Overview

URL hamburgpestcontrol.com/
IP199.34.228.74
ASNWEEBLY
Location United States
Report completed2022-07-03 14:47:30 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-03 2 hamburgpestcontrol.com/ Malware
2022-07-03 2 www.hamburgpestcontrol.com/ Malware
2022-07-03 2 www.hamburgpestcontrol.com/ Malware
2022-07-03 2 www.hamburgpestcontrol.com/files/theme/plugins.js?1556898826 Malware
2022-07-03 2 www.hamburgpestcontrol.com/files/theme/custom.js?1556898826 Malware
2022-07-03 2 www.hamburgpestcontrol.com/uploads/3/7/1/6/37161833/1044376.png?187 Malware
2022-07-03 2 www.hamburgpestcontrol.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccou (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (22)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (11) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.65
[Mnemonic Passive DNS] cdn2.editmysite.com (8) 11564 2012-10-02 18:27:39 UTC 2022-07-03 08:17:23 UTC 151.101.85.46
[Mnemonic Passive DNS] fonts.gstatic.com (5) 0 2017-01-30 04:59:51 UTC 2022-07-03 04:33:25 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-07-03 03:15:57 UTC 142.250.74.164
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-03 04:06:00 UTC 34.120.237.76
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (2) 1152 2020-11-03 12:26:46 UTC 2022-07-03 05:07:31 UTC 54.230.111.99
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-07-03 04:49:06 UTC 23.36.77.32
[Mnemonic Passive DNS] ocsp.sca1b.amazontrust.com (2) 1015 No data No data 54.230.245.39
[Mnemonic Passive DNS] ec.editmysite.com (1) 12806 2017-01-29 21:50:35 UTC 2022-07-03 11:34:25 UTC 44.239.242.204
[Mnemonic Passive DNS] shavar.services.mozilla.com (1) 3602 2017-01-30 05:00:58 UTC 2022-07-03 05:03:51 UTC 52.33.232.236
[Mnemonic Passive DNS] firefox-settings-attachments.cdn.mozilla.net (1) 11509 2019-11-30 09:32:57 UTC 2022-07-03 10:04:07 UTC 54.230.111.67
[Mnemonic Passive DNS] ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-07-03 04:43:22 UTC 142.250.74.3
[Mnemonic Passive DNS] ssl.google-analytics.com (1) 275 2017-01-30 05:00:07 UTC 2022-07-03 04:38:51 UTC 142.250.74.136
[Mnemonic Passive DNS] getpocket.cdn.mozilla.net (1) 1369 2017-08-31 07:41:15 UTC 2022-07-03 04:06:41 UTC 34.120.5.221
[Mnemonic Passive DNS] www.hamburgpestcontrol.com (11) 0 2017-01-18 15:19:32 UTC 2022-07-01 07:49:13 UTC 199.34.228.74 Unknown ranking
[Mnemonic Passive DNS] www.gstatic.com (1) 0 2015-06-20 09:50:55 UTC 2015-11-29 15:55:55 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] detectportal.firefox.com (2) 1601 2017-01-30 00:03:31 UTC 2022-07-03 04:32:10 UTC 34.107.221.82
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-03 05:03:35 UTC 34.208.34.131
[Mnemonic Passive DNS] ajax.googleapis.com (1) 12905 2017-01-30 05:00:30 UTC 2019-10-16 05:01:16 UTC 142.250.74.138
[Mnemonic Passive DNS] hamburgpestcontrol.com (1) 0 2017-01-18 15:19:32 UTC 2022-07-01 07:49:13 UTC 199.34.228.74 Unknown ranking
[Mnemonic Passive DNS] ocsp.digicert.com (2) 86 2012-11-29 12:49:49 UTC 2022-07-03 08:50:17 UTC 93.184.220.29


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.34.228.74

Date UQ / IDS / BL URL IP
2022-08-16 20:46:23 +0000
0 - 0 - 8 hamburgpestcontrol.com/ 199.34.228.74
2022-08-16 20:45:44 +0000
0 - 0 - 1 www.jasongaghan.net/ 199.34.228.74
2022-08-16 15:48:55 +0000
0 - 0 - 8 hamburgpestcontrol.com/ 199.34.228.74
2022-08-14 03:47:21 +0000
0 - 0 - 6 www.oliverstein.ch/kontakt.html 199.34.228.74
2022-08-12 21:46:24 +0000
0 - 0 - 6 www.oliverstein.ch/kontakt.html 199.34.228.74
2022-08-08 22:52:25 +0000
0 - 0 - 6 www.oliverstein.ch/kontakt.html 199.34.228.74
2022-08-05 09:47:22 +0000
0 - 0 - 5 www.oliverstein.ch/kontakt.html 199.34.228.74
2022-08-02 01:47:27 +0000
0 - 0 - 6 www.oliverstein.ch/kontakt.html 199.34.228.74
2022-07-28 21:22:33 +0000
0 - 0 - 1 christadelphians-eastham.org/ 199.34.228.74
2022-07-25 03:50:31 +0000
0 - 0 - 7 hamburgpestcontrol.com/ 199.34.228.74

Last 10 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-08-18 20:08:21 +0000
0 - 0 - 3 aol-mail-incworld.square.site/ 199.34.228.40
2022-08-18 20:02:58 +0000
0 - 0 - 11 my-businessss123445.square.site/ 199.34.228.39
2022-08-18 20:02:44 +0000
0 - 0 - 3 att-106501.square.site/ 199.34.228.39
2022-08-18 19:06:01 +0000
0 - 0 - 2 https://btinternet-104129.weeblysite.com/ 199.34.228.96
2022-08-18 18:58:19 +0000
0 - 0 - 2 https://bt-108392.weeblysite.com/ 199.34.228.96
2022-08-18 18:57:41 +0000
0 - 0 - 2 https://bttqghhxsgw.weeblysite.com/ 199.34.228.96
2022-08-18 18:55:04 +0000
0 - 0 - 3 https://dfghfdrtygfdbdsdfghbvcxdfghgfdsdfgt.w (...) 199.34.228.96
2022-08-18 18:37:24 +0000
0 - 0 - 5 att-yahoo101.square.site/ 199.34.228.40
2022-08-18 18:37:03 +0000
0 - 0 - 2 https://yahoo-mail-108320.square.site/ 199.34.228.40
2022-08-18 07:55:23 +0000
0 - 0 - 2 https://advcxc.weebly.com/ 199.34.228.53

Last 7 reports on domain: hamburgpestcontrol.com

Date UQ / IDS / BL URL IP
2022-08-16 20:46:23 +0000
0 - 0 - 8 hamburgpestcontrol.com/ 199.34.228.74
2022-08-16 15:48:55 +0000
0 - 0 - 8 hamburgpestcontrol.com/ 199.34.228.74
2022-07-25 03:50:31 +0000
0 - 0 - 7 hamburgpestcontrol.com/ 199.34.228.74
2022-07-21 19:46:26 +0000
0 - 0 - 7 hamburgpestcontrol.com/ 199.34.228.74
2022-07-11 22:50:39 +0000
0 - 0 - 7 hamburgpestcontrol.com/ 199.34.228.74
2022-07-07 08:52:47 +0000
0 - 0 - 7 hamburgpestcontrol.com/ 199.34.228.74
2022-07-01 07:49:29 +0000
0 - 0 - 7 hamburgpestcontrol.com/ 199.34.228.74


JavaScript

Executed Scripts (23)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (78)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 03 Jul 2022 14:47:13 GMT
Server: Apache
Location: http://www.hamburgpestcontrol.com/
Content-Length: 242
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   242
Md5:    023b5457d0c9d040b538e8f0cbe1446c
Sha1:   a21f0ada9127ceb4b5f5d2acf94654b2d4240c75
Sha256: d7aa0c70fc31c34d605b9ee04df08c1672370d4edccb8c39c23aafb821c0cb99

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
date: Sun, 03 Jul 2022 02:11:00 GMT
last-modified: Wed, 11 May 2022 19:51:39 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0IumaDhWTBQ8W_1fl8ly9iJy9fwd1xK4EsH_zU4o-uuh28dDcp5UJw==
age: 45374
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575"
Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7464
Expires: Sun, 03 Jul 2022 16:51:37 GMT
Date: Sun, 03 Jul 2022 14:47:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FACD4EA97FD9649E88A7F37464DAD3896ED33914F8C78F1599FA3F72EE7B5A1C"
Last-Modified: Sat, 02 Jul 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17100
Expires: Sun, 03 Jul 2022 19:32:13 GMT
Date: Sun, 03 Jul 2022 14:47:13 GMT
Connection: keep-alive

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Sun, 03 Jul 2022 14:47:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 
Host: getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.5.221
HTTP/2 200 OK
                                        
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: f34K_9dycGPSkyCtxnr1OEXuOcCint5LuQeKduKqK7LUJqQAI8Pd8A==
content-encoding: gzip
via: 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 14:44:49 GMT
content-type: application/json
content-length: 33615
age: 144
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   33615
Md5:    553e9d88132f7f67aa32233d72c4e862
Sha1:   e52ad6b30a870d70a189f9b373211ccfc81dd063
Sha256: 76ab9226498d096eaf29e9cbb3a2f99aabca106c3a7818097587aa7bc6f21b12
                                        
                                            GET / HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 03 Jul 2022 14:47:13 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.hamburgpestcontrol.com
Vary: X-W-SSL,User-Agent
Location: https://www.hamburgpestcontrol.com/
X-Host: blu10.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 386
Keep-Alive: timeout=10, max=70
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   386
Md5:    9470adf3bd5a72073adb261a9004484e
Sha1:   5bf4b6dffb44be26153d57ebcb9213a9148235d7
Sha256: 07ffd8166808b3e356fa15af2d367bfd56ca7b22f2b7d33b5ea24fc29da083bc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 03 Jul 2022 13:52:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SP0NeykogU7HxM_NnvWAuNBEXTXJr9t3G4YExNnDYbSLUrDLnBmrkQ==
Age: 3297


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4500
Cache-Control: 'max-age=158059'
Date: Sun, 03 Jul 2022 14:47:14 GMT
Last-Modified: Sun, 03 Jul 2022 13:32:14 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4430
Cache-Control: 'max-age=158059'
Date: Sun, 03 Jul 2022 14:47:14 GMT
Last-Modified: Sun, 03 Jul 2022 13:33:24 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Sun, 03 Jul 2022 09:46:52 GMT
Age: 18022
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1 
Host: shavar.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         52.33.232.236
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Sun, 03 Jul 2022 14:47:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    29fc57841962e407cb50c1be60284bf7
Sha1:   ce968a77e2996da5eee8925182318f171ccdce47
Sha256: ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: k++DNNCN1cLzpxsynHbDtg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.208.34.131
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SlvmKNayu59St3zoxjt5yvCSnPc=

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 03 Jul 2022 13:52:21 GMT
Cache-Control: max-age=3600
Expires: Sun, 03 Jul 2022 14:00:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iqn8AqxUfTgEgJZzy-yxIMsFuahY_wJegTnhKdd26GlfX_R041sM4A==
Age: 3294


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FC2DEA1C8A379035E9BE59053776F158CBC72258CD3887B535E38A6E85D93A79"
Last-Modified: Sat, 02 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21519
Expires: Sun, 03 Jul 2022 20:45:53 GMT
Date: Sun, 03 Jul 2022 14:47:14 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221656853034182%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sun, 03 Jul 2022 12:57:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sun, 03 Jul 2022 14:01:55 GMT
Cache-Control: max-age=3600
Expires: Sun, 03 Jul 2022 14:01:55 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1WgHiUAkZ_TOs3hO2XE2GhyRj7YwmonviLgckJB3Z4blkrSHE28PuA==
Age: 2719


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (21309), with no line terminators
Size:   4462
Md5:    167f74f5c150eb7e1913d51b8acc157d
Sha1:   acdbd656abe43b5539709c15d39d478a156e8c71
Sha256: d5914bef34c2759fc250eb031e7b6e2a1b2bc8227fae0c6f2ba4aab3a7d061b3
                                        
                                            GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1656527861860&_since=%221653914271178%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 29 Jun 2022 18:37:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Sun, 03 Jul 2022 14:25:43 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ldC4YZ6kAAa0kQi4H0tpM8-egsObXgXOsPw4-CtpWLHiXsgnR62sYA==
Age: 1328


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (6554), with no line terminators
Size:   2445
Md5:    136ae70efbce77635f14e29c677d5455
Sha1:   33e02a83d2cbb36f350354335971cb0b07df1630
Sha256: abf08ea71b850cb51d0a88e96002616e0fa25f65347c15359c975922475f1f7e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Jul 2022 03:26:42 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Yn5t5PSNF7W8RLKwKE3Tv-PwFwn6I9eZbe5RgauC5DX4FrSbfNnjQ==
age: 40833
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 03 Jul 2022 13:52:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NzdZWd_4Pr_ZOf0yBT8cFWAqamUX1IgpbE4szaAKdN4FDCLA7ELqEA==
Age: 3297


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            GET /staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin HTTP/1.1 
Host: firefox-settings-attachments.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.67
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Content-Length: 795699
Connection: keep-alive
Last-Modified: Mon, 27 Jun 2022 12:39:11 GMT
x-amz-version-id: 9np1boOrxtHVWzMczpbX1a.N_ewQWHDF
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 03 Jul 2022 01:13:36 GMT
ETag: "9b95765b0e26af76116a95a966d61354"
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 35jUNSvamqSpHC2hY2IAA2M9gw0NgQj7_VoGmjgLOm98au9Ljk0F3A==
Age: 48958


--- Additional Info ---
Magic:  data
Size:   795699
Md5:    9b95765b0e26af76116a95a966d61354
Sha1:   3f7c1b40fc999b83f3696f455402e49ab484b027
Sha256: 34f969c8e082310785ec4262e2d5b58c919d4de856ffc64b3467507f83ac9571
                                        
                                            GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1656806464570&_since=%221654732864402%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sun, 03 Jul 2022 00:01:04 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sun, 03 Jul 2022 14:03:33 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SxR6Ly2Q6Ee2Ifstd03pbbV5JIYYkzpf8NKNCS4CWH9Rzj5UD5zRlQ==
Age: 2675


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (59437), with no line terminators
Size:   12056
Md5:    7aea6606cee74ac689af542d2f07f6ae
Sha1:   e2f27351dd15c427a3479d3fbeb3e622342431f9
Sha256: 52c59d4c6d0031e124934501c7311d3ce81d1fc6e26282b73d60c00eb396bb01
                                        
                                            GET / HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 03 Jul 2022 14:47:14 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.hamburgpestcontrol.com language=en; expires=Sun, 17-Jul-2022 14:47:14 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"0cb56814188124314eb6eb5213caae6d-gzip"
Content-Encoding: gzip
X-Host: blu98.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 11722
Keep-Alive: timeout=10, max=55
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6368), with CRLF, LF line terminators
Size:   11722
Md5:    8dd60742ef95a481881513c13ca095cf
Sha1:   6d6203e32dca16ded18be22eef8181f39101a561
Sha256: b01253320399db95187e4e16f53b1d29839366e1aa96bf81c9f8151c0b22eb5c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1656616149913&_since=%221654636467710%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 19:09:09 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sun, 03 Jul 2022 14:27:12 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U2swVz2BwHAudH7aA1yUfLcHAW7M3w4YPhuuPqyZm8xjMKsoW5ToSQ==
Age: 1460


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   6854
Md5:    5fea2cf7118841ce56878edd6d30ac25
Sha1:   db4f36e0487401c706780c3053dca85e7a8fe519
Sha256: d7738e39ad2607d273496d214b27a76c14006c2fa0f97202a8b452470ffeac77
                                        
                                            GET /files/main_style.css?1631021283 HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu43.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (515)
Size:   6238
Md5:    e78e5f42b2c27f58f3501d7ea9504a3d
Sha1:   23d214318620596308839e2e75e1aca72d6b983a
Sha256: 2d2997cf7bafd4d442ec78ef1536cb07bc7da712380049e2ada5eec01550365d
                                        
                                            GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Sun, 03 Jul 2022 14:46:17 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zFJkiFDjp8uQ1EazxE92hyYRZ1M2NFiIAO7wp6VQjVboPvM-zGWRtw==
Age: 63


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1709), with no line terminators
Size:   947
Md5:    72550a85a8f140c55c2233e3c599f4cb
Sha1:   0c24880bd69e8675448ea2c933a8db2de4edec0d
Sha256: 671896e94e49afb7a370420c9820a5f954cda155cb0178eacb0651c749a8d19a
                                        
                                            GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1656438167344&_since=%221654266643527%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Tue, 28 Jun 2022 17:42:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sun, 03 Jul 2022 13:51:15 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MYoobzZBxPLHdl0ZUj8K8XLDwrztKRtnbCvZpuLdKJmNJThqPgmahg==
Age: 3425


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1600), with no line terminators
Size:   808
Md5:    973b253c25b29ba4d1796abd4a07c9d0
Sha1:   674bd6ad7dd8885a584471b74016c99cb50019d3
Sha256: 46562c5916dd5639ab41d4eefbeb3963cc410193c4955b0ee29c419ffa004966
                                        
                                            GET /v1/buckets/main/collections/cfr/changeset?_expected=1656348915244&_since=%221653578606314%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 27 Jun 2022 16:55:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sun, 03 Jul 2022 13:59:36 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Zy1LRCMjEkxdFdg5Z1aQcgXRb5QAr6__5z__kb6SFztYkvZVMQY83g==
Age: 2893


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2897), with no line terminators
Size:   1199
Md5:    1cdabc82c45e7873797a549695c6eab0
Sha1:   f6bd8ba124a0a0653da12887cb5d365ae7dfedce
Sha256: 60e9397a7ed752c7d3928b5cd2358a629c14092c5a89ccfc1727537c21c80f96
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 680
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sat, 25 Jun 2022 16:36:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 03 Jul 2022 14:21:26 GMT
Cache-Control: no-cache, no-store
ETag: "1656175019485"
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: k68JU_AT_HjmzXT6co37qws4YdpdafjHfStv0OXGd16I_03OcQZcHg==
Age: 1550


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (680), with no line terminators
Size:   680
Md5:    3b53f3b1e1b3dce6650634ec88385345
Sha1:   c1052213a836637769ab41e0c512558bf82528df
Sha256: cdcfd1be1292bfc8f138d6fd5df9a9582251d25cdbe28f61358d0119b17b8d04
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Sun, 03 Jul 2022 09:46:52 GMT
Age: 18023
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            GET /css/sites.css?buildTime=1630601812 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: text/css
last-modified: Tue, 28 Jun 2022 23:57:17 GMT
etag: W/"62bb955d-347ac"
expires: Wed, 13 Jul 2022 09:05:55 GMT
cache-control: max-age=1209600
x-host: grn93.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 366080
x-served-by: cache-sjc10033-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1656859635.190766,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /files/theme/plugins.js?1556898826 HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 18 Apr 2020 15:10:21 GMT
x-rgw-object-type: Normal
ETag: W/"1c8a26f413525e51e0716d20f48b9146"
x-amz-request-id: tx0000000000000017486c0-0061a7a393-a9f6a62-sfo1
X-Storage-Bucket: z04a6
X-Storage-Object: 04a6442538bbcd643a22e79a05200ea073ee4d8efb5bcae54ffb5d6303bb1385
X-Host: grn65.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   19572
Md5:    f949d0652f86cf688f158f57e45c8d88
Sha1:   f9634dc2aa2678f26708aefd82420a8aff002c92
Sha256: 3f3fb2fcdd039d7376833076b04ae214e0bb469fbf2f6ac9e40140ad0b6221f3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/old/fancybox.css?1630601812 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: text/css
last-modified: Mon, 27 Jun 2022 20:11:51 GMT
etag: "62ba0f07-f47"
expires: Tue, 12 Jul 2022 11:15:32 GMT
cache-control: max-age=1209600
x-host: blu86.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 444703
x-served-by: cache-sjc10063-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1656859635.203921,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.138
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Jul 2022 04:21:19 GMT
expires: Mon, 03 Jul 2023 04:21:19 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 37556
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            GET /css/social-icons.css?buildtime=1630601812 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: text/css
last-modified: Mon, 27 Jun 2022 20:11:46 GMT
etag: W/"62ba0f02-3319"
expires: Tue, 12 Jul 2022 12:35:39 GMT
cache-control: max-age=1209600
x-host: blu107.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 439895
x-served-by: cache-sjc10021-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1656859635.206765,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1638
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13080)
Size:   1638
Md5:    4e12163688aed82b918291ce127a8e85
Sha1:   4495bec8aacb694bbefc4d1ff9176d9bf28969ac
Sha256: 42a0c38faddcfc5db3176944dbda76a93d198638d9d9426f7fa7fb0bbda3373c
                                        
                                            GET /js/lang/en/stl.js?buildTime=1630601812& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: application/javascript
last-modified: Fri, 17 Jun 2022 16:30:02 GMT
etag: "62acac0a-2c140"
expires: Tue, 05 Jul 2022 13:53:25 GMT
cache-control: max-age=1209600
x-host: blu87.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 1040030
x-served-by: cache-sjc10050-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1656859635.202407,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32651
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size:   32651
Md5:    787fe93eafe30968817ce9ee7be00491
Sha1:   829e082e2477a98a667b394fdf7002b5b0bd4d1b
Sha256: f91b4f3130263bc656f0f041fbed43f321daa5a78d97a00dccf863ca9de8134f
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1630601812 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: application/javascript
last-modified: Fri, 17 Jun 2022 16:31:21 GMT
etag: "62acac59-8250f"
expires: Tue, 05 Jul 2022 11:41:06 GMT
cache-control: max-age=1209600
x-host: grn86.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 1047969
x-served-by: cache-sjc10072-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1656859635.195271,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158975
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158975
Md5:    c29a5e4fd4ee0d3b7cd0597f2b9b602b
Sha1:   bb134ed641467954f4a724167dc7ea56a03e7fa8
Sha256: bf9850a7e6dd269898b78ecf07a34438bc300cad0bbb2d280e10ccadf81646b2
                                        
                                            GET /js/site/main.js?buildTime=1630601812 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: application/javascript
last-modified: Fri, 17 Jun 2022 16:31:21 GMT
etag: "62acac59-74804"
expires: Tue, 05 Jul 2022 08:26:01 GMT
cache-control: max-age=1209600
x-host: grn106.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 1059674
x-served-by: cache-sjc10082-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 16
x-timer: S1656859635.199562,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32147)
Size:   146400
Md5:    81b8673c5d3aa3ab8c0574f2a8f0e3b4
Sha1:   2e0661bc7907d9e2703b3347c3fec579f0aef5d6
Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
                                        
                                            GET /files/theme/custom.js?1556898826 HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 27 Aug 2021 07:38:03 GMT
ETag: W/"601d14e35387be6ef5e30dfb1c8a8184"
x-amz-request-id: tx000000000000009324045-00613a3827-a83550d-sfo1
X-Storage-Bucket: zc8a7
X-Storage-Object: c8a778c07be0c56988c3c0099c558b9ed5b4a2b226efaeeb3551fd6ebc5c222c
X-Host: grn49.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1638
Md5:    0143cfb26a9a3189ecf0cb69d81f9e5b
Sha1:   1bf51fd82c6f9e6ead2929636f40890d1cfea4dd
Sha256: 04ba1a3ad8d92cd2de45a33c26003de6a39e6450b5c54d0b136835f5117081cb

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/3/7/1/6/37161833/4426672.png HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:15 GMT
Content-Length: 1503
Connection: keep-alive
Last-Modified: Sat, 26 Oct 2019 09:32:09 GMT
x-rgw-object-type: Normal
ETag: "0cf2e5ee8bee7aafaae208ee604f87f2"
x-amz-request-id: tx0000000000000010f35fa-0062c12db3-c0351b0-sfo1
X-Storage-Bucket: z4ab6
X-Storage-Object: 4ab65cdf7a63a07bab823febc3f1518337e447028715df5efdcf4152451e09e8
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 270 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   1503
Md5:    0cf2e5ee8bee7aafaae208ee604f87f2
Sha1:   d96fcbabdcbc8e2927d66ee751c01f113d1b6136
Sha256: 4ab65cdf7a63a07bab823febc3f1518337e447028715df5efdcf4152451e09e8
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: application/javascript
last-modified: Wed, 22 Jun 2022 00:08:55 GMT
etag: "62b25d97-124fe"
expires: Thu, 07 Jul 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu100.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 886114
x-served-by: cache-sjc10076-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 11080
x-timer: S1656859636.763500,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /uploads/3/7/1/6/37161833/1044376.png?187 HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:15 GMT
Content-Length: 47017
Connection: keep-alive
Last-Modified: Sat, 26 Oct 2019 09:31:35 GMT
x-rgw-object-type: Normal
ETag: "18ae8c65d1c7ee32854950b01c7d4cb1"
x-amz-request-id: tx00000000000001b9db85b-0062ac34d5-b9fbc7f-sfo1
X-Storage-Bucket: z3e5f
X-Storage-Object: 3e5ff301ca38646b07d71d9b00a632537372415a7e118ec181f50e46bce98221
X-Host: grn48.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 186 x 186, 8-bit/color RGBA, non-interlaced\012- data
Size:   47017
Md5:    18ae8c65d1c7ee32854950b01c7d4cb1
Sha1:   265870f052a9067fa1e10930574804fb15daf4f5
Sha256: 3e5ff301ca38646b07d71d9b00a632537372415a7e118ec181f50e46bce98221

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/3/7/1/6/37161833/5054597_orig.jpg HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:15 GMT
Content-Length: 18707
Connection: keep-alive
Last-Modified: Sat, 21 Mar 2020 02:55:19 GMT
x-rgw-object-type: Normal
ETag: "278ee0d6429f43301e5a67edc1b5ed61"
x-amz-request-id: tx000000000000001f108fd-006284c0a9-b9fbc77-sfo1
X-Storage-Bucket: z0c0d
X-Storage-Object: 0c0dcbfc33ca5d6c440757ab202203fe59bd4152c007cb9d286a167a0e336d60
X-Host: blu38.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 460 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size:   18707
Md5:    278ee0d6429f43301e5a67edc1b5ed61
Sha1:   6cad24cd4e0bfe9a077ec1e8b21a85d8a4b93206
Sha256: 0c0dcbfc33ca5d6c440757ab202203fe59bd4152c007cb9d286a167a0e336d60
                                        
                                            GET /fonts/wSocial/wsocial.woff?ts=1656360705976 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
                                        
server: nginx
content-type: font/woff
last-modified: Fri, 24 Jun 2022 16:06:41 GMT
etag: "62b5e111-a4c"
expires: Mon, 11 Jul 2022 20:37:58 GMT
cache-control: max-age=1209600
x-host: blu20.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 03 Jul 2022 14:47:15 GMT
age: 497357
x-served-by: cache-sjc10038-SJC, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 18
x-timer: S1656859636.808448,VS0,VE0
access-control-allow-origin: *
content-length: 2636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Size:   2636
Md5:    0e88795b66eeac48b209209aa0179411
Sha1:   983e16566390f9167c6c4fbbdb052623fc01a631
Sha256: e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 17:10:21 GMT
expires: Wed, 28 Jun 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 423415
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Jun 2022 21:29:02 GMT
expires: Fri, 30 Jun 2023 21:29:02 GMT
cache-control: public, max-age=31536000
age: 235094
last-modified: Thu, 21 Apr 2022 16:38:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16588, version 1.0\012- data
Size:   16588
Md5:    6a93e73463e9f1b7c7b41c52c93843c5
Sha1:   48d5ed2bcc9c9c5c4182ae8957e5cef207cdfcbc
Sha256: 54eb546ba2203d87ad9a38ffdb92fdfed9733e08239dbea692a1ca059a287480
                                        
                                            GET /s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 17:27:25 GMT
expires: Wed, 28 Jun 2023 17:27:25 GMT
cache-control: public, max-age=31536000
age: 422391
last-modified: Tue, 26 Apr 2022 16:41:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24448, version 1.0\012- data
Size:   24448
Md5:    865e46af816320c9f32234e8968558d0
Sha1:   6791e9f732fcbde0f375f84ccbc14c4ac72795a3
Sha256: 6c84348296ebe2e2a0830c3962eb02156419d9bc76371c2eadaf7329d827d550
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uploads/3/7/1/6/37161833/background-images/538081835.jpg HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:15 GMT
Content-Length: 110290
Connection: keep-alive
Last-Modified: Sat, 26 Oct 2019 02:57:06 GMT
x-rgw-object-type: Normal
ETag: "97992df34835c478bc09201b116a9d95"
x-amz-request-id: tx0000000000000135c6af6-00629f5eea-b9fbc64-sfo1
X-Storage-Bucket: z5290
X-Storage-Object: 5290c0c3fc87e37df2126572649962bb94ea4793aa4f58057f81b0f755db0cd3
X-Host: grn77.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x420, components 3\012- data
Size:   110290
Md5:    97992df34835c478bc09201b116a9d95
Sha1:   d33eee743d26c7e8847e47f65111848425ae3312
Sha256: 5290c0c3fc87e37df2126572649962bb94ea4793aa4f58057f81b0f755db0cd3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16825
Expires: Sun, 03 Jul 2022 19:27:41 GMT
Date: Sun, 03 Jul 2022 14:47:16 GMT
Connection: keep-alive

                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 17:10:21 GMT
expires: Wed, 28 Jun 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 423415
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16825
Expires: Sun, 03 Jul 2022 19:27:41 GMT
Date: Sun, 03 Jul 2022 14:47:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16825
Expires: Sun, 03 Jul 2022 19:27:41 GMT
Date: Sun, 03 Jul 2022 14:47:16 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?_=1656859636380 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
                                        
expires: Sun, 03 Jul 2022 14:47:16 GMT
date: Sun, 03 Jul 2022 14:47:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 552
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (850), with no line terminators
Size:   552
Md5:    00ff0428801937984aafe2651afd9233
Sha1:   2aaa4a675188b3597e42f22836fbcf90f0453675
Sha256: 20fb3d5aa68e643049e8473446df82c45f5793a29f27db526daed8719e0d425e
                                        
                                            GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 17:15:31 GMT
expires: Wed, 28 Jun 2023 17:15:31 GMT
cache-control: public, max-age=31536000
age: 423105
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Size:   24408
Md5:    efee2d080d7bebdd2e0aeb2e030813a0
Sha1:   f8d38f9f9584e48c2e469877ebd94232265585f1
Sha256: bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0972b268-f4d1-450c-a4fb-9c028283bc9a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10919
x-amzn-requestid: 23b6304d-6914-4b7c-9546-51a0cc618047
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Udsy_HypoAMFjpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbc1ac-3609a3fa574884a612eb1430;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 03:06:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NYiOOnweelCp0-DKbA2Z_bItDA3jpetk97Engp4BpzxahJsDdkP3HA==
via: 1.1 11c8673f8a48dc627eaa83c99e9efedc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 23:18:23 GMT
age: 55733
etag: "ca5bbf12904de3b5b04917d7acec94313b09fb87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10919
Md5:    b7bb856907b42548036082ab66b18020
Sha1:   ca5bbf12904de3b5b04917d7acec94313b09fb87
Sha256: 00f04c1600388f435b3100709ebbd3c36e2f4d50d65fa6126d477f769cfb3f10
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7375005-bf61-4206-80c2-8c47cee66d48.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9678
x-amzn-requestid: a8899106-84f8-4a41-a2e2-a815897e6d0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Um1xQF4XoAMF6_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bf69a1-6bc66d2f287ef3433a231bdf;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iw84qeWpd5XVcV0A0IyVij1ov3KdumxlSKNMGpDU6gL_fr2tOIAD8g==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 23:16:44 GMT
age: 55832
etag: "59159a907451425b94f1a92af7a8acecde370cd4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9678
Md5:    e7d0f25d73281a18f125403246719207
Sha1:   59159a907451425b94f1a92af7a8acecde370cd4
Sha256: bf47d1f845a22c7c058941fbd9045dab3ff5d7b51430bace9553f122aca280a8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27c91804-20e6-462f-aedb-bdf209d6a7ff.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7435
x-amzn-requestid: b40cee49-550f-4039-97ef-1b46de576522
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UqJBtE5voAMFWCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c0bba4-63212eaf06fb7d291ff9e6da;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 21:41:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2471PJrEUC3dKtVzv8vDMiY53Zt7tLMbYHGk6cNyWmN9eL42S7VYQA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 22:03:00 GMT
age: 60256
etag: "9b4f9ba34e26b13aef71dd9125dd3878dc2f9105"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7435
Md5:    bff84dbfeb7d2cb2edcb367e84ed0f7e
Sha1:   9b4f9ba34e26b13aef71dd9125dd3878dc2f9105
Sha256: 0a760e8b512c0b81c732721e1e0fae54b14b8387aa0d214ce7f325ba128d7a05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3e7def4-fa03-41c4-8f87-ca1c8e0a4d7d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10793
x-amzn-requestid: af8e6514-8443-4c8f-9f65-88a6025913e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UXqEYHTrIAMFUYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b956e8-18404d4544198087193d15f7;Sampled=0
x-amzn-remapped-date: Mon, 27 Jun 2022 07:06:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4uubd20jAIZFr9GHZajdl9Gj2SOTJioHr-zSMF_9BlPdV0WWPnkZKQ==
via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 06:36:01 GMT
age: 29475
etag: "f436c3dfd37e001f9435b423fd231d16f5f755da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10793
Md5:    ac975bec09c46e865142774a9b3ad88d
Sha1:   f436c3dfd37e001f9435b423fd231d16f5f755da
Sha256: 122eaf24f973fbdddb671b0085101505d0467992389b14a18706c067130fd7be
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F431f287f-9907-47aa-be38-0ff4e6db75fc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8553
x-amzn-requestid: af8b913f-5eac-4e16-9afa-42b22b9fd6ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UaDuIEpAIAMFv8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba4cc0-29637a607cd815ef0080c235;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 00:35:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cJeOg5uZyKlrsa7XqpngVUr13fqslxDpFmXr-4pTfqqB46xREdv68Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 01:39:25 GMT
age: 47271
etag: "303f4efaa9b98e39a935fc6514d3731d40d2977c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8553
Md5:    e6f97e6b64100081e8bed56216564854
Sha1:   303f4efaa9b98e39a935fc6514d3731d40d2977c
Sha256: 92dd803f1633bd65a2b4ac3223d8aa93dd55ed64c74b338aff62323585a3623c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd82a5d63-f405-4f54-ad9a-a423aeae09c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7184
x-amzn-requestid: 5bea16e3-4d08-4511-afc7-be12e1bdf693
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uk06uGnEIAMFlhA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62be9b77-5aedba11418da4ae48e2b501;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 07:00:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hA0TBCiyjTV0oJ95__nF6-t_K0j37WbuzW1-2z_gZ5qqn62WiajC0g==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 18:34:39 GMT
age: 72757
etag: "984498975a9424217a161f11ea66660a441ef6d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7184
Md5:    dbf74d25f8acb3f6b249386ce5e55871
Sha1:   984498975a9424217a161f11ea66660a441ef6d4
Sha256: bf666960a2f1d4d8c96a0b3c21bdee73a345a24916d96197d4566f925ecefedd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 03 Jul 2022 14:47:16 GMT
Last-Modified: Sun, 03 Jul 2022 13:25:24 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2jUmFhWupXmqS_ruKrcj3v2-P58SEj0Dut6nGrdRf8oAizmEN24-Mw==
Age: 4913

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 03 Jul 2022 14:47:16 GMT
Last-Modified: Sun, 03 Jul 2022 13:20:32 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yHd4YNMuMczyM4zpJB4-lmN4KFfTRVX1aAXf61w2ZkpAUrPVtJJzJA==
Age: 5204

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en; _snow_ses.472a=*; _snow_id.472a=e077428b-294f-4741-8920-cdb5a4239b9b.1656859636.1.1656859636.1656859636.4bcdad1d-1ca1-48e0-86ca-6a1d35c6533e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: nginx
Date: Sun, 03 Jul 2022 14:47:16 GMT
Content-Length: 6518
Connection: keep-alive
Last-Modified: Sun, 22 Mar 2020 10:42:15 GMT
x-rgw-object-type: Normal
ETag: "9c3d4ce8fedb71a64e6d939519d1c5cf"
x-amz-request-id: tx0000000000000081dc0c0-0061b14531-a9f1b25-sfo1
X-Storage-Bucket: z26e1
X-Storage-Object: 26e147dd56c82174d2c8f69fb85b9c8539168cae5966339defb2943de1a2b87a
X-Host: blu40.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data
Size:   6518
Md5:    9c3d4ce8fedb71a64e6d939519d1c5cf
Sha1:   46ac07d5cddf3158fdc1ba4ae51868c6e3523d42
Sha256: 26e147dd56c82174d2c8f69fb85b9c8539168cae5966339defb2943de1a2b87a
                                        
                                            GET /recaptcha/releases/4rwLQsl5N_ccppoTAwwwMrEN/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 146545
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Jul 2022 18:51:46 GMT
expires: Sat, 01 Jul 2023 18:51:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Jun 2022 04:02:51 GMT
content-type: text/javascript
age: 158130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (618)
Size:   146545
Md5:    edbca8e066da9cd6310dada3c125ccf4
Sha1:   22f45ed309e828212484a03cc7d0e629834e8a76
Sha256: fcab033160e1ba423ad7a42e0bd67ec5820e1ed6751765de935960e502e623f0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.hamburgpestcontrol.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Cookie: is_mobile=0; language=en; _snow_ses.472a=*; _snow_id.472a=e077428b-294f-4741-8920-cdb5a4239b9b.1656859636.1.1656859636.1656859636.4bcdad1d-1ca1-48e0-86ca-6a1d35c6533e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.74
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu97.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size:   348
Md5:    a944dd688c99d2901d6719be713271c0
Sha1:   4f5454d5d434829baf46671638610791758725d9
Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.136
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 03 Jul 2022 14:17:10 GMT
expires: Sun, 03 Jul 2022 16:17:10 GMT
cache-control: public, max-age=7200
age: 1806
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1797
Origin: https://www.hamburgpestcontrol.com
Connection: keep-alive
Referer: https://www.hamburgpestcontrol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         44.239.242.204
HTTP/2 200 OK
                                        
date: Sun, 03 Jul 2022 14:47:16 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=5dec5bf9-13fb-4ccc-909e-cc16b9c8fdc1; Expires=Mon, 03 Jul 2023 14:47:16 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.hamburgpestcontrol.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 14:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN