r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19379
Expires: Tue, 15 Nov 2022 13:24:04 GMT
Date: Tue, 15 Nov 2022 08:01:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8162
Expires: Tue, 15 Nov 2022 10:17:07 GMT
Date: Tue, 15 Nov 2022 08:01:05 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5192
Cache-Control: max-age=100604
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 08:01:05 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:57:49 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ynwxYm///9BSf4LmE3mDFXk6hmtJL71ZNBKBHXqJ8NFLYR6GyL7vTPfGe0G5XFLuXb2nHLOmj0Q=
x-amz-request-id: 3TD0K6VG5SFERPPV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 15 Nov 2022 07:14:10 GMT
age: 2815
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 15 Nov 2022 07:44:37 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 988
alt-svc: clear
X-Firefox-Spdy: h2
www.theater-chlyne-petits.ch/
302 Found 0 B URL HTTP/1.1 www.theater-chlyne-petits.ch/
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Location: http://www.theater-chlyne-petits.ch/de
Strict-Transport-Security: max-age=63072000
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 15 Nov 2022 08:01:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.theater-chlyne-petits.ch/de
200 OK 25 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/de
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55134), with CRLF, LF line terminators
Hash 328f1b1a490d1491e8ab2200703f4a56
2b41152fd9a0d0ba6b4e2838f528df9b3d605cc3
7c706d08cc82643dd222d9261fe6a014ae1117a1b812a292902e84093d36085d
GET /de HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 15 Nov 2022 07:25:01 GMT
cache-control: public,max-age=3600
age: 2164
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.theater-chlyne-petits.ch/assets/css/templates/home.css
200 OK 481 B URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/css/templates/home.css
IP
ASN #24940 Hetzner Online GmbH
Hash ad8b12c528fece4003aa850df4187a9c
184b53146011674d35bbbe0e9dcc88aab0299fe6
e88f6a415b23453def50c58033f55edb6b05a8b0750b78c18fa032619d6b5ca9
GET /assets/css/templates/home.css HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/css
Content-Length: 481
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "49f-5cd157c1839d9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/css/bootstrap.min.css
200 OK 24 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/css/bootstrap.min.css
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash e79204b148b2a2c6fd94787f36c43af5
53631606b7fe0efe18dfbbb13e7a17db31d37bbe
7dc3fef079c3e0de6e5cf14058d8884d6b28a0497c575b8c3113c89b46ef79b9
Analyzer Verdict Alert urlquery Phishing - DHL
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/css
Content-Length: 23905
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "27bcc-5cd157c182a39-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/css/prism.css
200 OK 961 B URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/css/prism.css
IP
ASN #24940 Hetzner Online GmbH
Hash dd83c8254d9142f2a9be7610cb5c1564
3f2406bab4de6db4d6d3e0fa4bb1bfb74a6bea05
ed16b7ed9380aabdac163c195cede86c3fc889390b20ff91d30ca4fe931e3e97
GET /assets/css/prism.css HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/css
Content-Length: 961
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "991-5cd157c1839d9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/css/lightbox.css
200 OK 411 B URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/css/lightbox.css
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1336), with no line terminators
Hash 34118444cf2b3432d6a30b9d07cc97db
05fee6f28eed41ffeb431b1728a8280fb699eebc
53b5508d24a0ce90bf104ef3f28d9b8175a74b63b9e501be61bb4eec7f80b821
GET /assets/css/lightbox.css HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/css
Content-Length: 411
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "538-5cd157c182a39-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/css/main.min.css
200 OK 2.4 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/css/main.min.css
IP
ASN #24940 Hetzner Online GmbH
File type assembler source, Unicode text, UTF-8 text, with very long lines (4683)
Hash dab2430fbfbb325b14beb14605c6fde0
ad34e85d64a94cbafcdc4a8df08767f315cf2ad2
faffad34438b93b5ef387fb70c0b102ecc0c6a12cf6da350376442fef7f29ef8
GET /assets/css/main.min.css HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: text/css
Content-Length: 2364
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "2c3a-5cd157c182a39-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/js/prism.js
200 OK 6.7 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/js/prism.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6527)
Hash 2687f1d96c29f81e1f687a993c84b34a
0f49c07ec0df1341a76593424c56f10ef3bebc11
dd05c7e0ca96d97bba14bbb3ea58933cf58306dd1426c14a930da30695557019
GET /assets/js/prism.js HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: application/javascript
Content-Length: 6656
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "47a3-5cd157c17dc18-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/js/index.js
200 OK 283 B URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/js/index.js
IP
ASN #24940 Hetzner Online GmbH
Hash be7f36a77cb65e84432b818118df0fb1
2e2f1196622de8bdc12e53a1088e7b1405c634d8
6b2ed24f9bcb1ac72380f06970fb55729c920670f112c3a8faabf3f265c8d329
GET /assets/js/index.js HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: application/javascript
Content-Length: 283
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "1c0-5cd157c17dc18-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/images/hamburger.png
200 OK 202 B URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/images/hamburger.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 55 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash f4c59ea26cd6e736bfc4b59c53696431
6141cbb10e39faa9a8b583f138c1d389bf6f3f7a
ed9398ef9153424e1b17b542c889fc57acb4c2621f56ae9db999fdad32f67f7d
GET /assets/images/hamburger.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 202
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "ca-5cd157c17ebb8"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
ocsp.digicert.com/
200 OK 471 B IP
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 441
Cache-Control: max-age=90797
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 08:01:05 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 09:14:22 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.theater-chlyne-petits.ch/assets/js/jquery.min.js
200 OK 31 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/js/jquery.min.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash b975568f7eb9ecf41804cb1bbc96dfcc
4be3d286559ff9a84da23644dd863c15dc7a6a1d
4a65ef10076dbfe50ddf6396716410e744ed681c7b4a8c4f5fed42feca72f06f
GET /assets/js/jquery.min.js HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: application/javascript
Content-Length: 30913
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "15d84-5cd157c17dc18-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/programm/eliot-et-margotte/ba3e007a8f-1664276945/5-couleurs-dombres-eliot-et-margotte-cut-617x359.jpg
200 OK 69 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/programm/eliot-et-margotte/ba3e007a8f-1664276945/5-couleurs-dombres-eliot-et-margotte-cut-617x359.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", progressive, precision 8, 617x359, components 3\012- data
Hash e83410b3d64d8ac4d71511a615d6b897
2055a0663795b4878e1475c05761833796051b19
7d161441f7b003ce0895d57bbf8834d6f29440b7a69bd3281b58eb1b6a5dde16
GET /media/pages/programm/eliot-et-margotte/ba3e007a8f-1664276945/5-couleurs-dombres-eliot-et-margotte-cut-617x359.jpg HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/jpeg
Content-Length: 69268
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 12:48:21 GMT
ETag: "10e94-5ed6da789b9fb"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/js/bootstrap.bundle.min.js
200 OK 23 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/js/bootstrap.bundle.min.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65299)
Hash 78e9044d5ff63359fddcc0638cf6f493
86887fc03f2d60ed615854457f617ecdbf6e0244
8b5ac81238c9c8b13847f087390bfe23a85d0c16039e7e6eaf347b4d86698b2c
Analyzer Verdict Alert urlquery Phishing - DHL
GET /assets/js/bootstrap.bundle.min.js HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: application/javascript
Content-Length: 22632
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "13417-5cd157c17dc18-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/fonts/Marujo-Fino.woff2
200 OK 36 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/fonts/Marujo-Fino.woff2
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 35716, version 1.0\012- data
Hash 04163810570651ba29738191715ca6cd
87977d96c39a1b0db750f98d2a9d0d31f73c85dc
bb084ef2dc95e344036fd5412c90b55ddbf8ed27650643701bd5ec2efb9a645e
GET /assets/fonts/Marujo-Fino.woff2 HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/assets/css/main.min.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: font/woff2
Content-Length: 35716
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "8b84-5cd157c17fb58"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/js/lightbox.js
200 OK 1.3 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/js/lightbox.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3241), with no line terminators
Hash 327c93332481690b1d81e49ea7bde381
8f08498f4f4624534f646d32afed072f8eabf906
