urlquery - report: annettekoegel.de/impressum.html

Overview

URL	annettekoegel.de/impressum.html
IP	199.34.228.59
ASN	WEEBLY
Location	United States
Report completed	2022-07-03 14:26:26 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-03	2	annettekoegel.de/impressum.html	Malware
2022-07-03	2	www.annettekoegel.de/impressum.html	Malware
2022-07-03	2	www.annettekoegel.de/files/theme/mobile.js?1556897694	Malware
2022-07-03	2	www.annettekoegel.de/files/theme/plugins.js?1556897694	Malware
2022-07-03	2	www.annettekoegel.de/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[Cu (...)	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (21)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	www.google.com (1)	7	2012-05-22 04:23:54 UTC	2022-07-03 03:15:57 UTC	142.250.74.164
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-03 04:06:00 UTC	34.120.237.76
[Mnemonic Passive DNS]	maps.gstatic.com (1)	0	No data	No data	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	r3.o.lencr.org (2)	344	2020-12-02 08:52:13 UTC	2022-07-03 04:49:06 UTC	23.36.76.226
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	fonts.gstatic.com (5)	0	2017-01-30 04:59:51 UTC	2022-07-03 04:33:25 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	cdn2.editmysite.com (8)	11564	2012-10-02 18:27:39 UTC	2022-07-03 08:17:23 UTC	151.101.85.46
[Mnemonic Passive DNS]	ocsp.pki.goog (6)	175	2017-06-14 07:23:31 UTC	2022-07-03 04:43:22 UTC	142.250.74.3
[Mnemonic Passive DNS]	www.weebly.com (1)	21455	2012-10-02 18:27:42 UTC	2022-07-03 04:13:59 UTC	74.115.50.109
[Mnemonic Passive DNS]	ec.editmysite.com (2)	12806	2017-01-29 21:50:35 UTC	2022-07-03 11:34:25 UTC	44.239.242.204
[Mnemonic Passive DNS]	www.gstatic.com (1)	0	2015-06-20 09:50:55 UTC	2015-11-29 15:55:55 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	annettekoegel.de (1)	0	No data	No data	199.34.228.59	Unknown ranking
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-03 05:07:31 UTC	54.230.111.99
[Mnemonic Passive DNS]	fonts.googleapis.com (3)	8877	2017-01-30 04:59:43 UTC	2019-10-16 05:12:41 UTC	142.250.74.10
[Mnemonic Passive DNS]	ajax.googleapis.com (1)	12905	2017-01-30 05:00:30 UTC	2019-10-16 05:01:16 UTC	142.250.74.74
[Mnemonic Passive DNS]	www.editmysite.com (1)	43381	No data	No data	74.115.50.67
[Mnemonic Passive DNS]	www.annettekoegel.de (6)	0	No data	No data	199.34.228.59	Unknown ranking
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-03 08:50:17 UTC	93.184.220.29
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-03 05:03:35 UTC	52.35.74.102
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.65
[Mnemonic Passive DNS]	www.google-analytics.com (1)	40	2017-01-30 05:00:06 UTC	2022-07-03 06:24:42 UTC	142.250.74.174

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.34.228.59

Date	UQ / IDS / BL	URL	IP
2022-08-02 01:09:15 +0000	0 - 0 - 2	www.mjink.com/logo.gif?5833f=3612790	199.34.228.59
2022-08-01 08:30:40 +0000	0 - 0 - 2	www.mjink.com/logo.gif?5b96d=1125447	199.34.228.59
2022-07-28 07:03:52 +0000	0 - 0 - 8	gotwoitalia.com/	199.34.228.59
2022-07-24 03:04:27 +0000	0 - 0 - 8	gotwoitalia.com/	199.34.228.59
2022-07-22 16:37:17 +0000	0 - 0 - 6	kym-casa.com.ar/	199.34.228.59
2022-07-22 06:00:42 +0000	0 - 0 - 2	14global.com/securd%20/razaq.zip	199.34.228.59
2022-07-22 00:56:34 +0000	0 - 0 - 10	www.carlisleohd.org/	199.34.228.59
2022-07-18 16:38:42 +0000	0 - 0 - 6	kym-casa.com.ar/	199.34.228.59
2022-07-17 16:01:02 +0000	0 - 0 - 10	www.carlisleohd.org/	199.34.228.59
2022-07-12 11:02:18 +0000	0 - 0 - 1	www.holyfamilyacc.org/our-pastor.html	199.34.228.59

Last 10 reports on ASN: WEEBLY

Date	UQ / IDS / BL	URL	IP
2022-08-12 21:50:48 +0000	0 - 0 - 2	www.visiblecollege.education/unsubscribe-wil.html	199.34.228.71
2022-08-12 21:46:24 +0000	0 - 0 - 6	www.oliverstein.ch/kontakt.html	199.34.228.74
2022-08-12 20:22:00 +0000	0 - 0 - 20	att-touchup2022.square.site/	199.34.228.39
2022-08-12 20:21:42 +0000	0 - 0 - 3	aolhelpdeskmember.square.site/	199.34.228.39
2022-08-12 20:05:02 +0000	0 - 0 - 3	https://sfvdgchchchccnj.weeblysite.com/	199.34.228.97
2022-08-12 19:47:41 +0000	0 - 0 - 3	https://bgfgfgfgfhgfhfj.weeblysite.com/	199.34.228.96
2022-08-12 19:46:38 +0000	0 - 0 - 3	https://jdgcggfhfhfhfnhfn.weeblysite.com/	199.34.228.96
2022-08-12 19:45:22 +0000	0 - 0 - 3	https://cgfsfdfdgdgdgdfh.weeblysite.com/	199.34.228.97
2022-08-12 19:40:59 +0000	0 - 0 - 3	https://10011bt-mail100160.weeblysite.com/	199.34.228.97
2022-08-12 19:40:40 +0000	0 - 0 - 4	https://ghfdhjhjhgfdfghyuytrbnmf.weeblysite.com/	199.34.228.97

Last 1 reports on domain: annettekoegel.de

Date	UQ / IDS / BL	URL	IP
2022-07-10 16:27:25 +0000	0 - 0 - 6	annettekoegel.de/impressum.html	199.34.228.59

JavaScript

