Report - hotelfruerlund.de/

Report Overview

Submitted URL
hotelfruerlund.de/
IP
46.101.122.46
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2023-03-06 04:22:56
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
12
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	8.9 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	687 B	2.7 kB	142.250.74.74
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	216.58.211.3
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	981 B	35 kB	142.250.74.35
hotelfruerlund.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	349 B	357 B	46.101.122.46
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.229.221
www.hotelfruerlund.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	1.4 MB	46.101.122.46

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile
2023-03-06 04:22:47	medium	Client IP	Internal IP	ET DNS Query to a .tk domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.hotelfruerlund.de/	56 B	2023-03-07	2024-03-01
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:00 Last Seen2024-03-01 16:21:12 Times Seen63 Hash 83e3a0758c7d9df2a82bc2c3d1e1bfc6 c9253b5d08768fdec36b2c697a84a8604ff095e6 fc969eeb098739857c84e2ca8db45b1c397fb0db879e32b04c1e37c916b30d52 Loading...

	www.hotelfruerlund.de/	478 B	2023-03-10	2024-01-12
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:02:46 Last Seen2024-01-12 01:23:28 Times Seen3 Hash bc65c80709f152c417eb0e0d7e6ae2dc 96ebb178972877b7e4e9d9f35e1138476ebb4997 4d474d366ca5b56aa81346107532a73786237f17420eab665f4950b3267a49d8 Loading...

	www.hotelfruerlund.de/	167 B	2023-03-10	2024-01-12
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:02:46 Last Seen2024-01-12 01:23:28 Times Seen3 Hash 7b41daba4fe537de00ba0d42ef0d8c38 2b9355e657e9caa6031d96ccb56bea7b8ef4bf74 42ef33c08e7779f1f7ec80f8caeed18102624d9b429faf190d107c6843d68509 Loading...

	www.hotelfruerlund.de/	3.2 kB	2023-03-10	2024-01-12
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:02:46 Last Seen2024-01-12 01:23:28 Times Seen3 Hash 21e3d1d7b5e84d6d985ac65e7236cffb 2412bfc37b27399158be660c63b2ff4ed403c01c de18179b20d4946d8a48036e65e2eeb7382735ab8f7310f598b64befe6d94fc6 Loading...

	www.hotelfruerlund.de/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js	8.3 kB	2023-03-07	2024-04-24
Pretty URL www.hotelfruerlund.de/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:43 Last Seen2024-04-24 11:47:13 Times Seen3075 Hash b00219cb958052cb557115d55f0c8d48 3c55bbf5a8082db61decff924aaf787f4337df86 8ceb3992861ed1fda25855c2e500e76842ae0d788405e50e3a9f45df36499cf6 Loading...

	www.hotelfruerlund.de/	476 B	2023-03-07	2024-04-25
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-25 13:57:05 Times Seen15708 Hash ce71388c2d441cfb9ef0985bc4e5bb71 1e74c490ed76f671eb45ab0b45c9c9f5b9b89f0f efb5a648656ae8f944fbf74e5644126464160ab50197a288c8b587e74edd575a Loading...

	www.hotelfruerlund.de/	8.7 kB	2023-03-07	2024-04-21
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:42 Last Seen2024-04-21 01:59:06 Times Seen1110 Hash cd9680743225d3fd4c1b85a731dd2ec8 32741541072b130bfa55f22a4e738c5f0338f54e cdd6551cd2b3236957745d4eae454072cd51cea1fb31885069a31a34fe6c3735 Loading...

	www.hotelfruerlund.de/	148 B	2023-03-10	2024-01-12
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:02:46 Last Seen2024-01-12 01:23:28 Times Seen3 Hash 1c5e3f73ce775965187f88a88dcd4e7e b6e8ac8d5f64aa8afea281e4003bd1e38bc5163d ddf6d1e5753de0b55b6900fa05e09140288538c4db97c2c4c9c62c621bd26124 Loading...

	www.hotelfruerlund.de/	670 B	2023-03-10	2024-01-12
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:02:46 Last Seen2024-01-12 01:23:28 Times Seen3 Hash 0fe1d2e8d947e2f7ce7320f49e505687 d134b5701fd4b5dcd62c6c6a8739d4889280e512 64dd6eb132afa11b34478496f05e462c72a8bc322a74dc9c962de7bf240b12c0 Loading...

	www.hotelfruerlund.de/	1.8 kB	2023-03-07	2024-04-23
Pretty URL www.hotelfruerlund.de/ IP 46.101.122.46 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:13 Last Seen2024-04-23 21:16:33 Times Seen1155 Hash 4987c278554aca0f434be960093da5ea a84e797c1bf51ba6880369c108139892b4ff222e 0bb088a70492e66de65d971724f3e1ffc81e79d10b7baad3881f38d5e41d159e Loading...

