLyMewgUrpvRjqG4QTAuA4BeB4Gl2jqbxI0gYQA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:08 GMT
age: 65846
etag: "527220e4e8cd1065ce05fcd0694d0d703d817e2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 66213
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6UQ_BhPmpVpe9w6gsExB-EpNq_syeCCK6fr4Y1FFK1jDJh_n1Sd0Eg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:47 GMT
age: 65687
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/onecolor/3.0.4/one-color.js
104.17.24.14200 OK 2.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/onecolor/3.0.4/one-color.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (4334)
Hash c8331d9e058e3a05e6f73098b029650f
b2c3a968dad5c5203ac1db5d2e29214154f3bea1
73995c5891eaa059871202890c503715964f2669f3e3421b92d34d1eded8b547
GET /ajax/libs/onecolor/3.0.4/one-color.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://weatherfor.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 16:07:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 2235
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2e-1a21"
last-modified: Mon, 04 May 2020 16:13:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: MISS
expires: Fri, 24 Nov 2023 16:07:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLeHCNixHmXBT59W0whbB9gA6AYClQr%2BFZV%2BdEqCqArpikofis9rBtAUbtE%2FQcsEbhkb3bwYby0LLPiyoVMZX35NlhVhW1HE84%2BObXkqwMNhf0DP9opXIRn0ABy3e2pq3tGTGa8X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7745cbb658e40b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
weatherfor.us/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1670169600
104.21.29.149200 OK 19 kB URL HTTP/1.1 weatherfor.us/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1670169600
IP 104.21.29.149:0
File type ASCII text, with very long lines (39073), with no line terminators
Hash 346d93fe250e875a3a026212ce3b513c
d0a55290351b370149d6e52962adcd899b11d721
31d01687496296b9290306b3d6b79a2ce74649ce1974ff0cb1533efe0b605b01
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1670169600 HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-control-type-options: nosniff
content-encoding: gzip
cache-control: max-age=14400, public
vary: accept-encoding
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0qOGCVsI4sl0Kd2shMM5FCO7AWH4PgbBlD5DX4NiWx1cgnKAcPYGS0RxK70E3fSvc09%2BzyJOh9XGW4hrC%2Bhfu9B2swiSJ6404bQhU7yAt4em%2B%2F62Y54w0a7H1uR3wFLE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb7eb1fb4f3-OSL
alt-svc: h2=":443"; ma=60
cdn.mxpnl.com/libs/mixpanel-2-latest.min.js
35.186.235.23200 OK 17 kB URL HTTP/1.1 cdn.mxpnl.com/libs/mixpanel-2-latest.min.js
IP 35.186.235.23:0
File type ASCII text, with very long lines (755)
Hash caa762087e9d75cecc34b5d6626cb7b9
fcc68d485c2f42e0f880260c3e104cedf50d0d11
dc0ec55efae4c1f0ff095cf05133cc835e1cc4ff7906d3b7a2d0d86789bfe145
GET /libs/mixpanel-2-latest.min.js HTTP/1.1
Host: cdn.mxpnl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/
HTTP/1.1 200 OK
X-GUploader-UploadID: ADPycdsUkuEMVlHhpYiUQw4guGjnfOlnpcLdxg7z73xZFJpA1jOwT33r9_uUlYVUJcqx2NQEzNRhLNKcmxWmKs25D4Yx
x-goog-generation: 1645129310876382
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
Content-Encoding: gzip
x-goog-hash: crc32c=PPVzJA==, md5=yqdiCH6ddc7MNLXWYmy3uQ==
x-goog-storage-class: MULTI_REGIONAL
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 17435
Access-Control-Allow-Origin: *
Server: UploadServer
Date: Sun, 04 Dec 2022 16:02:29 GMT
Expires: Sun, 04 Dec 2022 16:12:29 GMT
Cache-Control: public,max-age=600
Age: 305
Last-Modified: Thu, 17 Feb 2022 20:21:50 GMT
ETag: "caa762087e9d75cecc34b5d6626cb7b9"
Content-Type: text/javascript