51e64b48af68ed0dde10fc6d55068056e152e9c1b52c804b832ec7b5b556dfde
GET /assets/js/lightbox.js HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: application/javascript
Content-Length: 1310
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "ca9-5cd157c17dc18-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/programm/de-tumm-tueuefel-tollpatsch/1d1d2768e1-1664277167/6-matou-de-tumm-tueuefel-tolpatsch-cut-617x359.jpg
200 OK 56 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/programm/de-tumm-tueuefel-tollpatsch/1d1d2768e1-1664277167/6-matou-de-tumm-tueuefel-tolpatsch-cut-617x359.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", progressive, precision 8, 617x359, components 3\012- data
Hash 458ebfe8e321bdfb41df95259ccf8ade
b3f55d533812ffdb79707b3c42a320631d3ea787
1dfcce1fb6ccca7aebbf83ec92ba59e15d607fd3f24063453492470ba534131e
GET /media/pages/programm/de-tumm-tueuefel-tollpatsch/1d1d2768e1-1664277167/6-matou-de-tumm-tueuefel-tolpatsch-cut-617x359.jpg HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/jpeg
Content-Length: 55568
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 12:48:21 GMT
ETag: "d910-5ed6da78a081c"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/programm/staernebitzgi/b134a763d0-1664277434/7-winterthur-staernebitzgi-04-cut-617x359.jpg
200 OK 69 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/programm/staernebitzgi/b134a763d0-1664277434/7-winterthur-staernebitzgi-04-cut-617x359.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", progressive, precision 8, 617x359, components 3\012- data
Hash 38ee89d59e8eb3219be22942da02467c
db80b0dbddf494f3957e8223d87eec941e90970e
9c83848c28d15313de6fc9c706180377d3cd7497bca45c266accc818a7b4a340
GET /media/pages/programm/staernebitzgi/b134a763d0-1664277434/7-winterthur-staernebitzgi-04-cut-617x359.jpg HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/jpeg
Content-Length: 68836
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 12:48:21 GMT
ETag: "10ce4-5ed6da789aa5b"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/fonts/CeraPRO-Regular.woff2
200 OK 53 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/fonts/CeraPRO-Regular.woff2
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 52972, version 1.0\012- data
Hash 1a8b78784e0ab262a521c0e7667a080e
1a2f8c32fa3bded0e7ccd0dc9fcf67d75ed27a95
56b9a45ae27ab9a2ad6b03a2415e89cf4127582c61f87b21b9141cd4b595f8e8
GET /assets/fonts/CeraPRO-Regular.woff2 HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/assets/css/main.min.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: font/woff2
Content-Length: 52972
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "ceec-5cd157c17fb58"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/assets/images/pattern.png
200 OK 8.4 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/assets/images/pattern.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 200 x 306, 8-bit/color RGBA, non-interlaced\012- data
Hash 96a0181f397fb0ffc42c4ec81f15dd97
24b73f60fe083a0b35c144dd5b078a8781a25d07
a9899b2174b1c1e888d677cb189606cbf5c2a01c20d6af2e9f16eb41aa55fd85
GET /assets/images/pattern.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/assets/css/main.min.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 8413
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "20dd-5cd157c17ebb8"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/home/7bea0c51ad-1632867043/erdmanpeisner-334x162.png
200 OK 13 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/home/7bea0c51ad-1632867043/erdmanpeisner-334x162.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 334 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash d5efae0cd858d5b78e8431fd0190b6ef
1684b9a0e27cb31c658a46e1870137835d6a9cb5
8dd09ac81687df33a784b589c638ef0cf5b97a7fe556d5e3e71a0d2fa895e740
GET /media/pages/home/7bea0c51ad-1632867043/erdmanpeisner-334x162.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 13132
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:15:41 GMT
ETag: "334c-5cd158dd46ce7"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/home/682074f6aa-1632867043/log-nebia-334x162.png
200 OK 18 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/home/682074f6aa-1632867043/log-nebia-334x162.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 334 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash d1d6c7e0accb8546b393bc4de5c576df
a76c2015b12e22767565e6e2994b15abf9d8b1e4
7aa3240c393101426c2288a44b0c080b12ebbc9b1444826031923361d6f3b19e
GET /media/pages/home/682074f6aa-1632867043/log-nebia-334x162.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 18476
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:15:41 GMT
ETag: "482c-5cd158dd43e07"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/home/2bfe5e54f0-1632867043/logo-biel-334x162.png