HTTP Transactions (44)

	URL	IP	Response	Size
	hotelfruerlund.de/	46.101.122.46	301 Moved Permanently	162 B
URL HTTP/1.1 hotelfruerlund.de/ IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET / HTTP/1.1 Host: hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 06 Mar 2023 04:22:45 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: http://www.hotelfruerlund.de/`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cf14baed0842431a08367ed54f2346ca d943be8835b7e4470e3d6fbe09ac39c5464be434 a45fbc8cdddc9f43c0c3c7d73cbb2cdf3cf4c4cd2df20802925b795da5048aa4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A45FBC8CDDDC9F43C0C3C7D73CBB2CDF3CF4C4CD2DF20802925B795DA5048AA4" Last-Modified: Sun, 05 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15585 Expires: Mon, 06 Mar 2023 08:42:30 GMT Date: Mon, 06 Mar 2023 04:22:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash edf4102b9efce8261382541ecd721da5 23a30610ea113c9f93b0ce302ce3df010bd56f05 88c132ab9697f01e979e74208e0ae12ec410c26b7a79f0cead4f9c8f86d12fda HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "88C132AB9697F01E979E74208E0AE12EC410C26B7A79F0CEAD4F9C8F86D12FDA" Last-Modified: Sat, 04 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15010 Expires: Mon, 06 Mar 2023 08:32:55 GMT Date: Mon, 06 Mar 2023 04:22:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5034bcceb9691ad6244be6045742ab53 51e77cdc92833432cd26b13f28875791a187c63c 540637d0d69c1201dcb2dd813b40e64cd07c5bd7685d46a7bad4d437a4e7aeea HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "540637D0D69C1201DCB2DD813B40E64CD07C5BD7685D46A7BAD4D437A4E7AEEA" Last-Modified: Sun, 05 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4558 Expires: Mon, 06 Mar 2023 05:38:43 GMT Date: Mon, 06 Mar 2023 04:22:45 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 06 Mar 2023 04:13:20 GMT content-type: application/json age: 565 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash b5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: /CjTE9NUHg7BPCBeob2IWEg0dzhti85IYJj6i5VA8FleCQVw6Bi+A3hiw3WX1j4FWYo+edDO6Eg= x-amz-request-id: SDB65NWSJ48XX1VD x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 06 Mar 2023 03:34:40 GMT age: 2885 last-modified: Sat, 18 Feb 2023 20:28:27 GMT etag: "b5ba6334e73496995e3e3a9ecd0eb323" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:45 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: ETag, Cache-Control, Expires, Alert, Content-Type, Pragma, Retry-After, Last-Modified, Backoff, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 06 Mar 2023 04:03:41 GMT age: 1145 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1dfdbbe528416d7653788c31a945540d ce7e4b0cc913dcf90dcb43ca51706e2ff0677eaf 872f2081ef126a0358e196338a21f095c376652feaa7cb9b2bfd6f3149838f60 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "872F2081EF126A0358E196338A21F095C376652FEAA7CB9B2BFD6F3149838F60" Last-Modified: Sat, 04 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4045 Expires: Mon, 06 Mar 2023 05:30:11 GMT Date: Mon, 06 Mar 2023 04:22:46 GMT Connection: keep-alive`

	push.services.mozilla.com/	54.149.229.221	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.149.229.221:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: e2KwMLnvd8o22+OPhmYxnA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: VKnHI04rV76hIdwpa6fXvOGj74Y=`

