bestes-reisebuero.de/
92.51.134.215301 Moved Permanently 301 B IP 92.51.134.215:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 151cbf7d9ef69d5f5de1356289733878
70391b418e6448b71b445fb44d7ac908a4099ea6
774391698cb80a8fbc5031a53ac71274318345fa3f52567466329d74b3475714
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bestes-reisebuero.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 21 Nov 2022 22:12:25 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 301
Connection: keep-alive
Location: https://www.robertz.de/
X-Powered-By: PleskLin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9551
Expires: Tue, 22 Nov 2022 00:51:36 GMT
Date: Mon, 21 Nov 2022 22:12:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2973
Cache-Control: max-age=133704
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:25 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:20:49 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cee7787feebac18f9eca273e56e3741
3a7dac544172921e24c2a1701beef5079b21d01b
79ff4a450c749d64e116c00ca3b00d40e968906c5c3881d6eeb2dc6374a4c858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "79FF4A450C749D64E116C00CA3B00D40E968906C5C3881D6EEB2DC6374A4C858"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4071
Expires: Mon, 21 Nov 2022 23:20:16 GMT
Date: Mon, 21 Nov 2022 22:12:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 21 Nov 2022 22:09:18 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 188
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Wk0dH97limqYz/WpUBZF6dK1NsUM9lZ8cK0wyBqDHw6kuL3Nr135dby1L0JS7db/+/MGJq2Q1zk=
x-amz-request-id: SE3ZQE874ZVGG0C6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 21 Nov 2022 21:42:16 GMT
age: 1810
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 21 Nov 2022 22:12:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6ca15f84bb049017f74962e9a53696ce
f222d1ad5b0b8bd2731401d19830c75096568b25
563a0858e14e0094f42060f37c90203143d8b9ea151ab9640c0d9aa6a1b0e5aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "563A0858E14E0094F42060F37C90203143D8B9EA151AB9640C0D9AA6A1B0E5AA"
Last-Modified: Sun, 20 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Tue, 22 Nov 2022 04:11:51 GMT
Date: Mon, 21 Nov 2022 22:12:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 21 Nov 2022 22:08:53 GMT
cache-control: public,max-age=3600
age: 213
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2279
Cache-Control: max-age=127947
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:26 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 09:44:53 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.css
104.17.25.14200 OK 2.9 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (22251)
Hash 4dbf1735a5370350943bce0dbad5843d
3a9d68ea18c3aa70887283c3c36b154ddd31ced8
b7cd289c437127d58b709dc9999390fe68d378d506a8a31252c74c70597e162e
GET /ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
content-type: text/css; charset=utf-8
content-length: 2880
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-580a"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 24007107
expires: Sat, 11 Nov 2023 22:12:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YGexgt%2Bxf%2F9%2F%2FegUniG0cgtb823jkAfhuwpwN%2FRBpHjUPKoVetfe7JyWEe9ZhwX1%2BwZkuLXSXCaVsJBPXSeicT4dnjcXwxPUkQSQdiaPxtpoQM8qHrHy1SwTYnsC8IDmywqVq4VR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76dcc452ab850b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.js
104.17.25.14200 OK 6.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (27931)
Hash beafb90e7e7cb9afd1931dd1ce3d8a6b
ecb8187bf858a727949be0fffbadd1d018e0c169
eabdef01e87e471436dfac8d11edcd16c85d433aa854cdd695165399980ca818
GET /ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 6422
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-6e3e"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15153058
expires: Sat, 11 Nov 2023 22:12:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zs9TJkIzj%2BcQDnDmHYeDCFoBhYo9yXaTp1CuFkoF3bNZvcuIkAV%2FsmbmvknYFEy%2BXqraeaS%2BDLHPWeDqGhFQacOmMx2NsIrT1ek7IwPdYMu9pKC2SCrfxxkguyotqPSp7HM7Pq5y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76dcc452df5eb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.robertz.de/fonts/flaticon/Flaticon.woff2
5.175.22.217200 OK 37 kB URL HTTP/2 www.robertz.de/fonts/flaticon/Flaticon.woff2
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 36732, version 1.0\012- data
Hash e97e6acd6d5fae4dfb1b353ddf3dcf0f
186f523c36cdd4d80122ea6daf40106e0ce3e20d
0b56c2c2e69c2334a1881c975f0a1223b73447cd57a13f6b435b239a87de961e
GET /fonts/flaticon/Flaticon.woff2 HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Sat, 09 May 2020 10:20:16 GMT
etag: "8f7c-5a53475c0b800-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 36736
content-type: font/woff2
X-Firefox-Spdy: h2
www.robertz.de/www/fonts/montserrat.css
5.175.22.217404 Not Found 196 B URL HTTP/2 www.robertz.de/www/fonts/montserrat.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /www/fonts/montserrat.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
content-length: 196
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.robertz.de/assets/css/color_scheme/customcolor.css
5.175.22.217200 OK 3.1 kB URL HTTP/2 www.robertz.de/assets/css/color_scheme/customcolor.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (582), with CRLF line terminators
Hash 60d56c255a871ae01312cdbdf6ec1e27
8d986fa1d7258c73f1d6d2a043fc0bea80b88ca7
598057d50bdcc975d1742a5b6e8cc49575cb5394cead95b3a4d34aa94ffa97a5
GET /assets/css/color_scheme/customcolor.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Sun, 12 Jul 2020 12:43:45 GMT
etag: "4498-5aa3decc0656d-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 3095
content-type: text/css
X-Firefox-Spdy: h2
www.robertz.de/assets/css/custom.css
5.175.22.217200 OK 3.0 kB URL HTTP/2 www.robertz.de/assets/css/custom.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type assembler source, ASCII text, with CRLF, LF line terminators
Hash 3f3dcde275d75ccd807e2e5e2f616812
e530d19c468592f6d6b2e217ca8b4b62aa6e5688
476ee261ef6f668eadf94cfffb6d64d227d6ccc1ee23659ab6f29835c61d94ac
GET /assets/css/custom.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Wed, 29 Jul 2020 14:42:41 GMT
etag: "3fbb-5ab959162640a-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 2987
content-type: text/css
X-Firefox-Spdy: h2
www.robertz.de/assets/css/vendor.swiper.min.css
5.175.22.217200 OK 4.2 kB URL HTTP/2 www.robertz.de/assets/css/vendor.swiper.min.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 (with BOM) text, with very long lines (21675), with no line terminators
Hash 21888b586f9fd75d444d25f8e118f5d7
3f92c9c4fe3cb925d4e4f78f5af3b681b3c8c9e5
4151ce7b54bb179dd95e4b52465aeb2e0396d1868207e9ba98f8490cb1b352c0
GET /assets/css/vendor.swiper.min.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 07 Jul 2020 09:54:09 GMT
etag: "54b2-5a9d6f907ba36-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 4187
content-type: text/css
X-Firefox-Spdy: h2
www.robertz.de/assets/css/colorpalette.min.css
5.175.22.217200 OK 1.9 kB URL HTTP/2 www.robertz.de/assets/css/colorpalette.min.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (8960), with CRLF line terminators
Hash 475de567aa0032280982829dcfc11116
4eceb810b11b830494dc13abff7eb578c42c2f0c
e405a2f80f2edb9470ad0a5184108ea934d9e512a8ed7894e60d9d2388ce219b
GET /assets/css/colorpalette.min.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Wed, 08 Jul 2020 05:55:56 GMT
etag: "3e89-5a9e7c2ecfd8b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 1898
content-type: text/css
X-Firefox-Spdy: h2
www.robertz.de/images/Robertz/Team/Nadim.jpg
5.175.22.217200 OK 13 kB URL HTTP/2 www.robertz.de/images/Robertz/Team/Nadim.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Created with GIMP", progressive, precision 8, 236x236, components 3\012- data
Hash 3852a6818d8136feda41e6124cfc6cc3
ce6549af4a84a1a132941ec06a160e54ff8df933
baf32cf30024c0d847421b4b06190ddb3c2fb1a6144d2781c4bbc6a23df10626
GET /images/Robertz/Team/Nadim.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 28 Jun 2022 16:20:05 GMT
etag: "323b-5e28468cded6b"
accept-ranges: bytes
content-length: 12859
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/assets/css/vendor_bundle.min.css
5.175.22.217200 OK 3.8 kB URL HTTP/2 www.robertz.de/assets/css/vendor_bundle.min.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (39344)
Hash f95b5a6991b49a2d93a49c25b0507269
7ddba3d5c0fec9763dc37659af52ddc9a5fdb9ca
5c88a4b0439697d533ea190a067005a323d0a9e481b871985ebf30f8b854ed58
GET /assets/css/vendor_bundle.min.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:43 GMT
etag: "99c6-5a67923a7b3c0-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 3836
content-type: text/css
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Siegel/DER_Touristik_Partner_4C.png
5.175.22.217200 OK 5.0 kB URL HTTP/2 www.robertz.de/images/BilderPool/Siegel/DER_Touristik_Partner_4C.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type PNG image data, 253 x 284, 8-bit colormap, non-interlaced\012- data
Hash 6cfa5757073c810990a30df5a3a5c142
f3929708377b03ea028621abfd7cc33e2cfdf3c0
42508c7e75bbaaf132edb306339680c86694005e71e2ea2c1c8cb0736949c5b8
GET /images/BilderPool/Siegel/DER_Touristik_Partner_4C.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Thu, 03 Mar 2022 07:25:15 GMT
etag: "1391-5d94b4ca70b47"
accept-ranges: bytes
content-length: 5009
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/png
X-Firefox-Spdy: h2
www.robertz.de/images/Robertz/nachhaltigkeit/planet_tree.png
5.175.22.217200 OK 17 kB URL HTTP/2 www.robertz.de/images/Robertz/nachhaltigkeit/planet_tree.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type PNG image data, 500 x 314, 8-bit colormap, non-interlaced\012- data
Hash 13565539b4331994ee95a8ec15ed3dd4
e79de348e181301e82ecf381f121146c28df31b1
1a195b360b9e9b30d4f708e0c5a94fcf7d4a538c6e3717576739ab8e2599cd6b
GET /images/Robertz/nachhaltigkeit/planet_tree.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Wed, 05 Oct 2022 15:19:13 GMT
etag: "40f4-5ea4b196c287f"
accept-ranges: bytes
content-length: 16628
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/png
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Siegel/DER%20Kreuzfahrtenprofi%2016cm.png
5.175.22.217200 OK 15 kB URL HTTP/2 www.robertz.de/images/BilderPool/Siegel/DER%20Kreuzfahrtenprofi%2016cm.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type PNG image data, 454 x 156, 8-bit colormap, non-interlaced\012- data
Hash 5e41153831859cf6af64b682b586a248
15597ac62ce2440e6e8972a18542567db2bac39b
52d5ee205bc379b3b4f1559493e543d0b29d90d6ef6b89316b69574b808d56f1
GET /images/BilderPool/Siegel/DER%20Kreuzfahrtenprofi%2016cm.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Fri, 07 Jan 2022 08:48:44 GMT
etag: "38e4-5d4fa0df3705c"
accept-ranges: bytes
content-length: 14564
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/png
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Siegel/DER%20Empfohlenes%20Reiseb%C3%BCro%2016cm.png
5.175.22.217200 OK 16 kB URL HTTP/2 www.robertz.de/images/BilderPool/Siegel/DER%20Empfohlenes%20Reiseb%C3%BCro%2016cm.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type PNG image data, 454 x 133, 8-bit colormap, non-interlaced\012- data
Hash 0455fe31c325d7dd343f2850cadf4a94
7c8e5403561010cee48bd0cbd0ca22e9c04be5f1
d1e74da66036dbf70f913bf71757dfb97ad2ce1dc3c974f72306becf8defc349
GET /images/BilderPool/Siegel/DER%20Empfohlenes%20Reiseb%C3%BCro%2016cm.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Fri, 07 Jan 2022 08:48:44 GMT
etag: "3f75-5d4fa0df2f661"
accept-ranges: bytes
content-length: 16245
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/png
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
IP 142.250.74.35:0
Hash cf9caff3cd99c1e0252a27c0fdac2472
392643a352813a3587fffb6c80bf2116dafe422d
b16d650f6f5a920aafd20c835dc4f7147677dcc19e6b0ec74a54831470cb30bd
POST /s/gts1d4/AO43Z6OvIBc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.robertz.de/images/BilderPool/Thementeaser/time-371226_1920.jpg
5.175.22.217200 OK 38 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/time-371226_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Hash 58731c57d2c4a4705ef2a6cf5494ae00
13b8a27acf646fa51ac89e2ef4ca2d010f27cde3
4c7210d0d25aa8e279de465665cdd06a133e3456a412dd46ba51d50ad548e801
GET /images/BilderPool/Thementeaser/time-371226_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "9555-5cac1e06495a6"
accept-ranges: bytes
content-length: 38229
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Thementeaser/Versicherungen_lifebuoy-4870836_1920.jpg
5.175.22.217200 OK 53 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/Versicherungen_lifebuoy-4870836_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Hash 2074572132e9f3e6743aa540110cc27c
965ceb90356ad01c37a5d68f032b7e0e99540f9a
193322064111e8baec20884ca8df731e5a3f99bf8fb326a0915694381613eb17
GET /images/BilderPool/Thementeaser/Versicherungen_lifebuoy-4870836_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Fri, 27 Aug 2021 13:59:43 GMT
etag: "ceb2-5ca8ae539421c"
accept-ranges: bytes
content-length: 52914
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Thementeaser/woman-4373078_1920.jpg