Executed Scripts (35)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (52)

Request	Response
GET /impressum.html HTTP/1.1 Host: annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 250 Md5: 42895a64d17bf31d529a406a40df916f$ 199.34.228.59 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=iso-8859-1 Date: Sun, 03 Jul 2022 14:26:11 GMT Server: Apache Location: http://www.annettekoegel.de/impressum.html Content-Length: 250 Keep-Alive: timeout=10, max=44 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 250 Md5: 42895a64d17bf31d529a406a40df916f Sha1: 9e4ca5b816b027b90b68c9525dc2a8eeb9db3ebd Sha256: 2501f650e93260d841da59a07cdf44df5eea038c1553b488c37dd931754b261b Alerts: Blocklists: - fortinet: Malware
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3$ 54.230.111.65 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sun, 03 Jul 2022 13:52:17 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: NYbJTHfe2QP-1uc4Wo-3jV-G0I5u8irJJ-R3juatd5fzpdVtlvyDCA== Age: 2034 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3 Sha1: 58c8dccc28ecd76424af6ed9988575a35cf8a0c2 Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575" Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8820 Expires: Sun, 03 Jul 2022 16:53:11 GMT Date: Sun, 03 Jul 2022 14:26:11 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a7e37e80f3a67a41ff567648c1f2d285 Sha1: 7ce66e5153f2d4a7b14ccba49fd1a4b70ae274f5 Sha256: 8e263e6763753f5659ac0fc2d11daf8ece9720988153c38cb40631af26c86575
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.99 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sun, 03 Jul 2022 03:26:42 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: bAgGx0n8VlKPBlZWv3GB7PQht_rpRhXeaNCgknYDdZ6bDF59XrdfJw== age: 39570 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Sun, 03 Jul 2022 14:26:12 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /impressum.html HTTP/1.1 Host: www.annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (33454), with CRLF, LF line terminators Size: 16160 Md5: 5daa38d339dc6cbe79a95206acd985ff$ 199.34.228.59 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sun, 03 Jul 2022 14:26:12 GMT Server: Apache Vary: X-W-SSL,Accept-Encoding,User-Agent Set-Cookie: is_mobile=0; path=/; domain=www.annettekoegel.de language=en; expires=Sun, 17-Jul-2022 14:26:12 GMT; Max-Age=1209600; path=/ Cache-Control: private ETag: W/"e800c8cc5fc0cef367baafe76c045be7-gzip" Content-Encoding: gzip X-Host: grn97.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 16160 Keep-Alive: timeout=10, max=54 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (33454), with CRLF, LF line terminators Size: 16160 Md5: 5daa38d339dc6cbe79a95206acd985ff Sha1: 4f171ea6c4c8f7e2b1ab786731cb250372f5b988 Sha256: 9e76ab0bda5eda6ac1d24b0f4d546cf57b761ebd62f16762a2c5d11a563113ee Alerts: Blocklists: - fortinet: Malware
GET /files/main_style.css?1655377947 HTTP/1.1 Host: www.annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/impressum.html Cookie: is_mobile=0; language=en	199.34.228.59 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sun, 03 Jul 2022 14:26:12 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * X-Host: blu70.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (702) Size: 5704 Md5: c82a8ca73fd78a63eedab21555df3f76 Sha1: a1c76fcce29a6d48977465cc8a14cc6d13c85558 Sha256: ee0bbe91e1e467ca554d5f9c0549629095a2e39da3426e03f27c4bdd8ad7f0d7
GET /css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	142.250.74.10 HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Access-Control-Allow-Origin: * Timing-Allow-Origin: * Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin Expires: Sun, 03 Jul 2022 14:26:12 GMT Date: Sun, 03 Jul 2022 14:26:12 GMT Cache-Control: private, max-age=86400 Cross-Origin-Opener-Policy: same-origin-allow-popups Cross-Origin-Resource-Policy: cross-origin Content-Encoding: gzip Transfer-Encoding: chunked Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff --- Additional Info --- Magic: ASCII text Size: 606 Md5: 2cb2c82c548dfa61a31d35e214ca7143 Sha1: 22eedf0bc470fe30f126c198bd41d67db878b88f Sha256: 20556bc8027596434c1686ab132150b59278937c57c7c66c89a122a7e412e3fb
GET /css?family=Roboto:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	142.250.74.10 HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Access-Control-Allow-Origin: * Timing-Allow-Origin: * Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin Expires: Sun, 03 Jul 2022 14:26:12 GMT Date: Sun, 03 Jul 2022 14:26:12 GMT Cache-Control: private, max-age=86400 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin-allow-popups Content-Encoding: gzip Transfer-Encoding: chunked Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff --- Additional Info --- Magic: ASCII text Size: 840 Md5: f29e68cc56bf4965797a6d079a4a472a Sha1: b4bc3d9703085cd639373d7ab7c984498a1dcbe6 Sha256: b79880dff3441b93f3aa24b04beaa9e251abe98deb5b202034ed44308d6143b7
