meineschiffsreise.com/
212.172.50.6301 Moved Permanently 707 B IP 212.172.50.6:0
ASN #12312 ecotel communication ag
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET / HTTP/1.1
Host: meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 22 Nov 2022 00:31:25 GMT
server: LiteSpeed
location: http://www.meineschiffsreise.com/
x-powered-by: PleskLin
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eb76c0b3adf4098ad8a9d1e38250758f
99610ddb2b4ec6d04250ac244f966951695d4f00
01ed8c191c175471aee23cbc196d558e5bf5209f166806fc97db08eb06544bab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2486
Expires: Tue, 22 Nov 2022 01:12:52 GMT
Date: Tue, 22 Nov 2022 00:31:26 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4890
Cache-Control: max-age=127281
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:26 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:52:47 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 00:09:18 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1328
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2342
Expires: Tue, 22 Nov 2022 01:10:28 GMT
Date: Tue, 22 Nov 2022 00:31:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3s5OSKOeMaywbA3OpP6voNzOsGfAcFwvI843B6VXWD0gqTnd7z2QTxbByO5HQyi4MGOYLWmQdLM=
x-amz-request-id: 8C37JGH1JPBF3E4Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 21 Nov 2022 23:42:18 GMT
age: 2948
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 00:31:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 00:08:47 GMT
cache-control: public,max-age=3600
age: 1359
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5760
Cache-Control: max-age=123088
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:26 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 10:42:54 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
100.20.30.105101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.30.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z+b5M3xB0Hbz78C+aPwlWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y+2s6PtKp1prlprPBoa4vnhC5NQ=
www.meineschiffsreise.com/
104.21.12.132200 OK 20 kB URL HTTP/1.1 www.meineschiffsreise.com/
IP 104.21.12.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash d1efca01f9d64e590543dc7fd8af7948
5d3ac8dc8ecc95335a1ab033cae4a437253d28fb
c7585826ddf709880893d3577170e0cca5025cbef51085618c9f1854a001f5cd
GET / HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.0.33, PleskLin
x-pingback: http://www.meineschiffsreise.com/xmlrpc.php
link: <http://www.meineschiffsreise.com/wp-json/>; rel="https://api.w.org/", <http://www.meineschiffsreise.com/wp-json/wp/v2/pages/353>; rel="alternate"; type="application/json", <http://www.meineschiffsreise.com/>; rel=shortlink
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uCp8gZowaw1Zz9SptysHUpl%2FImlzwFG%2F1bHk%2FoFuNk37obV%2FWhNfk2MKZg%2BlR9061H9aVCJqRsg5wMKWGzgkeCU0LqAx1duZw0Nz%2BLMZDtbU6e%2B21Xj9%2B0spSdROAVDk9VKXqmuVceLetSK3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8fecfcc3b4f3-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.shareaholic.net/assets/pub/shareaholic.js
151.139.128.10200 OK 4.3 kB URL HTTP/1.1 cdn.shareaholic.net/assets/pub/shareaholic.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (10540), with no line terminators
Hash c3860fcea29c634ad082b216015eaa52
5e86e7e2fcc072d049747d1830cb4a6f593536a0
bf5a9c0e1da949074bf4fe117f8c62296849a4b063929857cde24b716703f8f8
GET /assets/pub/shareaholic.js HTTP/1.1
Host: cdn.shareaholic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Encoding: gzip
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 03 Oct 2022 22:06:54 GMT
Accept-Ranges: bytes
Server: nginx
x-amz-id-2: RCdEY/u2KzKGl9pA74kJEWMCTH6D7F2IChbdgi77jabS39+JoWfUkiM9sJP4I0oklSHiFhysVMU=
x-amz-request-id: MF7Q588ZP328CS1M
ETag: "c3860fcea29c634ad082b216015eaa52"
Cache-Control: max-age=1200, public
Access-Control-Allow-Origin: *
X-Hello-Human: Join the fun! Apply at www.shareaholic.com/jobs
X-HW: 1669077088.cds263.sk1.h2,1669077088.cds243.sk1.c
Connection: keep-alive
Content-Length: 4286
www.meineschiffsreise.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
104.21.12.132200 OK 12 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 104.21.12.132:0
File type ASCII text, with very long lines (47826)
Hash 45b3843596f3eda24398e2c1f68ee268
4ad9a0e6ed85ca57c5d134aa5ca546e19910640d
f2784720bca9efcc4c4c3ab35d5fa3b523eb1915acc04a53273559907d352e36
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 12489
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Wed, 16 Nov 2022 01:24:32 GMT
etag: "172a9-63743bd0-7e5cef9c5101546;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9wkWtC2kXJ7G2uv0haMwYyiVd%2BxG9zrl%2B542o4FB%2F8GQGUYW4nhChZQyIsWLxTNEtLjuX3nkpefk6um%2B%2FBKJ8vPGkSLYcIflRtiD69kh1iaIYC89dOmXXCu2PWuJUHoNDQSzVolaNO4i5xui"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff94af0b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-includes/css/classic-themes.min.css?ver=1
104.21.12.132200 OK 188 B URL HTTP/1.1 www.meineschiffsreise.com/wp-includes/css/classic-themes.min.css?ver=1
IP 104.21.12.132:0
Hash 8ac085745a5bcc97c54f8088973df029
4e065566e82d4623d0f5b4d9275d3ee29e15acd1
a0b69c3418ce7d86bcd33d370dec1ba31f2d9c143d932f52de7c4f98427a813f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 188
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Thu, 03 Nov 2022 01:23:51 GMT
etag: "d9-63631827-5039fa69744ec3d9;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MPiR0f%2BrTsLYQqyYXoC%2BLdECequB9JqVc%2B8pM6Vy6cEf2nmBZmxzgUOFzNV07kqZ1oFt8wei6UQ2JIIZIJEOESjZzjF2SjcvKz6nKALXNPr2ETBZCyHXPvuyFo6MRN8ZTQX41sjNoz85Efpy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff94b220b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/amazon-associates-link-builder/css/aalb_basics.css?ver=1.8.0
104.21.12.132200 OK 1.0 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/amazon-associates-link-builder/css/aalb_basics.css?ver=1.8.0
IP 104.21.12.132:0
Hash e61a428d28163492a0b846164b211c99
fb81b340f75fffc376b192edd65fa3cc1041eea5
eabbdbdcca3c00e721e00ece3d98bab92abe5bbafd654ca8b3a953e6b20dfbca
GET /wp-content/plugins/amazon-associates-link-builder/css/aalb_basics.css?ver=1.8.0 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 1010
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Fri, 16 Nov 2018 10:45:37 GMT
etag: "aa3-5bee9fd1-baa1926759ad6e2b;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Us1kDAptGT9iKsy7XpnYdh7jR9nphzvti7fVo9FW6jxOWP%2B9j%2B4hFh%2FEikajf2%2B2bXUwHrUsiQpY29lmIkJhTuiFWGlvxo6UtK%2BLAZm0eUtWlK1std4q8IGtpgI9P%2B%2Bw8GHBnp5UHUX4oNJo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff95eadb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/arqam/assets/style.css?ver=6.1.1
104.21.12.132200 OK 20 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/arqam/assets/style.css?ver=6.1.1
IP 104.21.12.132:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (15671)
Hash e264e727775005d73375b3778531506c
9d4ff440e23487add3bdbbe8692dad8dd745df48
9fcb96e905c70dd1f2bfb31a789acb2d46f9755aa292d6ada23cb4fb23c84253
GET /wp-content/plugins/arqam/assets/style.css?ver=6.1.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 19829
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Sun, 01 Mar 2015 20:40:59 GMT
etag: "917e-54f3795b-49af99a2417033d;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jL28uWX59%2Fb102jyh6tqBcRydlCY68XJlznXJDshKbq5X3xhvNHwi3pa6A0pnZQ19qBQmcop8J55Chw45MGP8I8pfM1CCypTtqx8Uc55U0KwdZcWiu4m8SRzcgLeG5s5v7Dr78HoGIRIaIIu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff94b52b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/captcha/css/front_end_style.css?ver=4.3.6
104.21.12.132200 OK 727 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/captcha/css/front_end_style.css?ver=4.3.6
IP 104.21.12.132:0
Hash 60a0444845a8e39f49867357e21d0372
dff2196e928e6f597d92249a16452ab8f62eb753
a3abd031ffd3a870be7481f4e417ea74428c7c14a4db259354ee92f7bd7659d7
GET /wp-content/plugins/captcha/css/front_end_style.css?ver=4.3.6 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 727
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Wed, 20 Sep 2017 20:53:43 GMT
etag: "725-59c2d557-fd79d32644d37acf;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6fGVafQHhZHsA7ZOAHxIVTwzniyfRgEb7pSj4nk4pgBgDGl%2FCCkD9wjlsdPF8iG1Tq3CPOhbLJtRqulEaJjYxLUzUbWjHXyoeoFo4v%2FvOUwTJVwcWTVsb0D3Eeri%2BV8Q%2FBnvTu8LpBN9cnMk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff95c26fac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/css/style.css?ver=201505032019
104.21.12.132200 OK 61 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/css/style.css?ver=201505032019
IP 104.21.12.132:0
Hash b9fd98cd3424d8e4749dd3aaf70fea0b
e6acd3ef978b34cd066959cb37b2c5dea4da4c28
3b389f2f92812427d3ea5c067987012648dc9b6fa726fc72f825807dc6e2ab68
GET /wp-content/themes/bucket/theme-content/css/style.css?ver=201505032019 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 61422
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Sun, 03 May 2015 20:19:40 GMT
etag: "4db70-554682dc-604e21a5792fb6af;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zdOXEh0Gya4oJPMTV7gF6ytRn%2F3Me1hUKO6iILvGcT77OxFoTm5Cq5wbpMotIcuO3GMQuRavJ5PQxYBWBxhHy5Aa5cxX0%2FB8DzoRh2VejCNsKsmYhYW3rQZTcFL20woymynzHIWiKb4TDSsa"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff94963b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/captcha/css/desktop_style.css?ver=4.3.6
104.21.12.132200 OK 411 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/captcha/css/desktop_style.css?ver=4.3.6
IP 104.21.12.132:0
Hash eb011de373b447def8917b00ac1c154b
ddfc54e9853c8fb1d924ea90934991a61b274f4f
20b0b5cb89559ff2ad976fa4f3aa9dcb2484efdd7f99dd072c5d5a91a67ec442
GET /wp-content/plugins/captcha/css/desktop_style.css?ver=4.3.6 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 411
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Wed, 20 Sep 2017 20:53:43 GMT
etag: "6d3-59c2d557-19a7ef752754706a;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t0IH8T4dITp1xFemKAk%2BBlf9WBwUHjAtdCX3OAMiV1BQ6u1ZNBl63ZCoqecnzPZG%2FGU4Dd4jT4t7DLB%2BlOdqlbbsfy%2FsnbtARUaJCddGSUWcQAI54NuMp4UPQ0QtIWl2gVsNOxTX0KNWaLo5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff9bb420b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/contextual-related-posts/css/rounded-thumbs.min.css?ver=1.0.1
104.21.12.132200 OK 440 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/contextual-related-posts/css/rounded-thumbs.min.css?ver=1.0.1
IP 104.21.12.132:0
File type ASCII text, with very long lines (1193), with no line terminators
Hash 2b5390eef5eceb5ce28fb03c21139f3d
5f6040bdba6a36d5e9f0b0965c3430028fc56cf0
500586a4ba139b92f8408a0b60ec54044e5915405cc220df4483c7792314b382
GET /wp-content/plugins/contextual-related-posts/css/rounded-thumbs.min.css?ver=1.0.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 440
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:09:11 GMT
etag: "4a9-60510257-38d546a95df5d2e9;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NMf3cqFyHSgKYs3i8KfAjQ50sFz35ndJyyD7aclikmHDP6Ea5gVpo3HvqIJPA2XaOWObcbf9c8iuysStsR8kV2Z3jJG5orin81cTUMVg9QnzGq4cFhillEkf15QdelgZnDoVKa9bt1P1bPBc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff9bedcb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.0.1
104.21.12.132200 OK 954 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.0.1
IP 104.21.12.132:0
Hash 16ecc7a7d54cfbcdb6bc7704879d077d
f90d3b49d04d14ad4ec3fb91ac519ad88f798eb1
8ac030461bcd5229078ee77c5ef6b65029e6d325fe413e6599c9c599d49db1f5