5.175.22.217200 OK 55 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/woman-4373078_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Hash a9f3532465426567c8c1ac1c8ec1ae61
bc42eb71d1db2559cb0d197a37d2cc6211ad98cd
48e008b189b0bfa0a9df6bc1361338a96a570331770beb2097f364eb46297196
GET /images/BilderPool/Thementeaser/woman-4373078_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "d7f2-5cac1e06512c1"
accept-ranges: bytes
content-length: 55282
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/www/robertz.de/img/logo_WEB.png
5.175.22.217200 OK 75 kB URL HTTP/2 www.robertz.de/www/robertz.de/img/logo_WEB.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type PNG image data, 3094 x 1605, 8-bit colormap, non-interlaced\012- data
Hash 13c968b38081445f5d6f272e75372335
23cf26c06c9b28cc80dca32e2cec05399a02c966
1f38b8099b47ae9370ef51927f8b026212c789137fa1dbb5ccf7c0d867984824
GET /www/robertz.de/img/logo_WEB.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Thu, 03 Mar 2022 07:58:32 GMT
accept-ranges: bytes
content-length: 74928
cache-control: max-age=2592000, public
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/png
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Thementeaser/guinea-pig-1969698_1920.jpg
5.175.22.217200 OK 79 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/guinea-pig-1969698_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Hash 192a66bef59226d6ab6b3a5097bb2d4d
5d4ef05d8529e310115d7ee15724985469343319
f014df907df2ab80a94cd71c2267a0896ec6c7831308e92a3c726c8592a81eb1
GET /images/BilderPool/Thementeaser/guinea-pig-1969698_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1335f-5cac1e06418a1"
accept-ranges: bytes
content-length: 78687
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
privacy-proxy.usercentrics.eu/latest/uc-block.bundle.js
35.190.14.188200 OK 42 kB URL HTTP/2 privacy-proxy.usercentrics.eu/latest/uc-block.bundle.js
IP 35.190.14.188:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 6421a2f7a46a80888cf33a44769a2ae8
f2e6aecba84422d07b59738b071e8a51f8353b95
7c847f80028d032c893cd220e9e191469b386ea2d2e27829553ca7213ff40c42
GET /latest/uc-block.bundle.js HTTP/1.1
Host: privacy-proxy.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv3xjA8zv4j9BTuH6sWgJ6U-rnav8YZxynt2s9_RYlFnyGhOBgZqyGiAMBa93x-pK3dJ1seb7lwysFEUZod6Ywatw
x-goog-generation: 1668602229807161
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41910
x-goog-meta-version: 2.6.28
content-encoding: gzip
x-goog-hash: crc32c=g9knrQ==, md5=ZCGi96RqgIiM8zpEdpoq6A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 41910
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Transfer-Encoding
server: UploadServer
date: Mon, 21 Nov 2022 22:04:08 GMT
expires: Mon, 21 Nov 2022 23:04:08 GMT
cache-control: public, max-age=3600
age: 498
last-modified: Wed, 16 Nov 2022 12:37:09 GMT
etag: "6421a2f7a46a80888cf33a44769a2ae8"
content-type: application/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.robertz.de/images/Robertz/nachhaltigkeit/Zertifikat_Robertz_September-2022_03_PNG.png
5.175.22.217200 OK 92 kB URL HTTP/2 www.robertz.de/images/Robertz/nachhaltigkeit/Zertifikat_Robertz_September-2022_03_PNG.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type PNG image data, 1239 x 1754, 8-bit colormap, non-interlaced\012- data
Hash fab49a5b2ee69c36cd5a19bf436acfc6
4cad67a4347f9931746ea1433f8415d24343c823
17dd3c7b5aade4ca96c7864a820ff97c1af95b2f786a0cf738b2f88bda99e697
GET /images/Robertz/nachhaltigkeit/Zertifikat_Robertz_September-2022_03_PNG.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Wed, 05 Oct 2022 15:07:14 GMT
etag: "1668c-5ea4aee8f958e"
accept-ranges: bytes
content-length: 91788
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/png
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ef60ae0bd6092f27c44eda31b53dac0f
72ed869d3cdb583d11da72355c98edc883c15f64
4e1e43a076225466fa30368c03d07e99220d00670b0e5ec3d28a472a2cfb4ff6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E1E43A076225466FA30368C03D07E99220D00670B0E5EC3D28A472A2CFB4FF6"
Last-Modified: Sat, 19 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9590
Expires: Tue, 22 Nov 2022 00:52:16 GMT
Date: Mon, 21 Nov 2022 22:12:26 GMT
Connection: keep-alive
www.robertz.de/images/BilderPool/Thementeaser/vacations-2490266_1920.jpg
5.175.22.217200 OK 114 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/vacations-2490266_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size 114 kB (114078 bytes)
Hash 7d47e7c0e4644bdb9f6390233fa64b5d
309923c63deee1d97fb8dd2e70a902ee6faf7ac7
653e3553dd08d47e5a964311149365a582a90dfde032adaa54097e17882843f7
GET /images/BilderPool/Thementeaser/vacations-2490266_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1bd9e-5cac1e0664f6e"
accept-ranges: bytes
content-length: 114078
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
IP 142.250.74.35:0
Hash cf9caff3cd99c1e0252a27c0fdac2472
392643a352813a3587fffb6c80bf2116dafe422d
b16d650f6f5a920aafd20c835dc4f7147677dcc19e6b0ec74a54831470cb30bd
POST /s/gts1d4/AO43Z6OvIBc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.robertz.de/images/BilderPool/Thementeaser/women-3266211_1920.jpg
5.175.22.217200 OK 124 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/women-3266211_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size 124 kB (123987 bytes)
Hash 4d620151c765ed8bdd1ddd6193f9e244
475c4f9ce545458df2a3c53b3f9767508d2b325d
3629b868912b11d754f948b8f297b7ba056e82256ee83c85fc41e401ea0dc1a6
GET /images/BilderPool/Thementeaser/women-3266211_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1e453-5cac1e06691e6"
accept-ranges: bytes
content-length: 123987
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Thementeaser/road-3114475_1920.jpg
5.175.22.217200 OK 138 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/road-3114475_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size 138 kB (137929 bytes)
Hash 8808244f83f82cd6238b27cbbe3aee77
be55dca9bc25da62682dfbf202fe44d7a5a06f62
e965149dc4efeb45f020927785ae74b417994f2cea94f6c281776a8409eb4e2c
GET /images/BilderPool/Thementeaser/road-3114475_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "21ac9-5cac1e0668242"
accept-ranges: bytes
content-length: 137929
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Thementeaser/mountaineers-5649828_1920.jpg
5.175.22.217200 OK 177 kB URL HTTP/2 www.robertz.de/images/BilderPool/Thementeaser/mountaineers-5649828_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size 177 kB (176563 bytes)
Hash 8da55968b05019655e9ecf0814bf99fc
017da0fd24e608d42fd9e3ad9686fce2fceab09f
50ed47e128d4c9293417c6f08606c8b4ca05e991790bc83d068ddb077bb7a6f0
GET /images/BilderPool/Thementeaser/mountaineers-5649828_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "2b1b3-5cac1e0667e58"
accept-ranges: bytes
content-length: 176563
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/Robertz/Sonderreisen/2023_douro/Dourotal_2023_Teaser.jpg
5.175.22.217200 OK 245 kB URL HTTP/2 www.robertz.de/images/Robertz/Sonderreisen/2023_douro/Dourotal_2023_Teaser.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1260x860, components 3\012- data
Size 245 kB (245098 bytes)
Hash 5222d6d387662013bd7de8cafb3880b7
100376302444e5e425af578536be126cec89ba9e
982289b28aeb3839fe78a3fd9bac5951971c3b417438dc25510224939b6f5ac5
GET /images/Robertz/Sonderreisen/2023_douro/Dourotal_2023_Teaser.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Wed, 07 Sep 2022 14:51:51 GMT
etag: "3bd6a-5e81773f7aa75"
accept-ranges: bytes
content-length: 245098
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/Robertz/Sonderreisen/2023_ostsee-oder/2023_kultour_kreuzfahrt_teaser.jpg
5.175.22.217200 OK 394 kB URL HTTP/2 www.robertz.de/images/Robertz/Sonderreisen/2023_ostsee-oder/2023_kultour_kreuzfahrt_teaser.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Created with GIMP", progressive, precision 8, 1260x860, components 3\012- data
Size 394 kB (393584 bytes)
Hash f51e6ae37f5a6725e91f8dfe90751218
401450013faed0a350a16741ec91b7a9cac1d6dd
2ecd15ac2f69b67784e4a621a7f99b16aebf75641d789ab511717b0f6a13f353
GET /images/Robertz/Sonderreisen/2023_ostsee-oder/2023_kultour_kreuzfahrt_teaser.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Wed, 27 Jul 2022 15:35:52 GMT
etag: "60170-5e4cb2c193ac4"
accept-ranges: bytes
content-length: 393584
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/assets/js/core.min.js
5.175.22.217200 OK 64 kB URL HTTP/2 www.robertz.de/assets/js/core.min.js
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65512)
Hash 21485a5c91a6e030255faa364281aa40
69e8f4ae330ece58c4c9dc6fa319187d907bc2bd
af79c3c862f29c5011444e6c6a4259961c61f414202b97559225b92339095f84
GET /assets/js/core.min.js HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Thu, 09 Jul 2020 18:02:01 GMT
etag: "4432f-5aa0605764a50-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 64543
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 47f7332125d5b5938682242972b257e5
29a0918a47c89235d07563a19d3d3b310ab0bd66
e71e27ac57589c24e8028dfb9e4ae597d4cae69e1b70fca2d4dc79e9c02f8806
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 21 Nov 2022 22:12:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 21 Nov 2022 21:42:31 GMT
Expires: Tue, 22 Nov 2022 21:42:31 GMT
ETag: "29a0918a47c89235d07563a19d3d3b310ab0bd66"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 86c9df2c1a0c332ed7d1484e22d2f834
602a474aea2739af8be09055cf616743cb1156ae
df00e9c21c4ddacc3d9ed6f1a7b5c62b239c40346d077c3012367b863b4a2184
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF00E9C21C4DDACC3D9ED6F1A7B5C62B239C40346D077C3012367B863B4A2184"
Last-Modified: Sun, 20 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5542
Expires: Mon, 21 Nov 2022 23:44:48 GMT
Date: Mon, 21 Nov 2022 22:12:26 GMT
Connection: keep-alive
www.robertz.de/assets/css/core.min.css
5.175.22.217200 OK 41 kB URL HTTP/2 www.robertz.de/assets/css/core.min.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (65516)
Hash 06249bcfa64e75d0dd5d3e77f960cdd9
078839991c838dd732613ae7a8b4d1201aca8017
99fae1a53fa84932d6a5c938f27b7e776b99c7b27e3709a51f28d84ca65b9306
GET /assets/css/core.min.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:44 GMT
etag: "50315-5a67923b6f600-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 41057
content-type: text/css
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.69.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.69.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AEbeQUSACZfXCc1+2ojDSg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UR6/97+tEUk7+PExPSqWvqu20/M=
www.robertz.de/assets/js/jquery-3.4.1_plusUI.min.js
5.175.22.217200 OK 85 kB URL HTTP/2 www.robertz.de/assets/js/jquery-3.4.1_plusUI.min.js
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash d12f6a571f27f8f789cf30b5b17bfeea
6b61e7dbdb4fe26ca656015704e4e0270f2e3c05
1f278360aad59de34a97aeebd39d19149d60ccacb878ee9ebc3cbb398bd75437
GET /assets/js/jquery-3.4.1_plusUI.min.js HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Sat, 04 Jul 2020 16:32:09 GMT
etag: "53745-5a9a02ed31440-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 85178
content-type: application/javascript
X-Firefox-Spdy: h2
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Sabrina.jpg
5.175.22.217200 OK 44 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Sabrina.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=GIMP 2.8.22, datetime=2018:06:08 15:13:15], progressive, precision 8, 236x236, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 0-25701, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 197.285858, slope 0.000169\012- data
Hash 3f10608c9147bb7f2c6ed6d2d127d7a0
1aeb71c57ac6e2e9ab78ff28d9238bc26b83a67c
9eb3343464fc4fbf0e6e1d554d49f0e7eca0c5b6bf69abd3faf55b352788bce8
GET /www/_data/1007/files/Robertz/Team/Sabrina.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "acce-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 44238
content-type: image/jpeg
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 172518c569295ba3124086b3eda0c459
98547606c15e73c3f47b6b6819e1ea6c4d139520
8494f96de3297cc850ccfbb27d50eba02b0df7ecd76fdc2ebb74469b53d8fe68
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8494F96DE3297CC850CCFBB27D50EBA02B0DF7ECD76FDC2EBB74469B53D8FE68"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Tue, 22 Nov 2022 04:12:25 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Julia.jpg
5.175.22.217200 OK 12 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Julia.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 236x236, components 3\012- data
Hash a8194c06c8a8d294277daa462319d516
7a506471abff545dc237fd28cecd026b3637698f
b0df99082d55ea503390a5b00e84e450747dc5a4f891fe362481ac2e70a98185
GET /www/_data/1007/files/Robertz/Team/Julia.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "2fe3-5bf4e5b3d1c51"
accept-ranges: bytes
content-length: 12259
content-type: image/jpeg
X-Firefox-Spdy: h2
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Michael.jpg
5.175.22.217200 OK 12 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Michael.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 236x236, components 3\012- data
Hash 7366bcfcda634ede8deb3d9c355a8b91
92f9e20b7355c4784e755f8c569ee2a5173d2168
7655969dad71f9c7b976b4e97c83bcaea8230e6cf2a48c17b591fd68362d059a