GET /css/old/fancybox.css?1655318886 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Last-Modified: Wed, 29 Jun 2022 17:47:49 GMT ETag: "62bc9045-f47" Expires: Wed, 13 Jul 2022 18:49:48 GMT Cache-Control: max-age=1209600 X-Host: grn54.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 1218 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:12 GMT Age: 329785 Connection: keep-alive X-Served-By: cache-sjc10066-SJC, cache-bma1620-BMA X-Cache: HIT, HIT X-Cache-Hits: 1, 1 X-Timer: S1656858373.967143,VS0,VE1 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: ASCII text, with very long lines (3910) Size: 1218 Md5: b644e92258f4c7c0b4270047652d1e60 Sha1: 93734d52ee9e86a768159e514076051813c39cd9 Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/social-icons.css?buildtime=1655318886 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Last-Modified: Tue, 28 Jun 2022 23:57:17 GMT ETag: W/"62bb955d-3319" Expires: Wed, 13 Jul 2022 08:31:57 GMT Cache-Control: max-age=1209600 X-Host: blu84.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 1640 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:12 GMT Age: 366856 Connection: keep-alive X-Served-By: cache-sjc10061-SJC, cache-bma1660-BMA X-Cache: HIT, HIT X-Cache-Hits: 3, 1 X-Timer: S1656858373.967668,VS0,VE1 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: ASCII text, with very long lines (13080) Size: 1640 Md5: dc844ee9d7cc420b19c1913fdf377659 Sha1: 85170a5df4c761d8330e2410b341b35a713025cd Sha256: e2bbd76906f9b2207b181e5d9896c1d22a4b8d220b0aeb95d51f020f05441dbd
GET /css/sites.css?buildTime=1655318886 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Last-Modified: Wed, 29 Jun 2022 17:47:44 GMT ETag: W/"62bc9040-347ac" Expires: Wed, 13 Jul 2022 18:49:46 GMT Cache-Control: max-age=1209600 X-Host: blu104.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 29746 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:12 GMT Age: 329787 Connection: keep-alive X-Served-By: cache-sjc10029-SJC, cache-bma1631-BMA X-Cache: HIT, HIT X-Cache-Hits: 2, 1 X-Timer: S1656858373.967072,VS0,VE1 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 29746 Md5: d10158b22b553f723d99dc78eaee6390 Sha1: 80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6 Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /js/lang/de/stl.js?buildTime=1655318886& HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Last-Modified: Mon, 27 Jun 2022 20:11:23 GMT ETag: "62ba0eeb-2e2ed" Expires: Tue, 12 Jul 2022 14:22:11 GMT Cache-Control: max-age=1209600 X-Host: blu107.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 36546 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:12 GMT Age: 432241 Connection: keep-alive X-Served-By: cache-sjc10066-SJC, cache-bma1650-BMA X-Cache: HIT, HIT X-Cache-Hits: 1, 1 X-Timer: S1656858373.967906,VS0,VE1 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: HTML document, Unicode text, UTF-8 text, with very long lines (64820) Size: 36546 Md5: 0b1f4c68d66a3a4af78536cab244e591 Sha1: a9328f3690ba3d437d7ae266983e8b73f0703414 Sha256: cfd864f4ade5b43aa2f7ab14058d708c059c1e3501d4836afbd4b3253bb17171
GET /files/theme/mobile.js?1556897694 HTTP/1.1 Host: www.annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/impressum.html Cookie: is_mobile=0; language=en	199.34.228.59 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 03 Jul 2022 14:26:12 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Thu, 13 Jan 2022 21:45:37 GMT x-rgw-object-type: Normal ETag: W/"7bd55d32cb40c471784fe696916309b4" x-amz-request-id: tx000000000000001cdd80c-00628491d8-b9fbc63-sfo1 X-Storage-Bucket: zcbb4 X-Storage-Object: cbb43d8535adb209382c62e4392774920b5b5049f50e831f27d62f1de7ac2e38 X-Host: grn76.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 4781 Md5: e76dbf2dc9069819fe669f6e7eb6793d Sha1: 1705370ddfd8d14d3c6816301152f5395e764c95 Sha256: f7d96b0b63053033bdb8f79acee80fa257f27cd5ac57b5c0d1c97a8dbec819c1 Alerts: Blocklists: - fortinet: Malware
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 14:26:13 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.65 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Sun, 03 Jul 2022 13:52:21 GMT Cache-Control: max-age=3600 Expires: Sun, 03 Jul 2022 14:00:15 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 7Jff5BZ2wpS3w8nxa58ki5b55wpBfd8PCheBEKXNyHAGhg9fkZqWEQ== Age: 2033 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3313 Cache-Control: 'max-age=158059' Date: Sun, 03 Jul 2022 14:26:13 GMT Last-Modified: Sun, 03 Jul 2022 13:31:00 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 7fd2d0b8a7d70d0ecba887cdda2718ba Sha1: ed72cc0ceecee82915fbf166f522bffdf1ec6f4f Sha256: e6e616ccdfd9456f384da253d83ec625df3bb41575f61649638575e1bb09b1a9