	www.hotelfruerlund.de/	46.101.122.46	301 Moved Permanently	0 B
URL HTTP/1.1 www.hotelfruerlund.de/ IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 06 Mar 2023 04:22:46 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive X-Pingback: http://www.hotelfruerlund.de/xmlrpc.php X-Redirect-By: WordPress Vary: Accept-Encoding Location: https://www.hotelfruerlund.de/ Cache-Control: max-age=0 Expires: Mon, 06 Mar 2023 04:22:45 GMT X-Powered-By: PHP/7.4.33, PleskLin`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cd751f72ed9fb6b761730b7b1f9adf3c 57cb66ee3265122383e76a2dc60934f7993140ca 0a6f91be30ca785b2a23e8e5bb49078be9f6dbbdaeecea14bbdd9fb60f0f566e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0A6F91BE30CA785B2A23E8E5BB49078BE9F6DBBDAEECEA14BBDD9FB60F0F566E" Last-Modified: Sun, 05 Mar 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21506 Expires: Mon, 06 Mar 2023 10:21:13 GMT Date: Mon, 06 Mar 2023 04:22:47 GMT Connection: keep-alive`

	www.hotelfruerlund.de/	46.101.122.46	200 OK	34 kB
URL HTTP/2 www.hotelfruerlund.de/ IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (42788) Size 34 kB (33518 bytes) Hash 3aaaf90898d5db1456207336ee1038fe 6fc82c822f2a12ae4ab3a58a255a111e42a8d6ba 3716d92fcec46dd7b6a28bf310770e6861f159eb476c086cb1bdea2b8b68fc2c HTTP Headers `GET / HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:46 GMT content-type: text/html; charset=UTF-8 content-length: 33518 vary: Accept-Encoding last-modified: Mon, 06 Mar 2023 03:37:13 GMT accept-ranges: bytes cache-control: max-age=0 expires: Mon, 06 Mar 2023 04:22:46 GMT content-encoding: gzip x-powered-by: PleskLin X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 70b7bd4f159732db2d96e0d06e721a13 ea416c05c031417da1ddecb4da35dfac8bf5cbc7 9c2e5acfe6bbd5d12087e28cb3a6b88a28f9d35b67eb4bc54e3a88fb46965379 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Mar 2023 04:22:47 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css?family=Lato%3A100%2C300%2Cregular%2C700%2C900%7COpen%20Sans%3A300%7CIndie%20Flower%3Aregular%7COswald%3A300%2Cregular%2C700%7CRoboto%3A1%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic%7CPlayfair%20Display%3A1%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap	142.250.74.74	200 OK	2.1 kB
URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C300%2Cregular%2C700%2C900%7COpen%20Sans%3A300%7CIndie%20Flower%3Aregular%7COswald%3A300%2Cregular%2C700%7CRoboto%3A1%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic%7CPlayfair%20Display%3A1%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type data Size 2.1 kB (2054 bytes) Hash 8749f7a9c6c68c9fd38763ee2041d48c bbcb168aaf5e0ada8bc5988185d9d97b46be7ec9 39268bbb400c700b782781a5f46fed02dd91c9b986eb1c23b1fcded7d98a346f HTTP Headers GET /css?family=Lato%3A100%2C300%2Cregular%2C700%2C900%7COpen%20Sans%3A300%7CIndie%20Flower%3Aregular%7COswald%3A300%2Cregular%2C700%7CRoboto%3A1%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic%7CPlayfair%20Display%3A1%2C300%2C300italic%2C400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 06 Mar 2023 04:22:47 GMT date: Mon, 06 Mar 2023 04:22:47 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 0b2a6c80075ac612fdd0c0db8ecc7508 816bcd2a7acf9dbf93e52adbe3549a2945d4cbfb f5b916b912ad2c776304ec956a0d8c6e383551ae5f4c9c15bdf82b2db499d02b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Mar 2023 04:22:47 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 0b2a6c80075ac612fdd0c0db8ecc7508 816bcd2a7acf9dbf93e52adbe3549a2945d4cbfb f5b916b912ad2c776304ec956a0d8c6e383551ae5f4c9c15bdf82b2db499d02b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Mar 2023 04:22:47 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2	142.250.74.35	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Size 16 kB (15740 bytes) Hash b9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef HTTP Headers `GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.hotelfruerlund.de Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 01 Mar 2023 14:32:30 GMT expires: Thu, 29 Feb 2024 14:32:30 GMT cache-control: public, max-age=31536000 age: 395417 last-modified: Wed, 11 May 2022 19:24:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.hotelfruerlund.de/wp-content/themes/betheme/fonts/mfn/icons.woff?31690507	46.101.122.46	200 OK	81 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/themes/betheme/fonts/mfn/icons.woff?31690507 IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type Web Open Font Format, TrueType, length 81448, version 1.0\012- data Size 81 kB (81448 bytes) Hash 743706216bfe3fc0728d0bd15313ac92 d923ae95df3ea7676e8dc34f4de04abf2eefaaab 559a910060423ed485ddc062a9ab5318859bbfde26be3f73d9b83ac0b9dae677 HTTP Headers GET /wp-content/themes/betheme/fonts/mfn/icons.woff?31690507 HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://www.hotelfruerlund.de/wp-content/cache/min/1/ff211251d81da0f7f633f71893a2ee54.