200 OK 16 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/home/2bfe5e54f0-1632867043/logo-biel-334x162.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 334 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash e8c273356e615088d0b55275973b388d
5d2acd6564dc3deea5148436090788d3f6907f01
9f928812ac3804807d54433109a3146ea02ac1ca84be4f5f8e897eaad79ca998
GET /media/pages/home/2bfe5e54f0-1632867043/logo-biel-334x162.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 16144
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:15:41 GMT
ETag: "3f10-5cd158dd47c87"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/home/186796665e-1632867043/logo-ediprim-334x162.png
200 OK 16 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/home/186796665e-1632867043/logo-ediprim-334x162.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 334 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash fcccd4a8f17a516efc6a9a77cf7abaf6
6b47de6fdbf7a797041ac4ec7d52dc825c83bb35
9baae7524c9f9d7d548bb5d1b079dd1b8bb5da2e6985cc92c9869eb7e4fbf62a
GET /media/pages/home/186796665e-1632867043/logo-ediprim-334x162.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 15819
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:15:41 GMT
ETag: "3dcb-5cd158dd46ce7"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/home/16be3001e5-1632867043/logo-t-334x162.png
200 OK 3.3 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/home/16be3001e5-1632867043/logo-t-334x162.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 334 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash bc4415f7758e245883dd7ec3875611e3
893308cd6bbf99000c3be46759e1d95da644719a
194a9f56c11fbb2f18bc9edbe74e42d54b41974ecbf2efab011d298e6feb6354
GET /media/pages/home/16be3001e5-1632867043/logo-t-334x162.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 3301
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:15:41 GMT
ETag: "ce5-5cd158dd44da7"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/media/pages/programm/der-kleine-erdvogel/fd9f82f145-1664277469/8-phobys-und-konsorten-kleine-erdvogel-cut-617x359.png
200 OK 248 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/media/pages/programm/der-kleine-erdvogel/fd9f82f145-1664277469/8-phobys-und-konsorten-kleine-erdvogel-cut-617x359.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 617 x 359, 8-bit/color RGBA, non-interlaced\012- data
Size 248 kB (247519 bytes)
Hash 8fc67f2837a4d29f8d78b49d4b4b5537
3138fe299ffcc45750c7431599e0a4c542a4d8ba
1cc86a2efa36088b4002c57012822e77d6b1beb35e830c90d58558c7f3f522a2
GET /media/pages/programm/der-kleine-erdvogel/fd9f82f145-1664277469/8-phobys-und-konsorten-kleine-erdvogel-cut-617x359.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 247519
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 12:48:21 GMT
ETag: "3c6df-5ed6da78b021d"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/favicon/android-icon-192x192.png
200 OK 59 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/favicon/android-icon-192x192.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash de8f72e2af042d92102574cec43ff9fc
1fe560ed7d64ef87e145ef21b72ee8a2f04990fd
b4a1e2722256430f537439fa2198b86724ab242cc8f3a16e69a07e754138dfa8
GET /favicon/android-icon-192x192.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 58867
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "e5f3-5cd157c189799"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
www.theater-chlyne-petits.ch/favicon/favicon-16x16.png
200 OK 1.4 kB URL HTTP/1.1 www.theater-chlyne-petits.ch/favicon/favicon-16x16.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash c26c95db8da6438dc58427132db903d7
7ae47301eff5a18cd9f7ffc2cf772e0319f6bff5
08ad534fc80738f9cd917aaeade34e527fde522c789e5c783e3ed472c1c8beb6
GET /favicon/favicon-16x16.png HTTP/1.1
Host: www.theater-chlyne-petits.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.theater-chlyne-petits.ch/de
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 08:01:05 GMT
Content-Type: image/png
Content-Length: 1427
Connection: keep-alive
Last-Modified: Tue, 28 Sep 2021 22:10:43 GMT
ETag: "593-5cd157c189799"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iUXgoCqu9ZxzL06hr/Fufw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fPo8V9F7NI5zg1fZqi4T3CgFj7U=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16711
Expires: Tue, 15 Nov 2022 12:39:38 GMT
Date: Tue, 15 Nov 2022 08:01:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16711
Expires: Tue, 15 Nov 2022 12:39:38 GMT
Date: Tue, 15 Nov 2022 08:01:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16711
Expires: Tue, 15 Nov 2022 12:39:38 GMT
Date: Tue, 15 Nov 2022 08:01:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c3081d3-ef42-45da-adea-67bbc90bf9a6.jpeg
200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c3081d3-ef42-45da-adea-67bbc90bf9a6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b18dc101656c2e449e5f54ff7b7fb10b
d5ba3b6a069a74b5db3560a265728e627f6fe18d
53a73577e37651a936a5841fe06e40475e06ce6fa9e14fc0590ddc7aba421dd2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c3081d3-ef42-45da-adea-67bbc90bf9a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4394
x-amzn-requestid: fd389a5e-b816-4bd8-a073-2f52fea5bfab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnEhtFfnIAMF1rQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372b471-133a3285137912af436daffd;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 21:34:41 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6i-blK0B05DT_CvizlmYpcDTpDV8IZLOIrukIQPW6FISAuXa1T0FdQ==
via: 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:53 GMT
age: 36914
etag: "d5ba3b6a069a74b5db3560a265728e627f6fe18d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07797f-dd0a-4d91-86dd-362bcde1053e.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07797f-dd0a-4d91-86dd-362bcde1053e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14d5eaa5fe940564f077ca611f6e3fbe
032b8bfc63294a55ff49ee7186768bd9728ce103
7bed85f8f78ba7e1fad560d0ea311a65bff33aaf5f3226bef392ddc10f52d620
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07797f-dd0a-4d91-86dd-362bcde1053e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12942
x-amzn-requestid: fd589c13-7784-4e3a-b928-908fd2b8f98a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8hgHQvIAMFmfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-29db9a7832efa131593951f2;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lXz-TMhQewc6QT-NkFor90WG90GBJKPQVRVc2UjO8Z2FpFWVde2zsA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 07:49:51 GMT
age: 676
etag: "032b8bfc63294a55ff49ee7186768bd9728ce103"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b891dd714ee24b92f59f0697dd45c2b4
8b54f502df3eb318b87ff8a3313007876752e181
d50396bc97a46452ed3af30dbfffc9fe75cf7d4ec347c0a8460d99a6affd1fb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5856
x-amzn-requestid: 5261109d-ca5e-4b77-b0a2-17b634a51fd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPtpFvRoAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63705ff0-570bdfbd329fe34b47d8c7a4;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8XeCtd88wwfynTV2w67E7r__KCAAIAsfv7sg67o_HSehIsIBae_SkQ==
via: 1.1 ba55932f4947672586f0865cea81e028.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 04:01:21 GMT
age: 14386
etag: "8b54f502df3eb318b87ff8a3313007876752e181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94c82cd0e4204ea23b9bd86a3f576fa8
1651325ad361d1c86a4b81edb6b75af27f490a39
0173a565be87e87b2a8fccb3bfe4f237ddd9fdafa5711e79f0c4381882238886
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8025
x-amzn-requestid: c876c502-bde1-4c03-a946-7af2117240ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bg3EUF0foAMFfyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63703881-0594a8076fb64f570f824ad1;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 00:21:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eWpoQ8Bkfez0fw2HBZVlPIWIrtjeS6i6V-Dn0NthrKeeDYQEYq62kQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:49:06 GMT
etag: "1651325ad361d1c86a4b81edb6b75af27f490a39"
content-type: image/jpeg
age: 36721
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CHi9V7-WaWmG6Y0249CZJnhe_RjvleaGFVXoOnJ62cjrcXoLLKwzgw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 00:41:48 GMT
age: 26359
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd744cf1f-bbfc-4306-bf3d-5e1e6b8b1c90.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd744cf1f-bbfc-4306-bf3d-5e1e6b8b1c90.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edc9d97a2396dfc326736cb9b2b3b474
2c5a98ad27133575ef4fa48a8ff379ee5ad51490
a89e1e9a13b72b0a826ed77a71ec92ac5548a996f6c17b11a4c002480a429333
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd744cf1f-bbfc-4306-bf3d-5e1e6b8b1c90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7873
x-amzn-requestid: 4a968a3c-c6ca-4d18-83b4-6a1d42e85fee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bef9SFIMoAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f46bb-2cd01e7d191b3eda7d743866;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 07:09:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jjir5UM8aqq3T3akiZx_aAcsWL5GDKBnaPA_cDlM2e9Ce6oi-wGEQA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 08:21:23 GMT
age: 85184
etag: "2c5a98ad27133575ef4fa48a8ff379ee5ad51490"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
188.34.132.6
52.42.74.230
23.36.76.226
93.184.220.29