GET /js/site/main.js?buildTime=1655318886 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Last-Modified: Wed, 29 Jun 2022 17:48:07 GMT ETag: "62bc9057-74804" Expires: Wed, 13 Jul 2022 18:49:46 GMT Cache-Control: max-age=1209600 X-Host: grn99.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 146400 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:12 GMT Age: 329787 Connection: keep-alive X-Served-By: cache-sjc10027-SJC, cache-bma1673-BMA X-Cache: HIT, HIT X-Cache-Hits: 2, 1 X-Timer: S1656858373.967802,VS0,VE1 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: ASCII text, with very long lines (32147) Size: 146400 Md5: 81b8673c5d3aa3ab8c0574f2a8f0e3b4 Sha1: 2e0661bc7907d9e2703b3347c3fec579f0aef5d6 Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: TfOZon1Z+jgpg1WauUOPOg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.35.74.102 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: zHmVSU66uIgfUjkaT2xUsEIJkUI= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.annettekoegel.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.74 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 33593 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 03 Jul 2022 03:45:32 GMT expires: Mon, 03 Jul 2023 03:45:32 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 age: 38441 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65483) Size: 33593 Md5: a54a444f20643b131117dc2112cca05f Sha1: 074964746b12ff1d30f7656310d6154ae1cc98b5 Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 14:26:13 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
GET /js/wsnbn/snowday262.js HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Last-Modified: Wed, 22 Jun 2022 00:08:55 GMT ETag: "62b25d97-124fe" Expires: Thu, 07 Jul 2022 08:38:41 GMT Cache-Control: max-age=1209600 X-Host: blu100.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 25752 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:13 GMT Age: 884852 Connection: keep-alive X-Served-By: cache-sjc10076-SJC, cache-bma1668-BMA X-Cache: HIT, HIT X-Cache-Hits: 1, 1541 X-Timer: S1656858374.603584,VS0,VE0 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: ASCII text, with very long lines (2512) Size: 25752 Md5: 234327230add9a5a5d61a48829ea4565 Sha1: 7966cc0e4bd76f88ff193c8a99a067de804b7129 Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /sprites/site/forms-s3786257308.png HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://cdn2.editmysite.com/css/sites.css?buildTime=1655318886	$Magic: PNG image data, 13 x 26, 8-bit gray+alpha, non-interlaced\012- data Size: 341 Md5: 8bebedaad333db9b949dab050728d9be$ 151.101.85.46 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Last-Modified: Tue, 21 Jun 2022 17:19:20 GMT ETag: "62b1fd98-155" Expires: Thu, 07 Jul 2022 11:17:06 GMT Cache-Control: max-age=1209600 X-Host: blu90.sf2p.intern.weebly.net Via: 1.1 varnish, 1.1 varnish Content-Length: 341 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:13 GMT Age: 875348 Connection: keep-alive X-Served-By: cache-sjc10063-SJC, cache-bma1673-BMA X-Cache: HIT, HIT X-Cache-Hits: 4, 1 X-Timer: S1656858374.670183,VS0,VE1 Access-Control-Allow-Origin: * --- Additional Info --- Magic: PNG image data, 13 x 26, 8-bit gray+alpha, non-interlaced\012- data Size: 341 Md5: 8bebedaad333db9b949dab050728d9be Sha1: 9c58d43d230d8b5e6befc2198999840ff555934c Sha256: 6928442dcdfd67ab71262fb35b80fdddb13277f7fceb3744d417b2d22bcaeecb
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://fonts.googleapis.com/	$Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e$ 142.250.74.163 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 15860 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Wed, 29 Jun 2022 20:14:24 GMT Expires: Thu, 29 Jun 2023 20:14:24 GMT Cache-Control: public, max-age=31536000 Age: 324709 Last-Modified: Wed, 11 May 2022 19:24:42 GMT --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://fonts.googleapis.com/	$Magic: Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data Size: 17368 Md5: abe083d96b58eb02ada8b7c30d7b09f2$ 142.250.74.163 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 17368 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 30 Jun 2022 15:46:33 GMT Expires: Fri, 30 Jun 2023 15:46:33 GMT Cache-Control: public, max-age=31536000 Age: 254380 Last-Modified: Wed, 11 May 2022 19:24:42 GMT --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data Size: 17368 Md5: abe083d96b58eb02ada8b7c30d7b09f2 Sha1: 61447d66d13a8c8f4335696777a85c438c46f749 Sha256: db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://fonts.googleapis.com/	$Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e$ 142.250.74.163 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 15744 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Wed, 29 Jun 2022 20:13:49 GMT Expires: Thu, 29 Jun 2023 20:13:49 GMT Cache-Control: public, max-age=31536000 Age: 324744 Last-Modified: Wed, 11 May 2022 19:24:48 GMT --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /weebly/apps/generateMap.php?map=google&elementid=217588873510594345&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=7.771560000000022&lat=51.2626&domain=www&point=1&align=2&reseller=false HTTP/1.1 Host: www.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/ Upgrade-Insecure-Requests: 1	74.115.50.109 HTTP/1.1 302 Found Content-Type: text/html; charset=UTF-8 Date: Sun, 03 Jul 2022 14:26:13 GMT Server: Apache Location: http://www.editmysite.com/ajax/apps/generateMap.php?map=google&elementid=217588873510594345&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=7.771560000000022&lat=51.2626&domain=www&point=1&align=2&reseller=false X-Host: blu118.sf2p.intern.weebly.net Vary: User-Agent X-UA-Compatible: IE=edge,chrome=1 Content-Length: 0 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive X-W-DC: SFO Set-Cookie: sto-id-editor=KDGPBNAK; Domain=weebly.com; Path=/ --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://fonts.googleapis.com/	$Magic: Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Size: 15740 Md5: b9c29351c46f3e8c8631c4002457f48a$ 142.250.74.163 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 15740 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Wed, 29 Jun 2022 22:01:28 GMT Expires: Thu, 29 Jun 2023 22:01:28 GMT Cache-Control: public, max-age=31536000 Age: 318285 Last-Modified: Wed, 11 May 2022 19:24:56 GMT --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Size: 15740 Md5: b9c29351c46f3e8c8631c4002457f48a Sha1: e57e59c5780995ff2937ab2b511a769212974a87 Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/playfairdisplay/v29/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://fonts.googleapis.com/	$Magic: Web Open Font Format (Version 2), TrueType, length 21012, version 1.0\012- data Size: 21012 Md5: 13c1db865218e392904006e8a18e0097$ 142.250.74.163 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 21012 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Wed, 29 Jun 2022 23:49:48 GMT Expires: Thu, 29 Jun 2023 23:49:48 GMT Cache-Control: public, max-age=31536000 Age: 311785 Last-Modified: Wed, 27 Apr 2022 16:55:46 GMT --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 21012, version 1.0\012- data Size: 21012 Md5: 13c1db865218e392904006e8a18e0097 Sha1: 6b0d31d0fe13f31e9b1026a8275eab986461b5a4 Sha256: c37f56c064edb50c3808c0682a515ed30de679eab3ba586ee6be396328094239
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 14:26:13 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 334d91ba472c54fd5eafb6b129bce0b7 Sha1: c7ab329648d0afa86a127c18ae236fdba080be4c Sha256: 8d4b7dec0d711308c68a1aa5e6e23c798bb0845997ca751e4ddc5f2d6b5381fe
GET /recaptcha/api.js?_=1656858374172 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.annettekoegel.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.164 HTTP/2 200 OK expires: Sun, 03 Jul 2022 14:26:13 GMT date: Sun, 03 Jul 2022 14:26:13 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 552 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (850), with no line terminators Size: 552 Md5: 00ff0428801937984aafe2651afd9233 Sha1: 2aaa4a675188b3597e42f22836fbcf90f0453675 Sha256: 20fb3d5aa68e643049e8473446df82c45f5793a29f27db526daed8719e0d425e
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: http://www.annettekoegel.de/ Origin: http://www.annettekoegel.de Connection: keep-alive	44.239.242.204 HTTP/1.1 200 OK Date: Sun, 03 Jul 2022 14:26:13 GMT Content-Length: 0 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: http://www.annettekoegel.de Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, SP-Anonymous Access-Control-Max-Age: 5 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ajax/apps/generateMap.php?map=google&elementid=217588873510594345&ineditor=0&control=3&width=auto&height=250px&overviewmap=0&scalecontrol=0&typecontrol=0&zoom=15&long=7.771560000000022&lat=51.2626&domain=www&point=1&align=2&reseller=false HTTP/1.1 Host: www.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.annettekoegel.de/ Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (827) Size: 11581 Md5: f6b87c38a7dc30901ad79cfc4aa97618$ 74.115.50.67 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sun, 03 Jul 2022 14:26:14 GMT Server: Apache X-Host: grn121.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 11581 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive X-W-DC: SFO Set-Cookie: sto-id-designer=ANFNBMAK; Domain=editmysite.com; Path=/ --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (827) Size: 11581 Md5: f6b87c38a7dc30901ad79cfc4aa97618 Sha1: a1fbc63fef6b77ecc078ce4bdb0be9e47b86aeaf Sha256: 4f916e489d1cefa21c767fb5e3247d4f65d1e11d158f734b0bc213efef84bdc9