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: application/font-woff content-length: 81448 last-modified: Wed, 19 Oct 2022 15:11:16 GMT cache-control: max-age=2592000 expires: Wed, 05 Apr 2023 04:22:47 GMT etag: "63501394-13e28" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2	142.250.74.35	200 OK	18 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data Size 18 kB (17508 bytes) Hash 7fbdfaab6bd8b191496ffe1ef1b9e748 e9e592f8498d489d8000f3a4cfb1bb447f251edd bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1 HTTP Headers `GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.hotelfruerlund.de Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17508 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 02 Mar 2023 21:13:10 GMT expires: Fri, 01 Mar 2024 21:13:10 GMT cache-control: public, max-age=31536000 age: 284977 last-modified: Wed, 11 May 2022 19:24:41 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 0b2a6c80075ac612fdd0c0db8ecc7508 816bcd2a7acf9dbf93e52adbe3549a2945d4cbfb f5b916b912ad2c776304ec956a0d8c6e383551ae5f4c9c15bdf82b2db499d02b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Mar 2023 04:22:47 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.hotelfruerlund.de/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js	46.101.122.46	200 OK	39 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type ASCII text, with very long lines (8290) Size 39 kB (38843 bytes) Hash 1145052dedd9216173d841af043175c0 d6bc788765ba7c04251642d8e7a4ba3e1d63b654 a0d2e9738db6cad190da23f287b91dfe8bb5334f91c2d332593c67a31bab6cc6 HTTP Headers `GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:46 GMT content-type: application/javascript; charset=utf-8 last-modified: Tue, 08 Nov 2022 14:14:39 GMT cache-control: max-age=31536000, public expires: Tue, 05 Mar 2024 04:22:46 GMT etag: W/"636a644f-2063" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/cache/min/1/ff211251d81da0f7f633f71893a2ee54.css	46.101.122.46	200 OK	145 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/cache/min/1/ff211251d81da0f7f633f71893a2ee54.css IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type ASCII text, with very long lines (65536), with no line terminators Size 145 kB (145281 bytes) Hash 62d9f98a0a9e901f32a591e72bf7fa74 d1067a8b95f2083407c8a9a1e20bc2e59658d46b 48df1c125247996c7e36544bef8f46090abacedd4aef41a195a42027dae4afd6 HTTP Headers `GET /wp-content/cache/min/1/ff211251d81da0f7f633f71893a2ee54.css HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:46 GMT content-type: text/css; charset=utf-8 last-modified: Tue, 10 Jan 2023 11:45:25 GMT cache-control: max-age=31536000, public expires: Tue, 05 Mar 2024 04:22:46 GMT etag: W/"63bd4fd5-bab79" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 0b2a6c80075ac612fdd0c0db8ecc7508 816bcd2a7acf9dbf93e52adbe3549a2945d4cbfb f5b916b912ad2c776304ec956a0d8c6e383551ae5f4c9c15bdf82b2db499d02b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Mar 2023 04:22:47 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.hotelfruerlund.de/wp-content/uploads/2017/02/Hotel-slider2.jpg	46.101.122.46	200 OK	346 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2017/02/Hotel-slider2.jpg IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1662, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=3119], progressive, precision 8, 3119x1662, components 3\012- data Size 346 kB (346301 bytes) Hash 84719d64ae1297cf20888a59551fcecf 3c0455199b52f393519aa8b2c949d4f8c2675c1f 62031034b6db6b159f4c5cf6e3fba6a2062fc37cace9c3d1c9be737cc44f10d1 HTTP Headers `GET /wp-content/uploads/2017/02/Hotel-slider2.jpg HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/jpeg content-length: 346301 last-modified: Thu, 31 Jan 2019 20:19:00 GMT cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT etag: "5c535834-548bd" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/uploads/2016/06/home_minimal_sep.png	46.101.122.46	200 OK	164 B
