brambor.com/http:/brambor.com/das-unternehmen.html
301 Moved Permanently 269 B URL HTTP/1.1 brambor.com/http:/brambor.com/das-unternehmen.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a533488b6f2ba31454e878cb015ce0c
69d9ba4943feeefa028b224cb2f33762f9b5c6b6
e0c3c7bd4e227efaecd725890973393c273556d30b5e679f0139f142248da8d7
Analyzer Verdict Alert quad9 Sinkholed
GET /http:/brambor.com/das-unternehmen.html HTTP/1.1
Host: brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 10 Nov 2022 15:05:12 GMT
Server: Apache
Location: http://www.brambor.com/http:/brambor.com/das-unternehmen.html
Content-Length: 269
Keep-Alive: timeout=10, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12580
Expires: Thu, 10 Nov 2022 18:34:52 GMT
Date: Thu, 10 Nov 2022 15:05:12 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash a19a5555cc9ea92581b0cc504cb64345
01a86ce33d5eb33420ed76266360f32c62a96f31
9ebd48b4053bb4a7a27718670c44075b1f35d037be7fd16750fcbc3ffd68b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3170
Cache-Control: max-age=159525
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:12 GMT
Etag: "636cd2eb-1d7"
Expires: Sat, 12 Nov 2022 11:23:57 GMT
Last-Modified: Thu, 10 Nov 2022 10:31:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash a19a5555cc9ea92581b0cc504cb64345
01a86ce33d5eb33420ed76266360f32c62a96f31
9ebd48b4053bb4a7a27718670c44075b1f35d037be7fd16750fcbc3ffd68b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5338
Cache-Control: max-age=161693
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:12 GMT
Etag: "636cd2eb-1d7"
Expires: Sat, 12 Nov 2022 12:00:05 GMT
Last-Modified: Thu, 10 Nov 2022 10:31:07 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5071
Expires: Thu, 10 Nov 2022 16:29:43 GMT
Date: Thu, 10 Nov 2022 15:05:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cNoX97lSs8Ki4grvOLZhpzrNIGnR7zHrvQEk5tkaMg4qKgZf0K+DT16jBo4/MJH+75iW0T/T+a7lT+7XEd/UlQ==
x-amz-request-id: W3HQVXRMKHQ3KB6X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 10 Nov 2022 14:12:10 GMT
age: 3182
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 15:05:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.brambor.com/http:/brambor.com/das-unternehmen.html
301 Moved Permanently 494 B URL HTTP/1.1 www.brambor.com/http:/brambor.com/das-unternehmen.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8361a65eff36549b401fd8cca6f9405e
c434f7ae67e28993900090a4708afd7f4614e22a
86ea8143bb68d7c0d3fe29b27112343fa56c1dfdb1b9ea6ec275c1d486cb6c2f
Analyzer Verdict Alert quad9 Sinkholed
GET /http:/brambor.com/das-unternehmen.html HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 10 Nov 2022 15:05:12 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.brambor.com
Vary: X-W-SSL,User-Agent
Location: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
X-Host: blu33.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 494
Keep-Alive: timeout=10, max=54
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash 081ea13ba4390a4baab25cf57c2672f3
30cc9c329228e3d7bc6041f1aa553f06f8136eed
5a48c189581edd8ae4a4e58e2d54359bb75ba769828436394e4c256fe861814e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3099
Cache-Control: max-age=154399
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:13 GMT
Etag: "636cbf2d-1d7"
Expires: Sat, 12 Nov 2022 09:58:32 GMT
Last-Modified: Thu, 10 Nov 2022 09:06:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e19381a832460b337f32aaa631516d
c3532a437478ca4748aa231374ad90fd1f0f062e
95c4f88473cf66c85dc6c51e6590fb4fbb1e2d91cd7b4e8b62a8341202e30f6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95C4F88473CF66C85DC6C51E6590FB4FBB1E2D91CD7B4E8B62A8341202E30F6A"
Last-Modified: Wed, 09 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20182
Expires: Thu, 10 Nov 2022 20:41:35 GMT
Date: Thu, 10 Nov 2022 15:05:13 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zBg1g6T205oyETYkzX4eYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ILfEtXg+cdIl+OnCE06dqjPYFAU=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2d46cc53a1538ba2f6bb280da629e041
2ef714b4f668272bd5ab9c1a27a7e5441c975b53
178465070084aced449db36199915decc6517938c9261ca1a9a0bf5b7d95a94d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash abc1b6dead712b3905b9b0c0c8b63b56
e63b4c3f61604e313af85d9577866b98f75faa2a
fe7ff7563830e4fd0ab0af0eb929ca26e7a59d6ac147115d127a9585867d139a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/old/fancybox.css?1667503124
200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1667503124
IP
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1667503124 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 03 Nov 2022 18:50:13 GMT
etag: "63640d65-f47"
expires: Thu, 17 Nov 2022 19:21:43 GMT
cache-control: max-age=1209600
x-host: blu41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 589410
x-served-by: cache-sjc10030-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 36, 12
x-timer: S1668092714.935633,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Source_Sans_Pro/font.css?2
200 OK 404 B URL HTTP/2 cdn2.editmysite.com/fonts/Source_Sans_Pro/font.css?2
IP
Hash dcdc778275d0a4faa830ef279f0e2481
930fcab007b065780a71c0428eb78cf132d18943
8e92423d8a8ddc705b8e62d8e5f2867057b29cc3feebfb1505add954b9d098a1
GET /fonts/Source_Sans_Pro/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 02 Nov 2022 21:12:12 GMT
etag: "6362dd2c-df8"
expires: Tue, 22 Nov 2022 08:46:55 GMT
cache-control: max-age=1209600
x-host: blu41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 195499
x-served-by: cache-sjc10077-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 929, 4
x-timer: S1668092714.935580,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 404
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Lato/font.css?2
200 OK 365 B URL HTTP/2 cdn2.editmysite.com/fonts/Lato/font.css?2
IP
Hash f6aec8855300407d88c732db5b97c3cf
a6a4c862f86744cbf3f5477e830c9f80ab986eaf
6f00c364d20ef3193c0b008183501117dec28fe7a538ccebdc4492f5c9b281d3
GET /fonts/Lato/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 02 Nov 2022 21:12:11 GMT
etag: "6362dd2b-a0c"
expires: Thu, 17 Nov 2022 18:06:26 GMT
cache-control: max-age=1209600
x-host: grn122.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 593927
x-served-by: cache-sjc10040-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 582
x-timer: S1668092714.935750,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 365
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1667503124
200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1667503124
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1667503124 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 03 Nov 2022 18:50:07 GMT
etag: W/"63640d5f-347ac"
expires: Thu, 17 Nov 2022 19:21:36 GMT
cache-control: max-age=1209600
x-host: grn42.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 589417
x-served-by: cache-sjc10023-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 36, 52
x-timer: S1668092714.935592,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash abc1b6dead712b3905b9b0c0c8b63b56
e63b4c3f61604e313af85d9577866b98f75faa2a
fe7ff7563830e4fd0ab0af0eb929ca26e7a59d6ac147115d127a9585867d139a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/fonts/Open_Sans/font.css?2
200 OK 367 B URL HTTP/2 cdn2.editmysite.com/fonts/Open_Sans/font.css?2
IP
Hash 52e94ffb1c814650bab35433c3034ac7
b42d636ac9b71805f751612208ddb34e93a6538d
fe0f821828a4b146e9b0aba7f9a4956a0caa14a2ac72541ced5ee1d2ed376462