weatherfor.us/sentry
104.21.29.149200 OK 2 B IP 104.21.29.149:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
Analyzer Verdict Alert fortinet Malware
POST /sentry HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://weatherfor.us/
Content-Type: text/plain;charset=UTF-8
Origin: http://weatherfor.us
Content-Length: 493
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin
ETag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z6yjAWzSuG5IV9TgAIx6DxyjwpviGAOrjxdQZDrTiLGES8v%2FL1cFxrNUXEPR6cV0cjCXaVqmiJaUzKj3ucvbMvRVX%2BoaYMtxo7b%2FKRaHZGb0r6L%2F3LTd2b4NTpc6XORC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb77ffdb4f1-OSL
alt-svc: h2=":443"; ma=60
weatherfor.us/api
104.21.29.149200 OK 556 B IP 104.21.29.149:0
File type JSON data\012- , ASCII text, with very long lines (2561), with no line terminators
Hash 279c0a1532bcc56a0edf765e831ae5e9
1fbd75fa02626b7f98eb700b5ea5f8f0823dfbf2
0f1f93f6bd1c1432bec696397098f709a9f0a626ef05f2296a357c27206984b7
Analyzer Verdict Alert fortinet Malware
POST /api HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 152
Origin: http://weatherfor.us
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:35 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin
ETag: W/"a01-20iJtAOu/WRoUn3CnY0sXc0SYJA"
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SXroQCtdJf8PPLwfl7g3Qp%2F2X%2BQthrjIy2LrYJrFPLOxP%2B7ChPc2E9VtQQ2BTjLBUBQtrREKXmwe742EzNEFQ7mGCA1nQLbFN3LXSLgp4%2FudyeTyoccp7tjJ6CI5VbaG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb91c86b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
weatherfor.us/static/cask?f=W3gF.js
104.21.29.149200 OK 129 kB URL HTTP/1.1 weatherfor.us/static/cask?f=W3gF.js
IP 104.21.29.149:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 129 kB (129223 bytes)
Hash 25c4ea0c3b56f0e04f5073fab721d225
b1eb84ba7d17be4bb24702607596dd81dc647f97
0eafd1fb75939887796038a511a509115393a1536a5239531bb0bb618fb33ce2
Analyzer Verdict Alert fortinet Malware
GET /static/cask?f=W3gF.js HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://weatherfor.us/widget?skin=mini&location=Oberschlei%C3%9Fheim&bg_color=rgba(0%2C%200%2C%200%2C%200)&unit=metric&ref=http%3A%2F%2Fphoenix-apotheke.org%2Fkontakt
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:34 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin, Accept-Encoding
Cache-Control: max-age=7200
ETag: W/"2f531-6o54OJNO5qVhHXWWZeooYY/ox3g"
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bE6GDmq6%2BcGp4Uqvedhlw1rT7bZ7SUpQBrhpHz1lZDD0jj%2BpRno7u6m9SNI876OoeuaMmVfpQ554%2Bm5uw7%2FNPZWUhX0X19q1p%2B9AF8N%2BcOdtSB9iQkXHjyJR5E8ozyE%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbb78f21fac4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
phoenix-apotheke.org/wp-admin/admin-ajax.php
217.160.0.101204 No Content 0 B URL HTTP/2 phoenix-apotheke.org/wp-admin/admin-ajax.php
IP 217.160.0.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: phoenix-apotheke.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;
Content-Length: 87
Origin: http://phoenix-apotheke.org
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 04 Dec 2022 16:07:33 GMT
server: Apache
x-powered-by: PHP/7.4.33
access-control-allow-origin: http://phoenix-apotheke.org
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN, SAMEORIGIN
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2
142.250.74.35200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17300, version 1.0\012- data
Hash 2bb7eeed159db804f2e7a9ca64871661
d4aa569d336599b0c8a61ddbc2f5151627d0dbe1
6a444f75e21c8b900953619df3cbc2ecf9e2227416e07d774709adf722bcb415
GET /s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://weatherfor.us
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17300
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 05:18:50 GMT
Expires: Sun, 03 Dec 2023 05:18:50 GMT
Cache-Control: public, max-age=31536000
Age: 125325
Last-Modified: Tue, 19 Apr 2022 18:36:19 GMT
Content-Type: font/woff2
weatherfor.us/static/style/font/weathericons-regular-webfont.woff2
104.21.29.149200 OK 45 kB URL HTTP/1.1 weatherfor.us/static/style/font/weathericons-regular-webfont.woff2
IP 104.21.29.149:0
File type Web Open Font Format (Version 2), TrueType, length 44720, version 1.6553\012- data
Hash 1cd48d78f06d33973d9d761d426e69bf
718dd740e8340888352129e592fed085409e891e
9327647771c09df82095dba3591c77cca41a9cedca948ae01e7fb70c690dcbd5
Analyzer Verdict Alert fortinet Malware
GET /static/style/font/weathericons-regular-webfont.woff2 HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://weatherfor.us/static/style/weather-icons/weather-icons-wind.css
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:35 GMT
Content-Type: font/woff2
Content-Length: 44720
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin, Accept-Encoding
Cache-Control: public, max-age=86400
Last-Modified: Tue, 26 Jul 2022 03:02:48 GMT
ETag: W/"aeb0-1823874ffc0"
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJNwK9amtqOcf%2FKnCHALSpHC5OdBtRtS4KeGfECLCLylfsS8wdu26XtwJERGtYyYUhi24dOYkSBLkbtXw2yj2OkwcqdyakFfL7D5cj8D2P6zBubTtnTAYzttxLadka0h"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbbd9b2afac4-OSL
alt-svc: h2=":443"; ma=60
weatherfor.us/static/cask?f=8IdOx1Qv.wasm
104.21.29.149200 OK 14 kB URL HTTP/2 weatherfor.us/static/cask?f=8IdOx1Qv.wasm
IP 104.21.29.149:0
Hash faf3b38fab463ae8ce81645a6851ea2e
6b8654da7d2168eecdffe7d265d6592542276e89
51aaac97b660a5baa109593205e0364400836d272a54c38bcbf117d94aa3c8fd
Analyzer Verdict Alert fortinet Malware
GET /static/cask?f=8IdOx1Qv.wasm HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://weatherfor.us/
Origin: http://weatherfor.us
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 16:07:35 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 59667
x-powered-by: Express
access-control-allow-origin: https://premium.weatherfor.us
vary: Origin
cache-control: max-age=7200
etag: W/"e913-icEjrACi4aksr2hNknaNfuY2u14"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fsh1g%2FKllrYyMW0FLpHstMD4dyzD8fHIlLzIRqc1E0m60BI%2BrqMvU9DGvR6UqHGKYOmIK3F3CI5ITxw4zQF2WiFnGbgewvvAD7%2BH7%2FwYOPbvB8quZIIiXFP%2FikgReTU%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7745cbbdad130b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
weatherfor.us/sentry
104.21.29.149200 OK 41 B IP 104.21.29.149:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bdf017b151d4b7df19e3ebc740f395f2
fd27021ebc2af3614fb2586a8fd45953142e3669
8191f4cc787b335c69913ad13f632fa0bd315a72f1ec0b7d6ad8c1f7e342d25d
Analyzer Verdict Alert fortinet Malware
POST /sentry HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://weatherfor.us/
Content-Type: text/plain;charset=UTF-8
Origin: http://weatherfor.us
Content-Length: 1486
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 16:07:35 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 41
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://premium.weatherfor.us
Vary: Origin
ETag: W/"29-/ScCHrwq82FPslhqj9RZUxQuNmk"
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J0WT4txVQSsmkz4uFq6TB%2BmTHru%2B25yAXnfhFAMwNMFrOstnGKl%2BvYeofJvFBSzWdzJpN02PFBjEQXqLQvxCqndtKJTjE8%2B7u75inWziIO%2F%2FBOWSkT9%2BWsyZPLGDX68F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7745cbbf4db4b4f3-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 15 kB IP 93.184.220.29:0
Hash 61201af11fb1a7a02f9014a330918cf6
f366789ce1d887d8089c3173506a48e6ffd6183c
369e9251c8def4e13a725121875ae1e8ca159702cb96d78e9bb412ac5f7f570e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1919
Cache-Control: max-age=151263
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 16:07:39 GMT
Etag: "638c6a2b-1d7"
Expires: Tue, 06 Dec 2022 10:08:42 GMT
Last-Modified: Sun, 04 Dec 2022 09:36:43 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
api-js.mixpanel.com/track/?verbose=1&ip=1&_=1670170057213
107.178.240.159200 OK 14 kB URL HTTP/2 api-js.mixpanel.com/track/?verbose=1&ip=1&_=1670170057213
IP 107.178.240.159:0
Hash 18b3f76d16a642ab3c0def09b4a848c0
c3ef3851709589cdab6d1594d559c7da8b440138
dc6b6b0415d7892a3860b005ea79c5bfcef54d9e8fea72f0ebf2a83d04f80a34
POST /track/?verbose=1&ip=1&_=1670170057213 HTTP/1.1
Host: api-js.mixpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 3688
Origin: http://weatherfor.us
Connection: keep-alive
Referer: http://weatherfor.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: http://weatherfor.us
access-control-expose-headers: X-MP-CE-Backoff
access-control-max-age: 1728000
cache-control: no-cache, no-store
content-type: application/json
strict-transport-security: max-age=604800; includeSubDomains
date: Sun, 04 Dec 2022 16:07:39 GMT
content-length: 25
x-envoy-upstream-service-time: 19
server: envoy
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback
IP 142.250.74.106:0
GET /css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 16:07:33 GMT
date: Sun, 04 Dec 2022 16:07:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
weatherfor.us/static/cask?f=8IdOx1Qv.wasm
104.21.29.149200 OK 0 B URL HTTP/2 weatherfor.us/static/cask?f=8IdOx1Qv.wasm
IP 104.21.29.149:0
Analyzer Verdict Alert fortinet Malware
GET /static/cask?f=8IdOx1Qv.wasm HTTP/1.1
Host: weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://weatherfor.us/
Origin: http://weatherfor.us
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 16:07:36 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 59667
x-powered-by: Express
access-control-allow-origin: https://premium.weatherfor.us
vary: Origin
cache-control: max-age=7200
etag: W/"e913-icEjrACi4aksr2hNknaNfuY2u14"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZ%2Fofv2vKh1ZXuJtVJtRrtOef1cyEVjnF1jDdiAiXiHZ9dTT7SwCVNkfAq%2FezPAuILUAOkgM7c2Ub3%2Ft6RYvU2ayvGHRPUDOruRv5EjSRlTmarLprSVSO497l%2B9PuDOO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7745cbc3dbc20b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.weatherfor.us/static/js/minion/minion.js
172.67.149.103200 OK 0 B URL HTTP/2 www.weatherfor.us/static/js/minion/minion.js
IP 172.67.149.103:0
Analyzer Verdict Alert fortinet Malware
GET /static/js/minion/minion.js HTTP/1.1
Host: www.weatherfor.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://phoenix-apotheke.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 16:07:33 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: https://premium.weatherfor.us
cache-control: public, max-age=86400
cf-bgj: minify
etag: W/"de7-1827f16d8e0"
last-modified: Mon, 08 Aug 2022 20:13:00 GMT
vary: Origin, Accept-Encoding
x-powered-by: Express
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6RsOebayTtwuO2apKR2B%2BHoh6HyiXnAcUJBfkpw3uR0Anb3kyJ01PGhT8%2FOJ3s%2B0JVBQ5X0itxis8At4biHZh7%2BdmmHXkgb8TM7atHGUncYYDWzEErBBmfkSbkv5%2BprGaKlxrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7745cbb10c13b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2