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/json; charset=UTF-8 Content-Length: 1787 Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://www.annettekoegel.de/	44.239.242.204 HTTP/1.1 200 OK Content-Type: text/plain; charset=UTF-8 Date: Sun, 03 Jul 2022 14:26:14 GMT Content-Length: 2 Connection: keep-alive Server: nginx Set-Cookie: sp=fd3e51ef-122f-4c12-a672-fc841aba89a3; Expires=Mon, 03 Jul 2023 14:26:14 GMT; Domain=; Path=/; Secure; SameSite=None P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" Access-Control-Allow-Origin: http://www.annettekoegel.de Access-Control-Allow-Credentials: true --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 444bcb3a3fcf8389296c49467f27e1d6 Sha1: 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 14:26:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 7cd39809fa6bac4d3aebebe798838ba2 Sha1: 3245a3a54f902f442be7c93767f040eb84ee3b1e Sha256: feb42208c3d99db1af1cdc36d080117240720493d3259aa96b6040569e262b6b
GET /favicon.ico HTTP/1.1 Host: www.annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/impressum.html Cookie: is_mobile=0; language=en; _snow_ses.477b=*; _snow_id.477b=6c9078da-afce-449f-9f38-3ef596614749.1656858374.1.1656858374.1656858374.322f93c4-f15a-493d-b175-79df3cff2814	$Magic: MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size: 4286 Md5: 4d27526198ac873ccec96935198e0fb9$ 199.34.228.59 HTTP/1.1 200 OK Content-Type: image/x-icon Server: nginx Date: Sun, 03 Jul 2022 14:26:14 GMT Content-Length: 4286 Connection: keep-alive Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT x-rgw-object-type: Normal ETag: "4d27526198ac873ccec96935198e0fb9" x-amz-request-id: tx000000000000000c8f1f2-0061a70684-a9f1b25-sfo1 X-Storage-Bucket: z40a2 X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 X-Host: blu43.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size: 4286 Md5: 4d27526198ac873ccec96935198e0fb9 Sha1: b98d8b73ad6a0f7477c3397561b4aab37bf262aa Sha256: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /files/theme/plugins.js?1556897694 HTTP/1.1 Host: www.annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/impressum.html Cookie: is_mobile=0; language=en	199.34.228.59 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 03 Jul 2022 14:26:12 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Sat, 02 Apr 2022 08:42:51 GMT x-rgw-object-type: Normal ETag: W/"4cf5477130f7311a5f0af1ecaf425ee4" x-amz-request-id: tx000000000000001b8ea71-0062847bf2-b9fbc29-sfo1 X-Storage-Bucket: zb83c X-Storage-Object: b83c1bdb86ae601a4a54799c364306dd922e98d5fddc177d404611bf1a2706f3 X-Host: grn65.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: data Size: 572587 Md5: f2cc214dc54e74061f04850f8743c1de Sha1: c4afc99173a6b25cad28b29e9acb396a6b67d17f Sha256: e2889eb6b722e218987f15aae24ef2604406c73f325d6bd808878198c72e81aa Alerts: Blocklists: - fortinet: Malware
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 Host: www.annettekoegel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/json; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 83 Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://www.annettekoegel.de/impressum.html Cookie: is_mobile=0; language=en; _snow_ses.477b=*; _snow_id.477b=6c9078da-afce-449f-9f38-3ef596614749.1656858374.1.1656858374.1656858374.322f93c4-f15a-493d-b175-79df3cff2814	$Magic: JSON data\012- , ASCII text, with very long lines (375), with no line terminators Size: 375 Md5: ee5bd2747c30496476cc0895392da3ae$ 199.34.228.59 HTTP/1.1 200 OK Content-Type: application/json Date: Sun, 03 Jul 2022 14:26:14 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: grn91.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 375 Connection: close --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (375), with no line terminators Size: 375 Md5: ee5bd2747c30496476cc0895392da3ae Sha1: 5d0090c69cb42c47b1430094589d72c83b48dcd3 Sha256: 8bc12ea7d68fffddf5dc2f7ac10a44c78087b1e7f7fe046fcfb7d3c77198d3f4 Alerts: Blocklists: - fortinet: Malware
GET /ga.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	142.250.74.174 HTTP/1.1 200 OK Content-Type: text/javascript Strict-Transport-Security: max-age=10886400; includeSubDomains; preload X-Content-Type-Options: nosniff Vary: Accept-Encoding Content-Encoding: gzip Cross-Origin-Resource-Policy: cross-origin Server: Golfe2 Content-Length: 17168 Date: Sun, 03 Jul 2022 12:55:24 GMT Expires: Sun, 03 Jul 2022 14:55:24 GMT Cache-Control: public, max-age=7200 Age: 5450 Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT --- Additional Info --- Magic: ASCII text, with very long lines (1305) Size: 17168 Md5: 01d5892e6e243b52998310c2925b9f3a Sha1: 58180151b6a6ee4af73583a214b68efb9e8844d4 Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 14:26:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18334 Expires: Sun, 03 Jul 2022 19:31:48 GMT Date: Sun, 03 Jul 2022 14:26:14 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0972b268-f4d1-450c-a4fb-9c028283bc9a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10919 Md5: b7bb856907b42548036082ab66b18020$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10919 x-amzn-requestid: 23b6304d-6914-4b7c-9546-51a0cc618047 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Udsy_HypoAMFjpQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbc1ac-3609a3fa574884a612eb1430;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 03:06:20 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: NYiOOnweelCp0-DKbA2Z_bItDA3jpetk97Engp4BpzxahJsDdkP3HA== via: 1.1 11c8673f8a48dc627eaa83c99e9efedc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Sun, 03 Jul 2022 03:42:35 GMT age: 38619 etag: "ca5bbf12904de3b5b04917d7acec94313b09fb87" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10919 Md5: b7bb856907b42548036082ab66b18020 Sha1: ca5bbf12904de3b5b04917d7acec94313b09fb87 Sha256: 00f04c1600388f435b3100709ebbd3c36e2f4d50d65fa6126d477f769cfb3f10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e713d79-0b04-4c97-97dc-cb4d75177793.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7830 Md5: fe985a82bb86a8713835ae05d8f4ba73$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7830 x-amzn-requestid: 48ec2221-6c19-4903-9f86-03a2149b7535 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UXpzpEEfoAMF0QQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b9567d-28ef2a266b7f89450d3b8a1e;Sampled=0 x-amzn-remapped-date: Mon, 27 Jun 2022 07:04:29 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: q5e4ZmEXMoubGc1VdXAdd-ct85XvfXXG_x-vwlF8DaH7Dp_SazaATw== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 19:57:03 GMT age: 66551 etag: "186170c73ed22db33a3bd376a67a656f52433c73" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7830 Md5: fe985a82bb86a8713835ae05d8f4ba73 Sha1: 186170c73ed22db33a3bd376a67a656f52433c73 Sha256: 81b345cf57e0f45ddda8e6f3e5df3f341d04997b49619d7f00a338bdbc476878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3e7def4-fa03-41c4-8f87-ca1c8e0a4d7d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10793 Md5: ac975bec09c46e865142774a9b3ad88d$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10793 x-amzn-requestid: af8e6514-8443-4c8f-9f65-88a6025913e6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UXqEYHTrIAMFUYw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b956e8-18404d4544198087193d15f7;Sampled=0 x-amzn-remapped-date: Mon, 27 Jun 2022 07:06:16 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 4uubd20jAIZFr9GHZajdl9Gj2SOTJioHr-zSMF_9BlPdV0WWPnkZKQ== via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Sun, 03 Jul 2022 13:58:56 GMT age: 1638 etag: "f436c3dfd37e001f9435b423fd231d16f5f755da" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10793 Md5: ac975bec09c46e865142774a9b3ad88d Sha1: f436c3dfd37e001f9435b423fd231d16f5f755da Sha256: 122eaf24f973fbdddb671b0085101505d0467992389b14a18706c067130fd7be
GET /js/site/main-customer-accounts-site.js?buildTime=1655318886 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.annettekoegel.de/	151.101.85.46 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Last-Modified: Wed, 22 Jun 2022 00:09:28 GMT ETag: "62b25db8-8250f" Expires: Thu, 07 Jul 2022 10:28:45 GMT Cache-Control: max-age=1209600 X-Host: grn95.sf2p.intern.weebly.net Content-Encoding: gzip Via: 1.1 varnish, 1.1 varnish Content-Length: 158975 Accept-Ranges: bytes Date: Sun, 03 Jul 2022 14:26:12 GMT Age: 878247 Connection: keep-alive X-Served-By: cache-sjc10020-SJC, cache-bma1668-BMA X-Cache: HIT, HIT X-Cache-Hits: 1, 1 X-Timer: S1656858373.967716,VS0,VE1 Vary: Accept-Encoding Access-Control-Allow-Origin: * --- Additional Info --- Magic: ASCII text, with no line terminators Size: 63 Md5: f9e1555030af2bac83b8ba081bd2d1db Sha1: 56b833599267ed73e46bc9e698c6a1155212a2d4 Sha256: 336d499aef00d9d822f4d22297cfc8b7cd2c125313ef642c6a1c52a8369384b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27c91804-20e6-462f-aedb-bdf209d6a7ff.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7435 Md5: bff84dbfeb7d2cb2edcb367e84ed0f7e$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7435 x-amzn-requestid: b40cee49-550f-4039-97ef-1b46de576522 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UqJBtE5voAMFWCg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c0bba4-63212eaf06fb7d291ff9e6da;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 21:41:56 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 2471PJrEUC3dKtVzv8vDMiY53Zt7tLMbYHGk6cNyWmN9eL42S7VYQA== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 21:41:56 GMT age: 60258 etag: "9b4f9ba34e26b13aef71dd9125dd3878dc2f9105" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7435 Md5: bff84dbfeb7d2cb2edcb367e84ed0f7e Sha1: 9b4f9ba34e26b13aef71dd9125dd3878dc2f9105 Sha256: 0a760e8b512c0b81c732721e1e0fae54b14b8387aa0d214ce7f325ba128d7a05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F431f287f-9907-47aa-be38-0ff4e6db75fc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8553 Md5: e6f97e6b64100081e8bed56216564854$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8553 x-amzn-requestid: da971ab1-68b6-455d-9725-1c2f89e165aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: URFadFGkoAMF6Dg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b6b5dc-42ece449553ff5151f7d4e8e;Sampled=0 x-amzn-remapped-date: Sat, 25 Jun 2022 07:14:36 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: Bm3bvTSwaAQZWxuxX3_nYO08Nba9Ve_9TO9KbdetO8drpl1iTs275A== via: 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 15:47:37 GMT age: 81518 etag: "303f4efaa9b98e39a935fc6514d3731d40d2977c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8553 Md5: e6f97e6b64100081e8bed56216564854 Sha1: 303f4efaa9b98e39a935fc6514d3731d40d2977c Sha256: 92dd803f1633bd65a2b4ac3223d8aa93dd55ed64c74b338aff62323585a3623c
GET /mapfiles/transparent.png HTTP/1.1 Host: maps.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.editmysite.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data Size: 68 Md5: 8327a6037ae00a5be9f75e63ee1b9fbe$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes content-type: image/png access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile" report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]} content-length: 68 date: Sun, 03 Jul 2022 14:26:15 GMT expires: Sun, 03 Jul 2022 14:26:15 GMT cache-control: private, max-age=31536000 last-modified: Tue, 18 May 2021 19:15:00 GMT x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data Size: 68 Md5: 8327a6037ae00a5be9f75e63ee1b9fbe Sha1: a812c79b0d125e4946b33446eae0353f518627e2 Sha256: fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd82a5d63-f405-4f54-ad9a-a423aeae09c9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7184 Md5: dbf74d25f8acb3f6b249386ce5e55871$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7184 x-amzn-requestid: 5bea16e3-4d08-4511-afc7-be12e1bdf693 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Uk06uGnEIAMFlhA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62be9b77-5aedba11418da4ae48e2b501;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 07:00:07 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: ZMpQjN0yPnNrW170Hz-NjEwNA4zVpJLkhvvNp-m9CnQnyer1UvMSKA== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google date: Sun, 03 Jul 2022 08:35:26 GMT age: 21049 etag: "984498975a9424217a161f11ea66660a441ef6d4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7184 Md5: dbf74d25f8acb3f6b249386ce5e55871 Sha1: 984498975a9424217a161f11ea66660a441ef6d4 Sha256: bf666960a2f1d4d8c96a0b3c21bdee73a345a24916d96197d4566f925ecefedd
GET /recaptcha/releases/4rwLQsl5N_ccppoTAwwwMrEN/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://www.annettekoegel.de Connection: keep-alive Referer: http://www.annettekoegel.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	142.250.74.163 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 146545 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 01 Jul 2022 18:51:46 GMT expires: Sat, 01 Jul 2023 18:51:46 GMT cache-control: public, max-age=31536000 last-modified: Mon, 13 Jun 2022 04:02:51 GMT content-type: text/javascript age: 156868 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (618) Size: 146545 Md5: edbca8e066da9cd6310dada3c125ccf4 Sha1: 22f45ed309e828212484a03cc7d0e629834e8a76 Sha256: fcab033160e1ba423ad7a42e0bd67ec5820e1ed6751765de935960e502e623f0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 14:26:15 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
GET /css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.editmysite.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 03 Jul 2022 14:26:15 GMT date: Sun, 03 Jul 2022 14:26:15 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 16002 Md5: 2c5e576c986fa3babe2c32f4a7ca3f3c Sha1: 2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466 Sha256: f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c