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.0.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 954
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:09:57 GMT
etag: "c25-60510285-36e5fa2466dda1cb;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S54MTk%2FtUvZNWpTvHfkX6luFHjtutQJW1E5Kibn1c%2BpZATKW60e7SFb6iHlkDceHjneOi7ZxV2FBwIJ4nW2lVPXQOjrEotwDiLXTpfVpd6rYYsXKCaEbok6LL3aHIEAQo4xPnOjZPKiTB59b"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff9cb8ab4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.0.1
104.21.12.132200 OK 4.8 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.0.1
IP 104.21.12.132:0
Hash 52e9dec5ffcb8220c83fddc84db9713a
c8ba024897684fe96b1d201e5f1de4bb7df1a57e
03c0601407122ffaf2866bde24fc3871731b3bb3133643c789d35b9da5bf871c
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.0.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 4816
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:09:57 GMT
etag: "6ecf-60510285-2f18fcf85c879216;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2JJXge0fwxWUDz%2FQzapXPHW1Fm2P1yCNiDSdIF5To3Pj6EJ6o5%2F%2BPwlCJbdBq2ap4F0RJs7EdKJohtoT5CZBDqaJw441npfJiLi7uGKngU%2B5lLQ%2B9X6KfeD%2Bbn67YU1KCzELFGTHBrdwPMtE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff9cc6ffac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-includes/css/dashicons.min.css?ver=6.1.1
104.21.12.132200 OK 36 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 104.21.12.132:0
File type ASCII text, with very long lines (58981)
Hash 57daffc76b4eaf9a7deb7c0e03a61f85
7b028ad43294b75d4b241239bb0190c7ab9c5273
00ab13c2e8718e6804d864984db327ff9d83c04292849c09861c73bc9020241d
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 35599
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Fri, 16 Apr 2021 00:29:58 GMT
etag: "e688-6078da86-cbce8dcb8f4875e4;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9z%2Bc69%2F8ZpoEqnuX9u82eXidKpYrJJ%2FbD5%2BXNlFd3MZdUjVVcoznz9Tx2WoqZsYH0tmSD2SSC%2BDKX6R8I9FeAAevPt%2FJZV%2FVGHfbTH2TPdaVWZ3CzS%2FAGpDKdlrFagRdSItalZSEToOSKrZm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff9ab1fb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
104.21.12.132200 OK 884 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 104.21.12.132:0
Hash fbd3cb84e1194d91c4eb572a7f5842c3
18231875f66f767084a8b1eee5732380a5602db0
6e5012861ffeb56456543a0b0adfd71a5e562bd478998e40374f536a35793d4c
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 884
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "fbc-605102ce-65d834db39590ac7;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2bKu7Xf9ITWDY52jSIMam7RxDh5h0U6pypr%2BKCFTvH34%2Fo7%2FJA5lWpmfT3FGGkDFUCd%2BK07szSz%2BzoO%2BQFxG86n6iA4kDRCzhVfBc%2ByUMBQEnMW%2F%2FdgLZiZEQpshzlEZjVC%2F6n4qIkleaGfJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ff9f9aeb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.0.3
104.21.12.132200 OK 1.9 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.0.3
IP 104.21.12.132:0
File type ASCII text, with very long lines (6875), with no line terminators
Hash 65dadd80ac8101fe1b67a5c20c7de83b
f69385ea07534e4e9a88719a355b0a221bfa4493
ab88920769bad2f5258abfb7125ebf6487270ecac901f1154776129233815861
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.0.3 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 1875
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "1adb-605102ce-170710ae91e2c0ce;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iB0Dc%2F9l9kQGKTYMKgGQmXaGsQ8iWNunt9Iv4GPpMFl5PTYorVbG%2BZcbPaBEjGD9trRkkyWLgv7FKyEo3s%2FYVVZwJjkEEEK8uZbTChOz5TGow0qczNBBa0Ww3UtyzYzgRQmPjuw4mxlpJ%2FCg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa0b620b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=1.5.70
104.21.12.132200 OK 1.2 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=1.5.70
IP 104.21.12.132:0
File type ASCII text, with very long lines (10538), with no line terminators
Hash f398c651385989a70e13a7e354fe1f83
7fd4982d07ca03fba6d4a5d7d1d1e60dd1281f7e
828f8b1ec6356e0c47a98bd4e8d41d154c8a1f45eef61f6a314d0396ae447391
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=1.5.70 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 1226
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "292a-605102ce-d04ac5c20a5d48b5;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wd2XiryP4t58eTYf2YQRwsQ%2BjpiFbPaDlPVtjupfb%2BOeux1GoTFWtAyNu2YwcmQ2EyAJJ0OScZsFAX7M9%2B2qB7B18erFW40ajoMLzAGR71WqUkxC8HBiAsFeVYXETe2qQkK4MFgAbfZojs1r"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa0f0cb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/lightbox-gallery/colorbox/example1/colorbox.css?ver=6.1.1
104.21.12.132200 OK 1.5 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/lightbox-gallery/colorbox/example1/colorbox.css?ver=6.1.1
IP 104.21.12.132:0
Hash 835898aea1b5109606acb16a9d939762
8066d834f60584f3f3e64a8ee585f65610f7fe21
61a3ada8a65547b0d5542382cfd774f4977b9d68dc4e177d28dcb87418b45302
GET /wp-content/plugins/lightbox-gallery/colorbox/example1/colorbox.css?ver=6.1.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 1466
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:10:17 GMT
etag: "117a-60510299-acd6ff772f08ffd7;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y3EzFHnNzgFqoX8qFQFTiZgLwA34k0Sz8mL3DD0DL0GrnAr92HAqeUDtr9%2FOScegWWCstlwaf5Q9onpK1ghm%2FBlT2aZBwNrFEgW3kQLsV8quAa3L4INPnIXL8rcsVqrp5mSNgyetiwa2whJu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa2b6ab517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.5.70
104.21.12.132200 OK 6.5 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.5.70
IP 104.21.12.132:0
File type ASCII text, with very long lines (42574), with no line terminators
Hash 4f7fed2180fca09a6d178f0848c64332
d2677355b459f17cf4c2382227242ebe9975752d
a216a94932182ddef2de17a16e6a915404a8377b4ac4157ddca193295061180e
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.5.70 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 6515
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "a64e-605102ce-6910c2d9b4116b89;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dHNit58jl2%2FyH21RnVqBEUpZ9jHyJXoHT9XJeZHg7ud9qYifkp0i29B%2BK%2BtS95bSLPFLA4rdOaxxap1KL4Y%2FDuRe98l3Ym8Lo32q5eEJwrYoGql%2B0z7TejPTd4LrMNAQ%2FIzCx972Yo2sW%2Fby"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa2bd0b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/tablepress/css/default.min.css?ver=1.13
104.21.12.132200 OK 2.2 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/tablepress/css/default.min.css?ver=1.13
IP 104.21.12.132:0
File type ASCII text, with very long lines (5092), with no line terminators
Hash 4efe7b8873aa816d552577cdb3aaaf66
6658970e6125bfa4ef436c6320e16073bfd0aa0b
ebe54755a87745324cb29c69556c19d835ba7ade1ed2f6d804c18ba9b035f5b4
GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.13 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: text/css
Content-Length: 2237
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:12:46 GMT
etag: "13e4-6051032e-fa56c64ca339f1c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XRgIEx0DR5ljT%2BKSvknivBhui06c1LnTLckHgwFNyN6Im18f3PZYqxcRYmUuDKHSXqiPs7pDi0AwakuPhB9wy%2FIeQjN1x6neVGuoTpUeCECADGkJQVRRswaMhok1liYjMv7kbTu9efcFRYWU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa2c82fac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.0.1
104.21.12.132200 OK 8.4 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.0.1
IP 104.21.12.132:0
Hash 67bd0dd3e8e73adec532c9ecd70a797b
30ff6568c47e7e1e20423f0be7906b455640c81d
31e2d61086bde09201ae4568cecbae378d22c1883ecc226f210d240bc97477a9
GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.0.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 8434
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:09:57 GMT
etag: "8bdf-60510285-64efe28a8a1433f3;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PJE2B%2FEAH2dZl7tFp8SBTwGV0SzkLNk8F%2F%2BUE26FSxDO4XJWQ94c8YtvBk4eAiUQiJmZgIZs5va0Bf2uQ996BUp0hA2wrWxPWOCXb2zCyDe978Ue3WdAJsExHHEATHQF7N5n1UJrZBZdf3io"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa6f4cb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
104.21.12.132200 OK 31 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 104.21.12.132:0
File type ASCII text, with very long lines (65447)
Hash cc5a8bfbf7d31fbc3022dc05e964a95c
81edda48c2c2c97bf79dea1ec91b89105e4ba00b
651c822702a9ac476c260fd37dccab6c3da8306ff6dd922e9d68cfa7863bfe42
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 31046
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Thu, 03 Nov 2022 01:23:51 GMT
etag: "15e54-63631827-79c706c61ad8f69e;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cNGWLyF0NXxnXAv0UYikA0DvxSKoRtD7r0Qr%2FwUzjCsCBXWM6el82hY0cBnlUgeY6vvVuoRvQ0xGIv54fkc4fWkNIdYJIwgMqZYEIQVuNA%2BezwkAumXeVnP92Bql0mPp4Ujx3JmrXBbS5xwU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa59cdb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.0.3
104.21.12.132200 OK 7.4 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.0.3
IP 104.21.12.132:0
Hash b5c1f35b23f5436ef7312a7d105ab3e0
961175ebd26191a2f5229f66aa365e30535313d7
38ad5f5f1d7bd7d3ae309cc7f029e906fbad2531fa0a5dde3acfd2de423ec64d
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.0.3 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 7418
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "6b9f-605102ce-bf2e0bbc8760482f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hBtPxnofX8b8WP8xdbw6qaYN93g7V1PpWEomuV64jCBAyHONSzV9JlNGcGsaj0FqzECjyDbQGOH5ZKFZe88c8PviV6iGFbDH4sUDA7QJOgJ8WePwWJG8K596v9f%2BUQ0qhH1D5mv9wULNEcTU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa8b9db517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
104.21.12.132200 OK 9.1 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 104.21.12.132:0
File type HTML document, ASCII text, with very long lines (25075)
Hash 2731f8147f6bde99036f3754a846fcd6
c71656c3520df8574ce26e41d5160b034d86bec3
c6848e066ba7320b9b9987be4da7c9c1f05c125e385e463a15c387e68e44724c
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 9141
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "6255-605102ce-c1129594329be5c7;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ChwI79%2BIjqZYoxHAYY0WZEVsbm2evGghQvj9urHT6T8s2u7R4qw8HpMp3xFkWmwkVLCaJI0pVEFad5UJVoF3QQ3tee6EnKvuywtnwxG0FcP2ofKvni8LnMKEfo8y93wZBNbnk3mOPaanyZ17"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa8bf6b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=1.5.70
104.21.12.132200 OK 6.2 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=1.5.70
IP 104.21.12.132:0
File type ASCII text, with very long lines (24110)
Hash cf507aeca2f9dd6ea1fd31cd2d76f3cc
15153222846975c9c2f63c7a68c5ae4e354b7f63
452405cc405aa8d1b52db6f1133ae3ddc3702f769678400eadfdfb93e1eec8be
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=1.5.70 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 6155
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "6250-605102ce-2df8ec59d920bf6f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hJrLZDprxoGmnp4VjWDrOn2fO3I8VwlNzs%2FxwzYI8A9KtqEHpgPIbMMe%2FipbNrpRf%2FQ0e%2FFid77CLz94Gdx7YzvWGjmJ36R0CIj%2FhdoQFUrs2Qq9tO2zXL5l9oQNI8Xn3IAhTZy6thkp1Ciu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffa8cadfac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen-0.4.1.min.js?ver=0.4.1
104.21.12.132200 OK 2.5 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen-0.4.1.min.js?ver=0.4.1
IP 104.21.12.132:0
Hash af03857150bfa71e2f314b84b9e849c3