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2016/06/home_minimal_sep.png IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type PNG image data, 11 x 86, 4-bit colormap, non-interlaced\012- data Size 164 B (164 bytes) Hash 4235346b4f2c2bb6f2eb7dd1b182e65b f9eb134956230c678143d8a17b8beb24f7a44468 226661a47e6e33c87b858040a85a2d7b62cb8d6e047111e87ea656f85aed7a4a HTTP Headers `GET /wp-content/uploads/2016/06/home_minimal_sep.png HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/png content-length: 164 vary: Accept-Encoding x-accel-version: 0.01 last-modified: Fri, 27 Jan 2017 11:13:07 GMT accept-ranges: bytes cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT x-powered-by: PleskLin X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/uploads/2016/06/home_minimal_sep1.png	46.101.122.46	200 OK	582 B
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2016/06/home_minimal_sep1.png IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type PNG image data, 35 x 17, 8-bit colormap, non-interlaced\012- data Size 582 B (582 bytes) Hash 5f50aae76c60c3bf55f810ddc5e92831 e698cc3fca327a51223a02461ee868c22c5988a7 8141b141b1bc433fdba4a6849b302fd361667c001e967d5acff15d79e9ccac5c HTTP Headers `GET /wp-content/uploads/2016/06/home_minimal_sep1.png HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/png content-length: 582 vary: Accept-Encoding x-accel-version: 0.01 last-modified: Fri, 27 Jan 2017 11:13:05 GMT accept-ranges: bytes cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT x-powered-by: PleskLin X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/uploads/2017/02/Hotel-slider.jpg	46.101.122.46	200 OK	428 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2017/02/Hotel-slider.jpg IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3119x1662, components 3\012- data Size 428 kB (428347 bytes) Hash 3cd563e6b35f5e7f2a8c4cf4082ec14c a5a3577a523850f3abd8550700a3949d2a36ed82 e37d8af40ec4b7a40f4e836771495affe41815dde9e2d5a08c9db03133a3f407 HTTP Headers `GET /wp-content/uploads/2017/02/Hotel-slider.jpg HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/jpeg content-length: 428347 last-modified: Thu, 31 Jan 2019 18:37:05 GMT cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT etag: "5c534051-6893b" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/uploads/2017/02/slide3-1630x860.jpg	46.101.122.46	200 OK	121 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2017/02/slide3-1630x860.jpg IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1630x860, components 3\012- data Size 121 kB (120951 bytes) Hash 0c67144df9ce1211758887d315b37981 7ad582affa5809a64b9e4c515e27696f38d1125e 33b85b82c0c81ed0a3f59cf6de7c402940e8cb6c9833280a65581ac6eef44daf HTTP Headers `GET /wp-content/uploads/2017/02/slide3-1630x860.jpg HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/jpeg content-length: 120951 last-modified: Thu, 31 Jan 2019 18:35:56 GMT cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT etag: "5c53400c-1d877" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/uploads/2017/02/slide2-1630x860.jpg	46.101.122.46	200 OK	133 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2017/02/slide2-1630x860.jpg IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1630x860, components 3\012- data Size 133 kB (133204 bytes) Hash 4b2b340a047ed0a201b864b77e70fc1f 059712c001e26b34d2a2f247f40c22c6cd65bede 197c112858c199d6b1962df707de9e012b047367837ead1abc5c681f9de16f67 HTTP Headers `GET /wp-content/uploads/2017/02/slide2-1630x860.jpg HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/jpeg content-length: 133204 last-modified: Thu, 31 Jan 2019 18:36:28 GMT cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT etag: "5c53402c-20854" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	www.hotelfruerlund.de/wp-content/uploads/2017/03/favi.png	46.101.122.46	200 OK	18 kB