GET /fonts/Open_Sans/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 02 Nov 2022 21:12:12 GMT
etag: "6362dd2c-a2a"
expires: Mon, 21 Nov 2022 12:08:38 GMT
cache-control: max-age=1209600
x-host: grn76.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 269795
x-served-by: cache-sjc10081-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 962
x-timer: S1668092714.936622,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 367
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
200 OK 34 kB URL HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP
File type ASCII text, with very long lines (65483)
Hash 67a5a77f65f13559b3d723829f2e0108
5e861ec7c2993abffc3591d6132c47bc7cdc3e98
ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 01 Nov 2022 16:19:10 GMT
etag: "636146fe-16dc4"
expires: Tue, 15 Nov 2022 23:08:13 GMT
cache-control: max-age=1209600
x-host: blu148.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 748620
x-served-by: cache-sjc10038-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 80, 4230
x-timer: S1668092714.935737,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/site_membership.css?buildTime=1667503124
200 OK 11 kB URL HTTP/2 cdn2.editmysite.com/css/site_membership.css?buildTime=1667503124
IP
File type Unicode text, UTF-8 text, with very long lines (65460), with no line terminators
Hash 2c6df0e79227a7b5092ea87ec3e02e26
fbffc930ad527fdc1fa712bd4986d98ed29467bb
b948bc1c5c741e8d4ba78a9334e5be9d1d503492b4e6c2ea2c8dc23470104373
GET /css/site_membership.css?buildTime=1667503124 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 03 Nov 2022 18:50:07 GMT
etag: W/"63640d5f-12199"
expires: Thu, 17 Nov 2022 19:21:36 GMT
cache-control: max-age=1209600
x-host: blu59.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 589417
x-served-by: cache-sjc10024-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
x-timer: S1668092714.938388,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10785
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
34 kB URL ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
IP
File type gzip compressed data, max compression\012- data
Hash b582b2eca79a750948dbb3777aeaaadb
bf0ea1c8a7b4a55779cbb3df1f1d75cc19910e9f
04c7f19e1ae294cc641f6c497653b5c13c41b258559f5f05b790032ccca16c82
GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
www.googletagmanager.com/gtag/js?id=UA-1028233-11
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1028233-11
IP
File type ASCII text, with very long lines (1921)
Hash e1e34a491dc659390b879155209bbb65
024f075a207b5e39d8d283b1bb7a0e0ccfe104cb
b3928b615bbe05cb93075830705cad2041d590b307766fa92bae93be1a8986aa
GET /gtag/js?id=UA-1028233-11 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 15:05:13 GMT
expires: Thu, 10 Nov 2022 15:05:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43608
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-membership-site.js?buildTime=1667503124
200 OK 27 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-membership-site.js?buildTime=1667503124
IP
File type ASCII text, with very long lines (32007)
Hash bfef4e8e43513f50fec5f5089fecb596
d5d4682830e6b4e411808f3858d00327c4f3f289
5e25e899214cefcbab913246dcaef601475e142ac7d3ffc785f44b991f543fce
GET /js/site/main-membership-site.js?buildTime=1667503124 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 18:50:30 GMT
etag: "63640d76-19348"
expires: Thu, 17 Nov 2022 19:21:36 GMT
cache-control: max-age=1209600
x-host: blu41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 589417
x-served-by: cache-sjc10052-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 22, 1
x-timer: S1668092714.936601,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27201
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/de/stl.js?buildTime=1667503124&
200 OK 36 kB URL HTTP/2 cdn2.editmysite.com/js/lang/de/stl.js?buildTime=1667503124&
IP
File type Unicode text, UTF-8 text, with very long lines (64733)
Hash 48a005a2919684ab3adae4a10f1d76c6
24f22f37179d7eb2e54e8ecfb3cb01e365245922
e92fb0532278468b92b2390a00af7d59948701d13e953d19adca715bbefcaba0
GET /js/lang/de/stl.js?buildTime=1667503124& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 18:49:53 GMT
etag: "63640d51-2e9de"
expires: Thu, 17 Nov 2022 19:21:37 GMT
cache-control: max-age=1209600
x-host: grn41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 589416
x-served-by: cache-sjc10060-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 201, 1
x-timer: S1668092714.935679,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 36089
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1667503124
200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1667503124
IP
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1667503124 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 18:50:30 GMT
etag: "63640d76-74804"
expires: Thu, 17 Nov 2022 19:21:36 GMT
cache-control: max-age=1209600
x-host: grn86.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:13 GMT
age: 589417
x-served-by: cache-sjc10075-SJC, cache-bma1630-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 1
x-timer: S1668092714.935652,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.min.js
200 OK 9.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.min.js
IP
File type ASCII text, with very long lines (32076)
Hash 9aab617b393a75a8b3d5fb04fb4fa1bd
62f8ca86442a029316a3c21e81ff0d03a94f8bbd
d52d307aa49ae5383a4a675a62f2a41672502620b33bb00ad1b547a4412fc7fa
GET /ajax/libs/slick-carousel/1.6.0/slick.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:14 GMT
content-type: application/javascript; charset=utf-8
content-length: 9033
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-a3e1"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1260520
expires: Tue, 31 Oct 2023 15:05:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FAL9ZpMNUpOrLWOpV%2Bt7WSilbHBvZlYGuVKqZAgRL3y%2BARIJ5xn1rNGQ7kTJMSu0SPv0FT0dJzOLZG6NNhsDb4uv1G7O%2FuQgK0TT7v%2F9XNvcguKG2LHV%2BdviSC%2BAZTy3tmzgPlia"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 767faf66fde50b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/animate.css/3.5.2/animate.min.css
200 OK 3.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/3.5.2/animate.min.css
IP
File type ASCII text, with very long lines (52592)
Hash 9266f9107ebcfd5961b230047eb0bb94
082cca30d08963a57887613907e9c397889d3c10
d134df9ecd44a8aa61a0c0f309bc44664472f0555bdb7948021f2ed3b329368c
GET /ajax/libs/animate.css/3.5.2/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:14 GMT
content-type: text/css; charset=utf-8
content-length: 3279
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d2a-ce35"
last-modified: Mon, 04 May 2020 16:04:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4478883
expires: Tue, 31 Oct 2023 15:05:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=38XNkfQMa5Qz18%2FGYLJrFGHtAhN7faS2OR18xbI9zr1rH279ZuVqbcTNLW8h5bqHAECdlCm%2BE2mwbMaNjs5E%2FPDXz7jaS3qGf%2B1Bw0mMPdIkKfQ1COdXlJzlph%2BOuTrJx0%2BfWjbT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 767faf671df90b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 0925bb8c2efc1b766c7d2fff8570f3d2
844c2bf87923b7193839dd6afe9b5f9bd7a562cf
5e7cfe49ea365a9a7083a108f1bc94fdbc9b3ec4b31c9e4a137401c6f56acc4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3824
Cache-Control: max-age=146494
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Etag: "636c9d78-118"
Expires: Sat, 12 Nov 2022 07:46:48 GMT