c217836675cea5d1ec94d98d23d89a3bf9a730a0
c396c2ad99108210fd1020c1cce7529fcdb0c150ff66f807a64c4ce104ef2253
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen-0.4.1.min.js?ver=0.4.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 2467
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "1e1f-605102ce-455740be7896c9de;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PNhsCIRtoBEvlFUhtQ426TAkn30DVOEyB5tQ2FZGrRejPBOkZ88l302EEyQrJ5O%2B3gxJRgkinvlJgzaw2APJqWQh8hg0T6HTKDP0DSdqLOeb65khgvNyBzLlzQ4PAvv5tXIVYct%2FuCmIwvyV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffacf98b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
104.21.12.132200 OK 5.0 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 104.21.12.132:0
File type ASCII text, with very long lines (15660)
Hash 848f9aadf194f3d024a2a90dbd11e3b5
aecd4b03b5a7829c6ca015d926798dc95e4fa912
36ff79b2f6827e46be1df95ff739e536718c0ee4fc09462678b32d7abd60fc6c
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 5021
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Wed, 25 May 2022 00:24:44 GMT
etag: "48b9-628d774c-f6f5966bbabed5ea;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VH%2BWDTW3ThrqDIFJ9nWX0hhHQNt6NJoOi4GYnghDYLMfOFdNhTjR52pYRlTpQEBBRrzZaRcAWnqW7JtgOl3WkW8CQlaoTxE0q9r%2FSw2wuzMYJQ1VOKlbN%2Fr0wi2BoNfRJYA9Gxa1AKcFhO58"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffadbbfb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.5.70
104.21.12.132200 OK 29 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.5.70
IP 104.21.12.132:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 83e8e929bf269c00edd5f190ac49ffab
5933feb16cc5510f12a16f064f949ec18ed08eb5
0da88eb65a5b6e62c4867f5926ce004f54fff1af2a9d34484f3c69f176de14aa
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.5.70 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 28741
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Tue, 16 Mar 2021 19:11:10 GMT
etag: "27ec1-605102ce-9e4fc9369afa3351;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2Br%2FbOzBPYQisf4oUwFQ37NMES7%2FgvfxifNaLeqTfu7pIxiccQs9i9tb9iBDl3vWdsT%2F%2BxFnuxWlfd5mZ%2FYn8N9ZcGMjghYhDOAHkchIiX%2B3Qly7NngbXbb3zNMKBcEhRYDoj%2FMTMhp9I0nK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffada09b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/js/main.js?ver=201505032019
104.21.12.132200 OK 57 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/js/main.js?ver=201505032019
IP 104.21.12.132:0
File type Unicode text, UTF-8 text, with very long lines (14429)
Hash eebd6fcde3ffc89e2f4a27a1297c4d85
6cf57b0463ff40ff5189342f3fed60c3541ded68
86d964f8f2607a525651eec7b63f219a0dcb587578f15e8158e4c78fd2738bf7
GET /wp-content/themes/bucket/theme-content/js/main.js?ver=201505032019 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 56860
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Sun, 03 May 2015 20:19:40 GMT
etag: "2c597-554682dc-9a2bbcf66d23d2b0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XkjCYZR2FKQr2RdIrbuDvIHpix%2B7k0J%2FKGCpF%2B8ElZsg8Xm42C9dxop2zh%2BxxVSTC6xLQVjDpcgmeSlZzWLYJi2tx9JVWJZB0ckwJn9%2B%2B9UwtwME9LmJOihaSZsnaO76chf1QBI8KqPztZGl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffadc20b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
104.21.12.132200 OK 1.3 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 104.21.12.132:0
File type ASCII text, with very long lines (2946)
Hash 1cfd4f485ffd20e7ee7693364fef33f9
a8c5d35ad20664ccfe03d7acfcbdb0a1e28d3fd8
b433efd57400d409a207820e22b93662fa48a0737a96eb44a4c6ce3b46ee7403
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/javascript
Content-Length: 1349
Connection: keep-alive
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 00:31:28 GMT
last-modified: Wed, 25 May 2022 00:24:44 GMT
etag: "ba5-628d774c-c8bbf621fb8100bc;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g7N06DIDA4LuSCoGLeM3XO1SFzbX0Uk2ldKTN20tcPBqblmYQBneGQ7wB0MnpATxqWgFPNIMpPjMVgfuK2%2B63fkAkAhJi7zBqSJnkWcSTiOe1jJjOjqnQGHB7ZkOm65OjoGQ0wpXoiffEueO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffb0bc80b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4856
Expires: Tue, 22 Nov 2022 01:52:24 GMT
Date: Tue, 22 Nov 2022 00:31:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4856
Expires: Tue, 22 Nov 2022 01:52:24 GMT
Date: Tue, 22 Nov 2022 00:31:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4856
Expires: Tue, 22 Nov 2022 01:52:24 GMT
Date: Tue, 22 Nov 2022 00:31:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4856
Expires: Tue, 22 Nov 2022 01:52:24 GMT
Date: Tue, 22 Nov 2022 00:31:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4856
Expires: Tue, 22 Nov 2022 01:52:24 GMT
Date: Tue, 22 Nov 2022 00:31:28 GMT
Connection: keep-alive
www.meineschiffsreise.com/wp-content/uploads/2015/05/msc-meraviglia1-335x256.jpg
104.21.12.132200 OK 28 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2015/05/msc-meraviglia1-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 142x142, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, software=Microsoft Office], baseline, precision 8, 335x256, components 3\012- data
Hash ee3c2f4e525926cfdf01147170fa3738
b5412178f3b79e2056c4c33f446827053ae7fef0
5b473102c436839fa46e0387a258a9ab16b8b831b090ab46687a5cd4e920317f
GET /wp-content/uploads/2015/05/msc-meraviglia1-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 28543
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "6f7f-5648f565-21e0deef2bed8d4c;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:13:09 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B2%2BzMnpn9tpCmDvQ6FF5apuoth19ZEGh37Xw8q1K1RL8Qm9Ko10nMW0Hr7rySjgCKqhzaAFjQ6UPyo0dQ0a9NjMLzouNXKOYJB%2B5gNorWW16sopZH4pKCsOPpWmFhIzaEBo0bLN1A7bfg88F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffb7a54b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ba2cc1-6e28-45a2-bc78-97012bdeedb2.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ba2cc1-6e28-45a2-bc78-97012bdeedb2.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b591bcc9d645eed0ea6ebc5dae07d31
97278cc5c5a1be7926d53fd8daf9e802bfb6cbdb
82dde9a4d139bdfae1d8859f4d7a77f92182c65ad630e25d0cc52f346dd1dfad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4ba2cc1-6e28-45a2-bc78-97012bdeedb2.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11793
x-amzn-requestid: 7edbd95e-83c8-4162-886f-b0bf88deee5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oFrQIAMFnYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-4f1317ec61500d713816830d;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hd2a0sbw7fzVnkVpCOEAnu_W-Z0EajArOracSTImr6jbhOFwKbDKpw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:44:56 GMT
age: 9992
etag: "97278cc5c5a1be7926d53fd8daf9e802bfb6cbdb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_kanaren1-335x256.jpg
104.21.12.132200 OK 33 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_kanaren1-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Arrecife in Lanzarote Charco de San Gines boats in Canary Islands, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, xresolution=264, yresolution=272, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2012:09:11 13:15:54], baseline, precision 8, 335x256, components 3\012- data
Hash ecec70d0765f04f14dfd237c884369c5
e9ed15fcb7ee357d91789ea25a010cdfb58d0d49
2499f3d0779a837384789c1d1ba84d98bfbcdad4475dc51f5c2de2c915b4fb70
GET /wp-content/uploads/2014/05/fotolia_kanaren1-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 32698
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "7fba-5648f4a0-6c13487b5bb3b336;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:09:52 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BNtbB5EgV%2BvHZBoePDan4%2B6IezVRyGDQMuLd732egslos4c0UwWfr2rgiHUcoz9NsdEFPnhQM%2FrDE9epLeEaXdL5KfHBUaDjYxOcq%2FIxEPc1KicmK1YxeFOJsOyYGr9%2BNLUsXARCByA1Co0N"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffb8be70b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2014/06/ncl_epic_miami1-335x256.jpg
104.21.12.132200 OK 48 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/06/ncl_epic_miami1-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=17, height=3528, bps=218, compression=none, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=5292], baseline, precision 8, 335x256, components 3\012- data
Hash 608780c5e8400e75eaef4af8683a6bf3
7544fa9eb045557aa192d05a17554a855dcf6c84
c4b3f552cee9ce6b4c88dbb9034c9051867c3aa3909871293e349397971b693c
GET /wp-content/uploads/2014/06/ncl_epic_miami1-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 48518
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "bd86-5648f4c8-8724476f7f4c69f5;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:10:32 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vRe%2B6tbpWJl8YrXAkYbA7bJEhOSxgicHyKcQzXKNSCxjvCUUAzKy54AddDyrx6dq9p5IEytKw2i6Q9XlpxKZtoDQYoKy1ARGM5sCINodVl00OEW2wFEgykUU4C7p0pmKlGYT%2Frtr89O2ld64"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffb882ab4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2015/03/170760_482600216710_4169262_o-300x200.jpg
104.21.12.132200 OK 20 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2015/03/170760_482600216710_4169262_o-300x200.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 619fde42eae6ccd59edeabb3eff394c8
a8ebd850673e683c083a5c777e92122d133d1785
5e6cec61f445cbeeceb7c6f04e52d58b1c123265ddb24959da04b53816e9471f
GET /wp-content/uploads/2015/03/170760_482600216710_4169262_o-300x200.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 20046
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "4e4e-5523b4b1-b065c4747396a431;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Tue, 07 Apr 2015 10:42:57 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sV5vSX1DOho%2BtRU8d%2BQZ9GNGO%2BmpVyqI029eIUZz4EJwFuq8e0IyMfhGD73IIxVwbEOkLnkGo3ExUtiSLj1t6jMTlGlg74hqqqUoiJpSw70fc5vQ5LdZeCCE8RQMVX27KN53CXJLgnkKmtzr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffb8cf5fac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b52c578c918c74f35f3c0a3f0c5dd2be
39d9b60a2b11b95c0ae37f35deb9a594d8e61d08
48a67feefffe59d04660c0e7de58234f184bded9cbb121da8157387ebd24f8f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: 9e70b9ad-7fb2-4f2d-bc87-d703abeb4888
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I62ERzIAMFcvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeab-6de953ea2d2aee071fea324b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:31 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9mu3P-liZS9j6mn71xiWE2JRWpZHSans7w-zGZVERGs24wxCkfR5Ww==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:57 GMT
etag: "39d9b60a2b11b95c0ae37f35deb9a594d8e61d08"
content-type: image/jpeg
age: 8911
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b919084-f564-465a-ac1a-59e00596bb76.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b919084-f564-465a-ac1a-59e00596bb76.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10f54d1625147d074c29bdff1897ef8f
d1359b0dcf6974d685b5c55c5789810863cce7cd
6431d25310697b4455f3e9487a11415f082d05e02d33b29cad3c8862ece28322
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b919084-f564-465a-ac1a-59e00596bb76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8405
x-amzn-requestid: b93c951e-7aa0-468d-92b9-4079f7bfc9ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jFbGoWIAMFZ7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787eef-14f7c7985f46ffde1b7e3ed6;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 06:59:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3KHsHTHxpi4ia2Ka-uq0s5c543qAWVq_ZqHk4atSRMS95BaNeLMmhA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:12 GMT
age: 9856
etag: "d1359b0dcf6974d685b5c55c5789810863cce7cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F559c6770-d162-460d-b372-5ff036a364d6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F559c6770-d162-460d-b372-5ff036a364d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9defa28d124bae7e5ef29a1fb165ee02
2afe813f0fefae511064297ccff9a6de548104e8
8cfdd12386dcc87cfd874ed0c2d42cd33ae2a05cb35127f1a94e163d17bd5b31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F559c6770-d162-460d-b372-5ff036a364d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11576
x-amzn-requestid: 9dd2cb2e-de79-4937-b525-05be9d57c03b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrdFuxoAMFa9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee49-5437ea0f1568967278fe96ad;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:53 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1daKtJmaZARpzMRiPQaWttMITAndRqZt0VwhiBzbxzxBvw4a28a2sg==
via: 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:45 GMT
etag: "2afe813f0fefae511064297ccff9a6de548104e8"
content-type: image/jpeg
age: 8923
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.meineschiffsreise.com/wp-content/uploads/2014/08/msx0214_digi_ren_028_web1.jpg
104.21.12.132200 OK 175 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/08/msx0214_digi_ren_028_web1.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=14, height=10827, bps=182, compression=none, PhotometricIntepretation=CMYK, orientation=upper-left, width=14173], progressive, precision 8, 1024x926, components 3\012- data
Size 175 kB (174912 bytes)
Hash c990e2d09c249604f3a2924f444e6692
1d43c3000e6455a1e2e3a4b5323a2f4b69cb1140
ffb9d126416aeeaaad8c62f66dda476fe9ab0ca2f2e3bde62558ec719ba05724
GET /wp-content/uploads/2014/08/msx0214_digi_ren_028_web1.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 174912
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "2ab40-5648f502-b7d2a57b368f6b06;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:11:30 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hZJuCQdY2SDMfMNESpKBhAbjpwCzldfVhSbqh%2F28LnBJI1V6iYeHi%2BdXi7FP0CLZ2CbtvskGn3pd%2BWDQvsHRX3Vgg4mIqwEcc6XctTFw5C9XZFQYbKbrNkuX3akB6CTlW2Sy%2BFuhnl4JkK0W"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffb9a5fb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4585277-93e1-4477-a3fd-7902d8def50a.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4585277-93e1-4477-a3fd-7902d8def50a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed56d033b6595fa91a4c513c0ed7cdd4
ef87cc22637f94451f116905bfe096fff3e73d86
02f79fe867a07f3fdd1ad932da67a9a2df8c07ad4172b0aad2f61ee6b67a72fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4585277-93e1-4477-a3fd-7902d8def50a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9355
x-amzn-requestid: 648e28c6-95fe-4f9c-8af7-47ea898ba9de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-LXLGLYoAMFuAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bf294-7c76fe07440fb34273e26e98;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:50:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -ZrUYiE5vAneQQte9ZKG_pdch62RPh-zM_Ap55wnNkzd_0RVBYgwPw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:16:50 GMT
etag: "ef87cc22637f94451f116905bfe096fff3e73d86"
content-type: image/jpeg
age: 8078
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.meineschiffsreise.com/wp-content/uploads/2015/12/fotolia_137903042_xs-335x256.jpg
104.21.12.132200 OK 13 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2015/12/fotolia_137903042_xs-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 335x256, components 3\012- data
Hash dbaf7c4bfee86e453cb5771e07847d00
b132a1cddcc9180ca5e7c9fc3e60c78c1bd1734c
41f765198d7ddb1b5859f7e734deac59be0ad74e31f8428bda6576363384f80a
GET /wp-content/uploads/2015/12/fotolia_137903042_xs-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 13051
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "32fb-58caf7b2-f2d35bbfd80c28cb;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Thu, 16 Mar 2017 20:38:10 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n6iVVoetP44%2FxtiYta4v93YHrQgLPqoTyFOZUTNheG4iVxdApQGzAVFKTH7MGLbXeInqVd99%2FCzL7nZJygokusfY5tqVu6hkL3mtsblLYqSQ%2FrdtGw3P4kGYUOsM9rYuFeo8OZDJL3lMGeRy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbabf10b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2014/06/aida_ahrends2-335x256.jpg
104.21.12.132200 OK 37 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/06/aida_ahrends2-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, description=MARIELLA AHRENS (42) mit der AIDAblu im Persischen Golf / Hafen von Dubai / COPYRIGHT: ALEXANDER STINGL / S+S / 02-2012, manufacturer=NIKON CORPORATION, model=NIKON D3, orientation=upper-left, xresolution=305, yresolution=313, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2012:02:15 15:55:03], baseline, precision 8, 335x256, components 3\012- data
Hash 3ee85ad068ca068da05dc35962a843ed
ea99ee0a413c7b0025ed89a91d85045cc2d91d35
bf77def22b7287bcfd76a11056d176cef79477654ea820d924425e36f96a1305
GET /wp-content/uploads/2014/06/aida_ahrends2-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 37326
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "91ce-5648f4c8-adc22d90d099c12b;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:10:32 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=arXGGXTVi863%2FnaSY4uWSTcA8%2BxiWMLpLxLHND6Icd%2F60%2BGZe2CSN0hpxMDI94Qe5%2FnYSo2dSpIY330%2FUCI8A%2BFAqIVVHbokTEF458ORIfGFGBT67zuwVEDuAaiK6XO%2FGNrbpryds125DIQx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbac1fb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2013/11/schiffsreise-logo-e1447623322910.jpg
104.21.12.132200 OK 36 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2013/11/schiffsreise-logo-e1447623322910.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Macintosh, datetime=2013:11:04 20:02:31], baseline, precision 8, 193x177, components 3\012- data
Hash 4fa57bd325a52f242b5ea4d9bd73022d
f5341eb732ad19687373e56edbe9ac9bc9772d10
a9a0beed9b171c4853057c28a7b40c960f997d0ae31e340e5c39ac02fcf6ca64
GET /wp-content/uploads/2013/11/schiffsreise-logo-e1447623322910.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 35571
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "8af3-5648fa9a-e2529dc07c70c586;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:35:22 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ye3X9qmDHkNkQGWngxgeLpuM68ln5fTQP1Zx7UiL5d8iG5%2B9mBjVDd8U4q3ev71HeLiKG5RJnYDy3Jkf9EgWycelvx3WvMCAPhMK5yOEkG74kUkUSt%2FA2AzxOdHQPgqME059Khq48e9skzu8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffba83bb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_schiff1-335x256.jpg
104.21.12.132200 OK 33 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_schiff1-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=17, description=Cruise ship, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, xresolution=260, yresolution=268, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:05:09 16:37:19], baseline, precision 8, 335x256, components 3\012- data
Hash 42de0d94e37ef4fa089aa8a3c04273a4
710c55e034eedc016505f3ddb72b5f5e6b97b247
72eb1e1b7b7f412ed6a135e0ef848a80289c41b5e2711f5c16bcf08daae30622
GET /wp-content/uploads/2014/05/fotolia_schiff1-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 33151
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "817f-5648f49e-766655e8e2312ceb;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:09:50 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CmEUdiuLy%2Fo8r6fPWTbg2vdf2BIM7ga4f6kSCL7hdIx4fRSOTWy%2Bbmxs4SO%2Bbf%2FeaepCqHuqvBOeVkxTnuPxqN4W9Klh673BY%2F5NQajHCmTHhRXUuhbpngCOdeV3sy0XbPKNU9JFdGvUPnVX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbaca1b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2015/05/aidadiva_werft_blohm_voss_hamburg1-335x256.jpg
104.21.12.132200 OK 63 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2015/05/aidadiva_werft_blohm_voss_hamburg1-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=14, height=1851, bps=0, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=2776], baseline, precision 8, 335x256, components 3\012- data
Hash bb6c62422de0318680e00e18834df6a6
abe9a4d05876ac29279cd95c033445492e6fc709
826077a7ed65dc611ff98a324b9f0d65d46d11d74247cc36cb07d389602c0c5f
GET /wp-content/uploads/2015/05/aidadiva_werft_blohm_voss_hamburg1-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 62991
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "f60f-5648f562-b993278d6d3a53ae;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:13:06 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8MDmNIY0ebjoI0b7ldi1aqIELiGbZ0%2FZhsZY%2FcJpGIZgqn4BJDB6tfw46kdTETAt68b1gGfnXNh8nC47EV1OYJqclIT2O5g0D6TIwh3Pf%2BMlpSS%2BC0kxG9iTzyK6H7z0zAg%2FDMTrKBl%2FY0yI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbaa69b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2014/09/low_1411485790_quantum-of-the-seas-mg-6630-small1-335x256.jpg
104.21.12.132200 OK 24 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/09/low_1411485790_quantum-of-the-seas-mg-6630-small1-335x256.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 335x256, components 3\012- data
Hash f23f9187b7d1bce675a66c294babc619
30213146845b1bbd69e004cf262038fa3c2f23a5
57276aca5dc72959f0690c8a48c65de496b21c575934a7e03fe00fdd71ff417b
GET /wp-content/uploads/2014/09/low_1411485790_quantum-of-the-seas-mg-6630-small1-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 24391
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "5f47-5648f53d-102d589ff4b60f7e;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:12:29 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t5jp7gs3C2gMsH6ytP4kNNoZzwG690E5bto%2BARmL1Gb1YVEk8%2BDEJVimUC46wfJtTrEohkB%2F07pZp2miPu3vRbT8KzmYGwWV0qimIdg1vUnRHkrxyOJFNPgTGDDyUtTH6HKoCPfthceym6QE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbacfcfac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/images/striped.png
104.21.12.132200 OK 108 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/images/striped.png
IP 104.21.12.132:0
File type PNG image data, 3 x 3, 8-bit colormap, non-interlaced\012- data
Hash 860a72b7a78a8a520b465343ae87eb9e
5ac24a404fba313fc37ef02974f84457ce07dc0c
3d9c3bfc9fa2960076e305d2b7f132085562efddc736322b14f2e59a3d81660a
GET /wp-content/themes/bucket/theme-content/images/striped.png HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/css/style.css?ver=201505032019
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/png
Content-Length: 108
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "6c-554682dc-1aee2d1fe44bd836;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 03 May 2015 20:19:40 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cB38tNYzLG1l5vxmfzHwf%2BUwujfQt%2BZmm9mRqfLo8amHcbrOtR4AMIZy%2F2IyzwFERXWoGu%2FkoSkPpMwDFl10ttcNReIN4wkokNbFQF0593yNXeFTVOsCl5mIJyzf%2B%2BX%2B%2F1yY3GohtsnTtGj4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbda73b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:51:03 GMT
expires: Thu, 16 Nov 2023 18:51:03 GMT
cache-control: public, max-age=31536000
age: 452425
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
216.58.207.195200 OK 42 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 42500, version 1.0\012- data
Hash 8c5246074400a5141ea18bf48dff17ee
b0650d9d042dfdc6e5fbc3b9f79f87822f9ee689
595c14bd7589b069e4570ba658cfab8850611639e8a077ca84ef263bfa4671f9
GET /s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 01:13:45 GMT
expires: Wed, 15 Nov 2023 01:13:45 GMT
cache-control: public, max-age=31536000
age: 602263
last-modified: Wed, 27 Apr 2022 16:01:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
216.58.207.195200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 22:54:24 GMT
expires: Sat, 18 Nov 2023 22:54:24 GMT
cache-control: public, max-age=31536000
age: 265024
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17300, version 1.0\012- data
Hash 2bb7eeed159db804f2e7a9ca64871661
d4aa569d336599b0c8a61ddbc2f5151627d0dbe1
6a444f75e21c8b900953619df3cbc2ecf9e2227416e07d774709adf722bcb415
GET /s/arvo/v20/tDbD2oWUg0MKqScQ7Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 17:18:42 GMT
expires: Fri, 17 Nov 2023 17:18:42 GMT
cache-control: public, max-age=31536000
age: 371566
last-modified: Tue, 19 Apr 2022 18:36:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 05:42:51 GMT
expires: Fri, 17 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 413317
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/fonts/font-awesome/fontawesome-webfont.woff?v=4.0.2
104.21.12.132200 OK 44 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/fonts/font-awesome/fontawesome-webfont.woff?v=4.0.2
IP 104.21.12.132:0
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
GET /wp-content/themes/bucket/theme-content/fonts/font-awesome/fontawesome-webfont.woff?v=4.0.2 HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/wp-content/themes/bucket/theme-content/css/style.css?ver=201505032019
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: application/font-woff
Content-Length: 44432
Connection: keep-alive
cache-control: public, max-age=172800
expires: Thu, 24 Nov 2022 00:31:28 GMT
last-modified: Sun, 03 May 2015 20:19:40 GMT
etag: "ad90-554682dc-41febd8a6ffea4d1;;;"
accept-ranges: bytes
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=carIhr2x4sDkaMDGuVYlrniUPxjXToKsgC%2BpR888Dq%2FaDAQ3iXL2K7x8jYs8TabP3yLWN%2F%2BS7rOsJYS6PZh9K2sAwKOv0OHKIqcwV11leB24Z5rz6VxtD4qMvDou8McHUt0kmb4PRhMOXsQf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffbea77b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/favicon.ico
104.21.12.132200 OK 1.3 kB URL HTTP/1.1 www.meineschiffsreise.com/favicon.ico
IP 104.21.12.132:0
File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data
Hash 8b5f5f7fc0713724dd9d558701731e58
ccfd278fd6c8f2eef7b0f5d16e9c031b8c0a36c1
c69bad7c91a4840af987f1f4a38b67fe4e32caea8ebb44ccd16bbe11557d7532
GET /favicon.ico HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 1292
Connection: keep-alive
cache-control: public, max-age=172800
expires: Tue, 22 Nov 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 16:56:31 GMT
etag: "1536-5648b93f-858c73670db945e5;gz"
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dn%2FUWJKfD2W5IkoLtySfXGP5e9CYriIS2laoItZO%2FaYsSmLKMlpUT2ZTs%2FuslVaJ5n1xKoFgrGmDoZ7%2FYp3A2adpwiL4Zl0T5DVtbLaCM%2FbB66uDLalO4zGec3Ld%2BJcvnpLMsohog6FRJcKM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76dd8ffc9ab6b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Tue, 22 Nov 2022 00:22:55 GMT
Expires: Tue, 22 Nov 2022 02:22:55 GMT
Cache-Control: public, max-age=7200
Age: 513
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.98200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (4885)
Hash 4635a926652264298516cb6651e3d3fd
af6da82c759c6f9819ed0071ac4c39ea11df0018
367a546dd2c5679d365f6d9eb0195ee9f3ea8307fbbe8f05ee11a18fc875e42f
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Tue, 22 Nov 2022 00:31:28 GMT
Expires: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 1757393032480437072
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52224
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 662c6190c63609f87a23660fc808a650
a4178dd92d6f8a4f7c4da846a08d4104575f3636
93a8fd2af027f09640a8f5c3e2f10603d8b7aff4c74bc274cdbea7deeb396f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=161218885&t=pageview&_s=1&dl=http%3A%2F%2Fwww.meineschiffsreise.com%2F&ul=en-us&de=UTF-8&dt=Kreuzfahrten%20und%20F%C3%A4hren-%20Angebote%20und%20Schn%C3%A4ppchen&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABCAAAACAAI~&jid=1000062531&gjid=1455939092&cid=1658302377.1669077089&tid=UA-69257709-13&_gid=478985101.1669077089&_r=1&_slc=1&z=905688484
142.250.74.174200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=161218885&t=pageview&_s=1&dl=http%3A%2F%2Fwww.meineschiffsreise.com%2F&ul=en-us&de=UTF-8&dt=Kreuzfahrten%20und%20F%C3%A4hren-%20Angebote%20und%20Schn%C3%A4ppchen&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABCAAAACAAI~&jid=1000062531&gjid=1455939092&cid=1658302377.1669077089&tid=UA-69257709-13&_gid=478985101.1669077089&_r=1&_slc=1&z=905688484
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=161218885&t=pageview&_s=1&dl=http%3A%2F%2Fwww.meineschiffsreise.com%2F&ul=en-us&de=UTF-8&dt=Kreuzfahrten%20und%20F%C3%A4hren-%20Angebote%20und%20Schn%C3%A4ppchen&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABCAAAACAAI~&jid=1000062531&gjid=1455939092&cid=1658302377.1669077089&tid=UA-69257709-13&_gid=478985101.1669077089&_r=1&_slc=1&z=905688484 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.meineschiffsreise.com
date: Tue, 22 Nov 2022 00:31:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m9m6e2w5.stackpathcdn.com/v2/d1d50b0d/main.js
151.139.128.10200 OK 42 kB URL HTTP/2 m9m6e2w5.stackpathcdn.com/v2/d1d50b0d/main.js
IP 151.139.128.10:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash cdf3dea93c7b2a9f7a21e20e85edc782
3a8fd74d0cef6ad2014d48fedc0aca21ba7d788d
cadd7d116a182571e7e6574186610169693dc132bf331a1717a42230464d4c5b
GET /v2/d1d50b0d/main.js HTTP/1.1
Host: m9m6e2w5.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 00:31:28 GMT
content-encoding: gzip
content-length: 41827
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 03 Oct 2022 22:06:50 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: muiO2zzLgA2DjWZSi1sgCtNYp7dthqAg/0QtP5+ErQNfDnnq+rxGoEZbqJxUMO7RHxZGoOf94us=
x-amz-request-id: K87JRYJW163PDNHE
etag: "cdf3dea93c7b2a9f7a21e20e85edc782"
cache-control: max-age=31536000, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1669077088.cds246.sk1.hn,1669077088.cds220.sk1.c
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.98200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Mon, 21 Nov 2022 06:29:02 GMT
expires: Mon, 05 Dec 2022 06:29:02 GMT
cache-control: public, max-age=1209600
age: 64946
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.meineschiffsreise.com/wp-content/uploads/2015/05/msc-meraviglia1-203x157.jpg
104.21.12.132200 OK 14 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2015/05/msc-meraviglia1-203x157.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 142x142, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, software=Microsoft Office], baseline, precision 8, 203x157, components 3\012- data
Hash 47efb2081a6ef7da31c931d1224dfdbf
2111f2e5dccddd112e577b44e3ef3832aa56dbbd
0a072e95980e5cfd26e50e6e3079737c6f1971184f82098fbde40a204b7eaf99
GET /wp-content/uploads/2015/05/msc-meraviglia1-203x157.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Cookie: _ga=GA1.2.1658302377.1669077089; _gid=GA1.2.478985101.1669077089; _gat=1; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 14515
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "38b3-5648f565-97f6b46ed3c9e2c0;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:13:09 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iFM7QXrCpOsUQ5SnbUFe14DQ3Hzxy7pbA4pgS18zQQYgsKNEyK0IbA3i%2BQncU1HWN5O%2FSogB7Vh6D1cwO2OrHA1WZTVy3at7NLB4mjJrgYF4b%2F93jazeB%2FzHCsuDX9Ss7OJ5Cq81vmu2TzFQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffde98eb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_schiff1-203x157.jpg
104.21.12.132200 OK 17 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_schiff1-203x157.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=17, description=Cruise ship, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, xresolution=260, yresolution=268, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:05:09 16:37:19], baseline, precision 8, 203x157, components 3\012- data
Hash df9a64bb9c0fe24352f8dcc69e5e3452
80296424e95dcdd25928d0844b81edd5c533a813
096b28c7d6f4655a5aa4517fd5c6571467b4519c58360d951c609e4164d13a49
GET /wp-content/uploads/2014/05/fotolia_schiff1-203x157.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Cookie: _ga=GA1.2.1658302377.1669077089; _gid=GA1.2.478985101.1669077089; _gat=1; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 17389
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "43ed-5648f49e-51d5629c848a0ad1;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:09:50 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T9RUbhzrk3VvNHrYq%2BpGvB%2FgPReNJ3JciqOJwp6GsftStDxsC%2BOPoUCWLYdEhzg%2FdKK4wwjkiXNrDGgHcfVKgPscpwt4jKWWyqrZ%2FfVUjGZD6zM%2BNVczIcgf3EFWd0Tggs4DmAS8yD0BrusC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffdeb5fb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4666906793143151&plah=www.meineschiffsreise.com
142.250.74.98200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4666906793143151&plah=www.meineschiffsreise.com
IP 142.250.74.98:0
File type ASCII text, with very long lines (6090)
Size 120 kB (119607 bytes)
Hash 527ec59e189cffc72688efb994965e29
5699ff328c939614f27508180152ef3d15dbf186
b917be253388772bdd6e956938c716d40c62e5f6b7b3256f00cd77e7f6b3a9e3
GET /pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4666906793143151&plah=www.meineschiffsreise.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 22 Nov 2022 00:31:28 GMT
expires: Tue, 22 Nov 2022 00:31:28 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 17968436261579759140
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119607
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 1b6cc48c7f314bc7ef251703eabe72b4
a70bf5ad955836f15b24590f0e322d5cee53b0b1
4d6e589df129380106a5a4f666882703fb04074c3b2a9b963be91b14fc20352f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meineschiffsreise.com/wp-content/uploads/2014/06/aida_ahrends2.jpg
104.21.12.132200 OK 86 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/06/aida_ahrends2.jpg
IP 104.21.12.132:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, description=MARIELLA AHRENS (42) mit der AIDAblu im Persischen Golf / Hafen von Dubai / COPYRIGHT: ALEXANDER STINGL / S+S / 02-2012, manufacturer=NIKON CORPORATION, model=NIKON D3, orientation=upper-left, xresolution=305, yresolution=313, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2012:02:15 15:55:03], progressive, precision 8, 875x583, components 3\012- data
Hash 4536dcff0492bfd6204fa46e91e1641f
5a15d347f349d277d92055b4755a916f1c022cf9
d087d87b56badedf2cc5c73838acfad7259f12da66735ec32d658a581855000b
GET /wp-content/uploads/2014/06/aida_ahrends2.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Cookie: _ga=GA1.2.1658302377.1669077089; _gid=GA1.2.478985101.1669077089; _gat=1; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:29 GMT
Content-Type: image/jpeg
Content-Length: 86256
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "150f0-5648f4c8-436be4439c22bfd4;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:10:32 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165602