URL HTTP/2 www.hotelfruerlund.de/wp-content/uploads/2017/03/favi.png IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type PNG image data, 32 x 32, 4-bit colormap, non-interlaced\012- data Size 18 kB (18098 bytes) Hash 0c3c229f8347fc5554c7ace9e2b6c729 7edc44ae7add77dfe325b0317a069a4bf42dc4b1 cb4cc36221fded48d1453a8bab1ec575092e15453b9d1e3b80f0086049101375 HTTP Headers `GET /wp-content/uploads/2017/03/favi.png HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:47 GMT content-type: image/png content-length: 18098 last-modified: Thu, 31 Jan 2019 18:28:54 GMT cache-control: max-age=10368000, public expires: Tue, 04 Jul 2023 04:22:47 GMT etag: "5c533e66-46b2" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B" Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3753 Expires: Mon, 06 Mar 2023 05:25:20 GMT Date: Mon, 06 Mar 2023 04:22:47 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B" Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3753 Expires: Mon, 06 Mar 2023 05:25:20 GMT Date: Mon, 06 Mar 2023 04:22:47 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B" Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3753 Expires: Mon, 06 Mar 2023 05:25:20 GMT Date: Mon, 06 Mar 2023 04:22:47 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B" Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3753 Expires: Mon, 06 Mar 2023 05:25:20 GMT Date: Mon, 06 Mar 2023 04:22:47 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 798f3637325523bddef4e627e66b0bb1 f3258713f39d4e7448590dee010917ed14320ec4 e5805f2922506bd022a7fe734d1022156241e88653ea5d16d5a698ac7067828b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E5805F2922506BD022A7FE734D1022156241E88653EA5D16D5A698AC7067828B" Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3753 Expires: Mon, 06 Mar 2023 05:25:20 GMT Date: Mon, 06 Mar 2023 04:22:47 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b5b749e-03a2-4b91-8a3a-2a2448cf1f75.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b5b749e-03a2-4b91-8a3a-2a2448cf1f75.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10530 bytes) Hash bd8a05f3a50e33cdf59e034bcbfaf586 5e3c0a687d9e68f3b518250a3505eecb08196ceb 9f7933d503b4ab47de2aab79b58513299ea9d5cb5f43d9cb0d8909b68ac9f333 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b5b749e-03a2-4b91-8a3a-2a2448cf1f75.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10530 x-amzn-requestid: d7b18ce6-94a3-4c2d-b311-726236167b5f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BU6QPGvPIAMF-Fw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64050a67-1cbdf57f5ae8d137312a8a1b;Sampled=0 x-amzn-remapped-date: Sun, 05 Mar 2023 21:32:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: BYoEAVhpqCJThj9eCwBlNreO14QMXanBKJAgpzuEC00K3nZ4_hvHdw== via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Mar 2023 21:42:52 GMT age: 23995 etag: "5e3c0a687d9e68f3b518250a3505eecb08196ceb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d9fc9db-edd5-4aa6-b34c-c2c8f5a3dcc0.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d9fc9db-edd5-4aa6-b34c-c2c8f5a3dcc0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8885 bytes) Hash b5d13ea22210580956620f7be05f5768 0794f8e3d0893964fbdec776c0fcc50a7f63c7fb a3c98474670cc0fc43ca2b88c1bf2c42207bcc78e56d5e5a8b58a7967ad4d322 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d9fc9db-edd5-4aa6-b34c-c2c8f5a3dcc0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8885 x-amzn-requestid: fe4202e1-ffde-49c8-8ed7-4dc520d163de x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BU6QPFQ9IAMF8Mg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64050a67-6ce1e6a10c08217a7abd8139;Sampled=0 x-amzn-remapped-date: Sun, 05 Mar 2023 21:32:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: 31yHI9N2Kg9SPZXhK1uqgBsT4nL_bIu9hL7EK_l4p0SfwuHzIMeJXQ== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Mar 2023 21:39:50 GMT age: 24177 etag: "0794f8e3d0893964fbdec776c0fcc50a7f63c7fb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg	34.120.237.76	200 OK	3.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.4 kB (3381 bytes) Hash 4726917eabc29a977873ad26e264e70d 4619a0418ee08d6618ead537f31823c98f355b5a d3c6b43d46ccff30f0003a063b6c4c78d4a782262bfdeb138e6c015555ce2dcb HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3381 x-amzn-requestid: 8b89e7ab-b8b3-45cd-af3a-cc419e61f1fc x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: A-PNPFynoAMFn8Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63fbf8ba-616bedc230d1c2b13a09beae;Sampled=0 x-amzn-remapped-date: Mon, 27 Feb 2023 00:26:34 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Qd5FIKUZwnnKiIzEnrA7ZcC_yWa9_iP1r7xUaCP4f6I7m_z3ChB-2A== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Mar 2023 09:32:00 GMT age: 67847 etag: "4619a0418ee08d6618ead537f31823c98f355b5a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5642d287-8c21-49d9-9a11-2bfa6ee1a2f2.