Last-Modified: Thu, 10 Nov 2022 06:43:04 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash d077cd24b15efb2762287fc616bb7cd2
c4ecf2280d03b50dfc1527377136607ccb543fd8
2520aac9a4b84d84b652ad52801ed88a509dd5ec2bf049d86a6a5ad652b06424
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5922
Cache-Control: max-age=149692
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Etag: "636ca1c4-117"
Expires: Sat, 12 Nov 2022 08:40:06 GMT
Last-Modified: Thu, 10 Nov 2022 07:01:24 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash 3a64f3355eb7215a8c385b272c6beabf
9655ba00a16cb2946f76bea70f717521ddeb8c5a
f2e0a05790fe581d51a7e7dcc6f4a0c318f6d20ef489d2793ff5647aafdb5a72
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "05FF025D6DDD0C8A6D64B81255C76F37E48D1FC8"
Expires: Fri, 11 Nov 2022 01:00:00 GMT
Last-Modified: Thu, 10 Nov 2022 13:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1884
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 767faf673e041c12-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash 0925bb8c2efc1b766c7d2fff8570f3d2
844c2bf87923b7193839dd6afe9b5f9bd7a562cf
5e7cfe49ea365a9a7083a108f1bc94fdbc9b3ec4b31c9e4a137401c6f56acc4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3824
Cache-Control: max-age=146494
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Etag: "636c9d78-118"
Expires: Sat, 12 Nov 2022 07:46:48 GMT
Last-Modified: Thu, 10 Nov 2022 06:43:04 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
www.googletagmanager.com/gtm.js?id=GTM-T5QKWFL
200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T5QKWFL
IP
File type ASCII text, with very long lines (1921)
Hash 701da649a7bb5affedce754960b7b2d5
559b653f058f692cda39cc943d187123ab4f49c3
93dc93d25fa164de6ef0a8d8317d80c89574791a985aa491fe53961bd13b80db
GET /gtm.js?id=GTM-T5QKWFL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 15:05:14 GMT
expires: Thu, 10 Nov 2022 15:05:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37672
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash abc1b6dead712b3905b9b0c0c8b63b56
e63b4c3f61604e313af85d9577866b98f75faa2a
fe7ff7563830e4fd0ab0af0eb929ca26e7a59d6ac147115d127a9585867d139a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2d46cc53a1538ba2f6bb280da629e041
2ef714b4f668272bd5ab9c1a27a7e5441c975b53
178465070084aced449db36199915decc6517938c9261ca1a9a0bf5b7d95a94d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash d077cd24b15efb2762287fc616bb7cd2
c4ecf2280d03b50dfc1527377136607ccb543fd8
2520aac9a4b84d84b652ad52801ed88a509dd5ec2bf049d86a6a5ad652b06424
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5889
Cache-Control: max-age=149659
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Etag: "636ca1c4-117"
Expires: Sat, 12 Nov 2022 08:39:33 GMT
Last-Modified: Thu, 10 Nov 2022 07:01:24 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 54b0e1590cb8c00c49efbdd0465d213c
8f1f5c03c6fbc0eedd440f40f9116040f33cef35
06c1ef0266a0d33ff0dd72f5649b739792dc2535a41974456b79719759201688
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102042
Date: Thu, 10 Nov 2022 15:05:14 GMT
Etag: "636bf084-1d7"
Expires: Fri, 11 Nov 2022 19:25:56 GMT
Last-Modified: Wed, 09 Nov 2022 18:25:08 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: w2BzBBbXPA0ORXTJgeB4WgZOPyy3r_Ixmq5Rje3cFmRwTTLvuTts6w==
Age: 3648
ocsp.digicert.com/
200 OK 280 B IP
Hash 0925bb8c2efc1b766c7d2fff8570f3d2
844c2bf87923b7193839dd6afe9b5f9bd7a562cf
5e7cfe49ea365a9a7083a108f1bc94fdbc9b3ec4b31c9e4a137401c6f56acc4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 956
Cache-Control: max-age=143626
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:14 GMT
Etag: "636c9d78-118"
Expires: Sat, 12 Nov 2022 06:59:00 GMT
Last-Modified: Thu, 10 Nov 2022 06:43:04 GMT
Server: ECS (amb/6BBF)
X-Cache: HIT
Content-Length: 280
www.wuildit.com/weebly/appsettings/chickislider/html/fixstyles.css
200 OK 1.7 kB URL HTTP/2 www.wuildit.com/weebly/appsettings/chickislider/html/fixstyles.css
IP
Hash 4c55b86d6bb6b3d26b8c9e68a58aa6c3
607a2f4683d3ebffdb3bf23c60b0090055dc4d8a
1b68996e672449b8f88e0b8fd0332c9db644b20dbc9a129dc73d3ced7aeb49e1
GET /weebly/appsettings/chickislider/html/fixstyles.css HTTP/1.1
Host: www.wuildit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:14 GMT
content-type: text/css
last-modified: Wed, 16 Jun 2021 00:49:33 GMT
etag: W/"1455-5c4d776c3d872-gzip"
vary: Accept-Encoding
cache-control: max-age=3600
cf-cache-status: HIT
age: 1758
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RwLSx6QG7wlmedCXBGSlV80VOz9XXXFPxzUFB3p1ONMp6HaKwcj2m3ljbiGCbC8UNcaBFdJU7OBHxKs4xF2cSZ6YXIwcbahCPnBt0lrhTx%2F1KiHkIIra%2BhSc%2FmYerc6nR3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 767faf6789fab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.brambor.com/files/templateArtifacts.js?1667830565
200 OK 3.2 kB URL HTTP/1.1 www.brambor.com/files/templateArtifacts.js?1667830565
IP
File type HTML document, ASCII text, with very long lines (2943)
Hash 42d7de4855289978ab87af4c84606fab
ea27ac7eee05428080b9fad15ebe0db1024b9b58
a2a58642519c93a10f937d8a84549395361d8db1239be8bbd67532c57fe28aa9
Analyzer Verdict Alert quad9 Sinkholed
GET /files/templateArtifacts.js?1667830565 HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu61.sf2p.intern.weebly.net
Content-Encoding: gzip
www.brambor.com/files/main_style.css?1667830565
200 OK 4.6 kB URL HTTP/1.1 www.brambor.com/files/main_style.css?1667830565
IP
File type ASCII text, with very long lines (411)
Hash 33496a9e413e37e253e93a6c0746f5ca
4108270bbf47b36b46ebbfd390a05f51d5411619
60fbc332ae08db77e4139ce8e0bcaed2250b06277fcbe06b285ad43cd9f8a324
Analyzer Verdict Alert quad9 Sinkholed
GET /files/main_style.css?1667830565 HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn32.sf2p.intern.weebly.net
Content-Encoding: gzip
www.brambor.com/http:/brambor.com/das-unternehmen.html
404 Not Found 711 kB URL HTTP/1.1 www.brambor.com/http:/brambor.com/das-unternehmen.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4527), with CRLF, LF line terminators
Size 711 kB (711047 bytes)
Hash 50d1db592df311d815ebc4b060984c9b
036e276fcd0ed6124cc1bb4062dbe115b31b3a4d
1981885ef3f87d3674489ebd82d8fc85730f2222c6c142ae33a08baa5b7dace4
Analyzer Verdict Alert quad9 Sinkholed
GET /http:/brambor.com/das-unternehmen.html HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Thu, 10 Nov 2022 15:05:13 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.brambor.com
language=en; expires=Thu, 24-Nov-2022 15:05:13 GMT; Max-Age=1209600; path=/
Cache-Control: private
X-Host: blu22.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Keep-Alive: timeout=10, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/fonts/Lato/light.woff2
200 OK 23 kB URL HTTP/2 cdn2.editmysite.com/fonts/Lato/light.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /fonts/Lato/light.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Wed, 02 Nov 2022 21:12:11 GMT
etag: "6362dd2b-5ac4"
expires: Thu, 17 Nov 2022 10:00:42 GMT
cache-control: max-age=1209600
x-host: blu118.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:14 GMT
age: 623072
x-served-by: cache-sjc10060-SJC, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 140, 37
x-timer: S1668092715.743316,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23236
X-Firefox-Spdy: h2
ga-fireworks-effect.herokuapp.com/js/ga-fireworks.js
200 OK 88 kB URL HTTP/1.1 ga-fireworks-effect.herokuapp.com/js/ga-fireworks.js
IP
File type ASCII text, with very long lines (65451)
Hash a03c61943d9c6dcc06cf6116bc73d754
66d570a771bff22ba45fe59eaffc20525d966121
ace1df52e285d3cddd2e2ae54e24054a8e4adae8c1a991ef8e54454fd02c9413
GET /js/ga-fireworks.js HTTP/1.1
Host: ga-fireworks-effect.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 30 Jun 2020 20:15:26 GMT
Etag: W/"157ca-17306deb730"
Content-Type: application/javascript; charset=UTF-8
Content-Length: 88010
Date: Thu, 10 Nov 2022 15:05:14 GMT
Via: 1.1 vegur
www.getgobot.com/app/connect/weebly/596786834311425/2428420/gobot.js
200 OK 362 B URL HTTP/1.1 www.getgobot.com/app/connect/weebly/596786834311425/2428420/gobot.js
IP
Hash f918ab24261e8ba81d90275efdefbde5
0817fdcf6619bb87961be1f9b23b5e4b852822b9
06651e734e35ce2389f9a76795888a1fcdfc6310565324eaa9157e1254a1d582
GET /app/connect/weebly/596786834311425/2428420/gobot.js HTTP/1.1
Host: www.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 362
Connection: keep-alive
Server: Cowboy
Cache-Control: max-age=7776000, immutable
Etag: W/"16a-CBf9z2YZu4eWG+H5sjteS4UoIrk"
Vary: Accept-Encoding
Date: Thu, 10 Nov 2022 15:05:14 GMT
Via: 1.1 vegur, 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wKJA7INQVKT7s9PA6VahcnSp00CGvgaeuoogqSi7w4HqPwPMH0OzEQ==
www.getgobot.com/app/v1/gobot-client.js?v=1.5.17
200 OK 14 kB URL HTTP/1.1 www.getgobot.com/app/v1/gobot-client.js?v=1.5.17
IP
Hash 11923b00ec4f08d9f51c264086f013e2
a5a155710a49923baf88f29b926ea18d160d8770
37e4dd308b8a392069e2e5b09d4588077695cbb86d763fdedb1adb25f02dd2fb
GET /app/v1/gobot-client.js?v=1.5.17 HTTP/1.1
Host: www.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: Cowboy
Accept-Ranges: bytes
Cache-Control: public, max-age=604800
Last-Modified: Wed, 20 Apr 2022 05:20:18 GMT
ETag: W/"e972-180456a0650"
Content-Encoding: gzip
Date: Sat, 05 Nov 2022 01:22:35 GMT
Via: 1.1 vegur, 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -BtAek9p43mY8Z698LF3LRB1Wz9Irsk5EmRj6uzSJ08eWgTfCkvVSw==
Age: 481359
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7896
Expires: Thu, 10 Nov 2022 17:16:50 GMT
Date: Thu, 10 Nov 2022 15:05:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7896
Expires: Thu, 10 Nov 2022 17:16:50 GMT
Date: Thu, 10 Nov 2022 15:05:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c2db9097ad95b726c65a3130483daf7
2b6dbe326a49e03a0f8d1a5d15930fd7870f6f79
1da5e63e7a3e837c758bb365e5e99e6dfb6c54e9b2fe038c3eb1334a86dc4d74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7723
x-amzn-requestid: 1e07419e-8cd6-43d6-b0bb-61183502ee40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpGHFKIAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca0-751c8b152ea5c28f5a78bf46;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: BXdwO74rhbF9575IFRz-DNbcEFNiX7JiCtsvghmUE8zOju0eyuFjow==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:45:34 GMT
age: 62380
etag: "2b6dbe326a49e03a0f8d1a5d15930fd7870f6f79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7896
Expires: Thu, 10 Nov 2022 17:16:50 GMT
Date: Thu, 10 Nov 2022 15:05:14 GMT
Connection: keep-alive
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 16 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (30837)
Hash 1c619de6ee262c368d0986fd7352b0bf
426513afc3ce9aa98b18fed8674588563e8a08cc
a97878358f682eeaf13e5324ecb94d8047221be9ff05afac617579f3fba63bbd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 17403521
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 767faf678b30fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc04eddc597d6b10db5d59c53f20aec
dddc0da13526d24aaea990cc1d68d9212612da43
a7e2d1fd141c4383de3411be95b8875c9d969d5f001020793a2b4d939aaa780b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12268
x-amzn-requestid: cd9ea4f7-9a75-47b4-a0ad-817c821a592e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpZHbBIAMFfUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca2-69a98f453929cc817bead2c7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xq1vIovXXR0pPaaHjKWeLcZszoEkISrYvqKvshtQ9dFTf6CUwxmIWA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:45:34 GMT
age: 62380
etag: "dddc0da13526d24aaea990cc1d68d9212612da43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg
200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 178b1b5efcd0c5997d0e5b820193abe2
460630852800c0304295c78df268bfec64416f98
9822d2ef4199dcc01f81a8e6d3a91d9545466c17abfca4eb30e0a49ca8301da6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3445
x-amzn-requestid: 92b5ba7a-e45a-495c-89ae-9738fd5644bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWloyHMpoAMF-Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c9e-5508b96c349a34537809ef0e;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3-XU3AO60wbMDZcPshBPHvxEFAQHVs7-dlg52BfbxkSlDAEx9kaeeg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:58:41 GMT
age: 61593
etag: "460630852800c0304295c78df268bfec64416f98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash feb275cc5fa7b13e70522cb76f001bbc
80ca9cf6cbbc73a884c3a839ace9a7aa191a8504
a5680637b55669355967b87fd4be4881a3e4dea746b7c420acf4dcb46b8a28de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8242
x-amzn-requestid: 1ab9c180-7e6b-4eae-a6cf-6a45c96fdc4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkE_2oAMFk2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-0089846803d11bb649874507;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kZPJ95WwFXhxoBwZIeTN2iRl3-XFPmooKSeFtLu3wIm4b8nabFY2mA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:29 GMT
etag: "80ca9cf6cbbc73a884c3a839ace9a7aa191a8504"
content-type: image/jpeg
age: 62325
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg
200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aeb648ba8ff2bcbb363004559ced5b87
25c8230dc14cfc31d8660b8ea8a72f3ac881ea7e
3eb0d98cc52b574f7496061ab00d6276c7a83ca1be7b7974a932a7827a9dd4b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3319
x-amzn-requestid: 4720d817-e198-4cae-b14c-b78972e7dd05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkGdMIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-6c3edabf3f07e37951156122;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: WTHCOj9RuWRZz5CyXFFKfjGFuZyQY69EvrTlTHqs9WAImuFCLp4ZzQ==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
etag: "25c8230dc14cfc31d8660b8ea8a72f3ac881ea7e"
content-type: image/jpeg
age: 62326
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.brambor.com/files/theme/scroll-fixed-nav.js?1573116942
200 OK 999 B URL HTTP/1.1 www.brambor.com/files/theme/scroll-fixed-nav.js?1573116942
IP
File type ASCII text, with CRLF line terminators
Hash 3156d9bd1354957e4b6a73f4b8d56cd3
5e70a68188d48355ef912136df37b7e391ac883c
695c583cdb7ab4b74778d9d92c279e76451c6cca7fa2d7da3c5f60bcedf3e41d
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/scroll-fixed-nav.js?1573116942 HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: application/javascript
Content-Length: 999
Connection: keep-alive
Last-Modified: Sun, 20 Jan 2019 01:35:54 GMT
x-rgw-object-type: Normal
ETag: "3156d9bd1354957e4b6a73f4b8d56cd3"
x-amz-request-id: tx00000000000000017e501-00625a4c4a-4d62951-las
X-Storage-Bucket: z695c
X-Storage-Object: 695c583cdb7ab4b74778d9d92c279e76451c6cca7fa2d7da3c5f60bcedf3e41d
X-Host: blu65.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.brambor.com/uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-kostenrechner_orig.jpg
200 OK 11 kB URL HTTP/1.1 www.brambor.com/uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-kostenrechner_orig.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 212x141, components 3\012- data
Hash 0d5dd69eee90a929628e9397257aac7d
adebde721911d06941ef3ef7ec1b26a454cf33c5
b9c95951c31b7464f6c9e0548bdadd61b1c395c0975fc3e466ce6f333caaa863
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-kostenrechner_orig.jpg HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: image/jpeg
Content-Length: 11002
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2020 10:13:52 GMT
x-rgw-object-type: Normal
ETag: "0d5dd69eee90a929628e9397257aac7d"
x-amz-request-id: tx00000000000000f3ebb6a-006338a4f1-c695612-sfo1
X-Storage-Bucket: zb9c9
X-Storage-Object: b9c95951c31b7464f6c9e0548bdadd61b1c395c0975fc3e466ce6f333caaa863
X-Host: grn66.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=UA-1028233-2
200 OK 9.1 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1028233-2
IP
Hash 7255af2a687215459499a79cd38c58ea
c507fa67687d0380892499cb73da637639bc3bf7
b6b0e4c9a3e74ad69d6ad58abe1c47371ebada1aa20db0e99d2efb9c079b1d4c
GET /gtag/js?id=UA-1028233-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 15:05:13 GMT
expires: Thu, 10 Nov 2022 15:05:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43546
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brambor.com/uploads/2/4/2/8/2428420/9808320.png
200 OK 6.7 kB URL HTTP/1.1 www.brambor.com/uploads/2/4/2/8/2428420/9808320.png
IP
File type PNG image data, 147 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 009d97ff29957d504f81e3136bcd47e1
955727801e47984a8cb812792865aa3b218887c4
c62461cd4cc50a3f6b59373e6eec4867f6becaaff0b6c80c117939fd3b566cee
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/2/4/2/8/2428420/9808320.png HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: image/png
Content-Length: 6686
Connection: keep-alive
Last-Modified: Thu, 06 Feb 2020 11:20:10 GMT
x-rgw-object-type: Normal
ETag: "009d97ff29957d504f81e3136bcd47e1"
x-amz-request-id: tx000000000000001ecd5f0-006284b214-b9fbc63-sfo1
X-Storage-Bucket: zc624
X-Storage-Object: c62461cd4cc50a3f6b59373e6eec4867f6becaaff0b6c80c117939fd3b566cee
X-Host: blu47.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.wuildit.com/weebly/appsettings/chickislider/html/fixscript.js
200 OK 24 kB URL HTTP/2 www.wuildit.com/weebly/appsettings/chickislider/html/fixscript.js
IP
File type ASCII text, with very long lines (1799)
Hash 5bb99b662d9e9e4dc419921bf571539b
3e84a6586ee0fed62fd88623b552bd76a60d21c0
2dac85db8b9b6eafe7065f9d5b5c32776af79d3d1c7afa06f0ebf6ed05fdda1b
GET /weebly/appsettings/chickislider/html/fixscript.js HTTP/1.1
Host: www.wuildit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:14 GMT
content-type: application/javascript
last-modified: Wed, 16 Jun 2021 00:49:32 GMT
etag: W/"b78-5c4d776c05dd2-gzip"
vary: Accept-Encoding
cache-control: max-age=3600
cf-cache-status: HIT
age: 1758
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jbm8ilRjB6uXUFMsnXKIeMQiJUF27jSrW0CZ8LqabnjLc0wrdyh1oBdUoYhYbegOdxerIjyulJy5vxDUdO4gfzKDBj3ac6z7ZUCZPaDpoFoicOMRgUo8FtpaQnLxrHINntI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 767faf678a08b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Source_Sans_Pro/bold.woff2
200 OK 13 kB URL HTTP/2 cdn2.editmysite.com/fonts/Source_Sans_Pro/bold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /fonts/Source_Sans_Pro/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Wed, 02 Nov 2022 21:12:12 GMT
etag: "6362dd2c-327c"
expires: Thu, 17 Nov 2022 12:09:12 GMT
cache-control: max-age=1209600
x-host: grn89.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:14 GMT
age: 615363
x-served-by: cache-sjc10064-SJC, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 3771, 1
x-timer: S1668092715.998083,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12924
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Lato/regular.woff2
200 OK 24 kB URL HTTP/2 cdn2.editmysite.com/fonts/Lato/regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /fonts/Lato/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Wed, 02 Nov 2022 21:12:11 GMT
etag: "6362dd2b-5c1c"
expires: Tue, 22 Nov 2022 11:35:42 GMT
cache-control: max-age=1209600
x-host: grn46.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:15 GMT
age: 185372
x-served-by: cache-sjc10034-SJC, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 11, 118
x-timer: S1668092715.002476,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23580
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Source_Sans_Pro/ultralight.woff2
200 OK 13 kB URL HTTP/2 cdn2.editmysite.com/fonts/Source_Sans_Pro/ultralight.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12680, version 1.0\012- data
Hash 7996b24caa1cfc66f4f15a949e974826
2523f1ff45314e977722ef1e477e34d0b2390a07
570fccbb23e47f3f48767d3b6199198988328bac118fd6933def8f5fb4478472
GET /fonts/Source_Sans_Pro/ultralight.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 28 Oct 2022 22:25:12 GMT
etag: "635c56c8-3188"
expires: Tue, 15 Nov 2022 12:30:08 GMT
cache-control: max-age=1209600
x-host: grn10.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 10 Nov 2022 15:05:15 GMT
age: 786907
x-served-by: cache-sjc10055-SJC, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
x-timer: S1668092715.001954,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12680
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/4.6.2/fonts/fontawesome-webfont.woff2?v=4.6.2
200 OK 72 kB URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/4.6.2/fonts/fontawesome-webfont.woff2?v=4.6.2
IP
File type Web Open Font Format (Version 2), TrueType, length 71760, version 4.393\012- data
Hash a1a450ea331a3fc89e867ecad963b6b2
ee59197f63a2c4c7b7f2ae135a745202235de8d4
2932abf996373e87fbf2e950876b1962f1b57db954a1643ea68831d9fbb74da4
GET /font-awesome/4.6.2/fonts/fontawesome-webfont.woff2?v=4.6.2 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:15 GMT
content-type: font/woff2
content-length: 71760
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "a1a450ea331a3fc89e867ecad963b6b2"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 06/26/2022 11:37:18
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2478a6d57309ed319f44cce9671804c5
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 767faf6ce9e9b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.brambor.com/uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-pflegezeitung-2_orig.jpg
200 OK 12 kB URL HTTP/1.1 www.brambor.com/uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-pflegezeitung-2_orig.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x160, components 3\012- data
Hash f2f3def691b973128bc04052d65e0617
bf905d3b72cea4e540ce095f4e67c9776478465a
093d14391a6b61c798cebc4a4ca73bd377de2aeb4ae8015e2bc3129e1cc640ac
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-pflegezeitung-2_orig.jpg HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:15 GMT
Content-Type: image/jpeg
Content-Length: 11811
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2020 10:18:07 GMT
x-rgw-object-type: Normal
ETag: "f2f3def691b973128bc04052d65e0617"
x-amz-request-id: tx00000000000000f664ae5-00633941aa-c696eea-sfo1
X-Storage-Bucket: z093d
X-Storage-Object: 093d14391a6b61c798cebc4a4ca73bd377de2aeb4ae8015e2bc3129e1cc640ac
X-Host: blu47.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.brambor.com/files/theme/contentbg.jpg?1667830565
200 OK 306 B URL HTTP/1.1 www.brambor.com/files/theme/contentbg.jpg?1667830565
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 10x10, components 3\012- data
Hash a72a18d56ecdec68180dd90d94aedd70
2d2e785172a3013191555e5bf119a51a08f7a319
b95e0c5f3b64416798f42f363bd2a730e177f839bc4eeece7309380a9e4b137d
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/contentbg.jpg?1667830565 HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/files/main_style.css?1667830565
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:15 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 306
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 10:46:35 GMT
x-rgw-object-type: Normal
ETag: "a72a18d56ecdec68180dd90d94aedd70"
x-amz-request-id: tx00000000000000278a095-0062851b21-b9fbc63-sfo1
X-Storage-Bucket: zb95e
X-Storage-Object: b95e0c5f3b64416798f42f363bd2a730e177f839bc4eeece7309380a9e4b137d
X-Host: blu76.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.brambor.com/uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-stellenanzeigen-team_orig.png
200 OK 41 kB URL HTTP/1.1 www.brambor.com/uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-stellenanzeigen-team_orig.png
IP
File type PNG image data, 221 x 146, 8-bit/color RGBA, non-interlaced\012- data
Hash ed2d2cb387b2ac7c3f1ac5dc3f55aa8e
b5a97d0c32f280be9cffb2781cdfabd2405a0343
b83a1e8da7bae84c2969f32986fc41b61c20bd2144e4433c25d9afeb83012667
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/2/4/2/8/2428420/brambor-pflegedienstleistungen-stellenanzeigen-team_orig.png HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: image/png
Content-Length: 40635
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2020 09:54:11 GMT
x-rgw-object-type: Normal
ETag: "ed2d2cb387b2ac7c3f1ac5dc3f55aa8e"
x-amz-request-id: tx000000000000001f2eb21-006284b9c3-b9fbc64-sfo1
X-Storage-Bucket: zb83a
X-Storage-Object: b83a1e8da7bae84c2969f32986fc41b61c20bd2144e4433c25d9afeb83012667
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.brambor.com/files/theme/navbg.jpg?1667830565
200 OK 4.3 kB URL HTTP/1.1 www.brambor.com/files/theme/navbg.jpg?1667830565
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 37x39, components 3\012- data
Hash dcbdc838db20205301748e3ad457531b
d511647d42ae291877b5abae6b7136065144faac
675559c9fc5a9356832fc7a2afdfd3aa774286cf5781ebf61af65b1c33e9251a
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/navbg.jpg?1667830565 HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/files/main_style.css?1667830565
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:15 GMT
Content-Type: image/jpeg
Content-Length: 4309
Connection: keep-alive
Last-Modified: Thu, 06 Feb 2020 11:05:38 GMT
x-rgw-object-type: Normal
ETag: "dcbdc838db20205301748e3ad457531b"
x-amz-request-id: tx000000000000002d76c91-00628557bd-b9fbc63-sfo1
X-Storage-Bucket: z6755
X-Storage-Object: 675559c9fc5a9356832fc7a2afdfd3aa774286cf5781ebf61af65b1c33e9251a
X-Host: blu29.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.brambor.com/files/theme/footerbg.jpg?1667830565
200 OK 315 B URL HTTP/1.1 www.brambor.com/files/theme/footerbg.jpg?1667830565
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 26x27, components 3\012- data
Hash 41a34610aa19cd5f10986a6a474d4e43
c4a268d3ec648b65b63aec2b89e271e89b165c4a
d1a8ee29cac8231c41b7394802936dc8658dc5b5098bf9c7860bf515ba594f34
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/footerbg.jpg?1667830565 HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/files/main_style.css?1667830565
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:15 GMT
Content-Type: image/jpeg; charset=binary
Content-Length: 315
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 10:46:36 GMT
x-rgw-object-type: Normal
ETag: "41a34610aa19cd5f10986a6a474d4e43"
x-amz-request-id: tx000000000000024daf006-0062bbabc1-b9fbc7f-sfo1
X-Storage-Bucket: zd1a8
X-Storage-Object: d1a8ee29cac8231c41b7394802936dc8658dc5b5098bf9c7860bf515ba594f34
X-Host: blu143.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.brambor.com/uploads/2/4/2/8/2428420/1329456509.jpg
200 OK 109 kB URL HTTP/1.1 www.brambor.com/uploads/2/4/2/8/2428420/1329456509.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 572x377, components 3\012- data
Size 109 kB (108682 bytes)
Hash 2417c72407ea6169aa94f3da747c66ab
5f6c717eee7c626d7aa9476730b58e98a109285a
7f936bc12aa14ab5aeb9739b92f628b613ac60e478507683e6c8f41461745245
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/2/4/2/8/2428420/1329456509.jpg HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 15:05:14 GMT
Content-Type: image/jpeg
Content-Length: 108682
Connection: keep-alive
Last-Modified: Thu, 06 Feb 2020 11:06:57 GMT
x-rgw-object-type: Normal
ETag: "2417c72407ea6169aa94f3da747c66ab"
x-amz-request-id: tx00000000000002ec46dc9-00636d132a-c695612-sfo1
X-Storage-Bucket: z7f93
X-Storage-Object: 7f936bc12aa14ab5aeb9739b92f628b613ac60e478507683e6c8f41461745245
X-Host: blu68.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
www.brambor.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
200 OK 348 B URL HTTP/1.1 www.brambor.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en; _snow_ses.8a2f=*; _snow_id.8a2f=fe484dbf-dca2-476a-bc50-f9698626dcc7.1668092711.1.1668092711.1668092711.1bbdd08e-2aa9-4429-857d-252b505c2419
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 15:05:15 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: language=en; expires=Thu, 24-Nov-2022 15:05:15 GMT; Max-Age=1209600; path=/
X-Host: grn132.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: application/json
www.brambor.com/ajax/api/JsonRPC/Membership/?Membership[Member::get_session_details]
200 OK 263 B URL HTTP/1.1 www.brambor.com/ajax/api/JsonRPC/Membership/?Membership[Member::get_session_details]
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d3040bef82c9b1d96fb5c2513c79ad44
3c65815c7fd183cf78f019549c23a77162a037cc
ab177b30f965acca890b34455ea37b014a597b1f40838b1e9eba95f3041b52ce
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/Membership/?Membership[Member::get_session_details] HTTP/1.1
Host: www.brambor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 75
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://www.brambor.com/http:/brambor.com/das-unternehmen.html
Cookie: is_mobile=0; language=en; _snow_ses.8a2f=*; _snow_id.8a2f=fe484dbf-dca2-476a-bc50-f9698626dcc7.1668092711.1.1668092711.1668092711.1bbdd08e-2aa9-4429-857d-252b505c2419
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 15:05:15 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: site_session=636d132b7bf804.32399396; path=/
language=en; expires=Thu, 24-Nov-2022 15:05:15 GMT; Max-Age=1209600; path=/
X-Host: grn85.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 263
Keep-Alive: timeout=10, max=58
Connection: Keep-Alive
Content-Type: application/json
www.getgobot.com/client/loader
204 No Content 0 B URL HTTP/1.1 www.getgobot.com/client/loader
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /client/loader HTTP/1.1
Host: www.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-gobot-action,x-gobot-key,x-gobot-version
Referer: https://www.brambor.com/
Origin: https://www.brambor.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-headers: x-gobot-action,x-gobot-key,x-gobot-version
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.brambor.com
function-execution-id: t6cmp3gnr2mb
vary: Origin, Access-Control-Request-Headers
x-powered-by: Express
X-Cloud-Trace-Context: be0db4259d6fdb423037731d2305c822
Date: Thu, 10 Nov 2022 15:05:15 GMT
Server: Google Frontend
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ogacSAv5sbxTxi2_yqDZLSgV-BPfBpkUmnc9MSjM_GrSIfUHMBnATg==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5fd1a0370030e26cd68d4850edb8b1c2
8c6ca8901825121d71e2c58a8857df1c812dd0c3
13560240c37855238160e38cc4ecc2c4867497cc5e5638e029bca66bde4ceced
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101515
Date: Thu, 10 Nov 2022 15:05:15 GMT
Etag: "636be6b6-1d7"
Expires: Fri, 11 Nov 2022 19:17:10 GMT
Last-Modified: Wed, 09 Nov 2022 17:43:18 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ElZnXDwG_zdlko-KX9Nxm7jQvRXhSrGuzB8O5u94rjkv8sH2Cx85Dg==
Age: 5632
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5fd1a0370030e26cd68d4850edb8b1c2
8c6ca8901825121d71e2c58a8857df1c812dd0c3
13560240c37855238160e38cc4ecc2c4867497cc5e5638e029bca66bde4ceced
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101799
Date: Thu, 10 Nov 2022 15:05:15 GMT
Etag: "636be6b6-1d7"
Expires: Fri, 11 Nov 2022 19:21:54 GMT
Last-Modified: Wed, 09 Nov 2022 17:43:18 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Ki3NmjXKrajcZIQWeQvkP0lZd6YcsKytQCXrT_NWTMH8pWKmZ_GSWg==
Age: 5916
ga-fireworks-effect.herokuapp.com/getAppData?site_id=596786834311425
200 OK 21 B URL HTTP/1.1 ga-fireworks-effect.herokuapp.com/getAppData?site_id=596786834311425
IP
File type ASCII text, with no line terminators
Hash d579655af9bd9a61785c82359d7f0795
a25c5891627f4df54a2183ed6b9a3adc293ff9c0
f54d7676b744454f2d2399d4b99360faef98f3c552fba6e5516500110875889e
GET /getAppData?site_id=596786834311425 HTTP/1.1
Host: ga-fireworks-effect.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=utf-8
Content-Length: 21
Etag: W/"15-olxYkWJ/TfVKIYPta5o63Ck/+cA"
Date: Thu, 10 Nov 2022 15:05:15 GMT
Via: 1.1 vegur
www.getgobot.com/client/loader
200 OK 69 B URL HTTP/1.1 www.getgobot.com/client/loader
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash eb62d1f77ae8f63eaca3491c73f9c386
2823285c9db3c5b6e6ec97d21463483d4c7aae79
7b26a65adf26c5eaf5ae5ad5977b1dbbf3bd04dad9f61dfab6fce12ee1ec6857
GET /client/loader HTTP/1.1
Host: www.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brambor.com/
x-gobot-key: -ND7gpamlMND4WcbBTas
x-gobot-action: create
x-gobot-version: 1.5.17
Origin: https://www.brambor.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 69
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://www.brambor.com
function-execution-id: t6cmwbzhekzz
x-powered-by: Express
X-Cloud-Trace-Context: b683620823b427488c2fa805a9a9b120
Server: Google Frontend
Date: Thu, 10 Nov 2022 15:05:15 GMT
Cache-Control: public, max-age=300
ETag: W/"45-KCMoXJ2zxbbm7JfSFGNIPUx6rnk"
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IhNUqJXZlLnzjyxM4zGjZQjfeebzHlDu4gidroyM5q7g3MjrJFJfVQ==
Age: 0
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.brambor.com/
Origin: https://www.brambor.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:15 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.brambor.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
dl.dropbox.com/u/345448/favicon.ico
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/345448/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/345448/favicon.ico HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/345448/favicon.ico
date: Thu, 10 Nov 2022 15:05:15 GMT
server: envoy
x-dropbox-request-id: 12ca5f83d8204de2afb0fecb7503f573
content-length: 0
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash c282fb89bdded9707f257751f23fc185
bfe872622a162e0afa35c9cd45742fba2fb15b13
3e66dbf4d736534ca78c1e386311a188e985a015e284a5659213b3b528e7cbc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 725
Cache-Control: max-age=87205
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 15:18:41 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 10 Nov 2022 14:41:09 GMT
expires: Thu, 10 Nov 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 1447
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7c89768eee117880b59f8644d2138e52
49a829a38293c8f1eb86dbbccc82017f1d5d86bb
c512960cca090441f3c7e9ffea25448965eb4068d1506b8afa6d391b3c3a07be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 1fbb466635ca39a4871d0d0ac532ad36
c4e9607d77d98cdd41fac3b36eacfd160ddefca5
8a40feeb4ec4454f353f34218d98226f98b5788e592871f3ffba11f4a31a5c7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2719
Cache-Control: max-age=113689
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Etag: "636c21a6-1d7"
Expires: Fri, 11 Nov 2022 22:40:05 GMT
Last-Modified: Wed, 09 Nov 2022 21:54:46 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ssl.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 10 Nov 2022 14:17:12 GMT
expires: Thu, 10 Nov 2022 16:17:12 GMT
cache-control: public, max-age=7200
age: 2884
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: lBvj5Je5DMqx8xv7UklyYPVdT2CGuEG0hPRKcJXpac0WPGvFFDvamDenxF/Mtyjn+NFjptzAjcxXLeI6w883Cw==
priority: u=3,i
content-length: 27337
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 15:05:16 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stats.g.doubleclick.net/dc.js
200 OK 17 kB URL HTTP/2 stats.g.doubleclick.net/dc.js
IP
File type ASCII text, with very long lines (1305)
Hash 5f65521f6c6223e1e18cb161832bea2a
f03800023e7bbe2579cd24e122cdf8c6ecf8b4c6
787b69b93681cf41784dfa8655cbdafe8a56ecc62f0112a6ea2241a284a0e3c9
GET /dc.js HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17093
date: Thu, 10 Nov 2022 13:06:43 GMT
expires: Thu, 10 Nov 2022 15:06:43 GMT
cache-control: public, max-age=7200
age: 7113
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (2776)
Hash 58eb1b0253acf14ec220a400a48ebf8f
f5086b6d18b9e766a8aef23766e6454cf2638487
4f70e9f54a694a7c94cd54b4df716c312b852744bec1f6f6035ec06e65aa2ee7
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 10 Nov 2022 15:05:16 GMT
expires: Thu, 10 Nov 2022 15:05:16 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6350353558466355157
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 55082
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1819
Origin: https://www.brambor.com
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 15:05:16 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=42c8449c-4819-44dd-8ef6-19f1e8b40cf1; Expires=Fri, 10 Nov 2023 15:05:16 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.brambor.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c282fb89bdded9707f257751f23fc185
bfe872622a162e0afa35c9cd45742fba2fb15b13
3e66dbf4d736534ca78c1e386311a188e985a015e284a5659213b3b528e7cbc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 725
Cache-Control: max-age=87205
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 15:18:41 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7c89768eee117880b59f8644d2138e52
49a829a38293c8f1eb86dbbccc82017f1d5d86bb
c512960cca090441f3c7e9ffea25448965eb4068d1506b8afa6d391b3c3a07be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221108/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221108/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221108/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 10 Nov 2022 00:37:11 GMT
expires: Thu, 24 Nov 2022 00:37:11 GMT
cache-control: public, max-age=1209600
age: 52085
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash da6ea2384d89dcf08521ba15aaa8c085
141a73f1f12700389cecb3548d37c2d5286e7a95
db36322a9271b8e877ba3b1b59c0b8783eb5e9ac8cddd9ecce4180904e7a1088
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash aac9a44d90ef332039316f3f8e75ef7f
7f14695c3512f762b53a5f2d4577c3b831ffd3e2
a190e6eaacda76e8f75d18d36d7a65916550ca96acceb6f597d7b0d3055e9113
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98d2dcb84a37daa2fb23c827ff88b340
0044d5f3939f68f1dd840bf8fcc0a136beda6ae3
7eb6cb22996da7036eb151d07a2fcc0df7018d5111f19e84a911e7edefe3e327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.brambor.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.brambor.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.brambor.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 10 Nov 2022 15:05:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.brambor.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.brambor.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.brambor.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 10 Nov 2022 15:05:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=www.brambor.com&callback=_gfp_s_&client=ca-pub-4768955561239333&gpid_exp=1
200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.brambor.com&callback=_gfp_s_&client=ca-pub-4768955561239333&gpid_exp=1
IP
File type ASCII text, with very long lines (389), with no line terminators
Hash 919cc46dcf899420780ac74e9bee05dc
f9713d39c19bd4b7f9d942e332db17ea4a09bca1
83c2f2c530b1dc9882aa724b19abd4d709a7bd4b5b1fd3dc18b3c5b4a5719e40
GET /gampad/cookie.js?domain=www.brambor.com&callback=_gfp_s_&client=ca-pub-4768955561239333&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 10 Nov 2022 15:05:16 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1164057473681917&ev=PageView&dl=https%3A%2F%2Fwww.brambor.com%2Fhttp%3A%2Fbrambor.com%2Fdas-unternehmen.html&rl=&if=false&ts=1668092712572&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=62&fbp=fb.1.1668092712571.1847439351&it=1668092712314&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1164057473681917&ev=PageView&dl=https%3A%2F%2Fwww.brambor.com%2Fhttp%3A%2Fbrambor.com%2Fdas-unternehmen.html&rl=&if=false&ts=1668092712572&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=62&fbp=fb.1.1668092712571.1847439351&it=1668092712314&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1164057473681917&ev=PageView&dl=https%3A%2F%2Fwww.brambor.com%2Fhttp%3A%2Fbrambor.com%2Fdas-unternehmen.html&rl=&if=false&ts=1668092712572&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=62&fbp=fb.1.1668092712571.1847439351&it=1668092712314&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 10 Nov 2022 15:05:16 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash aac9a44d90ef332039316f3f8e75ef7f
7f14695c3512f762b53a5f2d4577c3b831ffd3e2
a190e6eaacda76e8f75d18d36d7a65916550ca96acceb6f597d7b0d3055e9113
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash da6ea2384d89dcf08521ba15aaa8c085
141a73f1f12700389cecb3548d37c2d5286e7a95
db36322a9271b8e877ba3b1b59c0b8783eb5e9ac8cddd9ecce4180904e7a1088
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98d2dcb84a37daa2fb23c827ff88b340
0044d5f3939f68f1dd840bf8fcc0a136beda6ae3
7eb6cb22996da7036eb151d07a2fcc0df7018d5111f19e84a911e7edefe3e327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 006bc2d8ab25bb41f907cbf7aae72496
edfa83f56f1c0e75d1785b84b1ac749c4460787e
b31c79d23217ebe327b55bea3133ebf472781ee7101df47de0f87019e182fa0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 51b4ca5b626639dbc667558c23c75053
3207be5bfb0e40ba5baa9850dac3accc37002008
87ad17f8863a1449c72eacd4360db7ab432e42434a09ce88ab05642f6809d459
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
new.getgobot.com/client/v1/gobot-host.js?v=1.5.17
200 OK 104 kB URL HTTP/2 new.getgobot.com/client/v1/gobot-host.js?v=1.5.17
IP
Size 104 kB (103759 bytes)
Hash 827baf3435c178dc8ca3e6bc274458ac
caba98b77771602ddb64f6ae047b71642049bee1
26356f982cb23ed3cf35a4066759551e504ed72c95e12c21bafbd0c147f2baf8
GET /client/v1/gobot-host.js?v=1.5.17 HTTP/1.1
Host: new.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 07 Nov 2022 20:04:15 GMT
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, max-age=604800
last-modified: Fri, 19 Aug 2022 23:02:19 GMT
etag: W/"55481-182b857d344"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t7HZEx2Sif9LL8N6w7tOnwia6tbGkH7Xqey7vaD0qEomTYBmtPs8LQ==
age: 241260
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-1028233-12&cid=1928113485.1668092712&jid=34245746&_u=YEDAAUABAAAAACAAI~&z=1008731013
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-1028233-12&cid=1928113485.1668092712&jid=34245746&_u=YEDAAUABAAAAACAAI~&z=1008731013
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-1028233-12&cid=1928113485.1668092712&jid=34245746&_u=YEDAAUABAAAAACAAI~&z=1008731013 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 15:05:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 10 Nov 2022 15:05:16 GMT
expires: Thu, 10 Nov 2022 15:05:16 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chatsvc.getgobot.com/chat/ws/?t=C
101 Switching Protocols 0 B URL HTTP/1.1 chatsvc.getgobot.com/chat/ws/?t=C
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chat/ws/?t=C HTTP/1.1
Host: chatsvc.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.brambor.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s95DO7fC3ZzHs0XycPbmyg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 10 Nov 2022 15:05:17 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oJVGPTUrVkQm+LNantFmV+kBHQ0=
new.getgobot.com/app/assets/img/gobot-widget.gif
200 OK 1.5 kB URL HTTP/2 new.getgobot.com/app/assets/img/gobot-widget.gif
IP
File type GIF image data, version 89a, 100 x 100\012- data
Hash 7a895d55c27d75b01e2f0ab8c6523724
42aad0680f93368dc6eb55d590265568ee5f9446
bda5c353c8fb15d9455b00a69b4d2e16b34ef81cb17ca961e6928b9c85359d37
GET /app/assets/img/gobot-widget.gif HTTP/1.1
Host: new.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 1512
date: Thu, 03 Nov 2022 03:48:47 GMT
x-powered-by: Express
access-control-allow-origin: *
accept-ranges: bytes
cache-control: public, max-age=2592000, immutable
last-modified: Fri, 19 Aug 2022 23:09:05 GMT
etag: W/"5e8-182b85e0401"
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9kO0KFDmbjsMWag7u6C7Feif_gRYDGST8_khoZ3-22_vHBUwdcGbxg==
age: 645391
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 15:05:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
new.getgobot.com/client/v1/gobot-host.css?v=cd1747a7daf0d25987a9a9074fe37d5abf56d096
200 OK 5.4 kB URL HTTP/2 new.getgobot.com/client/v1/gobot-host.css?v=cd1747a7daf0d25987a9a9074fe37d5abf56d096
IP
Hash 1db2673d2cb8dfb180bc6de5906ef8ba
0633c7dbe6afb0cbc11048e111f856f4b82ef99a
5730eba9e7214946f84bcaef246be9ad48b7b5742877d7b14f7e4b9ba6ab6c8b
GET /client/v1/gobot-host.css?v=cd1747a7daf0d25987a9a9074fe37d5abf56d096 HTTP/1.1
Host: new.getgobot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brambor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
x-powered-by: Express
access-control-allow-origin: *
last-modified: Fri, 19 Aug 2022 23:01:58 GMT
content-encoding: gzip
date: Wed, 09 Nov 2022 05:36:50 GMT
cache-control: public, max-age=604800
etag: W/"5b3b-182b8578148"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Zh7FpRFjAooI9V3znTAO2wQCTOC5M9Wd39g2MlqqycDKmbv9atMxPQ==
age: 120508
X-Firefox-Spdy: h2
dl.dropbox.com/u/345448/favicon.ico
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/345448/favicon.ico
IP
GET /u/345448/favicon.ico HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 10 Nov 2022 15:05:15 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: ea62cdbffb0f4b78a5a6c8ff4eb7dd50
X-Firefox-Spdy: h2
199.34.228.73
93.184.220.29
31.13.72.12
104.17.25.14
23.36.76.226