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2g3pRQnt4fO%2B5r3bHW2SZ9LIjAHi55dLAy27hfKmrA1wyP%2FJE79C5nFdoktXnF8CrLvZwMWhDj6Gw1qNNqB%2F8bGTKAUYeOU%2FXhWHWBulNFIKzaQsDUa4CPCkByom7RZxeQiJRM0jqx2j4KqG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffe4b91b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_kanaren1-693x600.jpg
104.21.12.132200 OK 103 kB URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2014/05/fotolia_kanaren1-693x600.jpg
IP 104.21.12.132:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Arrecife in Lanzarote Charco de San Gines boats in Canary Islands, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, xresolution=264, yresolution=272, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2012:09:11 13:15:54], baseline, precision 8, 693x600, components 3\012- data
Size 103 kB (103426 bytes)
Hash d8db91d54e5f538e0d3cdf2ca67e5413
b5da02ced3f8425b5785665e0626cf9bb371872d
5ccb7478673bfbb3e1137c34c4aa513e8a3d26e6c1a848d1ff56bffd68d2119f
GET /wp-content/uploads/2014/05/fotolia_kanaren1-693x600.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Cookie: _ga=GA1.2.1658302377.1669077089; _gid=GA1.2.478985101.1669077089; _gat=1; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:29 GMT
Content-Type: image/jpeg
Content-Length: 103426
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "19402-5648f4a0-95885a3838fd1b0a;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Sun, 15 Nov 2015 21:09:52 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165602
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJMGXmfzXV%2FT9pKHWRVkP41aOuG1K1Ha39g3y6YncVUgjWLYZUJmTzbKgMEo0xFG0e4j7eKLzcx9MWZiut%2BY4aDx5CbFm9TmSR%2BXYPIFqoWOLy8CeklvgY99NQEcZASbGHHXXwTxaEzHF7Ka"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffe49d0b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8086eba81f8c970ab1da448d18e48c98
4c439fd23f6991bb1967e6679976a3c2ddff8bd6
16ce620a5151591164862cefc4cb90fbc892ececa555082c6ebd7ce744706f58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cdcd936a1ca3729e5415928204c25f17
2a0d0e6f94f8145a32f98b725bba52a9a6616f2b
e92ab786e674810e9a0faf3a8c98a99eddb356fa27861f965fd688e54b5bf8c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ea260c5759cd4b8b513a752fee449a02
39728528c3cdc3780f61b89c4b1bdb88831a6ac1
71441e2e4fdabbaf658699b5c5220efe75482c6a24223813b68f9076d8a7a3b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71441E2E4FDABBAF658699B5C5220EFE75482C6A24223813B68F9076D8A7A3B1"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Tue, 22 Nov 2022 01:17:14 GMT
Date: Tue, 22 Nov 2022 00:31:29 GMT
Connection: keep-alive
adservice.google.no/adsid/integrator.js?domain=www.meineschiffsreise.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.meineschiffsreise.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.meineschiffsreise.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 00:31:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.meineschiffsreise.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.meineschiffsreise.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.meineschiffsreise.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 00:31:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8086eba81f8c970ab1da448d18e48c98
4c439fd23f6991bb1967e6679976a3c2ddff8bd6
16ce620a5151591164862cefc4cb90fbc892ececa555082c6ebd7ce744706f58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cdcd936a1ca3729e5415928204c25f17
2a0d0e6f94f8145a32f98b725bba52a9a6616f2b
e92ab786e674810e9a0faf3a8c98a99eddb356fa27861f965fd688e54b5bf8c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.shareaholic.net/config/d65ad5c942cc7af4925223dfc7517e24.json
184.73.100.94200 OK 1.5 kB URL HTTP/2 www.shareaholic.net/config/d65ad5c942cc7af4925223dfc7517e24.json
IP 184.73.100.94:0
File type JSON data\012- , ASCII text, with very long lines (7378), with no line terminators
Hash ee2977f6b3074a69013a4e077cdb6338
323cfb2dfb9bfe2519421a3a8be0c1fd71ffaae2
b5945f305c42061559c693b415e2306356878303fd6ae484d0f6f292345ea43b
GET /config/d65ad5c942cc7af4925223dfc7517e24.json HTTP/1.1
Host: www.shareaholic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 21 Nov 2022 04:31:30 GMT
etag: W/"4dc0d13cf8ea98a9bd21d708df7d6733"
vary: Accept-Encoding
content-encoding: gzip
content-type: application/json
cache-control: max-age=3, public, must-revalidate
x-varnish: 249379723 230207846
via: 1.1 varnish (Varnish/6.0)
access-control-allow-methods: GET, HEAD
access-control-allow-headers: *
access-control-allow-origin: *
access-control-expose-headers: Etag, Access-Control-Allow-Origin, x-client-geo-latlong, x-client-geo-country, x-client-geo-city, x-client-geo-zip, x-client-geo-region, x-client-geo-metrocode
access-control-max-age: 2000
x-client-geo-latlong: 59.945200,10.755900
x-client-geo-country: NO,Norway
x-client-geo-city:
x-client-geo-region:
x-client-geo-metrocode:
x-client-geo-zip:
accept-ranges: bytes
content-length: 1469
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ff44194230f74713e085ee26358fbfd6
825da24516932e9b0547989124bbdaf216b7d4ae
88d2a59b12745340a399375d2c4b15d2904dcdd7fc86b15e205658f24ee6707a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-69257709-13&cid=1658302377.1669077089&jid=1000062531&gjid=1455939092&_gid=478985101.1669077089&_u=YEBAAUAACAAAACAAI~&z=159612771
142.250.150.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-69257709-13&cid=1658302377.1669077089&jid=1000062531&gjid=1455939092&_gid=478985101.1669077089&_u=YEBAAUAACAAAACAAI~&z=159612771
IP 142.250.150.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-69257709-13&cid=1658302377.1669077089&jid=1000062531&gjid=1455939092&_gid=478985101.1669077089&_u=YEBAAUAACAAAACAAI~&z=159612771 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.meineschiffsreise.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 22 Nov 2022 00:31:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=www.meineschiffsreise.com&callback=_gfp_s_&client=ca-pub-4666906793143151&gpid_exp=1
216.58.207.194200 OK 258 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.meineschiffsreise.com&callback=_gfp_s_&client=ca-pub-4666906793143151&gpid_exp=1
IP 216.58.207.194:0
File type ASCII text, with very long lines (409), with no line terminators
Hash cc9dc1917b9d047ada98f4b1f8dbbeb1
0c72c3be48ec0adc863eb7ec6d10a5a6d63552f4
45a9dbedc96417578d8baec02b94f43429da64b33944c78fe2fcb108fa2bb08e
GET /gampad/cookie.js?domain=www.meineschiffsreise.com&callback=_gfp_s_&client=ca-pub-4666906793143151&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 00:31:29 GMT
server: cafe
cache-control: private
content-length: 258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a3ea82c9e7675ecce540d6e33300d472
39f1b75090217a7407a07630486674778dba8b7b
ecab1a4733ebbdeaa700fc4180dab6692e03e89df8277c70304065196222aea5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 089e762d9178536b1d429bc760807bc5
a49da4cbb7670c598a0d20537f44886fb37ba10c
d8008539f4c897b3293938efe2317eecc9720f76efb1d6fab793b79a3f048962
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash faddb6878caef803f5b8d595bcf80885
a13ffc7f56a0e022f277b17a276454ec151663b8
5a074b977b1d9ed89ad623b3caeb65d5b644beafd825c79cbdc33c5b4a0be6fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
142.250.74.65200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:55:37 GMT
expires: Mon, 05 Dec 2022 15:55:37 GMT
cache-control: public, max-age=1209600
age: 30952
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js
142.250.74.65200 OK 9.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (1596)
Hash 6b277303de172776fc303dfc195982ef
fe6c6af5791742485ae21c4dc02edbee2b426886
c536ada7aa8f4679e0e4f0b99703aab79f6fe32659d777f9c01a7785aa06a36d
GET /pagead/js/r20221110/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9428
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:59:24 GMT
expires: Mon, 05 Dec 2022 15:59:24 GMT
cache-control: public, max-age=1209600
age: 30725
etag: 246362764157784863
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 12284d1f35fa2266491c81a975215bd4
be2cc08e0a5f384b77ae60a1d53e0c81552393c1
a903ec46c5bb8b67d96f3b7d9555b1a5d677c60fc66c8e7d016e87991e1973f6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 22 Nov 2022 00:31:29 GMT
Last-Modified: Mon, 21 Nov 2022 23:48:42 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7WINoz3IN9JsLb1xnCzNXDFARH53SOl1rsVbT52PuHk4rTDcRLpYJQ==
Age: 2567
www.gstatic.com/mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (1921)
Hash 48a3f12d2425ba123d53524adc123834
c8f4ecbe239261b944879c18ec1a353d0cc674ba
632e1fbd2bba00a95491c806cdf850014b1b617323f698c492272d917603e20b
GET /mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14118
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 15:33:11 GMT
expires: Wed, 15 Feb 2023 15:33:11 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 14 Nov 2022 13:59:16 GMT
content-type: text/javascript
age: 377898
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.shareaholic.com/e
35.174.112.146200 OK 43 B URL HTTP/2 analytics.shareaholic.com/e
IP 35.174.112.146:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
POST /e HTTP/1.1
Host: analytics.shareaholic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 164
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 00:31:29 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: http://www.meineschiffsreise.com
vary: Origin
access-control-allow-credentials: true
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="OTI DSP COR DEVo ADMa OUR CONo IND COM INT ONL PUR STA OTC"
expires: Thu, 01 Jan 1970 00:00:00 GMT
referer-policy: unsafe-url
content-security-policy: referrer always
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 449842
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:53:49 GMT
expires: Thu, 16 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 452261
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:21 GMT
expires: Thu, 16 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 449829
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d5f44030ae728558d0102445d170b873
a9c2e9ce4d20fe2e8a1656f4f457d9a7fe6ee20e
72f2e03c205a810e0ee66b1ee52f2c32ad4d5e5f8b14c5f26810f281761abc0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e7227f577a2e579eb58fa412f31e7cbc
7cc9223a58c5a55f4c1aef750d22ac67768c243d
0b885c51fc93059d906050d10029365da2fc7d2d248c243677b1913a7cbe0225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 00:31:30 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adj/N4406.Google/B28855509.350541520;dc_ver=92.271;sz=728x90;u_sd=1;kw=%5Burl_encoded_publisher_data%5D;dc_adk=1094548375;ord=jfxw88;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%3Fsa%3Dl%26ai%3DCzO7SYRh8Y923DcKcYqX2jeABhZmzwG3cytq2pBDqn9yg1AEQASDDyYkrYMOEgICYGKABp7yWxQPIAQmoAwGqBN8BT9CZLNcLosxMQzGHyPh_nOIPSNWe7SIG3OnWni4NjK8UbAWFBeiWdJnjlf1Gu_lidAh4cYsvvRbkbRQmZkwEwICJHA4gfzJFw75pTNKlbwJoJQuZyQu6XheNYdNECYvrd0cYiIji_WL-iz_sNqGs2L98P_z1at85w-0e8U8W99LfE0iBak4LySr0bCSrJV4iMfHZUUUeP-h7osdtoZ9JGHAFfbG2brJIptGgU8FfbHQFiGxP6lXhNvHQJPLXQsklefbnCrMR90OdlM_vtodX8ANASgsIUeYO1WaZNSotZMAEsavUuIcEoAYRgAey2-O5AqgHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbgMAdgTAtAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSGwDq26N9rG1B4rpOt8psePNehugh2h00BRhCURgBIBM%26sig%3DAOD64_0-DygexOwf1V5GPh10X4jde9VPpQ%26client%3Dca-pub-4666906793143151%26adurl%3D;dc_rfl=1,http%3A%2F%2Fwww.meineschiffsreise.com%2F$0;xdt=1;crlt=65tX7PEs1*;stc=1;sttr=207;prcl=s
142.250.74.102200 OK 28 kB URL HTTP/2 ad.doubleclick.net/ddm/adj/N4406.Google/B28855509.350541520;dc_ver=92.271;sz=728x90;u_sd=1;kw=%5Burl_encoded_publisher_data%5D;dc_adk=1094548375;ord=jfxw88;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%3Fsa%3Dl%26ai%3DCzO7SYRh8Y923DcKcYqX2jeABhZmzwG3cytq2pBDqn9yg1AEQASDDyYkrYMOEgICYGKABp7yWxQPIAQmoAwGqBN8BT9CZLNcLosxMQzGHyPh_nOIPSNWe7SIG3OnWni4NjK8UbAWFBeiWdJnjlf1Gu_lidAh4cYsvvRbkbRQmZkwEwICJHA4gfzJFw75pTNKlbwJoJQuZyQu6XheNYdNECYvrd0cYiIji_WL-iz_sNqGs2L98P_z1at85w-0e8U8W99LfE0iBak4LySr0bCSrJV4iMfHZUUUeP-h7osdtoZ9JGHAFfbG2brJIptGgU8FfbHQFiGxP6lXhNvHQJPLXQsklefbnCrMR90OdlM_vtodX8ANASgsIUeYO1WaZNSotZMAEsavUuIcEoAYRgAey2-O5AqgHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbgMAdgTAtAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSGwDq26N9rG1B4rpOt8psePNehugh2h00BRhCURgBIBM%26sig%3DAOD64_0-DygexOwf1V5GPh10X4jde9VPpQ%26client%3Dca-pub-4666906793143151%26adurl%3D;dc_rfl=1,http%3A%2F%2Fwww.meineschiffsreise.com%2F$0;xdt=1;crlt=65tX7PEs1*;stc=1;sttr=207;prcl=s
IP 142.250.74.102:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 23c734e34d1983b92dd457da1c295edd
3b9c2af014b1cb1d78e9712cccca928adac7cbd5
159246bee21a76dcb74c64ad68cc4929bed9a5f14d1353aef4e93e100410b106
GET /ddm/adj/N4406.Google/B28855509.350541520;dc_ver=92.271;sz=728x90;u_sd=1;kw=%5Burl_encoded_publisher_data%5D;dc_adk=1094548375;ord=jfxw88;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%3Fsa%3Dl%26ai%3DCzO7SYRh8Y923DcKcYqX2jeABhZmzwG3cytq2pBDqn9yg1AEQASDDyYkrYMOEgICYGKABp7yWxQPIAQmoAwGqBN8BT9CZLNcLosxMQzGHyPh_nOIPSNWe7SIG3OnWni4NjK8UbAWFBeiWdJnjlf1Gu_lidAh4cYsvvRbkbRQmZkwEwICJHA4gfzJFw75pTNKlbwJoJQuZyQu6XheNYdNECYvrd0cYiIji_WL-iz_sNqGs2L98P_z1at85w-0e8U8W99LfE0iBak4LySr0bCSrJV4iMfHZUUUeP-h7osdtoZ9JGHAFfbG2brJIptGgU8FfbHQFiGxP6lXhNvHQJPLXQsklefbnCrMR90OdlM_vtodX8ANASgsIUeYO1WaZNSotZMAEsavUuIcEoAYRgAey2-O5AqgHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB8yAqoCOgKAQIAKAZgLAcgLAYAMAbgMAdgTAtAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSGwDq26N9rG1B4rpOt8psePNehugh2h00BRhCURgBIBM%26sig%3DAOD64_0-DygexOwf1V5GPh10X4jde9VPpQ%26client%3Dca-pub-4666906793143151%26adurl%3D;dc_rfl=1,http%3A%2F%2Fwww.meineschiffsreise.com%2F$0;xdt=1;crlt=65tX7PEs1*;stc=1;sttr=207;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 22 Nov 2022 00:31:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 28097
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 00:46:30 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e7227f577a2e579eb58fa412f31e7cbc
7cc9223a58c5a55f4c1aef750d22ac67768c243d
0b885c51fc93059d906050d10029365da2fc7d2d248c243677b1913a7cbe0225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 14:07:32 GMT
expires: Thu, 16 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 469438
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
142.250.74.70200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 03:09:16 GMT
expires: Tue, 22 Nov 2022 03:09:16 GMT
cache-control: public, max-age=86400
age: 76934
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.meineschiffsreise.com/wp-content/uploads/2015/11/cruise_ship_94896498_xs-335x256.jpg
104.21.12.132200 OK 0 B URL HTTP/1.1 www.meineschiffsreise.com/wp-content/uploads/2015/11/cruise_ship_94896498_xs-335x256.jpg
IP 104.21.12.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2015/11/cruise_ship_94896498_xs-335x256.jpg HTTP/1.1
Host: www.meineschiffsreise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:28 GMT
Content-Type: image/jpeg
Content-Length: 24947
Connection: keep-alive
Cf-Bgj: imgq:200,h2pri
Cf-Polished: status=disabled
cache-control: public, max-age=2592000
etag: "6173-564c3f95-4d2d9ac4ed25314b;;;"
expires: Tue, 20 Dec 2022 02:31:27 GMT
last-modified: Wed, 18 Nov 2015 09:06:29 GMT
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 165601
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g1xRU8D6CYbeutn7JIBKLvFasFyfC6d3QOhFRA%2FKiC8Wjzdpg4ImeDz42Z4tV3ckvCfHBO9OEvCIDmS7MugusLzfoaLuymTeI6w2gwuM%2BebCGoj%2F2DQNS3J13Qxu1gEZPl0rPBEhX0NXS6WX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76dd8ffb7bfeb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.doubleverify.com/dvtp_src.js?ctx=13361095&cmp=28855509&sid=443002&plc=350541520&num=&adid=&advid=8650961&adsrv=1&btreg=541661487&btadsrv=doubleclick&crt=181637665&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src
23.33.119.19200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=13361095&cmp=28855509&sid=443002&plc=350541520&num=&adid=&advid=8650961&adsrv=1&btreg=541661487&btadsrv=doubleclick&crt=181637665&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src
IP 23.33.119.19:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (7951)
Hash 21c45b1efd48a8e0c6e1bed3c44b3c07
13c48ae7559ff188cb3e6e17468166b08f03743b
3fb872b615b02cd02d7322457a096a3020a9e56a67954ef8891a73614babfb19
GET /dvtp_src.js?ctx=13361095&cmp=28855509&sid=443002&plc=350541520&num=&adid=&advid=8650961&adsrv=1&btreg=541661487&btadsrv=doubleclick&crt=181637665&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 14:38:20 GMT
Accept-Ranges: bytes
ETag: "096fee7fff8d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3314
Date: Tue, 22 Nov 2022 00:31:31 GMT
Connection: keep-alive
cdn.doubleverify.com/dv-measurements3196.js
23.33.119.19200 OK 107 kB URL HTTP/1.1 cdn.doubleverify.com/dv-measurements3196.js
IP 23.33.119.19:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 107 kB (107052 bytes)
Hash 663d9e2ed21ad8feaf4eb97fb1c30482
c96a1e6fcbdaf3d0d3c11670493768b139fe7f9a
7881940039f33b1851aa25c415e369f64bce8df2cd8a90891a940f958e5e1350
GET /dv-measurements3196.js HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=946080900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 09:55:10 GMT
Accept-Ranges: bytes
ETag: "0532a59d8f8d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 107052
Date: Tue, 22 Nov 2022 00:31:31 GMT
Connection: keep-alive
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuokh2wTSg2_VQgNQQPfZZzMRZFabxxTUxy5fsOgi0tBO_pHfnZY5YLPvEmDlxZFog3y9tIj_7K3CufnY08MQmgrPm4Fn-jnJk3r23E4PFhiiZ6bwlSgDfar7m08XgPbWAKS6lQlmJ3amNhuC_TlYU9nSaXHA&sai=AMfl-YQOFdeLVZe4lwqZ7LxXCVXdEnr2g7aj3I4GcCp0z796NqZY3kXWKhIqi7k7JbpfPQuY6ZO3LXAQzlv8Mbqg9A&sig=Cg0ArKJSzEQHQgpY0t4tEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=107&cbvp=1&cstd=103&cisv=r20221110.73784&arae=0&ftch=1&adurl=
142.250.74.34200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuokh2wTSg2_VQgNQQPfZZzMRZFabxxTUxy5fsOgi0tBO_pHfnZY5YLPvEmDlxZFog3y9tIj_7K3CufnY08MQmgrPm4Fn-jnJk3r23E4PFhiiZ6bwlSgDfar7m08XgPbWAKS6lQlmJ3amNhuC_TlYU9nSaXHA&sai=AMfl-YQOFdeLVZe4lwqZ7LxXCVXdEnr2g7aj3I4GcCp0z796NqZY3kXWKhIqi7k7JbpfPQuY6ZO3LXAQzlv8Mbqg9A&sig=Cg0ArKJSzEQHQgpY0t4tEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=107&cbvp=1&cstd=103&cisv=r20221110.73784&arae=0&ftch=1&adurl=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsuokh2wTSg2_VQgNQQPfZZzMRZFabxxTUxy5fsOgi0tBO_pHfnZY5YLPvEmDlxZFog3y9tIj_7K3CufnY08MQmgrPm4Fn-jnJk3r23E4PFhiiZ6bwlSgDfar7m08XgPbWAKS6lQlmJ3amNhuC_TlYU9nSaXHA&sai=AMfl-YQOFdeLVZe4lwqZ7LxXCVXdEnr2g7aj3I4GcCp0z796NqZY3kXWKhIqi7k7JbpfPQuY6ZO3LXAQzlv8Mbqg9A&sig=Cg0ArKJSzEQHQgpY0t4tEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=107&cbvp=1&cstd=103&cisv=r20221110.73784&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 00:31:31 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 00:46:31 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 22 Nov 2022 00:31:31 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 29ccd77536d910af1e15da11a14fd196
305f2bf07c2e0000f0a85e4482e89719c6d938ea
7b21841ef261582b408be6465a1fa7cd87ce399e7be8a31252c28bced0c8fe76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1045
Cache-Control: max-age=164456
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 00:31:31 GMT
Etag: "637bf3b6-1d7"
Expires: Wed, 23 Nov 2022 22:12:27 GMT
Last-Modified: Mon, 21 Nov 2022 21:55:02 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuokh2wTSg2_VQgNQQPfZZzMRZFabxxTUxy5fsOgi0tBO_pHfnZY5YLPvEmDlxZFog3y9tIj_7K3CufnY08MQmgrPm4Fn-jnJk3r23E4PFhiiZ6bwlSgDfar7m08XgPbWAKS6lQlmJ3amNhuC_TlYU9nSaXHA&sai=AMfl-YQOFdeLVZe4lwqZ7LxXCVXdEnr2g7aj3I4GcCp0z796NqZY3kXWKhIqi7k7JbpfPQuY6ZO3LXAQzlv8Mbqg9A&sig=Cg0ArKJSzEQHQgpY0t4tEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=929&vt=11&dtpt=822&dett=3&cstd=103&cisv=r20221110.73784&arae=0&ftch=1&adurl=
142.250.74.34200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuokh2wTSg2_VQgNQQPfZZzMRZFabxxTUxy5fsOgi0tBO_pHfnZY5YLPvEmDlxZFog3y9tIj_7K3CufnY08MQmgrPm4Fn-jnJk3r23E4PFhiiZ6bwlSgDfar7m08XgPbWAKS6lQlmJ3amNhuC_TlYU9nSaXHA&sai=AMfl-YQOFdeLVZe4lwqZ7LxXCVXdEnr2g7aj3I4GcCp0z796NqZY3kXWKhIqi7k7JbpfPQuY6ZO3LXAQzlv8Mbqg9A&sig=Cg0ArKJSzEQHQgpY0t4tEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=929&vt=11&dtpt=822&dett=3&cstd=103&cisv=r20221110.73784&arae=0&ftch=1&adurl=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsuokh2wTSg2_VQgNQQPfZZzMRZFabxxTUxy5fsOgi0tBO_pHfnZY5YLPvEmDlxZFog3y9tIj_7K3CufnY08MQmgrPm4Fn-jnJk3r23E4PFhiiZ6bwlSgDfar7m08XgPbWAKS6lQlmJ3amNhuC_TlYU9nSaXHA&sai=AMfl-YQOFdeLVZe4lwqZ7LxXCVXdEnr2g7aj3I4GcCp0z796NqZY3kXWKhIqi7k7JbpfPQuY6ZO3LXAQzlv8Mbqg9A&sig=Cg0ArKJSzEQHQgpY0t4tEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=929&vt=11&dtpt=822&dett=3&cstd=103&cisv=r20221110.73784&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 00:31:31 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 22-Nov-2022 00:46:31 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 22 Nov 2022 00:31:31 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 4543ed7df0cc162979114f9b4812c758
23195de28c3a17239fd3eeb8ed6e8fa0bb5f9d97
d8beff8db68f496844e6128ad0125e1052da6e77746d2698df9d2835f63486d3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 00:31:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 21 Nov 2022 20:34:36 GMT
Expires: Tue, 22 Nov 2022 20:34:36 GMT
ETag: "23195de28c3a17239fd3eeb8ed6e8fa0bb5f9d97"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=575&ttfrms=29&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEATbpTauTauHHH%5D%3E6%3A%3F6D49%3A77DC6%3AD6%5D4%40%3ETau&srcurlD=0&aUrlD=0&ssl=https:&dfs=913&ddur=85&uid=1669077091598235&jsCallback=dvCallback_1669077091598167&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=0&winw=0&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3196&tgjsver=3196&lvvn=28&m1=13&refD=1&fcifrms=9&brh=1&sdf=2&dvp_epl=68&noc=16&nav_pltfrm=Linux%20x86_64&ctx=13361095&cmp=28855509&sid=443002&plc=350541520&crt=181637665&btreg=541661487&btadsrv=doubleclick&adsrv=1&advid=8650961&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=100930752286.84425&dvp_tukv=30291697876.10304&dvp_uuid=26412309.66192505&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1617992473660
34.149.12.213200 OK 838 B URL HTTP/1.1 tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=575&ttfrms=29&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEATbpTauTauHHH%5D%3E6%3A%3F6D49%3A77DC6%3AD6%5D4%40%3ETau&srcurlD=0&aUrlD=0&ssl=https:&dfs=913&ddur=85&uid=1669077091598235&jsCallback=dvCallback_1669077091598167&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=0&winw=0&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3196&tgjsver=3196&lvvn=28&m1=13&refD=1&fcifrms=9&brh=1&sdf=2&dvp_epl=68&noc=16&nav_pltfrm=Linux%20x86_64&ctx=13361095&cmp=28855509&sid=443002&plc=350541520&crt=181637665&btreg=541661487&btadsrv=doubleclick&adsrv=1&advid=8650961&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=100930752286.84425&dvp_tukv=30291697876.10304&dvp_uuid=26412309.66192505&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1617992473660
IP 34.149.12.213:0
File type ASCII text, with very long lines (1453), with no line terminators
Hash e6ceb83ef5531e0f4e46ab91aa7c1cec
7b4f5196d808a8813bf27c0eae915f6dbe4be073
f7c57b762ab8afd90ca8c224e6c13ee668cb190c11c4638ff818791b3fc0bbd0
GET /visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=575&ttfrms=29&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEATbpTauTauHHH%5D%3E6%3A%3F6D49%3A77DC6%3AD6%5D4%40%3ETau&srcurlD=0&aUrlD=0&ssl=https:&dfs=913&ddur=85&uid=1669077091598235&jsCallback=dvCallback_1669077091598167&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=0&winw=0&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3196&tgjsver=3196&lvvn=28&m1=13&refD=1&fcifrms=9&brh=1&sdf=2&dvp_epl=68&noc=16&nav_pltfrm=Linux%20x86_64&ctx=13361095&cmp=28855509&sid=443002&plc=350541520&crt=181637665&btreg=541661487&btadsrv=doubleclick&adsrv=1&advid=8650961&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=100930752286.84425&dvp_tukv=30291697876.10304&dvp_uuid=26412309.66192505&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1617992473660 HTTP/1.1
Host: tps.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:31 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0
Content-Encoding: br
Expires: 11/21/2022 00:31:31
Pragma: no-cache
Vary: Accept-Encoding
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=f5c5abb080e443e0971e0bfbd8b3f194&dup=&cbust=1669077091861425
23.33.119.19302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=f5c5abb080e443e0971e0bfbd8b3f194&dup=&cbust=1669077091861425
IP 23.33.119.19:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=f5c5abb080e443e0971e0bfbd8b3f194&dup=&cbust=1669077091861425 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=f5c5abb080e443e0971e0bfbd8b3f194&akipv6=&dup=
Date: Tue, 22 Nov 2022 00:31:31 GMT
Connection: keep-alive
ocsp.netsolssl.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3da202ef1af748b68a34ccab5e90ed4f
97e49283992d77b75be3b387b5e97289abf4a1fd
155e7bee3180ac596d27606d9d7610e52a0b40d6049daf446bbfc681840957c8
POST / HTTP/1.1
Host: ocsp.netsolssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 00:31:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 20 Nov 2022 12:10:19 GMT
Expires: Sun, 27 Nov 2022 12:10:18 GMT
Etag: "97e49283992d77b75be3b387b5e97289abf4a1fd"
Cache-Control: max-age=473325,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76dd90110fd0b509-OSL
tpsc-eu3.doubleverify.com/event.png?impid=f5c5abb080e443e0971e0bfbd8b3f194&akipv6=&dup=
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=f5c5abb080e443e0971e0bfbd8b3f194&akipv6=&dup=
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=f5c5abb080e443e0971e0bfbd8b3f194&akipv6=&dup= HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 22 Nov 2022 00:31:32 GMT
Connection: close
Cache-Control: max-age=0
Expires: 11/21/2022 00:31:32
Pragma: no-cache
ad.atdmt.com/i/img;adv=11217209655101;ec=11217209657759;adv.a=8650961;c.a=28855509;s.a=443002;p.a=350541520;a.a=541661487;cache=4015238418;
157.240.200.13200 OK 20 kB URL HTTP/2 ad.atdmt.com/i/img;adv=11217209655101;ec=11217209657759;adv.a=8650961;c.a=28855509;s.a=443002;p.a=350541520;a.a=541661487;cache=4015238418;
IP 157.240.200.13:0
Hash 285ff36cef7a2ee33164abe4e098ec23
025a8b2d4f4fb6274a3a87ba5ce1112d1d015061
51d14c3ccdf5d7135ec5ac3f577c203b29bc82022ac810a45c2f52e41ecef036
GET /i/img;adv=11217209655101;ec=11217209657759;adv.a=8650961;c.a=28855509;s.a=443002;p.a=350541520;a.a=541661487;cache=4015238418; HTTP/1.1
Host: ad.atdmt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
content-type: text/html; charset="utf-8"
x-fb-debug: QwMZZ7VSwB0BmZJqnEZudmaXWonxAPuF1+2l+m9AlPQdAtCeG+8MAAHN6FKiEFb0e/V4RGHoGg2+2Ru4VgGFvw==
date: Tue, 22 Nov 2022 00:31:31 GMT
X-Firefox-Spdy: h2
m9m6e2w5.stackpathcdn.com/v2/d1d50b0d/affiliatelinks.js
151.139.128.10200 OK 591 B URL HTTP/2 m9m6e2w5.stackpathcdn.com/v2/d1d50b0d/affiliatelinks.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (997), with no line terminators
Hash 99e5164c1e3f1deebc20ff6fd1e5eae7
0849660409b3bdc2f17437d9b824a5927dfa9860
a75937a3d06238235b960bb2654e59e9a24d34e57550c3d839584f60e36d18c8
GET /v2/d1d50b0d/affiliatelinks.js HTTP/1.1
Host: m9m6e2w5.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 00:31:32 GMT
content-encoding: gzip
content-length: 591
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 03 Oct 2022 22:06:49 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: 5a+InglLsxDZEinucCBaTMrdz6F2MUADzNQwRvZ0CPUySZ6nzOMUn9kzprPuGvh9akdBqEL/Fao=
x-amz-request-id: 6TBQ38CMENEJ3JQE
etag: "99e5164c1e3f1deebc20ff6fd1e5eae7"
cache-control: max-age=31536000, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1669077092.cds246.sk1.hn,1669077092.cds210.sk1.c
X-Firefox-Spdy: h2
m9m6e2w5.stackpathcdn.com/v2/d1d50b0d/anchorad.js
151.139.128.10200 OK 2.5 kB URL HTTP/2 m9m6e2w5.stackpathcdn.com/v2/d1d50b0d/anchorad.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (5464), with no line terminators
Hash 6b55e8bbf14ff4a3e432401e0755c778
12ff0dd878b2bae7965d1942484b8d60236a948a
f635a55d08b255dfe6fcbaa8bf6323947241dc2493d9a17d548aea15bf09be60
GET /v2/d1d50b0d/anchorad.js HTTP/1.1
Host: m9m6e2w5.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 00:31:32 GMT
content-encoding: gzip
content-length: 2514
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 03 Oct 2022 22:06:49 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: eX1rAL4tDy6GjcJsUdjPWdqmhby1fTtsEA4KZy9F4/hwPDRXK5FliBuxRBq462oaf8blGcl41fA=
x-amz-request-id: MF7WXG350QVP03JY
etag: "6b55e8bbf14ff4a3e432401e0755c778"
cache-control: max-age=31536000, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1669077092.cds246.sk1.hn,1669077092.cds201.sk1.c
X-Firefox-Spdy: h2
cdn.viglink.com/api/vglnk.js
54.230.111.60200 OK 29 kB URL HTTP/2 cdn.viglink.com/api/vglnk.js
IP 54.230.111.60:0
File type ASCII text, with very long lines (693)
Hash 072eaf64a771815874455704fca9301b
6c6226d00f14bb800cd4390b3cd42df941be43b1
bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e
GET /api/vglnk.js HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 28567
date: Wed, 16 Nov 2022 00:22:48 GMT
last-modified: Wed, 02 Dec 2020 18:57:12 GMT
etag: "072eaf64a771815874455704fca9301b"
cache-control: public, max-age=604800
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jW6wGpFy8I1H8_BXIPYMQN6ZZvI0o8hmQSIEzQMZCGOdcK-SXCwiZw==
age: 518925
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-69257709-13&cid=1658302377.1669077089&jid=1000062531&_u=YEBAAUAACAAAACAAI~&z=598750040
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-69257709-13&cid=1658302377.1669077089&jid=1000062531&_u=YEBAAUAACAAAACAAI~&z=598750040
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-69257709-13&cid=1658302377.1669077089&jid=1000062531&_u=YEBAAUAACAAAACAAI~&z=598750040 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 22 Nov 2022 00:31:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3cd61e54f3a34b7bc3c0578fc2b4b38f
913d3a65baf241dad19fdc1d109d6f595c9a4159
60d76769e377e45a5a351e2b405931121c4ba5e296e27355120de5942e6d6ea2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60D76769E377E45A5A351E2B405931121C4BA5E296E27355120DE5942E6D6EA2"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4623
Expires: Tue, 22 Nov 2022 01:48:35 GMT
Date: Tue, 22 Nov 2022 00:31:32 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 8e8f634866dbb5bcf87fc30df5163f2b
9b15ed693ac1af1d34eb410ad8728635db29bffc
c56ebbc1fbd2891194e6f0f3f2ddc4c2393538b11e9cc169acbab9ae0e48fc08
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 22 Nov 2022 00:31:32 GMT
Last-Modified: Mon, 21 Nov 2022 23:03:02 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JvSE998aDUmzYNc4PWIhGOWxAMvOgIJBTbWS9LTpYDEvEF3sOiMhzQ==
Age: 5310
api.viglink.com/api/ping
34.241.86.223200 OK 233 B IP 34.241.86.223:0
File type ASCII text, with no line terminators
Hash 5178b75ce9e5e5bcbd0eb145e20af999
5a959e3d585963996a300894a9f1a01dee1bbe16
17f73a3270fa816308e5ea74cdab3d02e10a051f1b2f913fe431035bb90c974e
POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 210
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.meineschiffsreise.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Tue, 22 Nov 2022 00:31:32 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 233
Connection: keep-alive
api.viglink.com/api/domains
34.241.86.223200 OK 41 B URL HTTP/1.1 api.viglink.com/api/domains
IP 34.241.86.223:0
File type ASCII text, with no line terminators
Hash 89836307ed03a8052a989aaf9364008e
8cdb7057cd75dfe09beea87a3dd6945d92b7984b
f6e9c8ff1e0e20fdcf016aed5f90943fac7ec302460d2e5fc5d1cbd4081fc580
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 267
Origin: http://www.meineschiffsreise.com
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.meineschiffsreise.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Tue, 22 Nov 2022 00:31:32 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 41
Connection: keep-alive
partner.shareaholic.com/partners.js?location=http%3A%2F%2Fwww.meineschiffsreise.com%2F&cl=de-DE&id_sync=0fdddc91-c7b9-429d-856c-a4ac14b76c17&pvs=1&site=d65ad5c942cc7af4925223dfc7517e24
107.20.147.136200 OK 0 B URL HTTP/2 partner.shareaholic.com/partners.js?location=http%3A%2F%2Fwww.meineschiffsreise.com%2F&cl=de-DE&id_sync=0fdddc91-c7b9-429d-856c-a4ac14b76c17&pvs=1&site=d65ad5c942cc7af4925223dfc7517e24
IP 107.20.147.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partners.js?location=http%3A%2F%2Fwww.meineschiffsreise.com%2F&cl=de-DE&id_sync=0fdddc91-c7b9-429d-856c-a4ac14b76c17&pvs=1&site=d65ad5c942cc7af4925223dfc7517e24 HTTP/1.1
Host: partner.shareaholic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 00:31:32 GMT
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding, User-Agent
content-length: 0
p3p: CP='OTI DSP COR DEVo ADMa OUR CONo IND COM INT ONL PUR STA OTC'
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05ba1792-f86a-406e-8e1c-f133f0fb8d73.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05ba1792-f86a-406e-8e1c-f133f0fb8d73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253593d1b3f90aa54d0748688fbb09ac
470c54ca28e1e5c56828c8c7f9849374061f501e
d8d331519f526b1117e4f67b0fb5fb46f400a63d1cb5757a3f22201ea70301ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05ba1792-f86a-406e-8e1c-f133f0fb8d73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9598
x-amzn-requestid: a713ce94-2441-4288-b6d8-cd6b638274b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IqVGgJoAMFz5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee41-5ed8e45c664203e137f8c92b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mDiJvNjoSqIbYd2Mx4Kv5muJ-g-hehPMyWAjnZuhidG7uEtjdTtTGA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:36:15 GMT
etag: "470c54ca28e1e5c56828c8c7f9849374061f501e"
content-type: image/jpeg
age: 6920
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Arvo%3A400%2C700%2C400italic%2C700italic%7CPT+Sans%3A400%2C700%2C400italic%2C700italic%7COpen+Sans%3A400%2C700&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Arvo%3A400%2C700%2C400italic%2C700italic%7CPT+Sans%3A400%2C700%2C400italic%2C700italic%7COpen+Sans%3A400%2C700&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Arvo%3A400%2C700%2C400italic%2C700italic%7CPT+Sans%3A400%2C700%2C400italic%2C700italic%7COpen+Sans%3A400%2C700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.meineschiffsreise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 00:31:28 GMT
date: Tue, 22 Nov 2022 00:31:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2