GET /www/_data/1007/files/Robertz/Team/Michael.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "2e3c-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 11836
content-type: image/jpeg
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68db69dc5e4f45b914d42342df2e7d31
c3b9d5f18ebb775c33b22601a521301a1b64a313
89377b5d043bf10b5715fcba350cf5fe7b18f3afd21189aea9bb04fd453cbce9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89377B5D043BF10B5715FCBA350CF5FE7B18F3AFD21189AEA9BB04FD453CBCE9"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11018
Expires: Tue, 22 Nov 2022 01:16:05 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
booking.traveltermin.de/button?IpdVpkq9Li
134.119.241.212200 OK 1.8 kB URL HTTP/1.1 booking.traveltermin.de/button?IpdVpkq9Li
IP 134.119.241.212:0
ASN #34011 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (1932)
Hash b2a18eea1fb5589375a73c522fceb48a
c512ce391fae7566a6fed1ceb4d51dd3e9c365a5
dd9601ec2e7dfa466cb09bf94b47b45a5c539a7a5cc002cc56410d887310de5f
GET /button?IpdVpkq9Li HTTP/1.1
Host: booking.traveltermin.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 22:12:26 GMT
Server: Apache
X-Powered-By: PHP/7.3.10
Cache-Control: max-age=604800
Expires: Mon, 28 Nov 2022 22:12:26 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1791
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8;
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Britta.jpg
5.175.22.217200 OK 52 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Britta.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 236x236, components 3\012- data
Hash f5eb98bfc65d1965e8d436efee6102cc
0a39804268d9f4a2c24a910bdf0b9bc3f0921d6d
2cae6eef310345f33a06ed4ddbc645d0def20687e9cc332f051b9d57170b9f7a
GET /www/_data/1007/files/Robertz/Team/Britta.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "ca76-5bf4e5b3ec77a"
accept-ranges: bytes
content-length: 51830
content-type: image/jpeg
X-Firefox-Spdy: h2
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Claudia.jpg
5.175.22.217200 OK 44 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Claudia.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 236x236, components 3\012- data
Hash 56c8f6150d913b65e5aab67b3ba62f84
ae1a6d0a553a211f0cf4fa673dfc6ed342f8cbe8
de7089fd245c1c2896802772b8c72120ecc7d66fcd972df725c9d1569af8ae4f
GET /www/_data/1007/files/Robertz/Team/Claudia.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "ac96-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 44182
content-type: image/jpeg
X-Firefox-Spdy: h2
www.paxconnect.de/js/meinereiseangebote_iframe_v1.1.0.js
83.169.3.220200 OK 653 B URL HTTP/1.1 www.paxconnect.de/js/meinereiseangebote_iframe_v1.1.0.js
IP 83.169.3.220:0
ASN #8972 Host Europe GmbH
Hash f5bf508542930203b6d507c968670502
b2a0ed3ceeb796f0aa21b6efe84bf6d6a710c0f8
6c3a3bb55c78ea17e0b9e1b9e821e509b94d2dc67e20b32515e1f3b9b423211c
GET /js/meinereiseangebote_iframe_v1.1.0.js HTTP/1.1
Host: www.paxconnect.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:27 GMT
Content-Type: application/javascript
Last-Modified: Wed, 25 May 2022 09:37:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"628df8db-72b"
X-FRAME-OPTIONS: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' paxconnect.de *.paxconnect.de *.smartberatung.com *.meinereiseangebote.de youtube.com *.youtube.com
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
X-Powered-By: PleskLin
Content-Encoding: br
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Nadine.jpg
5.175.22.217200 OK 48 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Nadine.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 235x236, components 3\012- data
Hash 431793fe981ba51d3b6281986775045c
6b2ae55ed6162eac106b6149e1774bc7f94bd324
7496b26a859adfd8e480d681110c18d952b79bf7da7ed06e7e28968d9be66aa8
GET /www/_data/1007/files/Robertz/Team/Nadine.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "ba84-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 47748
content-type: image/jpeg
X-Firefox-Spdy: h2
backend.tcautor.de/www/_data/1007/files/Robertz/Team/Melanie.jpg
5.175.22.217200 OK 60 kB URL HTTP/2 backend.tcautor.de/www/_data/1007/files/Robertz/Team/Melanie.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, xresolution=174, yresolution=182, resolutionunit=2, software=GIMP 2.8.22, datetime=2018:06:08 15:18:14], progressive, precision 8, 236x236, components 3\012- data
Hash dc2176c3173039123f7bd12a81306dda
9e4c94c2e2e0ca5fe5a1250294700613660321b6
d91036d1030fc79849ec5ac99b29a6ef2d1769e420fb100074b380a15c1679e8
GET /www/_data/1007/files/Robertz/Team/Melanie.jpg HTTP/1.1
Host: backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "eb77-5bf4e5b3ec77a"
accept-ranges: bytes
content-length: 60279
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/assets/js/vendor_bundle.min.js
5.175.22.217200 OK 101 kB URL HTTP/2 www.robertz.de/assets/js/vendor_bundle.min.js
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65514)
Size 101 kB (101220 bytes)
Hash eb1235ec9c4c6300e795fdf0be02224f
d3f8f421bdfc1938f6dbdd41b76b0eb01c3a0bcd
37fe01d6f5a8a0bcf91568940e0202f4728b966b15f2e3141d3729dce8cb2a34
GET /assets/js/vendor_bundle.min.js HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:42:21 GMT
etag: "66b1b-5a67925eb8940-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 101220
content-type: application/javascript
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1223cc617b7fa6225ba4362b032ff3e7
f8e98db35046071cee7fa4756d91d102f5438b44
5c4b90a8ead917b581685567db423c813d096f61d5f6de8c3868ce1b7c1b1138
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C4B90A8EAD917B581685567DB423C813D096F61D5F6DE8C3868CE1B7C1B1138"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Tue, 22 Nov 2022 04:12:13 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
www.robertz.de/www/fonts/montserrat.css
5.175.22.217404 Not Found 196 B URL HTTP/2 www.robertz.de/www/fonts/montserrat.css
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /www/fonts/montserrat.css HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
content-length: 196
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1223cc617b7fa6225ba4362b032ff3e7
f8e98db35046071cee7fa4756d91d102f5438b44
5c4b90a8ead917b581685567db423c813d096f61d5f6de8c3868ce1b7c1b1138
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C4B90A8EAD917B581685567DB423C813D096F61D5F6DE8C3868CE1B7C1B1138"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21562
Expires: Tue, 22 Nov 2022 04:11:49 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1223cc617b7fa6225ba4362b032ff3e7
f8e98db35046071cee7fa4756d91d102f5438b44
5c4b90a8ead917b581685567db423c813d096f61d5f6de8c3868ce1b7c1b1138
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C4B90A8EAD917B581685567DB423C813D096F61D5F6DE8C3868CE1B7C1B1138"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 22 Nov 2022 04:12:27 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
IP 142.250.74.35:0
Hash cf9caff3cd99c1e0252a27c0fdac2472
392643a352813a3587fffb6c80bf2116dafe422d
b16d650f6f5a920aafd20c835dc4f7147677dcc19e6b0ec74a54831470cb30bd
POST /s/gts1d4/AO43Z6OvIBc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1223cc617b7fa6225ba4362b032ff3e7
f8e98db35046071cee7fa4756d91d102f5438b44
5c4b90a8ead917b581685567db423c813d096f61d5f6de8c3868ce1b7c1b1138
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C4B90A8EAD917B581685567DB423C813D096F61D5F6DE8C3868CE1B7C1B1138"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Tue, 22 Nov 2022 04:11:48 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/AO43Z6OvIBc
IP 142.250.74.35:0
Hash cf9caff3cd99c1e0252a27c0fdac2472
392643a352813a3587fffb6c80bf2116dafe422d
b16d650f6f5a920aafd20c835dc4f7147677dcc19e6b0ec74a54831470cb30bd
POST /s/gts1d4/AO43Z6OvIBc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 04fdfa99d2c2d659cc8bdaf3f327e916
6ca5b9460bf0e6d5e8990e504882298362d37280
9aadc0c7ad8ac7d1903266a4b2efe37bd3f5c0eba5d17bb4feaea23ed32ebc4f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AADC0C7AD8AC7D1903266A4B2EFE37BD3F5C0EBA5D17BB4FEAEA23ED32EBC4F"
Last-Modified: Sat, 19 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 22 Nov 2022 04:12:27 GMT
Date: Mon, 21 Nov 2022 22:12:27 GMT
Connection: keep-alive
www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/lake-louise-1761286_1920.jpg
5.175.22.217200 OK 115 kB URL HTTP/2 www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/lake-louise-1761286_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size 115 kB (115135 bytes)
Hash ae636582e580e0d24e4fedbc84af6894
02040d1ef25f7ec7678ef64ba984a2236dfb0153
836653e3204500f3598e1bc344205a816584c96b5393cea8b4af40e74e736f7d
GET /www/_data/1009/files/BilderPool/Thementeaser/lake-louise-1761286_1920.jpg HTTP/1.1
Host: www.backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "1c1bf-5e9cdac1c8868"
accept-ranges: bytes
content-length: 115135
content-type: image/jpeg
X-Firefox-Spdy: h2
www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/medical-563427_1920.jpg
5.175.22.217200 OK 41 kB URL HTTP/2 www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/medical-563427_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Hash 1a14e9bc192ef71737e00e2659b943a3
b34da10383fc7cf2f7588d01f7c7f161ecd3de59
609b9a791933979e096a4778fdd0b046a29d58be123a66fe975951a5db751aff
GET /www/_data/1009/files/BilderPool/Thementeaser/medical-563427_1920.jpg HTTP/1.1
Host: www.backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "a07b-5e9cdac1b9435"
accept-ranges: bytes
content-length: 41083
content-type: image/jpeg
X-Firefox-Spdy: h2
www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/statue-of-liberty-g91a003ec7_1920.jpg
5.175.22.217200 OK 73 kB URL HTTP/2 www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/statue-of-liberty-g91a003ec7_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Hash 73991d5ed68858c2a662504dc2183e32
1cedc862bb3824ea216db4591c71d5b3a0b49dc2
21127e3e4b00b57465d7dc43dbbb6bf6adbb931c512aa1b76d7096061556fecc
GET /www/_data/1009/files/BilderPool/Thementeaser/statue-of-liberty-g91a003ec7_1920.jpg HTTP/1.1
Host: www.backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "11de2-5e9cdac1c4b5e"
accept-ranges: bytes
content-length: 73186
content-type: image/jpeg
X-Firefox-Spdy: h2
www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/passport-6012618_1920.jpg
5.175.22.217200 OK 135 kB URL HTTP/2 www.backend.tcautor.de/www/_data/1009/files/BilderPool/Thementeaser/passport-6012618_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size 135 kB (135254 bytes)
Hash 6c6cce06a97cb2121796d60972afafaa
3a66e9eb3f93e7a004adbd13405588d7b7cc3ef2
55c47ab26263641d379014113b867e685ab1a3747d8419ad5b07c6834ba25623
GET /www/_data/1009/files/BilderPool/Thementeaser/passport-6012618_1920.jpg HTTP/1.1
Host: www.backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Thu, 11 Nov 2021 09:39:05 GMT
etag: "21056-5d0801d0be818"
accept-ranges: bytes
content-length: 135254
content-type: image/jpeg
X-Firefox-Spdy: h2
www.backend.tcautor.de/www/_data/1025/files/BilderPool/Werbebanner-Mailings/tc_aktueller_banner.gif
5.175.22.217200 OK 489 kB URL HTTP/2 www.backend.tcautor.de/www/_data/1025/files/BilderPool/Werbebanner-Mailings/tc_aktueller_banner.gif
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type GIF image data, version 89a, 2000 x 400\012- data
Size 489 kB (488926 bytes)
Hash 5d4acf5c3a2b71be434b261b76b7e6a9
d9e2645d08cec0a26fe80d30e973de6a4a0b7455
05655f50624596e80672653afde7d5ff99e5efa933bab177057a92812cb659f5
GET /www/_data/1025/files/BilderPool/Werbebanner-Mailings/tc_aktueller_banner.gif HTTP/1.1
Host: www.backend.tcautor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 16:09:31 GMT
etag: "775de-5e6eaca279e6a"
accept-ranges: bytes
content-length: 488926
content-type: image/gif
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d5f44030ae728558d0102445d170b873
a9c2e9ce4d20fe2e8a1656f4f457d9a7fe6ee20e
72f2e03c205a810e0ee66b1ee52f2c32ad4d5e5f8b14c5f26810f281761abc0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d5f44030ae728558d0102445d170b873
a9c2e9ce4d20fe2e8a1656f4f457d9a7fe6ee20e
72f2e03c205a810e0ee66b1ee52f2c32ad4d5e5f8b14c5f26810f281761abc0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.robertz.de/images/BilderPool/Reisethemen/Wandern-Alpen/mountaineers-5649828_1920.jpg
5.175.22.217200 OK 495 kB URL HTTP/2 www.robertz.de/images/BilderPool/Reisethemen/Wandern-Alpen/mountaineers-5649828_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size 495 kB (495184 bytes)
Hash d708b49b7c25267812f6899e2acf19b4
ec6ef0b325f9da1332ee56dec7599f93d793a758
cae3622c5e0a149cfeb6a634b0b19e833523997774f153d394e689b99f52c694
GET /images/BilderPool/Reisethemen/Wandern-Alpen/mountaineers-5649828_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 15:12:49 GMT
etag: "78e50-5c50bc1bd7f5c"
accept-ranges: bytes
content-length: 495184
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:27 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/assets/fonts/flaticon/Flaticon.woff2
5.175.22.217200 OK 37 kB URL HTTP/2 www.robertz.de/assets/fonts/flaticon/Flaticon.woff2
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 36732, version 1.0\012- data
Hash ae2dd4b29a7c28b5cc6e9364c7a69983
602976fc50a9aa00adc99bc2d93888db7a81d2fc
0ebd2de93302226f320140f8051d5cff7c3752be9700d0d598e498bbe0dde638
GET /assets/fonts/flaticon/Flaticon.woff2 HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.robertz.de/assets/css/core.min.css
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Sat, 09 May 2020 10:20:16 GMT
etag: "8f7c-5a53475c0b800"
accept-ranges: bytes
content-length: 36732
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:27 GMT
vary: Accept-Encoding
x-cache: MISS from www.robertz.de
content-type: font/woff2
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/cGpVLbInt0o
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/cGpVLbInt0o
IP 142.250.74.35:0
Hash 9193a7a8ca5a7758fc466f4c8b583493
ec0c709e3a83f96cae4b70886db827500be7ebdb
4c0b57a8ce3054b7efd13715d767ffee0ba7af1f1e7e0567bbdede6469a3a609
POST /s/gts1d4/cGpVLbInt0o HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/cGpVLbInt0o
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/cGpVLbInt0o
IP 142.250.74.35:0
Hash 9193a7a8ca5a7758fc466f4c8b583493
ec0c709e3a83f96cae4b70886db827500be7ebdb
4c0b57a8ce3054b7efd13715d767ffee0ba7af1f1e7e0567bbdede6469a3a609
POST /s/gts1d4/cGpVLbInt0o HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
privacy-proxy-server.usercentrics.eu/googleMaps?center=NaN,6.342&size=1000x500&zoom=12
34.149.163.237200 OK 9.4 kB URL HTTP/2 privacy-proxy-server.usercentrics.eu/googleMaps?center=NaN,6.342&size=1000x500&zoom=12
IP 34.149.163.237:0
File type PNG image data, 1280 x 1000, 8-bit colormap, non-interlaced\012- data
Hash 54fd6e96885c88070add8a1c693dd342
27bfae7fa82cc11de8f58165c4b8d1c6f757654f
c7754a82e1f13d5c3282796111a227df7afdd9c4b6fc26466baa566654545865
GET /googleMaps?center=NaN,6.342&size=1000x500&zoom=12 HTTP/1.1
Host: privacy-proxy-server.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
x-staticmap-api-warning: Error geocoding: center
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=88
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43", h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cloud-trace-context: 7a50631d4a879abd029789525cf267f2
server: Google Frontend
content-length: 9353
via: 1.1 google
date: Sun, 20 Nov 2022 17:44:27 GMT
expires: Mon, 21 Nov 2022 17:44:27 GMT
cache-control: public, max-age=2592000
content-type: image/png
age: 102480
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/cGpVLbInt0o
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/cGpVLbInt0o
IP 142.250.74.35:0
Hash 9193a7a8ca5a7758fc466f4c8b583493
ec0c709e3a83f96cae4b70886db827500be7ebdb
4c0b57a8ce3054b7efd13715d767ffee0ba7af1f1e7e0567bbdede6469a3a609
POST /s/gts1d4/cGpVLbInt0o HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.robertz.de/assets/js/scripts.min.js?_=1669068747133
5.175.22.217200 OK 3.2 kB URL HTTP/2 www.robertz.de/assets/js/scripts.min.js?_=1669068747133
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (5449), with CRLF line terminators
Hash 1d16ebc0b3c66d6a10a2f844da041250
0bfc5df3e06ecc3af5ea0e5e4ec0c277d887c58f
7ddfb4f8b171063568c5f9d506d3777cfc061d6eff3deff43fcb5af2b6e38f11
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/scripts.min.js?_=1669068747133 HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Apache
last-modified: Sun, 05 Jul 2020 10:17:52 GMT
etag: "2541-5a9af1222b05b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:27 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 3166
content-type: application/javascript
X-Firefox-Spdy: h2
privacy-proxy-server.usercentrics.eu/googleMaps?center=50.705,6.178&size=1000x500&zoom=12
34.149.163.237200 OK 159 kB URL HTTP/2 privacy-proxy-server.usercentrics.eu/googleMaps?center=50.705,6.178&size=1000x500&zoom=12
IP 34.149.163.237:0
File type PNG image data, 1280 x 1000, 8-bit colormap, non-interlaced\012- data
Size 159 kB (159204 bytes)
Hash 6c11be2b67d3a3e2eb641b668c553470
17483a0d1d1e9ce2e1454da8b043538ad4051e9c
338ea6af0cfe2c02a6521a087b3f01e6755ccd742000bc33a6e7317dcd18819b
GET /googleMaps?center=50.705,6.178&size=1000x500&zoom=12 HTTP/1.1
Host: privacy-proxy-server.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-type: image/png
expires: Tue, 22 Nov 2022 22:12:27 GMT
cache-control: public, max-age=2592000
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=181
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43", h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cloud-trace-context: 3e034c748443b3450249bf7822ca9833
date: Mon, 21 Nov 2022 22:12:27 GMT
server: Google Frontend
content-length: 159204
via: 1.1 google
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7916
Expires: Tue, 22 Nov 2022 00:24:24 GMT
Date: Mon, 21 Nov 2022 22:12:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7916
Expires: Tue, 22 Nov 2022 00:24:24 GMT
Date: Mon, 21 Nov 2022 22:12:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s1153EpshSWYGLcN7Zzzs4PgXl9cddZ20gTwh5bK2HOBu4e_PSNCpQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 05:19:29 GMT
age: 60779
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3675a1c1e9e3bfc3d16d71644b4c7ab1
c09ea0df36485d017a0fea2c992f5a5676d42d7c
6771ed9a8f8fbcc5c822f261c71018296febd92463c56662f3af6fe793248227
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11088
x-amzn-requestid: 3a42e1ee-d63c-4a40-8122-22ea5775bd5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6nFpMoAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-01b48ea07786649b466b9b29;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QDkzifM71KejjNwstX70B3QktoK01Nfq7tcoHuC5EqOqELF6z0sHfQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:01 GMT
etag: "c09ea0df36485d017a0fea2c992f5a5676d42d7c"
content-type: image/jpeg
age: 1527
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ba2cc1-6e28-45a2-bc78-97012bdeedb2.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ba2cc1-6e28-45a2-bc78-97012bdeedb2.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b591bcc9d645eed0ea6ebc5dae07d31
97278cc5c5a1be7926d53fd8daf9e802bfb6cbdb
82dde9a4d139bdfae1d8859f4d7a77f92182c65ad630e25d0cc52f346dd1dfad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ba2cc1-6e28-45a2-bc78-97012bdeedb2.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11793
x-amzn-requestid: 7edbd95e-83c8-4162-886f-b0bf88deee5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oFrQIAMFnYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-4f1317ec61500d713816830d;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e00mQ1Nvocum0ENKksGnBcQ7gZf1P3R--L7mq2Fvzd5RHbt0W1FGuQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:01 GMT
etag: "97278cc5c5a1be7926d53fd8daf9e802bfb6cbdb"
content-type: image/jpeg
age: 1527
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd46b36d-1888-40f4-b55e-f6905fed9018.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd46b36d-1888-40f4-b55e-f6905fed9018.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cdc70ea570bedb3a19294a2e3cfcb1b
c3abc52da2458971b00416c5513894a8b60389f0
71f4c91b66b84d7bff6416d8efd1b95ca3aa3543a25489553d1acb6cd9b77308
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd46b36d-1888-40f4-b55e-f6905fed9018.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 7bb62ac1-5774-4e82-8438-9eded7ea71a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-JKMGFMIAMFovg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bef0d-06bd21480b42efd67f62c690;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whCecCBPQNOzhPBvEUhvrNcqx82Mirya_ZvTWLMJGQ_aA5kTPQeYlw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:46:19 GMT
age: 1569
etag: "c3abc52da2458971b00416c5513894a8b60389f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.usercentrics.eu/latest/bundle.js
35.190.14.188200 OK 8.4 kB URL HTTP/2 app.usercentrics.eu/latest/bundle.js
IP 35.190.14.188:0
Hash 10f54d1625147d074c29bdff1897ef8f
d1359b0dcf6974d685b5c55c5789810863cce7cd
6431d25310697b4455f3e9487a11415f082d05e02d33b29cad3c8862ece28322
GET /latest/bundle.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdshTCqHRRfwDiWKd4XX-AAhuTX6XS4Xi4Fuve3kIPWtBAiJ3sh5irySEfWaEBsdxnCtEAtHKXDVhFvtZzqpTz9gK6rjT2ii
x-goog-generation: 1666097577382615
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 230157
x-goog-meta-version: 2.18.1
content-encoding: gzip
x-goog-hash: crc32c=dNeQCQ==, md5=Zs9KjfdqVjTrCldr8ZezyQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 230157
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 21 Nov 2022 08:10:41 GMT
expires: Tue, 22 Nov 2022 08:10:41 GMT
cache-control: public, max-age=86400, no-transform
age: 50505
last-modified: Tue, 18 Oct 2022 12:52:57 GMT
etag: "66cf4a8df76a5634eb0a576bf197b3c9"
content-type: application/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250ba249-12ee-4979-b668-ef3afc231f85.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250ba249-12ee-4979-b668-ef3afc231f85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a8c99a41a1c0213a6d95d5782e2b655d
c7c444cf6ab6555aacd6fe880342c17bdbc5967a
f55dddb58be2409d2e7b8e4283dbdf7287978da9fb05263efa0dd04c8063247b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250ba249-12ee-4979-b668-ef3afc231f85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7286
x-amzn-requestid: 108d7b8f-6e5d-45f5-81be-00909af7c3d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-JMFFTLoAMFxDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bef19-180473656275f6d37c6538cd;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:35:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4aSJaqIAup8gCr52e659Io9W_WTl_8ndVuBhA-5XBNYd2JiAL5DR3Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:01 GMT
etag: "c7c444cf6ab6555aacd6fe880342c17bdbc5967a"
content-type: image/jpeg
age: 1527
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.robertz.de/assets/js/vendor.swiper.min.js
5.175.22.217200 OK 32 kB URL HTTP/2 www.robertz.de/assets/js/vendor.swiper.min.js
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash ed605729945876db2c8be9bb08804fe7
afc15092fc62fe09bbca09167410dac0f69f4b2e
a635d2fe17bba098e4d878bb51bd01c7e04655d1ace2b4164b65c9b209b14f2a
GET /assets/js/vendor.swiper.min.js HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:50 GMT
etag: "22538-5a67924128380-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:28 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 31466
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ef82e21636c6aa4ea31ceabb157b5e5d
1546ca47240df48f5c5ebf86e72d2065cc4b3ec0
bdf72313f105e0630ff0d59af09bbd78343f69728df6626c82efffc9f7047be1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2306
Cache-Control: max-age=122953
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Etag: "637b2c13-1d7"
Expires: Wed, 23 Nov 2022 08:21:41 GMT
Last-Modified: Mon, 21 Nov 2022 07:43:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ef82e21636c6aa4ea31ceabb157b5e5d
1546ca47240df48f5c5ebf86e72d2065cc4b3ec0
bdf72313f105e0630ff0d59af09bbd78343f69728df6626c82efffc9f7047be1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2306
Cache-Control: max-age=122953
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Etag: "637b2c13-1d7"
Expires: Wed, 23 Nov 2022 08:21:41 GMT
Last-Modified: Mon, 21 Nov 2022 07:43:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ef82e21636c6aa4ea31ceabb157b5e5d
1546ca47240df48f5c5ebf86e72d2065cc4b3ec0
bdf72313f105e0630ff0d59af09bbd78343f69728df6626c82efffc9f7047be1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6527
Cache-Control: max-age=127174
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Etag: "637b2c13-1d7"
Expires: Wed, 23 Nov 2022 09:32:02 GMT
Last-Modified: Mon, 21 Nov 2022 07:43:15 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
kit-pro.fontawesome.com/releases/latest/css/pro-v4-shims.min.css
104.18.23.52200 OK 302 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/css/pro-v4-shims.min.css
IP 104.18.23.52:0
Size 302 kB (301683 bytes)
Hash a91a7f1463b56fff699af7360ad68493
e480e01fe2fe2b5ed8ee83e866d981656589f887
c3b0afc21a09c6b1328b85263f52a299454e6489e3066d97ccb6a5b77ee6971e
GET /releases/latest/css/pro-v4-shims.min.css HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: text/css
x-amz-id-2: iT8ZupnOxWpWMAKwfkDwtp9P1xcr8oXnn2QOTNUaLIoyQ5jAD2cANg1mJrCWG1nyuIiPehlhVh0=
x-amz-request-id: V9KX785VYZEKCMK4
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"715826d7cea0f100c00238e5e5dc92b4"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1337
expires: Mon, 21 Nov 2022 22:42:28 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 76dcc45c7a701c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/css/pro.min.css
104.18.23.52200 OK 383 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/css/pro.min.css
IP 104.18.23.52:0
Size 383 kB (382769 bytes)
Hash b0556e99ae78fb495a75404590f40fde
9b513871c98590a595e0cfa7e646db39a08ee767
158f94635997d3f69affd152049f4a771ce4e6c69b0ae53870527396fd80af34
GET /releases/latest/css/pro.min.css HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: text/css
x-amz-id-2: AMRPnx/gGPWzkxpEroVSLO8Pi8J0vSGXWBOtNi24DEDy+QaEMCfu0MKQ1eDa2E4MPiKMDx3QOVg=
x-amz-request-id: Q09J8QG0HPK0XNQC
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"486b13730aafe2a39cdaf1666679fa5b"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 995
expires: Mon, 21 Nov 2022 22:42:28 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 76dcc45c8a941c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.robertz.de/images/BilderPool/Reisethemen/St%C3%A4dtereisen/heidelberg-5360721_1920.jpg
5.175.22.217200 OK 295 kB URL HTTP/2 www.robertz.de/images/BilderPool/Reisethemen/St%C3%A4dtereisen/heidelberg-5360721_1920.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1277, components 3\012- data
Size 295 kB (295085 bytes)
Hash 94538df66b1ef89ce0421aca5a3d7686
fe8530ca9b8b16051a5d506a1e4a0001c7a40876
12bbd7295fda70b3d2227ea20c2a0df48ddcff4dae129776410eb93b022f397f
GET /images/BilderPool/Reisethemen/St%C3%A4dtereisen/heidelberg-5360721_1920.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 15:13:53 GMT
etag: "480ad-5c50bc58fad9d"
accept-ranges: bytes
content-length: 295085
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:28 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
www.robertz.de/images/Robertz/B%C3%BCro/IMG_20210402_111030.jpg
5.175.22.217200 OK 401 kB URL HTTP/2 www.robertz.de/images/Robertz/B%C3%BCro/IMG_20210402_111030.jpg
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3500x1575, components 3\012- data
Size 401 kB (401026 bytes)
Hash a086e897890422fd036447039e7a56ca
7497836c1c3c0eefee1dc141ecd065dff5d4375a
87c6ba7b28b0c178f38574bcd6529f6c55479e5cb74f8da6cb279289293efa3f
GET /images/Robertz/B%C3%BCro/IMG_20210402_111030.jpg HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 14:27:31 GMT
etag: "61e82-5c50b1fbffd85"
accept-ranges: bytes
content-length: 401026
cache-control: max-age=86400
expires: Tue, 22 Nov 2022 22:12:28 GMT
x-cache: MISS from www.robertz.de
content-type: image/jpeg
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/css/pro-v4-font-face.min.css
104.18.23.52200 OK 3.0 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/css/pro-v4-font-face.min.css
IP 104.18.23.52:0
Hash 9ce381e3ff633e9b6b9eb1e71ae0cd37
9957930498380d200be85b00304ba47173ef0487
4ed4509a4fe06889e3d6d58a3709747816c5e7008230521d76b5f0e1709bb708
GET /releases/latest/css/pro-v4-font-face.min.css HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: text/css
x-amz-id-2: k3KaRweKXIxA0xKCYeCf5UV9P24XY0pZMfPFsB2YWPmVWFC5XJ7aLVDJGJuyc2Jb0mizxtGvkIM=
x-amz-request-id: 0261H8W942Y6P30A
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"1cb05a2f9541200e1fa0a2cd0abc7663"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1337
expires: Mon, 21 Nov 2022 22:42:28 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 76dcc45c8aa11c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
api.usercentrics.eu/settings/8EV1oBWbt/latest/de.json
35.241.3.184200 OK 8.2 kB URL HTTP/2 api.usercentrics.eu/settings/8EV1oBWbt/latest/de.json
IP 35.241.3.184:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (26196), with no line terminators
Hash c62ae3f23a1b9db989b30786d7623166
c5fa759c2f95c4bcab5393391838ce826948babf
e96186ea046c8600f2cd9200a2298bdb42a9b26bc89a7bcc62f80933d903be7d
GET /settings/8EV1oBWbt/latest/de.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.robertz.de/
Origin: https://www.robertz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduj_o0nTHMMts9bSSRIwUpR2eh6epvaZb0eYlliigieiBJgktLnFIM1jJbAPmTku82fPpXpkJUE6PKK854_nC-gJA
x-goog-generation: 1667581140461575
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8174
content-encoding: gzip
x-goog-hash: crc32c=R4cBkQ==, md5=xirj8jobnbmJsweG12IxZg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 8174
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 21 Nov 2022 22:12:28 GMT
expires: Mon, 21 Nov 2022 22:12:38 GMT
cache-control: public, max-age=1800, s-maxage=10
last-modified: Fri, 04 Nov 2022 16:59:00 GMT
etag: "c62ae3f23a1b9db989b30786d7623166"
content-type: application/json
age: 0
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/qXJ6BhT-uwQ
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/qXJ6BhT-uwQ
IP 142.250.74.35:0
Hash d391b0497eee95a39d823577cdb4a346
1374a7f67870bdee66feff6e9b88506946e3b87f
ad2590b1eff305ab4c2b82338f7463e86cfe621cc55de338179be49a2a2e8b41
POST /s/gts1d4/qXJ6BhT-uwQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/tKUY0ZCyl9k
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/tKUY0ZCyl9k
IP 142.250.74.35:0
Hash b3cca3507884c35f336a167e55f5602c
d40af8d64cf65a01412c9753c476c144e3c27b66
4f1607b46805b169995f30e2885e944303f511c9095c5a003536cdfacbd9fcb8
POST /s/gts1d4/tKUY0ZCyl9k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aggregator.service.usercentrics.eu/aggregate/de?templates=H1Vl5NidjWX@40.17.38,Hko_qNsui-Q@14.5.15,SJKM9Ns_ibQ@10.5.6,rkUcEjuoWm@16.6.5,ko1w5PpFl@23.12.19,XYQZBUojc@9.6.4,r5-Z_erQ0@6.2.2,QPYQDujT@3.3.0,BJ59EidsWQ@25.6.26,BJz7qNsdj-7@15.7.12,abGHajF1@6.0.1,S1pcEj_jZX@21.9.4,8eIqa_sKr@8.1.0
34.120.28.121200 OK 6.0 kB URL HTTP/2 aggregator.service.usercentrics.eu/aggregate/de?templates=H1Vl5NidjWX@40.17.38,Hko_qNsui-Q@14.5.15,SJKM9Ns_ibQ@10.5.6,rkUcEjuoWm@16.6.5,ko1w5PpFl@23.12.19,XYQZBUojc@9.6.4,r5-Z_erQ0@6.2.2,QPYQDujT@3.3.0,BJ59EidsWQ@25.6.26,BJz7qNsdj-7@15.7.12,abGHajF1@6.0.1,S1pcEj_jZX@21.9.4,8eIqa_sKr@8.1.0
IP 34.120.28.121:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (39783), with no line terminators
Hash f75cd277d71161e6911030023f10170c
b24f4dcf8d091e05b834f2429d4e7ea2e3f52dd5
4bdf95fe9d6cb0b624aa74f787273efb63d2a29b571b611bef51f9c2a82e55ae
GET /aggregate/de?templates=H1Vl5NidjWX@40.17.38,Hko_qNsui-Q@14.5.15,SJKM9Ns_ibQ@10.5.6,rkUcEjuoWm@16.6.5,ko1w5PpFl@23.12.19,XYQZBUojc@9.6.4,r5-Z_erQ0@6.2.2,QPYQDujT@3.3.0,BJ59EidsWQ@25.6.26,BJz7qNsdj-7@15.7.12,abGHajF1@6.0.1,S1pcEj_jZX@21.9.4,8eIqa_sKr@8.1.0 HTTP/1.1
Host: aggregator.service.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.robertz.de/
Origin: https://www.robertz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding, accept-encoding
access-control-allow-origin: *
content-encoding: br
server: Google Frontend
via: 1.1 google
date: Mon, 21 Nov 2022 13:45:10 GMT
cache-control: public,max-age=604800
etag: "1759h69"
content-type: application/json; charset=utf-8
content-length: 6044
age: 30438
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.meinereiseangebote.de/VRVR-5820?supressCookieConsent&output_content=iframe
13.69.68.38200 OK 10 kB URL HTTP/1.1 www.meinereiseangebote.de/VRVR-5820?supressCookieConsent&output_content=iframe
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1611), with CRLF, LF line terminators
Hash fc67f9e658569a3f778166bad56280c8
a9d36bfa88ad2249c704d5d14a8afb167488b56a
c491ae2b5eea5016d6be8c1c9161906fb3fa09ecb38f7617dd34a67602a5e57d
GET /VRVR-5820?supressCookieConsent&output_content=iframe HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 10063
Content-Type: text/html; charset=utf-8
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Cache-Control: no-store, must-revalidate, no-cache
Content-Encoding: gzip
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Set-Cookie: PHPSESSID=3694f178b184b2911d13e7cc23f2162f; path=/; secure; HttpOnly; SameSite=Strict
ARRAffinity=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51;Path=/;HttpOnly;Secure;Domain=www.meinereiseangebote.de
ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51;Path=/;HttpOnly;SameSite=None;Secure;Domain=www.meinereiseangebote.de
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
Content-Security-Policy: default-src 'none';frame-src 'self' *.trustyou.com *.youtube.com *.google.com review.holidaycheck.com;media-src 'self' static.gebeco.de *.studiosus.com;font-src 'self' https://fonts.gstatic.com *.smartberatung.com;img-src * 'self' data:;object-src 'none';script-src 'strict-dynamic' 'nonce-DhXEOS+i8+n2EpM4UHqrZgKznVA=' *.smartberatung.com ;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com *.core.windows.net cdn.smartberatung.com;frame-ancestors *;base-uri 'self';form-action 'self';connect-src *;
ocsp.pki.goog/s/gts1d4/tKUY0ZCyl9k
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/tKUY0ZCyl9k
IP 142.250.74.35:0
Hash b3cca3507884c35f336a167e55f5602c
d40af8d64cf65a01412c9753c476c144e3c27b66
4f1607b46805b169995f30e2885e944303f511c9095c5a003536cdfacbd9fcb8
POST /s/gts1d4/tKUY0ZCyl9k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meinereiseangebote.de/dist/main-debb08aa68.min.css
13.69.68.38200 OK 23 kB URL HTTP/1.1 www.meinereiseangebote.de/dist/main-debb08aa68.min.css
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash a2e6372a26937148ea1dbe7ca4f63ecf
449caf796fa297b615d2799c8d29b71e9b5da01a
91fb6817684d72efc317690a862633bf8f4f3b56f20e32b9d6588fef310f850c
GET /dist/main-debb08aa68.min.css HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 22578
Content-Type: text/css
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "1e134-5ed199d628c80-gzip"
Last-Modified: Thu, 10 Nov 2022 08:32:34 GMT
Vary: Accept-Encoding
www.meinereiseangebote.de/js/signalr.min.js
13.69.68.38200 OK 20 kB URL HTTP/1.1 www.meinereiseangebote.de/js/signalr.min.js
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (59658)
Hash a489a138f3892c6cd7e480f3434cb0f0
833fb6efed094733f67c9f1ea199857d6d8e648b
36ccf5a6da80777f525f90110963dfed1323c6518ba2d1b9efb4f409ce617371
GET /js/signalr.min.js HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 20395
Content-Type: application/javascript
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "1c662-58abf392a1880-gzip"
Last-Modified: Fri, 07 Jun 2019 17:33:06 GMT
Vary: Accept-Encoding
www.meinereiseangebote.de/dist/list.c34af047616e76f92c2f.bundle.js
13.69.68.38200 OK 29 kB URL HTTP/1.1 www.meinereiseangebote.de/dist/list.c34af047616e76f92c2f.bundle.js
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (65411)
Hash 60d9b3fd347644b1b156ff54e30bf369
f5c805dfc2bbb7b8275b21ff000998bdaabc7b17
afa55235cc70b892c0e32b1ff138bc9a508e4bd161faf69036531e1e4aba808e
GET /dist/list.c34af047616e76f92c2f.bundle.js HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 28934
Content-Type: application/javascript
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "160a9-5ed199eb23e00-gzip"
Last-Modified: Thu, 10 Nov 2022 08:32:56 GMT
Vary: Accept-Encoding
ocsp.pki.goog/s/gts1d4/kHRXVe39NZ4
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/kHRXVe39NZ4
IP 142.250.74.35:0
Hash 6fdd69de54ed0a24eb1742db8d718d9c
4755e805579c623aff432ed5faceb7f205c08eff
81cf6a59b0c8671dab2128d9a81a1be35b893448137d70320c20ac62f5fc7baf
POST /s/gts1d4/kHRXVe39NZ4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/kHRXVe39NZ4
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/kHRXVe39NZ4
IP 142.250.74.35:0
Hash 6fdd69de54ed0a24eb1742db8d718d9c
4755e805579c623aff432ed5faceb7f205c08eff
81cf6a59b0c8671dab2128d9a81a1be35b893448137d70320c20ac62f5fc7baf
POST /s/gts1d4/kHRXVe39NZ4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meinereiseangebote.de/js/jquery.validate.min.js
13.69.68.38200 OK 7.9 kB URL HTTP/1.1 www.meinereiseangebote.de/js/jquery.validate.min.js
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (24463)
Hash 98dd0eff9bec7b5449b1a875a095efe8
601c8f3cd6fbf7f62599872cff4c19045718428c
16d1d1da78f61d81e9657708cdc110eec288a5f8613a6a50d4a10ed6de3c522b
GET /js/jquery.validate.min.js HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 7917
Content-Type: application/javascript
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "6019-1c5fc537f6900-gzip"
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Vary: Accept-Encoding
www.meinereiseangebote.de/js/jquery.min.js
13.69.68.38200 OK 31 kB URL HTTP/1.1 www.meinereiseangebote.de/js/jquery.min.js
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65447)
Hash 31d53c8cdce8012a24abc8e84aa972e5
7287b1ec5d88304ba44fc1958b8de9596274c4e3
1b72bc7f54bc9170e605f6c4bb5529668c4ee3efeee602fdb63036b45b49f41c
GET /js/jquery.min.js HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 30902
Content-Type: application/javascript
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "15d9d-1c5fc537f6900-gzip"
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Vary: Accept-Encoding
www.meinereiseangebote.de/js/iframeResizer.min.js
13.69.68.38200 OK 5.6 kB URL HTTP/1.1 www.meinereiseangebote.de/js/iframeResizer.min.js
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (13786)
Hash 2dbe7ca3eeeecd201e821ae3e8615fd1
6082808fe38faf7d285a4e0da66f2d23200109da
b8d2a53b285cca535708451e516647e02dfbcc2f7f45164919fb2b2408b1c38a
GET /js/iframeResizer.min.js HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 5586
Content-Type: application/javascript
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "36fc-1c5fc537f6900-gzip"
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Vary: Accept-Encoding
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.11.1.woff2
104.18.23.52200 OK 11 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.11.1.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 10860, version 331.-31196\012- data
Hash eb7a13166c2efdd5b305c75d341ce222
4f9e18b100b049b74efb8f0084e81756abaadfaa
b2698da8df8781bf12a07d76bab5c6353fbb730a8138fcaa1371c4950ad7c461
GET /releases/latest/webfonts/pro-fa-light-300-5.11.1.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 10860
x-amz-id-2: OHF18PEZ+djFtTBN2vPB4Y96nxVSOl43wvmYUpVxd4QG82/iEu0m1iCCxXTdMSkFuQW75w6Hz3I=
x-amz-request-id: 88GJCYT4N6BS0GVQ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "eb7a13166c2efdd5b305c75d341ce222"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45debde1c12-OSL
X-Firefox-Spdy: h2
www.meinereiseangebote.de/js/iframeResizer.contentWindow.min.js
13.69.68.38200 OK 5.1 kB URL HTTP/1.1 www.meinereiseangebote.de/js/iframeResizer.contentWindow.min.js
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (13224)
Hash acf6ed4a5a0367bf4192578cd9d14af2
6cbf60125c288e9ee11cb114ef6146f433213189
16869f60747c1ed316dbf077789e13a43f9de6ea4d5319c7bb101d32b6070c74
GET /js/iframeResizer.contentWindow.min.js HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 5062
Content-Type: application/javascript
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "34fb-1c5fc537f6900-gzip"
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Vary: Accept-Encoding
www.meinereiseangebote.de/images/map-pointer.svg
13.69.68.38200 OK 520 B URL HTTP/1.1 www.meinereiseangebote.de/images/map-pointer.svg
IP 13.69.68.38:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash ac3b43d0d75a0c358464b8c81b168ba0
a8de09edc55ab38a335e7c883b480c0602089e8a
128a253d55271bb538fa48869e9ccb3374f64267e0f7559fa749d37fa83e8abf
GET /images/map-pointer.svg HTTP/1.1
Host: www.meinereiseangebote.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ARRAffinitySameSite=47e899d5dc0547d5646e3c2c0081ae2cb7fddd55609bf4af48732c4283928a51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 520
Content-Type: image/svg+xml
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Apache
Accept-Ranges: bytes
ETag: "208-5ed199bd5d200"
Last-Modified: Thu, 10 Nov 2022 08:32:08 GMT
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-brands-400-5.0.0.woff2
104.18.23.52200 OK 38 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-brands-400-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 37796, version 331.-31196\012- data
Hash 6cdf281bc8af0068561fe6aa361a6a0b
4b11f830ee1b852b8aa46ea7e4cfe709a327bf58
49fd3e0c64f247cf56cb828bc37b88cf139df6e5c7bb4c3a4507f740e9a52c17
GET /releases/latest/webfonts/pro-fa-brands-400-5.0.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 37796
x-amz-id-2: EqnKjIqcEc+Xt9F6NQk85V6WWY5jmYpdXSy7gVwljqnGfQkYmP1MkDTskKG00UPxU46SIEtB2PQ=
x-amz-request-id: 88GSF1EJ61PQYZC9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:35 GMT
etag: "6cdf281bc8af0068561fe6aa361a6a0b"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45ddbd91c12-OSL
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-duotone-900-5.7.0.woff2
104.18.23.52200 OK 11 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-duotone-900-5.7.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 10884, version 331.-31196\012- data
Hash b297f9c677379a25dab795e0546e1e07
c0eeb3115545926ad1cb5d9b37a2fe573acf4b03
272922821dedf161cdf3bebb80a3353ae53e530698f4f92606e3f76b5415c158
GET /releases/latest/webfonts/pro-fa-duotone-900-5.7.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 10884
x-amz-id-2: KDnrH6dbBfdHOyLx+72tCbmFqslBlUuQENtvfa/WFnLvjXFrSnan4nRDx/cP969BoSwLSKHzkOw=
x-amz-request-id: 88GPBCBNJ6Z70BW5
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:39 GMT
etag: "b297f9c677379a25dab795e0546e1e07"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45ddbd11c12-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aa45e12b78272c1809dfc346a8f6766e
a8f66cce5a879293e2481585555879fff33e580e
97b7138fd4fe90ac74d588c540cd9b1aecec73b5f1bc545f07e84ced160a37e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "97B7138FD4FE90AC74D588C540CD9B1AECEC73B5F1BC545F07E84CED160A37E7"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11600
Expires: Tue, 22 Nov 2022 01:25:48 GMT
Date: Mon, 21 Nov 2022 22:12:28 GMT
Connection: keep-alive
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-brands-400-5.8.2.woff2
104.18.23.52200 OK 2.4 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-brands-400-5.8.2.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 2412, version 331.-31196\012- data
Hash 714ee8de820748bab5090d91cd5b7690
07f4d4dfe5e3c9045f41996eb1ac8ecbbcc779bf
322c181b1aab5807cd0a7ed9e249ddbd97fa385ca3d338aa59ef1f610ca24601
GET /releases/latest/webfonts/pro-fa-brands-400-5.8.2.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 2412
x-amz-id-2: gHYnGIgykso/g5d1IS0ITIaW61nwbuGIjavC2CMaOqP0K//8eU3Xtcob4MtzHUYQ4G+HQNwtjbw=
x-amz-request-id: 88GWW53A8WCVPZS8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:37 GMT
etag: "714ee8de820748bab5090d91cd5b7690"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45ddbd71c12-OSL
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.11.0.woff2
104.18.23.52200 OK 16 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.11.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 15748, version 331.-31196\012- data
Hash 1894bebba876a67d0cb7cd7351ab6ae4
0c2e2d2e73311bbd4c429e33e4e4c4036207b4b1
ec540bd82697b5fb43f1584f25446b7d58a0cf0a51e1544b0b278a2aaa5f1e77
GET /releases/latest/webfonts/pro-fa-light-300-5.11.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 15748
x-amz-id-2: zydN9kuEOItPGmPNI9KQ1MAF8G5dGowJupORopszrRM6qAjfRlgyT0R+DQPKIUmMAua6+RCoe98=
x-amz-request-id: 88GNX1NRYH9GPA9C
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "1894bebba876a67d0cb7cd7351ab6ae4"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45debdf1c12-OSL
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-solid-900-5.10.2.woff2
104.18.23.52200 OK 13 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-solid-900-5.10.2.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 13268, version 331.-31196\012- data
Hash 4a18bee89aa2256ef1c2cc9380552229
ff12ccbac7df0ff36d29ce91b42c43d5fd662cf6
46fa33cc9340603e767415c1829c08b91f3a3680b9800047dbc1bda91b8eb0ac
GET /releases/latest/webfonts/pro-fa-solid-900-5.10.2.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 13268
x-amz-id-2: //kDm3yUOFtgNeSHVxUp5cuL/aj1xDUx6LPE88LFetBOEAovXYPkWrk/zpbaB9AKY3b61yfekOY=
x-amz-request-id: 88GXANZ94HQ5H6TT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:46 GMT
etag: "4a18bee89aa2256ef1c2cc9380552229"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45dfbef1c12-OSL
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.10.1.woff2
104.18.23.52200 OK 10 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.10.1.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 10412, version 331.-31196\012- data
Hash 82b2764fcd41e25136e931dd303a29f4
ec11167afa020752f2dcdbeba74c10ee6d9255d6
94db1583c12033a2b06418908eaf13362e9e79e6c4a78e5e8ce608774cf6e512
GET /releases/latest/webfonts/pro-fa-light-300-5.10.1.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 10412
x-amz-id-2: e8esbahtpCUwNqgGKWHmq+V8BCqoRNYldASlXqLWI04c4m/kGSDE5ayaItWKvDtEfAHT4ED+bxo=
x-amz-request-id: 88GKDGCBPQY6M2RE
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "82b2764fcd41e25136e931dd303a29f4"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45debea1c12-OSL
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.10.2.woff2
104.18.23.52200 OK 17 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.10.2.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data
Hash 8a43eb7db323b6a82d87a458c34cbe82
968367a39a575ffe38f1cfda07eea12eff885831
2bbaabc785383c5d90abc17e6703ac6a057b9644c6ebdfe9e15709c6ffac9c71
GET /releases/latest/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 17168
x-amz-id-2: 1uZmuemiKqoYQ5FHtNw0L4od5DHkff38xQkOQ6BOto3fIQLkhniV44BMxfOfiI8U8YFm4MK7RKg=
x-amz-request-id: 88GKEHJ5GPJRX7TJ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "8a43eb7db323b6a82d87a458c34cbe82"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45debe31c12-OSL
X-Firefox-Spdy: h2
kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.0.0.woff2
104.18.23.52200 OK 25 kB URL HTTP/2 kit-pro.fontawesome.com/releases/latest/webfonts/pro-fa-light-300-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Hash 4abe94f1746789f39110d3ebac7ebd96
bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/latest/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: font/woff2
content-length: 24800
x-amz-id-2: 7PIAOfmkZe7A4TXw8CfNu1aNbtSlO5WhpPAtYswvRzN488uCzMUO+EnQYTZGFGe4XntOvIlgRxo=
x-amz-request-id: 88GXSJRMF4CTZE91
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:40 GMT
etag: "4abe94f1746789f39110d3ebac7ebd96"
cache-control: public, max-age=1800
cf-cache-status: REVALIDATED
expires: Mon, 21 Nov 2022 22:42:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 76dcc45debe81c12-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/kHRXVe39NZ4
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/kHRXVe39NZ4
IP 142.250.74.35:0
Hash 6fdd69de54ed0a24eb1742db8d718d9c
4755e805579c623aff432ed5faceb7f205c08eff
81cf6a59b0c8671dab2128d9a81a1be35b893448137d70320c20ac62f5fc7baf
POST /s/gts1d4/kHRXVe39NZ4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uc.e-recht24.de/erecht24_logo_white.png
159.69.24.179200 2.9 kB URL HTTP/1.1 uc.e-recht24.de/erecht24_logo_white.png
IP 159.69.24.179:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 98 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ce60860fb4697564e38580a4709ec5c
9806460f6b62a69a9652f8d17afaef69c3e8c287
933400df86c19613e2f9e127e098a0a8eb9e3d9870c8bbcbb8f234629cee5b74
GET /erecht24_logo_white.png HTTP/1.1
Host: uc.e-recht24.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/png
Content-Length: 2889
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Fri, 29 Jul 2022 06:46:14 GMT
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Wed, 22 Nov 2023 22:12:29 GMT
X-Frame-Options: DENY
Pragma: no-cache, public
Cache-Control: max-age=31622400, public
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 931f9c0e5f6ee1260b9b6b8dec3253e3
7acbccdb450a91f6c8d876e5025d75ffd86042e6
449143a32dfb346e650638e59cc3b8b6fae1a16b32ccfd70aa092e0899f114c9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=139696
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:28 GMT
Etag: "637b767c-1d7"
Expires: Wed, 23 Nov 2022 13:00:44 GMT
Last-Modified: Mon, 21 Nov 2022 13:00:44 GMT
Server: nginx
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3cb0b3cebf41341ebc547af7e9747cdb
60107f5d2ff834271e32e2310a2f36b5889215ef
b1a9fdf599fe7acae906ef25d5d1c3b63558d8be7cebd0ba0e7b92f23146ed0f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3770
Cache-Control: max-age=110363
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:29 GMT
Etag: "637af52e-1d7"
Expires: Wed, 23 Nov 2022 04:51:52 GMT
Last-Modified: Mon, 21 Nov 2022 03:49:02 GMT
Server: ECS (amb/6B92)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3cb0b3cebf41341ebc547af7e9747cdb
60107f5d2ff834271e32e2310a2f36b5889215ef
b1a9fdf599fe7acae906ef25d5d1c3b63558d8be7cebd0ba0e7b92f23146ed0f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6117
Cache-Control: max-age=112709
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:29 GMT
Etag: "637af52e-1d7"
Expires: Wed, 23 Nov 2022 05:30:58 GMT
Last-Modified: Mon, 21 Nov 2022 03:49:02 GMT
Server: ECS (amb/6B85)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3cb0b3cebf41341ebc547af7e9747cdb
60107f5d2ff834271e32e2310a2f36b5889215ef
b1a9fdf599fe7acae906ef25d5d1c3b63558d8be7cebd0ba0e7b92f23146ed0f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5902
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:29 GMT
Last-Modified: Mon, 21 Nov 2022 20:34:07 GMT
Server: ECS (amb/6BAB)
X-Cache: HIT
Content-Length: 471
cdn.smartberatung.com/fonts/roboto-v18-latin-regular.woff2
13.107.219.53200 OK 15 kB URL HTTP/2 cdn.smartberatung.com/fonts/roboto-v18-latin-regular.woff2
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /fonts/roboto-v18-latin-regular.woff2 HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Referer: https://www.meinereiseangebote.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 15344
content-type: application/octet-stream
content-md5: XUrrTl9e91TjB9f/rvaIvQ==
last-modified: Fri, 30 Apr 2021 09:58:44 GMT
accept-ranges: bytes
etag: "0x8D90BBE8A6F780F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 3c0f379e-b01e-000a-6884-fd4947000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 054B7YwAAAABd8lLxc9a2SqGkTcdGMA/cQU1TMDRFREdFMTgxMgBkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
access-control-allow-origin: *
access-control-allow-headers: *
pax-rule-engine-rule: AllowSpecificFileExtensions
x-azure-ref: 0zfd7YwAAAACeZ6x1ig6/Ra2T2VwMAVvkT1NMMjMxMDUwMjAzMDI1AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
cdn.smartberatung.com/fonts/roboto-v18-latin-700.woff2
13.107.219.53200 OK 15 kB URL HTTP/2 cdn.smartberatung.com/fonts/roboto-v18-latin-700.woff2
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /fonts/roboto-v18-latin-700.woff2 HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Referer: https://www.meinereiseangebote.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 15436
content-type: application/octet-stream
content-md5: A32DBBZJXe9yt4gQJMFLew==
last-modified: Fri, 30 Apr 2021 09:58:44 GMT
accept-ranges: bytes
etag: "0x8D90BBE8A57F2BB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 762770fa-801e-004d-58af-fd962c000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 054B7YwAAAAC5BcNljTuhQ7pelDzGPL4LQU1TMDRFREdFMTkyMABkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
access-control-allow-origin: *
access-control-allow-headers: *
pax-rule-engine-rule: AllowSpecificFileExtensions
x-azure-ref: 0zfd7YwAAAABwEHWgOuD7SoNtLagDmQsmT1NMMjMxMDUwMjAzMDI1AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
cluster2.images.traveltainment.eu/images/content/va_logos/small/DER.gif
185.64.96.3200 OK 559 B URL HTTP/1.1 cluster2.images.traveltainment.eu/images/content/va_logos/small/DER.gif
IP 185.64.96.3:0
ASN #8469 CANCOM Managed Services GmbH
File type GIF image data, version 89a, 75 x 21\012- data
Hash 62139173ab45d3cc09065e353fa0fa28
a8330272bf0d6f0eb08f1ddb67c3fd5279efb5c6
54aeab4c762baa12f147ba66d3b95bc724c742306bbf3cfc46b0a0f3fef360cb
GET /images/content/va_logos/small/DER.gif HTTP/1.1
Host: cluster2.images.traveltainment.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/gif
Content-Length: 559
Last-Modified: Tue, 08 Nov 2016 08:07:39 GMT
Connection: keep-alive
ETag: "582187cb-22f"
Expires: Mon, 21 Nov 2022 23:12:29 GMT
Cache-Control: max-age=3600
X-TT-Cluster: op-image-p107-X_content-https
Vary: Accept-Encoding
Accept-Ranges: bytes
cluster2.images.traveltainment.eu/images/content/va_logos/small/TUID.gif
185.64.96.3200 OK 2.3 kB URL HTTP/1.1 cluster2.images.traveltainment.eu/images/content/va_logos/small/TUID.gif
IP 185.64.96.3:0
ASN #8469 CANCOM Managed Services GmbH
File type GIF image data, version 89a, 75 x 21\012- data
Hash 0c7153215a517b6f58e3c0eabc10fe85
cc28e0224562061bd12a495a103a456755c4121c
97f086249c7bbb39a813106527f2cf46d59fd0250da15605ec24becd2ccc3461
GET /images/content/va_logos/small/TUID.gif HTTP/1.1
Host: cluster2.images.traveltainment.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/gif
Content-Length: 2337
Last-Modified: Tue, 05 Jul 2022 14:52:15 GMT
Connection: keep-alive
ETag: "62c4501f-921"
Expires: Mon, 21 Nov 2022 23:12:29 GMT
Cache-Control: max-age=3600
X-TT-Cluster: op-image-p105-X_content-https
Vary: Accept-Encoding
Accept-Ranges: bytes
cluster2.images.traveltainment.eu/images/content/va_logos/small/SLR.gif
185.64.96.3200 OK 1.3 kB URL HTTP/1.1 cluster2.images.traveltainment.eu/images/content/va_logos/small/SLR.gif
IP 185.64.96.3:0
ASN #8469 CANCOM Managed Services GmbH
File type GIF image data, version 89a, 75 x 21\012- data
Hash 5bf01da040a6ccea325bafa8627517cb
f5754f85aed0ff9263280140d2f999b0bcd179a9
8a5ccbfa4aca57b800c440e34c3e47f86cb57d21c4b4b141cb28ca23198139c5
GET /images/content/va_logos/small/SLR.gif HTTP/1.1
Host: cluster2.images.traveltainment.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/gif
Content-Length: 1309
Last-Modified: Mon, 09 Nov 2020 08:56:20 GMT
Connection: keep-alive
ETag: "5fa90434-51d"
Expires: Mon, 21 Nov 2022 23:12:29 GMT
Cache-Control: max-age=3600
X-TT-Cluster: op-image-p104-X_content-https
Vary: Accept-Encoding
Accept-Ranges: bytes
www.chamaeleon-reisen.de/html/img/CHA-Logo-PaxConnect.png
213.187.84.169200 OK 4.7 kB URL HTTP/2 www.chamaeleon-reisen.de/html/img/CHA-Logo-PaxConnect.png
IP 213.187.84.169:0
ASN #16097 HL komm Telekommunikations GmbH
File type PNG image data, 150 x 65, 8-bit colormap, non-interlaced\012- data
Hash 90c449a6b1b3b210e728299fc4fa898d
e67388591422d72d07c7c16bed70b83eb0bc2fa0
aa7d5c69af3ae47bb7d4d8a1a769c3135e34dc3abb376a5facccc2585a2078a9
GET /html/img/CHA-Logo-PaxConnect.png HTTP/1.1
Host: www.chamaeleon-reisen.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 06 May 2021 14:01:34 GMT
etag: "1269-5c1a9bfbea7e2"
accept-ranges: bytes
content-length: 4713
cache-control: max-age=2592000
expires: Wed, 21 Dec 2022 22:12:29 GMT
content-type: image/png
date: Mon, 21 Nov 2022 22:12:29 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash de0788d74146dc567d7e51e7e136f897
7541b15301b78917002bf6c32b0a18efbf6b42fc
d04cbe0f7ace945cc8ec727d43f24efb160bf8a0363920a8d9479a339d03eb1a
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 21 Nov 2022 20:52:34 GMT
Expires: Tue, 22 Nov 2022 20:52:34 GMT
ETag: "7541b15301b78917002bf6c32b0a18efbf6b42fc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.smartberatung.com/portal/413/banner_small.png?ts=20221109_152915&ts=20221109_152915
13.107.219.53200 OK 15 kB URL HTTP/2 cdn.smartberatung.com/portal/413/banner_small.png?ts=20221109_152915&ts=20221109_152915
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 292 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash f99ca8acc4144656e6f33c8874d73cc3
5dd11e9d6f019496708dbfe72e45fc20b922a7ee
ee52c1584566fe0d67fab08a90405d43d6e28ebd02f5a57a2a660e938bf6f0ca
GET /portal/413/banner_small.png?ts=20221109_152915&ts=20221109_152915 HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 14676
content-type: application/octet-stream
content-md5: +ZyorMQURlbm8zyIdNc8ww==
last-modified: Wed, 10 Jun 2020 09:10:15 GMT
accept-ranges: bytes
etag: "0x8D80D1E1686CA2A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_REMOTE_HIT
x-ms-request-id: 9fa08c8f-d01e-0038-428f-fd1197000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 0zfd7YwAAAACZ+6gC9rdAQpWNFLl4PeU/QU1TMDRFREdFMTkwOQBkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
x-azure-ref: 0zfd7YwAAAAA4pNG6d4++QKirj9Oy2qYsT1NMMjMxMDUwMjAzMDA3AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
cdn.smartberatung.com/agents/2130/small.png?ts=20220711_125448
13.107.219.53200 OK 28 kB URL HTTP/2 cdn.smartberatung.com/agents/2130/small.png?ts=20220711_125448
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 136 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash 236c9eb1432d90742dc1f3557b0d5e04
cde728b9155d23eeb8ba9403a99036b7b8fccac2
384acc67a52da858e39f0ecc28387706131ea3c3f88843cc801c3465d0f8ee18
GET /agents/2130/small.png?ts=20220711_125448 HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 27872
content-type: application/octet-stream
content-md5: I2yesUMtkHQtwfNVew1eBA==
last-modified: Wed, 10 Jun 2020 10:13:08 GMT
accept-ranges: bytes
etag: "0x8D80D26DFB3DAF8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_REMOTE_HIT
x-ms-request-id: ae2825b1-201e-0087-6edf-fd05e1000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 0zfd7YwAAAACX1HP3AyMdRKN/JYi7WMOcQU1TMDRFREdFMTkwNwBkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
x-azure-ref: 0zfd7YwAAAADimZfpeYMTTKvQlK62UgfuT1NMMjMxMDUwMjAzMDA3AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18986c490ebfc8f56ded4271a59d4239
430d1a958dd980904fe49d2656c61421c09ac64d
a5a6fb504c948637f59466d86ca7787184bb3e5ce38eed62a9df3e4e4febf469
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5A6FB504C948637F59466D86CA7787184BB3E5CE38EED62A9DF3E4E4FEBF469"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14418
Expires: Tue, 22 Nov 2022 02:12:47 GMT
Date: Mon, 21 Nov 2022 22:12:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18986c490ebfc8f56ded4271a59d4239
430d1a958dd980904fe49d2656c61421c09ac64d
a5a6fb504c948637f59466d86ca7787184bb3e5ce38eed62a9df3e4e4febf469
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5A6FB504C948637F59466D86CA7787184BB3E5CE38EED62A9DF3E4E4FEBF469"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14418
Expires: Tue, 22 Nov 2022 02:12:47 GMT
Date: Mon, 21 Nov 2022 22:12:29 GMT
Connection: keep-alive
contentcenter.woltersonline.de/images/calculated/400/Laender/Schweden/Natur_Landschaft/Winter/Aktivitaeten/Motorschlitten/H_O_Utsi.jpg
82.97.168.90200 OK 13 kB URL HTTP/2 contentcenter.woltersonline.de/images/calculated/400/Laender/Schweden/Natur_Landschaft/Winter/Aktivitaeten/Motorschlitten/H_O_Utsi.jpg
IP 82.97.168.90:0
ASN #13101 TNG Stadtnetz GmbH
File type JPEG image data, baseline, precision 8, 400x267, components 3\012- data
Hash 396688426d70890fe74d1f994574dbf1
1171290895eb6eb4160f7e9b3fffbabf7d28424d
af856a873a8ad9683226156a75833eb08f0983b45c3c828203b24b5559bf0c05
GET /images/calculated/400/Laender/Schweden/Natur_Landschaft/Winter/Aktivitaeten/Motorschlitten/H_O_Utsi.jpg HTTP/1.1
Host: contentcenter.woltersonline.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-transform, max-age=604800
content-type: image/jpeg
etag: "r73uuaa6d"
last-modified: Thu, 10 Feb 2022 20:13:22 GMT
server: Caddy
content-length: 13189
date: Mon, 21 Nov 2022 22:12:29 GMT
X-Firefox-Spdy: h2
cdn.smartberatung.com/fonts/roboto-v18-latin-500.woff2
13.107.219.53200 OK 16 kB URL HTTP/2 cdn.smartberatung.com/fonts/roboto-v18-latin-500.woff2
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /fonts/roboto-v18-latin-500.woff2 HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Referer: https://www.meinereiseangebote.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 15552
content-type: application/octet-stream
content-md5: KFRnF29/5rtqnGhzs9rSzA==
last-modified: Fri, 30 Apr 2021 09:58:43 GMT
accept-ranges: bytes
etag: "0x8D90BBE8A2F040E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_MISS
x-ms-request-id: cdc28748-101e-0007-08f6-fda64b000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 0zfd7YwAAAADGILgRt3NsSYYhT2VU2B0FQU1TMDRFREdFMTkxNgBkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
access-control-allow-origin: *
access-control-allow-headers: *
pax-rule-engine-rule: AllowSpecificFileExtensions
x-azure-ref: 0zfd7YwAAAADXPEqyMaPuRK5BPelF3VpuT1NMMjMxMDUwMjAzMDI1AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
cdn.smartberatung.com/fonts/paxbooking.ttf?gi1j3r
13.107.219.53200 OK 4.7 kB URL HTTP/2 cdn.smartberatung.com/fonts/paxbooking.ttf?gi1j3r
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, paxbooking \012- data
Hash d597dd375e765299c4abc4c352440575
e16fc220bdbf2a32890ad447d1c9f3e3ec7ef0e2
6a00306b4e545f95146167837a17960b45ef9c155d8548856841dabb9e776b68
GET /fonts/paxbooking.ttf?gi1j3r HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Referer: https://www.meinereiseangebote.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 4676
content-type: application/octet-stream
content-md5: 1ZfdN152UpnEq8TDUkQFdQ==
last-modified: Tue, 27 Apr 2021 07:22:53 GMT
accept-ranges: bytes
etag: "0x8D9094D45A20D0E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 0b69a0c3-601e-0021-4d84-fd3dff000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 01dt7YwAAAAAmXXbIy4YPQKiIgmFVupFiQU1TMDRFREdFMTkyMgBkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
access-control-allow-origin: *
access-control-allow-headers: *
pax-rule-engine-rule: AllowSpecificFileExtensions
x-azure-ref: 0zfd7YwAAAABfnwjv4LcxTqrlqN+n53X6T1NMMjMxMDUwMjAzMDI1AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 931f9c0e5f6ee1260b9b6b8dec3253e3
7acbccdb450a91f6c8d876e5025d75ffd86042e6
449143a32dfb346e650638e59cc3b8b6fae1a16b32ccfd70aa092e0899f114c9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=139695
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 22:12:29 GMT
Etag: "637b767c-1d7"
Expires: Wed, 23 Nov 2022 13:00:44 GMT
Last-Modified: Mon, 21 Nov 2022 13:00:44 GMT
Server: nginx
Content-Length: 471
www.chamaeleon-reisen.de/data/pic/img20/Reisen/Afrika/SAGAR/Suedafrika-Garden-Route_011_Malaienviertel.jpg
213.187.84.169200 OK 155 kB URL HTTP/2 www.chamaeleon-reisen.de/data/pic/img20/Reisen/Afrika/SAGAR/Suedafrika-Garden-Route_011_Malaienviertel.jpg
IP 213.187.84.169:0
ASN #16097 HL komm Telekommunikations GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1200x550, components 3\012- data
Size 155 kB (155187 bytes)
Hash 22d827c911e8c549c7881279291129c0
917983b790dd8901d85e9f7759fbaeefae31a552
bb6466ff74e74f9b70896e4b9d833644d7d3713934a4d2f4ff2b82b6acb3c193
GET /data/pic/img20/Reisen/Afrika/SAGAR/Suedafrika-Garden-Route_011_Malaienviertel.jpg HTTP/1.1
Host: www.chamaeleon-reisen.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 10:21:31 GMT
etag: "25e33-5baf8c44809d4"
accept-ranges: bytes
content-length: 155187
cache-control: max-age=2592000
expires: Wed, 21 Dec 2022 22:12:29 GMT
content-type: image/jpeg
date: Mon, 21 Nov 2022 22:12:29 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 86d40dafc7a24238ec7ca727569dccfe
dd91a3aa363eb5d359acadfe401dcd1d0e52992b
47eeb2acff574a1de422e6fe0a1bfb32db4d65b9477516c0811ffc095b1497db
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47EEB2ACFF574A1DE422E6FE0A1BFB32DB4D65B9477516C0811FFC095B1497DB"
Last-Modified: Mon, 21 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 22 Nov 2022 04:12:29 GMT
Date: Mon, 21 Nov 2022 22:12:29 GMT
Connection: keep-alive
pax-smartberatung-signalr.azurewebsites.net/ContentServer/negotiate
20.50.2.10204 No Content 0 B URL HTTP/1.1 pax-smartberatung-signalr.azurewebsites.net/ContentServer/negotiate
IP 20.50.2.10:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ContentServer/negotiate HTTP/1.1
Host: pax-smartberatung-signalr.azurewebsites.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-requested-with
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: x-requested-with
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: https://www.meinereiseangebote.de
Vary: Origin
Request-Context: appId=cid-v1:331e6aed-06ec-49ad-ad4b-0e18e6e4cfd1
X-Powered-By: ASP.NET
media.xmlteam.de/files/aida-cruises/logo/aida-logo-cymk.png
162.55.39.184200 OK 134 kB URL HTTP/2 media.xmlteam.de/files/aida-cruises/logo/aida-logo-cymk.png
IP 162.55.39.184:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 2995 x 818, 8-bit/color RGBA, non-interlaced\012- data
Size 134 kB (134019 bytes)
Hash 10d73476c4b2bd4ff65de85bceadb8cd
1cc72eac173f6ae7a61a6d4db7b73340f0bfa4aa
086ecb0e42edf27f3421e756b8041636e8c6c739f74ecd9d3b9a82eb50259e93
GET /files/aida-cruises/logo/aida-logo-cymk.png HTTP/1.1
Host: media.xmlteam.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 23 Mar 2018 11:06:53 GMT
etag: "20b83-568126bedcd40"
accept-ranges: bytes
content-length: 134019
content-type: image/png
date: Mon, 21 Nov 2022 22:12:29 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.smartberatung.com/portal/413/banner.jpg?ts=20221109_152915&ts=20221109_152915
13.107.219.53200 OK 52 kB URL HTTP/2 cdn.smartberatung.com/portal/413/banner.jpg?ts=20221109_152915&ts=20221109_152915
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop 7.0, datetime=2015:01:06 12:22:03], progressive, precision 8, 940x142, components 3\012- data
Hash 732c7d37d72287f0d9d903ddbd54b29b
0ae238aef4a97082121206221f49cb00022bef95
514ca5b12bc18676a4a0f55b14ead30237576aaae143abbf9635fdd493588dc5
GET /portal/413/banner.jpg?ts=20221109_152915&ts=20221109_152915 HTTP/1.1
Host: cdn.smartberatung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-length: 52335
content-type: application/octet-stream
content-md5: cyx9N9cih/DZ2QPdvVSymw==
last-modified: Wed, 10 Jun 2020 09:10:14 GMT
accept-ranges: bytes
etag: "0x8D80D1E16707F06"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_REMOTE_HIT
x-ms-request-id: 23ad8e96-101e-0007-1e8f-fda64b000000
x-ms-version: 2018-03-28
x-azure-ref-originshield: 0zfd7YwAAAAD6PCv5C8nFQKrCCn6nKeKIQU1TMDRFREdFMTgxMwBkNTM3NWQ5Yy1jYzU5LTQ4YTctYmZhYy0zOWM5ZjgwYTIyNmQ=
x-azure-ref: 0zfd7YwAAAACBsf16YPWlTbLxi9PWtU/tT1NMMjMxMDUwMjAzMDA3AGQ1Mzc1ZDljLWNjNTktNDhhNy1iZmFjLTM5YzlmODBhMjI2ZA==
date: Mon, 21 Nov 2022 22:12:28 GMT
X-Firefox-Spdy: h2
media.xmlteam.de/files/aida-cruises/aidanova/schiff/332.jpeg
162.55.39.184200 OK 69 kB URL HTTP/2 media.xmlteam.de/files/aida-cruises/aidanova/schiff/332.jpeg
IP 162.55.39.184:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x450, components 3\012- data
Hash 2be93707af84b2139626df5fa98fdd0a
3e265ff609825addcc84210d147b6d78f673e1fc
6736c8451e8efd92d3d5cced892e523a098e89923229e15f56402e08fbf8cdf1
GET /files/aida-cruises/aidanova/schiff/332.jpeg HTTP/1.1
Host: media.xmlteam.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 15:09:56 GMT
etag: "10e1f-5a6a29ad33900"
accept-ranges: bytes
content-length: 69151
content-type: image/jpeg
date: Mon, 21 Nov 2022 22:12:29 GMT
server: Apache
X-Firefox-Spdy: h2
graphql.usercentrics.eu/graphql
34.120.238.166200 OK 100 kB URL HTTP/2 graphql.usercentrics.eu/graphql
IP 34.120.238.166:0
Size 100 kB (100084 bytes)
Hash 947927d3103bb3510ddb397627a549a0
f0629f3bbe68aee3dc65bc7948f7104bd4e08ee2
5a81f6e54b9d9f8692ed3bef4ee2da63ab70d561005ef524f1ab687f6498899b
POST /graphql HTTP/1.1
Host: graphql.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.robertz.de/
Content-Type: application/json
Access-Control-Allow-Origin: *
X-Request-ID: 7eeab84b-d4ec-4049-952b-d49360802e34
Origin: https://www.robertz.de
Content-Length: 5763
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"442-NUnwS+qLqFeOzUIZkwsSRFSUaBk"
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i28.giatamedia.com/s.php?uid=180322&source=xml&size=800&cid=22807&iid=43382850
136.243.4.56200 OK 372 kB URL HTTP/1.1 i28.giatamedia.com/s.php?uid=180322&source=xml&size=800&cid=22807&iid=43382850
IP 136.243.4.56:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 800x520, components 3\012- data
Size 372 kB (372065 bytes)
Hash 7d6096344d2bc9c753374e00de165f15
05063ea5e3a385696f31c4c57382c86b3e1e1f15
5ee1deff21199f68e70edc7acde040c263951eeb0356d9511bbbd0917cf8be45
GET /s.php?uid=180322&source=xml&size=800&cid=22807&iid=43382850 HTTP/1.1
Host: i28.giatamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.19
X-GIATA-FN: Picture=800/1
X-GIATA-SERVERNAME: i.giatamedia.com
pax-smartberatung-signalr.azurewebsites.net/ContentServer/negotiate
20.50.2.10200 OK 574 B URL HTTP/1.1 pax-smartberatung-signalr.azurewebsites.net/ContentServer/negotiate
IP 20.50.2.10:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (476), with no line terminators
Hash e394184822b34474a01dcdb843ea4f59
9b311eb69ef094a2a36f01a4bd7a385b99e374c8
625b622ac293d9e2025d985e9e1c779826f1b91c458567ea44a595dbb90c8a13
POST /ContentServer/negotiate HTTP/1.1
Host: pax-smartberatung-signalr.azurewebsites.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Date: Mon, 21 Nov 2022 22:12:28 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.meinereiseangebote.de
Content-Encoding: gzip
Transfer-Encoding: chunked
Vary: Origin,Accept-Encoding
Request-Context: appId=cid-v1:331e6aed-06ec-49ad-ad4b-0e18e6e4cfd1
X-Powered-By: ASP.NET
i21.giatamedia.com/s.php?uid=180322&source=xml&size=800&cid=23005&iid=62145555
168.119.13.30200 OK 160 kB URL HTTP/1.1 i21.giatamedia.com/s.php?uid=180322&source=xml&size=800&cid=23005&iid=62145555
IP 168.119.13.30:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x600, components 3\012- data
Size 160 kB (160337 bytes)
Hash 0244ccb958f78d30e460920958a30f4a
4885b89d5cc7aa60075246fe12cab738f0fd0847
73a48472ec1eba36e2e093d0eec7face9fffc035f6801312fba4e0ebfc8efb9a
GET /s.php?uid=180322&source=xml&size=800&cid=23005&iid=62145555 HTTP/1.1
Host: i21.giatamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.19
X-GIATA-FN: Picture=800/1
X-GIATA-SERVERNAME: i.giatamedia.com
i21.giatamedia.com/s.php?uid=180322&source=xml&size=800&cid=22873&iid=71230224
168.119.13.30200 OK 157 kB URL HTTP/1.1 i21.giatamedia.com/s.php?uid=180322&source=xml&size=800&cid=22873&iid=71230224
IP 168.119.13.30:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x534, components 3\012- data
Size 157 kB (157159 bytes)
Hash 35a1c9ec4b5590b01d8cd06e8e009d76
f792ba5ef30b9a68a65852ac09368f07ea84e6fa
8d65e991df458ac4ff2616839848380a9088b03634f7ead57868aac357bd6ab0
GET /s.php?uid=180322&source=xml&size=800&cid=22873&iid=71230224 HTTP/1.1
Host: i21.giatamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 21 Nov 2022 22:12:29 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.19
X-GIATA-FN: Picture=800/1
X-GIATA-SERVERNAME: i.giatamedia.com
oneocsp.microsoft.com/ocsp
204.79.197.203200 OK 1.8 kB URL HTTP/1.1 oneocsp.microsoft.com/ocsp
IP 204.79.197.203:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash fe9f4f1494d8fe7f76940d30fddc8eae
17b595527a7586d7c6ec94aa55e0a7dabd51e2d2
9627b3097ca6e3069a6b9b393fd9363f36bfd7ed405a25f552997a19e5cd093a
POST /ocsp HTTP/1.1
Host: oneocsp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 1777
Content-Type: application/ocsp-response
Expires: Sat, 26 Nov 2022 15:50:09 GMT
Last-Modified: Sun, 20 Nov 2022 21:09:34 GMT
ETag: "9627b3097ca6e3069a6b9b393fd9363f36bfd7ed405a25f552997a19e5cd093a"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 1DA51F9DD4E64ABDA5CBE915802492CD Ref B: OSL30EDGE0407 Ref C: 2022-11-21T22:12:29Z
Date: Mon, 21 Nov 2022 22:12:29 GMT
oneocsp.microsoft.com/ocsp
204.79.197.203200 OK 1.7 kB URL HTTP/1.1 oneocsp.microsoft.com/ocsp
IP 204.79.197.203:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 9185256a8004d7a4a387f6d84ca68ef7
3f98e5b9f9a9b844d7cf15f0617fcb95711d51f0
e84d574a31889bbfb36adce796f500c6e47343247e1a6d1d7387fbffb7697727
POST /ocsp HTTP/1.1
Host: oneocsp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 1741
Content-Type: application/ocsp-response
Expires: Sat, 26 Nov 2022 15:50:09 GMT
Last-Modified: Mon, 21 Nov 2022 17:09:34 GMT
ETag: "e84d574a31889bbfb36adce796f500c6e47343247e1a6d1d7387fbffb7697727"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 076EE77B0D4E44029D9D0C0660EC2950 Ref B: OSL30EDGE0511 Ref C: 2022-11-21T22:12:29Z
Date: Mon, 21 Nov 2022 22:12:29 GMT
pax-signalr.service.signalr.net/client/negotiate?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D
20.86.94.141204 No Content 0 B URL HTTP/2 pax-signalr.service.signalr.net/client/negotiate?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D
IP 20.86.94.141:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /client/negotiate?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D HTTP/1.1
Host: pax-signalr.service.signalr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,x-requested-with
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 21 Nov 2022 22:12:29 GMT
access-control-allow-credentials: true
access-control-allow-headers: authorization,x-requested-with
access-control-allow-methods: POST
access-control-allow-origin: https://www.meinereiseangebote.de
vary: Origin
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
pax-signalr.service.signalr.net/client/negotiate?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D
20.86.94.141200 OK 282 B URL HTTP/2 pax-signalr.service.signalr.net/client/negotiate?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D
IP 20.86.94.141:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash 3f3f78671620564bd8fa958c20a14de2
a2b8799b5c92b3172959a3daca288b25a9f65a45
9f2046fea7c007b29749070e2ad94d036ef068beb7e0892cb51bfca45acf8b46
POST /client/negotiate?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D HTTP/1.1
Host: pax-signalr.service.signalr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Content-Type: text/plain;charset=UTF-8
Authorization: Bearer eyJhbGciOiJIUzI1NiIsImtpZCI6IjE2Mzc0NzEwMzciLCJ0eXAiOiJKV1QifQ.eyJuYmYiOjE2NjkwNjg3NDksImV4cCI6MTY2OTA3MjM0OSwiaWF0IjoxNjY5MDY4NzQ5LCJhdWQiOiJodHRwczovL3BheC1zaWduYWxyLnNlcnZpY2Uuc2lnbmFsci5uZXQvY2xpZW50Lz9odWI9Y29udGVudHNlcnZlcmh1YiJ9.5P_VcNtKyuuIrlL0K1ENvenazyO0eK1_bhaz86W9Pd0
Content-Length: 0
Origin: https://www.meinereiseangebote.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:29 GMT
content-type: application/json
content-length: 282
access-control-allow-credentials: true
access-control-allow-origin: https://www.meinereiseangebote.de
vary: Origin
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
pax-signalr.service.signalr.net/client/?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D&id=o1qsD2uBWucRfxTFWJ8sRA4a165c131&access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IjE2Mzc0NzEwMzciLCJ0eXAiOiJKV1QifQ.eyJuYmYiOjE2NjkwNjg3NDksImV4cCI6MTY2OTA3MjM0OSwiaWF0IjoxNjY5MDY4NzQ5LCJhdWQiOiJodHRwczovL3BheC1zaWduYWxyLnNlcnZpY2Uuc2lnbmFsci5uZXQvY2xpZW50Lz9odWI9Y29udGVudHNlcnZlcmh1YiJ9.5P_VcNtKyuuIrlL0K1ENvenazyO0eK1_bhaz86W9Pd0
20.86.94.141101 Switching Protocols 0 B URL HTTP/1.1 pax-signalr.service.signalr.net/client/?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D&id=o1qsD2uBWucRfxTFWJ8sRA4a165c131&access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IjE2Mzc0NzEwMzciLCJ0eXAiOiJKV1QifQ.eyJuYmYiOjE2NjkwNjg3NDksImV4cCI6MTY2OTA3MjM0OSwiaWF0IjoxNjY5MDY4NzQ5LCJhdWQiOiJodHRwczovL3BheC1zaWduYWxyLnNlcnZpY2Uuc2lnbmFsci5uZXQvY2xpZW50Lz9odWI9Y29udGVudHNlcnZlcmh1YiJ9.5P_VcNtKyuuIrlL0K1ENvenazyO0eK1_bhaz86W9Pd0
IP 20.86.94.141:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/?hub=contentserverhub&asrs.op=%2FContentServer&asrs_request_id=M6TCGIwnAAA%3D&id=o1qsD2uBWucRfxTFWJ8sRA4a165c131&access_token=eyJhbGciOiJIUzI1NiIsImtpZCI6IjE2Mzc0NzEwMzciLCJ0eXAiOiJKV1QifQ.eyJuYmYiOjE2NjkwNjg3NDksImV4cCI6MTY2OTA3MjM0OSwiaWF0IjoxNjY5MDY4NzQ5LCJhdWQiOiJodHRwczovL3BheC1zaWduYWxyLnNlcnZpY2Uuc2lnbmFsci5uZXQvY2xpZW50Lz9odWI9Y29udGVudHNlcnZlcmh1YiJ9.5P_VcNtKyuuIrlL0K1ENvenazyO0eK1_bhaz86W9Pd0 HTTP/1.1
Host: pax-signalr.service.signalr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.meinereiseangebote.de
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wbibPf7QK/IPQU9h53H5Iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 21 Nov 2022 22:12:29 GMT
Connection: upgrade
access-control-allow-credentials: true
access-control-allow-origin: https://www.meinereiseangebote.de
upgrade: websocket
vary: Origin
sec-websocket-accept: tVndm9wuUeBOWm1fi81ut+uu8mk=
Strict-Transport-Security: max-age=15724800; includeSubDomains
www.robertz.de/img/favicon-16x16.png
5.175.22.217200 OK 0 B URL HTTP/2 www.robertz.de/img/favicon-16x16.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
GET /img/favicon-16x16.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
server: Apache
cache-control: max-age=420, private, must-revalidate
expires: Tue, 22 Nov 2022 22:12:28 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-type: text/html;charset=UTF-8
X-Firefox-Spdy: h2
www.robertz.de/img/android-icon-192x192.png
5.175.22.217200 OK 0 B URL HTTP/2 www.robertz.de/img/android-icon-192x192.png
IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
GET /img/android-icon-192x192.png HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36624956; CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:28 GMT
server: Apache
cache-control: max-age=420, private, must-revalidate
expires: Tue, 22 Nov 2022 22:12:28 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-type: text/html;charset=UTF-8
X-Firefox-Spdy: h2
www.wolters-rundreisen.de/logo.png
82.97.163.81200 OK 0 B URL HTTP/2 www.wolters-rundreisen.de/logo.png
IP 82.97.163.81:0
ASN #13101 TNG Stadtnetz GmbH
GET /logo.png HTTP/1.1
Host: www.wolters-rundreisen.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/png
date: Mon, 21 Nov 2022 22:12:29 GMT
etag: W/"1b0b3-1847f60a518"
last-modified: Wed, 16 Nov 2022 07:39:11 GMT
server: Caddy
set-cookie: ;HttpOnly;Secure
strict-transport-security: max-age=604800; includeSubDomains
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge
X-Firefox-Spdy: h2
www.robertz.de/
5.175.22.217200 OK 0 B IP 5.175.22.217:0
ASN #20773 Host Europe GmbH
GET / HTTP/1.1
Host: www.robertz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 21 Nov 2022 22:12:26 GMT
server: Apache
set-cookie: CFID=36624956; Expires=Tue, 22-Nov-2022 22:12:26 GMT; Path=/; HttpOnly
CFTOKEN=d85530ba6c897086-1A784430-D355-80EA-7FE41F8C0CB875DC; Expires=Tue, 22-Nov-2022 22:12:26 GMT; Path=/; HttpOnly
cache-control: max-age=420, private, must-revalidate
expires: Tue, 22 Nov 2022 22:12:26 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-type: text/html;charset=UTF-8
X-Firefox-Spdy: h2