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5642d287-8c21-49d9-9a11-2bfa6ee1a2f2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10332 bytes) Hash 9ab3964124c43755909f9891e162d3c7 c912f5fcb7985842877c76686c6bcd356b5977ff 34627773ad1d710b054986c725eb8e8a4c7d8fbac31e6724e83217dc06cfaaad HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5642d287-8c21-49d9-9a11-2bfa6ee1a2f2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10332 x-amzn-requestid: bcb59433-4093-4bb3-b6d3-69f5489d5ef9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BU6iVE07oAMF28A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64050adb-757a083b7be05f886d8d6edc;Sampled=0 x-amzn-remapped-date: Sun, 05 Mar 2023 21:34:19 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: 034zEZAbWUmixhooZf4KqxdabRAyWiMDzsMzTkNX29m1SZjQqiWywQ== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Mar 2023 22:07:33 GMT age: 22514 etag: "c912f5fcb7985842877c76686c6bcd356b5977ff" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff63e477f-514b-407e-a9f6-522b3ebf4871.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff63e477f-514b-407e-a9f6-522b3ebf4871.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8823 bytes) Hash 9984775eee3f17da0415f78fc0cd5b03 27c176b66dfb3603f792d64d18cb8d3d6a0b4408 e4a3cf6c162241f14d8d32c0b4812e6304debaff1abd6a520460233178eec326 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff63e477f-514b-407e-a9f6-522b3ebf4871.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8823 x-amzn-requestid: 8148c2cd-e456-413a-a7f3-502b5b0df0cf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BU6QNFl4oAMFdQQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64050a67-68aaadac0682ae72530196c1;Sampled=0 x-amzn-remapped-date: Sun, 05 Mar 2023 21:32:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: YvGXH8kLbxvjtpMLq-jo_9tuyp3enrWgYfDN8uYU6jMaJ1d9ajRBUQ== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Mar 2023 21:39:42 GMT age: 24185 etag: "27c176b66dfb3603f792d64d18cb8d3d6a0b4408" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa169d27-d4e2-4120-996d-3e708709465a.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa169d27-d4e2-4120-996d-3e708709465a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9916 bytes) Hash 71c25a364e8787b187bb8678670dec28 0c31c92a548f4181a72ddd9bd0b2ee56e31b76f3 41063e64c3e5d29e2eea021ed09244fbae7cdda30c5fa31405d6e68146540c59 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa169d27-d4e2-4120-996d-3e708709465a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9916 x-amzn-requestid: e1fcb47d-2282-470d-8ec1-0f7e9cf4ab03 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BU6QPG2QIAMF9Jw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64050a67-2f079e4a1caffe1d74498de3;Sampled=0 x-amzn-remapped-date: Sun, 05 Mar 2023 21:32:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: DpGQngzzXEuBwv3lI2hSQAazBGVGchRMUSA2KsgytnYaZ0buP34Ieg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Mar 2023 21:41:22 GMT age: 24085 etag: "0c31c92a548f4181a72ddd9bd0b2ee56e31b76f3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2c75d0e565cb4a72973a1f641470b811 429de37955e4b7785b18a83290c4e0b9075ab08d 64939f0385b16a3fa0298f4d6fac5bf1677b2ddc53df604406a5f539f0a93d42 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 06 Mar 2023 04:22:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.hotelfruerlund.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	46.101.122.46	200 OK	0 B
URL HTTP/2 www.hotelfruerlund.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 46.101.122.46:0 ASN #14061 DIGITALOCEAN-ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 Host: www.hotelfruerlund.de User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelfruerlund.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 06 Mar 2023 04:22:53 GMT content-type: application/javascript; charset=utf-8 last-modified: Wed, 09 Dec 2020 04:25:56 GMT cache-control: max-age=31536000, public expires: Tue, 05 Mar 2024 04:22:53 GMT etag: W/"5fd051d4-2bd8" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML