denkodrom.de/
83.169.35.10301 Moved Permanently 291 B IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b4b2a9dd20b37d6cdfae60298b6d5354
b3ab412521cb4cbb70cf2e2d1fd67fb20f4cf2a7
06ad618207b2a3bae75152fa1b27984d089ac7fdd3a7215be9b3731ab35098b5
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 20 Sep 2022 12:10:40 GMT
Server: Apache
Location: https://denkodrom.de/
Content-Length: 291
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9476
Expires: Tue, 20 Sep 2022 14:48:36 GMT
Date: Tue, 20 Sep 2022 12:10:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 11:13:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EAb6nEzWSAAtV7m3YazYW8o-ZQpOuVKctBecDnGoE_inTksKOGk5TQ==
Age: 3453
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TAPFfhJKRdf0z4PiJM7rxiYvV1WApxLPmaGtZUhFmEcedP1jAZT_Hg==
age: 27327
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b1f39e75ea976edd1ad05059af476d26
cfcdf3061d82bd477f9adecab9abd192c51f23fd
533f8feec8547fd3aec3de769de7459dbc1e51727cbfc132e88ce61975a12edf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "533F8FEEC8547FD3AEC3DE769DE7459DBC1E51727CBFC132E88CE61975A12EDF"
Last-Modified: Sun, 18 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Tue, 20 Sep 2022 18:10:36 GMT
Date: Tue, 20 Sep 2022 12:10:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 20 Sep 2022 12:03:22 GMT
Cache-Control: max-age=3600
Expires: Tue, 20 Sep 2022 12:55:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0lmso6kN0cKvBEI3wd9ry8rPaklJ8TWCQLBG9vHn4nheMuZzlLl0Ug==
Age: 438
denkodrom.de/
83.169.35.10200 OK 44 kB IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8491)
Hash 75aca2ca9ae1813c392cbc5b597a8d05
f46ddca76c5b55e25ad8cf0aaa41ac18c399b6ef
7ff46cd27fb68616e8855c01a5126aa5274a4733cdb77414c5ab6c550e9fbe5a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:40 GMT
Server: Apache
Link: <https://denkodrom.de/index.php?rest_route=/>; rel="https://api.w.org/", <https://denkodrom.de/index.php?rest_route=/wp/v2/pages/11>; rel="alternate"; type="application/json", <https://wp.me/P7Y4B1-b>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.4.16, PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/frontend.css?ver=1.0
83.169.35.10200 OK 407 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/frontend.css?ver=1.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 96715e73de53052e2da1cb15fe023429
4649ba927ac7afb5e2a70b86c18f7f5b2b484f10
888367a4ed32cf98042f1a24333d148d5903056b6e25862ceb19e68536f58ae8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/frontend.css?ver=1.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sun, 10 Apr 2022 16:37:42 GMT
ETag: "457-5dc4f7255e19c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 407
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/compat/twentysixteen.css?ver=11.0
83.169.35.10200 OK 3.1 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/compat/twentysixteen.css?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 2932679d98fe461e0df0f70f7d3e9c1d
5256a2fdb53d00db4e475bad71c2a50028035d02
1f93012b40a0ce4eb9088b0251cfc73b4b6330e70666d10233085b014bf5fe6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/modules/theme-tools/compat/twentysixteen.css?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "4236-5e128803ea3f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3119
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/themes/twentysixteen/style.css?ver=20201208
83.169.35.10200 OK 14 kB URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/style.css?ver=20201208
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (413)
Hash 3cd23c072cbb4b1fc87ad39d7d7ff79b
df201c4be696ffc13509482f77c94d940db44204
b3299bfac8851600960fe8ad8f2be54f3a58937727239cf3ffa189e522d0eca8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentysixteen/style.css?ver=20201208 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "114a6-5e128a486433d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 13456
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/admin-font.css?ver=3.8.1
83.169.35.10200 OK 821 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/admin-font.css?ver=3.8.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (653)
Hash c356bd6b1182505cc845b5bd5c48c9aa
9a61f980cb2af5f9f09725431b7821345fc1ce14
e860f1aba9ba3e1c9a7ad4ec44d128ef21bf3cc3bf79039d3764d46213c51724
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/admin-font.css?ver=3.8.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sun, 10 Apr 2022 16:37:42 GMT
ETag: "c86-5dc4f7255e19c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 821
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
83.169.35.10200 OK 12 kB URL HTTP/1.1 denkodrom.de/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 00:17:06 GMT
ETag: "15b64-5e3a4b48f4b7c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 11681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
83.169.35.10200 OK 2.6 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sun, 24 Jan 2021 14:27:35 GMT
ETag: "2bf8-5b9a638f9e388-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2592
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
83.169.35.10200 OK 1.2 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4186), with no line terminators
Hash 30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Fri, 22 Nov 2019 15:35:18 GMT
ETag: "105a-597f12940691f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1156
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/themes/twentysixteen/css/blocks.css?ver=20220524
83.169.35.10200 OK 1.9 kB URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/css/blocks.css?ver=20220524
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 1643c2c1872b8975dfe9b3216095638a
bf3f2e6d2702b8ddb3a8d662b05f08c9c4503941
d80c11bdc71b5a09d02e315fd1e9d0b506d14e7da982e206f7575ca5d952d1c1
GET /wp-content/themes/twentysixteen/css/blocks.css?ver=20220524 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "214e-5e128a4862fb4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1892
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/plugins/podlove-web-player/js/cache.js?ver=5.5.1
83.169.35.10200 OK 787 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-web-player/js/cache.js?ver=5.5.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (1837), with no line terminators
Hash de26d99b84a45a22c32211a3a421e261
0e8abef53a2256c3876d9cf452492979130dd4aa
4eb4eb5c67c6647697ab570ddeafc33f6176451c170c2fd20ba486f874c65dfb
GET /wp-content/plugins/podlove-web-player/js/cache.js?ver=5.5.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 07 May 2022 14:56:02 GMT
ETag: "72d-5de6d2c750a2e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 787
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1
83.169.35.10200 OK 16 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (18732)
Hash dd0f53262702f111ddf86f20d1f605d1
a073021fe1aed82f104e7da84fa70bf8815a7d2b
7292e6d1bfe7ed6ee6bb7e9d5cd0483dae1d629955f6efae5c431e928422d1a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "6e6a-5e1288047faa6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 16441
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
i1.wp.com/denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg?w=480
192.0.77.2200 OK 33 kB URL HTTP/2 i1.wp.com/denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg?w=480
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x262, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ed7e622df019333d5b1b02e14436b34e
51397230768ec1a010cdfe87c09160ce2a28aa89
98a7254f6f45fadf9b2f6729f12fe86855407de1e1538b67a5d7e8f689e3d56e
GET /denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg?w=480 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 32982
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <http://denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "61952e3548290db5"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Last-Modified: Tue, 20 Sep 2022 10:36:58 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
denkodrom.de/wp-content/plugins/jetpack/css/jetpack.css?ver=11.0
83.169.35.10200 OK 16 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/css/jetpack.css?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash b07332d0f1dd3507e39a09c83764f078
bfeeb2b2d8204d8a158d95b431ccafc27211320e
f57839acebd788d72bf4e9f8e76e845e97e10e8fa3451f40629bc04a825fa84b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "14ef8-5e12880433fae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 16431
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
denkodrom.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
83.169.35.10200 OK 4.2 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sun, 24 Jan 2021 14:27:35 GMT
ETag: "2bd8-5b9a638f8baa7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/podlove-web-player/web-player/embed.js?ver=5.5.1
83.169.35.10200 OK 43 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-web-player/web-player/embed.js?ver=5.5.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65473)
Hash 7c6bd52e10fdddfb5617c797c18b1817
335e27f209a14e45c36677a3eb1f699b5202742f
76ff6133a901f35e703fbd4b10194b06dcd77e167e651343c5c6dd4630456807
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/podlove-web-player/web-player/embed.js?ver=5.5.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 07 May 2022 14:56:02 GMT
ETag: "212ed-5de6d2c746a06-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 42952
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
83.169.35.10200 OK 5.0 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:13:34 GMT
ETag: "48b9-5e1287831097d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
83.169.35.10200 OK 31 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Mon, 06 Sep 2021 21:18:22 GMT
ETag: "15db1-5cb5a30604c8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 30908
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
83.169.35.10200 OK 369 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (685), with no line terminators
Hash accd80b294f42169b1e447e68bacfffe
40847092d82d78897a8219b270b22838fcc0bb95
35e8294d38f054cd6fbcdef72076443685888546d93b41a596e981a5e9a61552
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "2ad-5e128804a0231-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 369
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.min.js?ver=6.0.2
83.169.35.10200 OK 425 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.min.js?ver=6.0.2
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (758), with no line terminators
Hash 1f4f6fb19bb5fe725ff003c00776d9f3
f18859fb57e00675a86bd82ab4a40568eefd64cd
28ab9fb7681b46c212aee56eab3166a5d50152a59c3dcea50895a1a686069e9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.min.js?ver=6.0.2 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Fri, 16 Nov 2018 17:25:07 GMT
ETag: "2f6-57acb72da95c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 425
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
i0.wp.com/denkodrom.de/wp-content/uploads/2022/05/taeterheader.png?resize=1024%2C606&ssl=1
192.0.77.2200 OK 307 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2022/05/taeterheader.png?resize=1024%2C606&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 307 kB (306652 bytes)
Hash 4c319783fd744c82ac702f4d77ed139a
44d3d85fd8c9620c1c8aee5f00ffae40bbedcf73
c248d18c0ace349e15d7f13fccefc83879b34dfcd5d7c07070cd7293b375a8f4
GET /denkodrom.de/wp-content/uploads/2022/05/taeterheader.png?resize=1024%2C606&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 306652
last-modified: Tue, 06 Sep 2022 07:17:54 GMT
expires: Thu, 05 Sep 2024 19:17:54 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2022/05/taeterheader.png>; rel="canonical"
x-content-type-options: nosniff
etag: "810c94bce0b0dd89"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg?w=619&h=442&ssl=1
192.0.77.2200 OK 62 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg?w=619&h=442&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 619x441, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1e03c97fc46c9a1c7aab554f168bcc18
c994b2b3fdb1bb4e2ad2edc7d849ab55cc29951e
809a5a86b193e29b5d8a1eba5a31cdbf49f9588eab5d41d723aa7c9172d5d924
GET /denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg?w=619&h=442&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 61574
last-modified: Sun, 18 Sep 2022 12:10:53 GMT
expires: Wed, 18 Sep 2024 00:10:53 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4cc9c9a6cb4fa7ea"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg?w=213&h=442&ssl=1
192.0.77.2200 OK 9.3 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg?w=213&h=442&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 213x442, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b768259464e8af59942fc77ab256a7bb
e169a1b01ead68a93617b7acd3a3e821ae057dc6
444488a28417c705a7f03988f69ad14803435166380313ce81974c58dd15fc06
GET /denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg?w=213&h=442&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 9328
last-modified: Sun, 18 Sep 2022 12:10:53 GMT
expires: Wed, 18 Sep 2024 00:10:53 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1ea4fbb75fd22553"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg?w=836&h=398&ssl=1
192.0.77.2200 OK 25 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg?w=836&h=398&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 836x398, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 505b31187d42d3b45f2d0d1396f01a8d
679eb3317924070eaf882fcb389497e5a1563598
850db455ce3ce1b6d5fd29b474fa36b181d52a30d70ece367aa295683723ee0e
GET /denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg?w=836&h=398&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 25152
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "04371bc366fa78a3"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg?w=276&h=391&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg?w=276&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5afab76f26c76e80d91fda11e0c1396c
ca4c3fb036377fd026ed100c13ac9123f4189a28
5fc03bce0a179aa9c45af1b6a63db34f919439e3de5787be4c7e46d9b9aa37d4
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg?w=276&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 14198
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c74e514b235dffbe"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg?w=416&h=589&ssl=1
192.0.77.2200 OK 24 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg?w=416&h=589&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 416x589, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 659edf65ba106a94daf983035d90caec
0aa57eb0be053e24bab89b35998119f504a32ad5
ff8685960326fde245a0bdc352b6bbf8f35775ee19dd839cf79473727d91f444
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg?w=416&h=589&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 23560
last-modified: Thu, 15 Sep 2022 08:19:12 GMT
expires: Sat, 14 Sep 2024 20:19:12 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "01c44ef296e34970"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg?w=836&h=191&ssl=1
192.0.77.2200 OK 15 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg?w=836&h=191&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 568x130, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 60f99621382b1c2e0daa9e064943a5d6
3963884cfddef562587f42c2d0c98b809ec4c837
39a35a4fc81207e3970bac83de8bc4b0ca1fd52da5a5b517c67e967c429b2161
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg?w=836&h=191&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 14660
last-modified: Sat, 17 Sep 2022 01:26:26 GMT
expires: Mon, 16 Sep 2024 13:26:26 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "16d0ad98689ab82f"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg?w=276&h=391&ssl=1
192.0.77.2200 OK 12 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg?w=276&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 70a6bcf99f7d9b97c9dfbc5ef46f7f08
af78f5d5f4c2fae413776a7c6e7bf8f9b59cabb2
e6f5f18a6b694f9e5749a15c07a05bee9288445005948f269fc4b8664184ca07
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg?w=276&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 11476
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "12ab39389fd9c1c2"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg?w=836&h=394&ssl=1
192.0.77.2200 OK 32 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg?w=836&h=394&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 836x394, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5fcc5c39a52b767ae6f86499b3574794
5879154c817e1b344a82095ed0318d79b1124c9e
b9cdd090d09ae86cf25369721fb75cd216a0783206cba4fa08b3d5328f7ad4b6
GET /denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg?w=836&h=394&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 32526
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "aca5ed395f846cab"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg?w=836&h=394&ssl=1
192.0.77.2200 OK 38 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg?w=836&h=394&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 836x394, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8ff8e6a5628d37a17d5a063daa57bba3
a7d06ca0df656819fb716e22ad6fefbb14416413
2e6b09584eaf3ce53b06298361c9dea2efe69a9a2551cf89c0b43ed3114a5648
GET /denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg?w=836&h=394&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 38096
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3df4acd97a054f8c"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg?w=836&h=302&ssl=1
192.0.77.2200 OK 18 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg?w=836&h=302&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x289, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 545ae77661b8698c0fac24aa4378785c
94f7b3acb45377d9989d5806480268d1ade92a93
abc62e5bf95b9e72448e759e089a6d56fbfacf21b5cb45117c0e6d1fe96eb0b4
GET /denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg?w=836&h=302&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 18232
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3f96045fad2e3734"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg?w=347&h=247&ssl=1
192.0.77.2200 OK 3.7 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg?w=347&h=247&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 347x247, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77bce31607cb16aada2a11e58524f1e2
f0ef70d0549e8868e7170586c715a89cf546cc24
7dad8652d2caa84568943f2d7e68f5686033c9155d055928cefbb9466ca28160
GET /denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg?w=347&h=247&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 3744
last-modified: Sat, 17 Sep 2022 10:07:35 GMT
expires: Mon, 16 Sep 2024 22:07:35 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "85080f7acbb2b3eb"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg?w=416&h=589&ssl=1
192.0.77.2200 OK 16 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg?w=416&h=589&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 416x589, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d69a042c2608bf760584451238f117e4
1649017bd5d2867fc8c309e4fdb21dbb36f9a876
89ae9c0f6ee8cd25c3a7a6a1423d5c4f6254e52b9e2f825fb65328e44b4f6a3f
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg?w=416&h=589&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 16238
last-modified: Thu, 01 Sep 2022 17:30:18 GMT
expires: Sun, 01 Sep 2024 05:30:18 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5d71c89fd70886d1"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg?w=276&h=391&ssl=1
192.0.77.2200 OK 8.7 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg?w=276&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash be1713dea138ea0f2403a598e5baae53
c7fd493e5d9d0860ccf6840b6df4460535861759
7f0fbc0a6cf5ad2fc4b102f5e50933d6df37d37c4f26b7533ae3232fe2dab364
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg?w=276&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 8724
last-modified: Thu, 01 Sep 2022 17:30:18 GMT
expires: Sun, 01 Sep 2024 05:30:18 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "df946ebbc6cdb91d"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg?w=272&h=192&ssl=1
192.0.77.2200 OK 2.5 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg?w=272&h=192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 272x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ca1178b36f28aa59822b6512184ed115
5f6890df88c3349954ef2ffcb1a0f01e62e451be
89518c1bd513f31187d917fcbd7a4dd194991284ff4c5d056aa0e0986ad776f9
GET /denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg?w=272&h=192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 2462
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3ad0798160260dac"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg?w=488&h=175&ssl=1
192.0.77.2200 OK 4.8 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg?w=488&h=175&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 488x175, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 074b9a74150ddf1a8a22b9d6b98c16bf
559a8382becbeb7efb013a89ca75571d71b5c793
4c41818fd04c926e032c36ac99fbe64142e9137810dbdfcc1c1ba99170148039
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg?w=488&h=175&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 4822
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8f083d420f14a87e"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg?w=762&h=148&ssl=1
192.0.77.2200 OK 4.7 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg?w=762&h=148&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 762x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 467d252baf3514b2d67d86ecf3b7aca5
dbf93dd06229e8070de467689f157c98fcf0c484
2da122354acd043e10d02e956ffc24330577b69ddf89cabbd9ab00c550602e54
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg?w=762&h=148&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 4656
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b7935e2864aacfdd"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg?w=238&h=334&ssl=1
192.0.77.2200 OK 8.1 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg?w=238&h=334&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 238x334, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a36cbc57337f2c16ccc0154beda71cf1
3f58209f854bb66e78bc39f4c1eab116d9bd04ec
5758a1e47f0a89906b00822700a03b2b8288efdd198d983acda652b3f944abac
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg?w=238&h=334&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 8110
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f771b5b8d55cc222"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg?w=594&h=334&ssl=1
192.0.77.2200 OK 205 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg?w=594&h=334&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 205 kB (204822 bytes)
Hash fff88809de51dc27783875e0bbd44f44
4c2ce784cd466536bdbf748b36aaa6fda3f31deb
18ac8296afd5290ebb8fa079d5e668fd81130ac2ed33c685f8fddb10106d15a8
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg?w=594&h=334&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 204822
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "09669434f60e4fd5"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg?w=360&h=240&ssl=1
192.0.77.2200 OK 6.9 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg?w=360&h=240&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9aec9acdf8c83dc511dc37d07682ffae
181e3145792ed51a15d679304136fe39f16e6ca4
21c1c5744a22b958b3bd5262eccb94e74057c3579b58cfb097c7002cdde522f0
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg?w=360&h=240&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 6856
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8ef4a1006a43e3cd"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg?w=391&h=339&ssl=1
192.0.77.2200 OK 3.3 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg?w=391&h=339&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 391x339, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 475be5f492d3263312976ff77fe67ea8
99c8a072b79d76c30e7d5e9b4241abbb40863195
1a41f95cca7304aa13f7b9652294b9feeec3bdb2fe7536c46d9f3904e716c716
GET /denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg?w=391&h=339&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 3274
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9793f136e04a54cd"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg?w=391&h=276&ssl=1
192.0.77.2200 OK 6.8 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg?w=391&h=276&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 391x276, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e3ed6dad044fa439ce8c25f77040423f
ab1c6796eb406fb7e20c67b17e71e9fb7092a6e6
c5f6b51546218a12fc52cef56537d56619282353bd4722a2a422d51d3ed8ba07
GET /denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg?w=391&h=276&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 6848
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ff1e51758bbf6543"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg?w=167&h=166&ssl=1
192.0.77.2200 OK 7.2 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg?w=167&h=166&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 167x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dcc708927d66b325ea659709d7bfb1e8
ecbb604c5e4e284b9069cd0c7ea2e0bb8333fb97
67f74231726d2706b3d90130cb07458b9efb2571efb2e638a9bee397ad520257
GET /denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg?w=167&h=166&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 7204
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5b572445b8be7bff"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png?w=1200&ssl=1
192.0.77.2200 OK 267 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png?w=1200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 267 kB (267230 bytes)
Hash 2f78c6ece059f19b0b2b58f3b265d7f2
b9cc8c8c6925549c1a6a4451018b0bc1bb377b88
0bf6635adea54616336ef022d4f6a5247cf394ca4d749a5654dde43299ce0149
GET /denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png?w=1200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 267230
last-modified: Fri, 16 Sep 2022 06:10:47 GMT
expires: Sun, 15 Sep 2024 18:10:47 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png>; rel="canonical"
x-content-type-options: nosniff
etag: "037a8c6a3f87919d"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg?w=278&h=389&ssl=1
192.0.77.2200 OK 16 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg?w=278&h=389&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 278x389, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3792f0434b4f02ce218ff901c52ea756
85cfe46c352430074217cc5ec813afdec925769c
0efee8f5e5c18e3872e5698a2db7eb3f45535259c388afa7bcf24de4e0aaf6f6
GET /denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg?w=278&h=389&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 15524
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "efc0a6fd64eb0dfe"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg?w=485&h=247&ssl=1
192.0.77.2200 OK 8.0 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg?w=485&h=247&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 485x246, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5978c7879d13c881702a005d63cadf1e
efacaefe01acedd8e74000c7bf747c6f127e0326
d39a1fa76377efcbb7ddcd47e72ea42325f7f5803b432c53b4d5edee8cd70365
GET /denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg?w=485&h=247&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 7958
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "90547a49f9981899"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg?w=418&h=585&ssl=1
192.0.77.2200 OK 80 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg?w=418&h=585&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 418x585, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash efe0f314738b46b7bb09637c1862d5a2
b0beed8dcc7b5b7169c58a9986e0c0269a66730a
9f99b76d53cba1b504b2e9c8b119be0c5ca7c925b41a30527aa7db532113012b
GET /denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg?w=418&h=585&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 79794
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f3eecc4886fbf381"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg?w=441&h=619&ssl=1
192.0.77.2200 OK 76 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg?w=441&h=619&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 441x619, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66fbd6a2e6f8477c68950748d017677f
7d9c87c61a921bca8f29372acc3611b7971aa0d7
8998a0fb6907ffaf7adbaba0d8f8a30430c5baba79c3fedaa90e67d2b2ba5d0c
GET /denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg?w=441&h=619&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 75456
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "666f5fb6dc510e06"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
denkodrom.de/wp-content/themes/twentysixteen/js/skip-link-focus-fix.js?ver=20170530
83.169.35.10200 OK 588 B URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/js/skip-link-focus-fix.js?ver=20170530
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 6209669d9298e364d532dac780c3b015
a00a7286154427c580f0b5fd65ffab6148662104
7f119c8a8a132ff8c30088b18d4a4479c2d4fc1c65c275f49348db4de92fc58f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentysixteen/js/skip-link-focus-fix.js?ver=20170530 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "423-5e128a4864b0d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 588
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/responsive-videos/responsive-videos.min.js?ver=1.3
83.169.35.10200 OK 406 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/responsive-videos/responsive-videos.min.js?ver=1.3
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (777), with no line terminators
Hash 39593a85fb622426c540b5d71bc4543f
7b2536b7210e340b7e7166b28c73f8de70ee1cf5
078b3ac68fb4fe678b0372e8a6844913d22d9bda991d6feb64e9b9bc3c81ba1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/modules/theme-tools/responsive-videos/responsive-videos.min.js?ver=1.3 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "309-5e128803e7517-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 406
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/themes/twentysixteen/js/functions.js?ver=20181217
83.169.35.10200 OK 2.1 kB URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/js/functions.js?ver=20181217
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash d03942453ec530effaadcfffcd4bada9
49e6b8c586d6919d60fd0d94849cc9060b7efcd6
48a2e867393371e38135d2087c0c7f6e1a3170661e66cb042b24b989faf6a428
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentysixteen/js/functions.js?ver=20181217 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "1ca1-5e128a4864b0d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2084
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/widgets/eu-cookie-law/eu-cookie-law.min.js?ver=20180522
83.169.35.10200 OK 669 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/widgets/eu-cookie-law/eu-cookie-law.min.js?ver=20180522
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (1604), with no line terminators
Hash 96910fa5e877382dca1d53961c945dfc
6d8a48dc7873d601d1836904a73c63a2187627d8
5f4fc85b7b1e489bffa35e361248937db954246932e0188efa9f0bee621b9b89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/build/widgets/eu-cookie-law/eu-cookie-law.min.js?ver=20180522 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "644-5e128804a96a2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 669
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=11.0
83.169.35.10200 OK 7.4 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (24247), with no line terminators
Hash cfeb5cda9604ac407a38e2e38c550686
3a590af7eb2c38f99cf4046f4e1d19f1f2d685a0
9f45f4938861e2eb25fb613b2f5b080a2bc91d29758b3e7c34fe78a3277d0ea9
GET /wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "5eb7-5e128804a7762-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7408
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js?ver=11.0
83.169.35.10200 OK 1.1 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (3156), with no line terminators
Hash 83b62b43597cbf6234809db22be8a07d
d9213019e87b6ea47ab3e21ab7517333e5c6a569
c0ec22e47b171f212b70022432369149ab57d0a1640edb9c68db7395d7691af1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "c54-5e128804a8702-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1115
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg?w=278&h=389&ssl=1
192.0.77.2200 OK 24 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg?w=278&h=389&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 278x389, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3b56c76ed59360f9e8e63816c6bb527d
7b6832145496a13e51c56c5bd146da158db32b6b
d1e16c24bceb23a5cd08c72cb15de1eee8aef8bd0148261bd26dbe6a2dc053c1
GET /denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg?w=278&h=389&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 23862
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e992f8693dd6c7ae"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg?w=70&h=148&ssl=1
192.0.77.2200 OK 3.3 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg?w=70&h=148&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 70x148, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1bedb15150ae5fdee398b378424712ca
ecae2bbc39feba5b1d1e0fd1d9a22215ac55d6b2
2d4d3ff7123b1bc173920f9b074347b647d992376a5574f89ea778d48f1e17e6
GET /denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg?w=70&h=148&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 3296
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0d02fece5dd80851"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg?w=472&h=240&ssl=1
192.0.77.2200 OK 21 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg?w=472&h=240&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 472x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c428325f5b42aa9ea571c496389000f4
3def4ce4d3e5b4c65a3be251ebf6a5a2c260d8dc
4a842bcb6492a1c6adbfc99f9d55c76da9811be06462cbef514c5aa574920645
GET /denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg?w=472&h=240&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 20676
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "55e425197b1ce57a"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg?w=344&h=175&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg?w=344&h=175&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 344x175, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 18808118d6b9b4b438345373504dbf2e
588ef2a2369b54d273b76705a4ab5f2089bcacc3
31df5a03b5739fb2ddebc6b4c9c75a9dc10a548c19b72ae16704c39aed59bdb2
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg?w=344&h=175&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 13546
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "96b96e365a540da6"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg?w=272&h=193&ssl=1
192.0.77.2200 OK 6.9 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg?w=272&h=193&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 272x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 43bf53db1ddb84cd668f1af6f3376930
1e1a57cbdd8307d40aa5a15c07e96be1793a70d6
f82ccd54d6e169c5d2bb9ade60ed6ead63c42eb106e0984c047fd440bb8b9bf7
GET /denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg?w=272&h=193&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 6948
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e8d174ce480af498"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg?w=414&h=585&ssl=1
192.0.77.2200 OK 25 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg?w=414&h=585&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 413x585, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0b5584eab8c9f3aedd7ca44c8678154b
12fe19e72cd16345f69396a0760af992d7cf3e94
0372b829552f22de7828fa3384bf7ba1b045a4382d81dd1ac0f1010a1eb02695
GET /denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg?w=414&h=585&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 25096
last-modified: Tue, 20 Sep 2022 12:10:41 GMT
expires: Fri, 20 Sep 2024 00:10:41 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d9a66367e87e2ba4"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
denkodrom.de/wp-content/uploads/2016/10/denkobackjpg2-1.jpg
83.169.35.10200 OK 17 kB URL HTTP/1.1 denkodrom.de/wp-content/uploads/2016/10/denkobackjpg2-1.jpg
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x671, components 3\012- data
Hash 08d2b87e4125702bb5fcd9335ba2b982
43e7a7cfc75bad3ee10be249df53aff2bace5a29
8faa01bf08a525321a53124d8d3ab96de802e7e2f98dea7f8212bc099a2695b5
GET /wp-content/uploads/2016/10/denkobackjpg2-1.jpg HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 12:10:41 GMT
Server: Apache
Last-Modified: Thu, 11 Jan 2018 16:37:36 GMT
ETag: "41bc-56282c3ee5400"
Accept-Ranges: bytes
Content-Length: 16828
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: f/FAOUogYM9+pGjQAC9Isg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mGfT6khGCNh8xEHAwDTicXJshXM=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a16da6a23b1dbb748cfe8380aa2dc387
5548a11aeb8799c7ec396b4f19eaf1e83d42e866
2a44b30143f3c6f1656f3674c3fa53127e25d309b8d0dc9f1a9f4ccb7f618b97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6420
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Last-Modified: Tue, 20 Sep 2022 10:23:41 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.wp.com/g.gif?v=ext&j=1%3A11.0&blog=117751703&post=11&tz=0&srv=denkodrom.de&host=denkodrom.de&ref=&fcp=0&rand=0.25800107908276426
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A11.0&blog=117751703&post=11&tz=0&srv=denkodrom.de&host=denkodrom.de&ref=&fcp=0&rand=0.25800107908276426
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A11.0&blog=117751703&post=11&tz=0&srv=denkodrom.de&host=denkodrom.de&ref=&fcp=0&rand=0.25800107908276426 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Hash 101cf2a65d64322878605fa8472bb025
6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:14:55 GMT
expires: Wed, 13 Sep 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 586546
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19780, version 1.0\012- data
Hash 03717344e4dbb2de44988b281bb7430b
0cd3f7724bd0a5bf2460e1a85e35ccfbd5e85c05
499ec54eb2afd103ec37505e23c6570fc7d89a0d728dde19d87a092e4a3261b4
GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:37:09 GMT
expires: Wed, 13 Sep 2023 17:37:09 GMT
cache-control: public, max-age=31536000
age: 585212
last-modified: Tue, 26 Apr 2022 15:48:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19900, version 1.0\012- data
Hash bac4e4fc860f0a92beb62a776048f7c0
26eb7089b1050997d371be35946a12ae0cc7218f
3642df12f0d930d5846a96652080908eb2f383b602a95cf80d1e6227e66e1c46
GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:58:37 GMT
expires: Wed, 13 Sep 2023 17:58:37 GMT
cache-control: public, max-age=31536000
age: 583924
last-modified: Tue, 26 Apr 2022 15:46:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png?w=600&ssl=1
192.0.77.2200 OK 128 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png?w=600&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 128 kB (128518 bytes)
Hash a166375aa2322bde7122a41d357579c4
32fdf43294aa05d56a3181195b8e1a73bb6e5150
d5a3bb3094b17ba2ea95c8a5f3eb9b656c19d94fd9fce44a172957aeef68af9d
GET /denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png?w=600&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 128518
last-modified: Fri, 09 Sep 2022 04:20:54 GMT
expires: Sun, 08 Sep 2024 16:20:54 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png>; rel="canonical"
x-content-type-options: nosniff
etag: "781e8ea9fed84b4e"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inconsolata/v31/QldgNThLqRwH-OJ1UHjlKENVzkWGVkL3GZQmAwLYxYWI2qfdm7Lpp4U8WR32lw.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/inconsolata/v31/QldgNThLqRwH-OJ1UHjlKENVzkWGVkL3GZQmAwLYxYWI2qfdm7Lpp4U8WR32lw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16244, version 1.0\012- data
Hash 8e34cbcc4dfe30cc0f1afc341388aad8
feb205d0a09ad06d4fb1c62d2b61fb91c8015cef
4f9f98d74dc5dea24db279aedd49367424c72cba9fb67341cbef8bcd2f0ad002
GET /s/inconsolata/v31/QldgNThLqRwH-OJ1UHjlKENVzkWGVkL3GZQmAwLYxYWI2qfdm7Lpp4U8WR32lw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 22:52:07 GMT
expires: Sun, 17 Sep 2023 22:52:07 GMT
cache-control: public, max-age=31536000
age: 220714
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:16:50 GMT
expires: Wed, 13 Sep 2023 17:16:50 GMT
cache-control: public, max-age=31536000
age: 586431
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 415823
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 8.3 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 78558a4cad6a7e70d8d33a973011f0d7
5846d954715e381b367fbdd492425ecc37b00f67
770dffb9ef9042973011c73e1384c6e8b480fe55fa9d851f9285bfea548464ea
GET /denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 8328
last-modified: Fri, 16 Sep 2022 06:10:48 GMT
expires: Sun, 15 Sep 2024 18:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5b3911e792f48bcb"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 548 B URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 203b1c998a993b8933ebff28a0f20006
345b755b2b13f812520aa0fa4299b47d031d73c3
fe6272f811111aedc53f01ec009b6c3d58e12ee788aae9341543fe5464a257c9
GET /denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: image/webp
content-length: 548
last-modified: Fri, 16 Sep 2022 06:10:48 GMT
expires: Sun, 15 Sep 2024 18:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "2a37dc05f6267af3"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 257923
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a16da6a23b1dbb748cfe8380aa2dc387
5548a11aeb8799c7ec396b4f19eaf1e83d42e866
2a44b30143f3c6f1656f3674c3fa53127e25d309b8d0dc9f1a9f4ccb7f618b97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:42 GMT
Last-Modified: Tue, 20 Sep 2022 10:23:41 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14423
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 12:10:42 GMT
Connection: keep-alive
www.facebook.com/plugins/post.php?href=https%3A%2F%2Fwww.facebook.com%2Fcandidecamp.zeeba%2Fposts%2F2043036402619432&width=500
157.240.200.35200 OK 17 kB URL HTTP/2 www.facebook.com/plugins/post.php?href=https%3A%2F%2Fwww.facebook.com%2Fcandidecamp.zeeba%2Fposts%2F2043036402619432&width=500
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23336)
Hash d59f9814c2b18a40ae82c70e72cc2d6d
6ad9033ec31ba0c1566b315d8b3aea76cb75d45e
4580a17a5c939185c03a8b6617636f8076ee9f129d963d36d1a2a74deb06cbd3
GET /plugins/post.php?href=https%3A%2F%2Fwww.facebook.com%2Fcandidecamp.zeeba%2Fposts%2F2043036402619432&width=500 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: QM57kyEtl3EAh811X6aUx9AHVkT0LIZV+bTuKRcEICF0CRHp1h3UBqxthD6IjhKqorZSYktg2XA4j11PuRNVcw==
date: Tue, 20 Sep 2022 12:10:41 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 50459
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49ffb7cd4c40b37f5b61c1fd86ee36ec
4188174bf6e595335f784d2bf9c90db57294b2fc
5af29dbb676f5a38288e73e9ca4feada901ccfb06385110ca0a46a4970532d32
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7358
x-amzn-requestid: 88cc5413-2f66-4dc6-b20d-57dd16e77e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugqUHZIoAMFd3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e175-7357c2251f4434bc4686f9ed;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qL0OjiglHkC5171Q2CTvjoOnpkRsGs9I949IDf-PEYOg5S_hiPUpyA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "4188174bf6e595335f784d2bf9c90db57294b2fc"
content-type: image/jpeg
age: 50459
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 50177
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 50458
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 7480
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4653898fc83ae1b62d9b975658cc7fe9
adc6def18885ff49efd6b61c47d4b36eaca057b4
642a2e27f6635db0f9670cce2cba91f24f881db8f19d3f9b00e439f746fbc225
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6961
x-amzn-requestid: 3177a5d3-6be5-426f-84ff-c044443c8627
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugHuHGZoAMFuwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e097-00d08a4e1c0ebd3f62716843;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:19 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _dXQRIghNGF2FVKY8rbWdykpQd225TT_e645hfVwkq8SMhT5O16lFg==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:53:49 GMT
age: 51413
etag: "adc6def18885ff49efd6b61c47d4b36eaca057b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3146bb0aaba22619df206969792ed383
07db3170920b9ba82ecf00e6135eecf08f167942
cba7793fa0a6de6486e3515f886a42efeb21f3b4c84d5e7395f6468a5925d27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 11:59:23 GMT
expires: Tue, 20 Sep 2022 12:14:23 GMT
cache-control: public, max-age=900
age: 680
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 20 Sep 2022 12:10:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3146bb0aaba22619df206969792ed383
07db3170920b9ba82ecf00e6135eecf08f167942
cba7793fa0a6de6486e3515f886a42efeb21f3b4c84d5e7395f6468a5925d27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 9.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9954)
Hash be64cd173090e3a98e38a422d5930c56
5c196fb94edb4d634bad160a99f3918260d23be3
0ffe4a73f2d08fa7dae5286e54d9e1f779422452cedfb44422a90ed24d409617
GET /rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:01:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vmTNFzCQ46mOOKQi1ZMMVg==
x-fb-debug: 7sN2xnZ9tBBcCnVQkthUAh512h2J9yropQsN7AC0enGYxL5jZxiWCYsdlSYO37SfOzlAYVwcgOcKEC6bxpcTPQ==
content-length: 9071
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:11:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: GGZU41/6Z3sSBrvSSR/Xv2Vo3Azq9sdBtvima5pKC2meCDlj6cuqmUZeoWWh6Q1xm0VdAhU2xavV/8mp2X6VZw==
content-length: 338
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2052)
Hash 883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612
GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 23:21:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: fhsLl0YjqSJqoV13JDQuIhdo/OX0Rs1cu8RUFdHOyPNKeiRXL+6eELxvTCu8eNpLboXkpb1VNLUfW2D1iOJqLg==
priority: u=3,i
content-length: 1689
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (10562)
Hash 9e2bdbe7a93b2f7081ef82b9f0485189
f94f93c1a8edfe7b8d24d38dbef0a252cc9232cb
02eea737d55d4c6031954bce18961d8d5d300835592ca6b3d908f198694d919f
GET /rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:49:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: nivb56k7L3CB74K58EhRiQ==
x-fb-debug: xSOHPjhfS5TVivp/BrFuVJtP/wu9OX5uWEYXUNmjvDoqBIwIr976xDKb7ZIrNBb7slqEf9gYxnKIEZFUbBmAIQ==
content-length: 5319
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2973)
Hash ffe7b79ce7ca26f6f708ddd1d38ee3e7
6380b17543d221a6934c145232fc385aa965fa1d
9c68febd9ec67b45b9142a70128f1ab52fe3ec35b1d5749d15387ea514c8743a
GET /rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:51:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: /+e3nOfKJvb3CN3R047j5w==
x-fb-debug: T59lo93DLmSFCSAjMHpZ+cwQ/PQZ2ANebCJm+WDMegBD2sFl3GqJ0IblepyY8vz+nua8QEWlnAA86pxQGxVfZA==
priority: u=3,i
content-length: 8455
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEBX4/yV/l/en_US/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEBX4/yV/l/en_US/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (6030)
Hash 8eec5b8222e4e20ae7fde9e9ec03fa5b
0d86a7995567e84f483559569f6dff454ece6c24
af75b48fdd20abff68ab1328c1ac768b379ca856e881928999b2d53ee0de519a
GET /rsrc.php/v3iEBX4/yV/l/en_US/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:21:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: juxbgiLk4grn/enp7AP6Ww==
x-fb-debug: OeZ6OIjh8Vhq96AdRN2FfJrmZC0HIQsDlTC8LyXjl/cjBdXTj4HOfTzTq2/nD+ASykzAM53hIUmlhfFaMyteJA==
content-length: 8502
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (7367)
Hash 2e6b8fb5c99f65f0290910a108d70b59
259614e8da07b8bb8f9f97145960c80d5a3a8301
d78f36b2062bcb9f609e318cb082657e04ad0d1c89b090d7a88b44d1b390fcd1
GET /rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 23:46:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LmuPtcmfZfApCRChCNcLWQ==
x-fb-debug: LUWwTcUwRS0T4R3+e9WRpk7hAz8LxkkzaXul5TrzabC5TYzcd6sQiJKekMUomHwOzt3g23mG5qj3hKz0XGqBkA==
priority: u=3,i
content-length: 15970
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/l/0,cross/H8orIn5UqAM.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/l/0,cross/H8orIn5UqAM.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type assembler source, ASCII text, with very long lines (2642)
Hash 6f9dedd724a098238a7eea7335ec0bb2
977565de0431a07272e12b3966e16b0226266550
bb2b30c06c651f7ca818303265ff49124b1aab2f151a0fe7d12ed750ea2560b8
GET /rsrc.php/v3/y-/l/0,cross/H8orIn5UqAM.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 20 Sep 2023 08:10:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: b53t1ySgmCOKfupzNewLsg==
x-fb-debug: IB58jO4KTlOQVAehLQOqIznHt2PnVAzZjQkLufOpogpMnXvetJOSZx6ppTSy7nXEbjdGVY0y2A0Kp34wGJARIQ==
content-length: 4762
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (4719)
Hash 2945746953ed7f2aadd91bc0b2b1ccfe
3639a712bb93ae69c53b001ad51d193cbeece74a
2c84d5c120c9f219e31da05011207463d935bbeface344f9cb09879c3b8ba9ce
GET /rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:34:28 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KUV0aVPtfyqt2RvAsrHM/g==
x-fb-debug: M5xbOABx9sGuAMBdPDUr+BMWQX7LOokn5Qtb2Of6xLqbz3Y93kCzIC6sMWijv5z7SgzYFNzgQ6hj0m8jB2D4uw==
content-length: 5550
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4129)
Hash 7614efba617e235ae864911e15a63a27
5eb6ee4e1d2db3866ebcbc35b76352c719c36255
3c2783c57f48e1b749c1065ddcdf2f5184582a2bc799b1ee832fdf79c62b9557
GET /rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:02:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dhTvumF+I1roZJEeFaY6Jw==
x-fb-debug: Kl3txh/0O8vb0D7ure9Ich5biO876bjwiHSyqO56RpT3qZlHXaCqtas08bg4tkBMAwLsdmzn5OwBw83rQAJoDA==
priority: u=3,i
content-length: 7311
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 20 Sep 2022 12:10:43 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (15853)
Hash 23b8fd6c3f4a5154a33f3c1e35dcb90f
4423853ce11522c7524269013e7753c7f6213c8c
835037446a5392ff50b01617d33122a078a8ad886e9d07dbabeb91f02b4c9999
GET /rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 23:35:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: I7j9bD9KUVSjPzweNdy5Dw==
x-fb-debug: TOsQ9Q1QpTX8YFHJHnkG4IN71OUrAkN7chkI0PhfDMiS1Hjm+LKzGvngcNtTLXWs35gcqNz48PP/RcIds/5djw==
priority: u=3,i
content-length: 16371
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42045)
Hash 58dbeeb1a23bb44fabf2c50e0884a170
c3c6a7b58d90c4b7b135758d99911465794dd9a2
b49ba6b6ba373668ac5d82d37a0aa689d913579384477b5a7b8be059c2c2bd96
GET /rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 03:28:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: WNvusaI7tE+r8sUOCIShcA==
x-fb-debug: oq1+0XwJ/l7Y+1p4pKPf8/izK4F1q9DyzOR6jTvfLzp0khZaNRSWo56ZhORHMvEe5nyea1vgkVDip2G5avL6cg==
priority: u=3,i
content-length: 23388
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 06:48:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: BWoKeSty6egwJE1HqSdlEHxWsT8EIfiJaW04/EzvcfYdU5s/Q9jvLxzG++a+AE3+hdDZup53g3KTnC0sS9hV6w==
content-length: 827
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/PU4XElb3dEc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 265 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/PU4XElb3dEc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (993)
Hash e0e78328c7d39527b50d23be97ec21cd
cb983ba70e6d934d7f973fce0741dd6f395f4356
f556751ac7feea7f563ae2b7f13227fedc78aebc85e572ca7d8522cc891110b1
GET /rsrc.php/v3/y1/l/0,cross/PU4XElb3dEc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:03:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4OeDKMfTlSe1DSO+l+whzQ==
x-fb-debug: XSMFySITSYGR5OkG2Z/rxqWj7f1EppuX83L3aK7eqwIbcvs9jB/T1u/Y8AppA0/BtV3+OMknF8otwPo46sHsDA==
priority: u=3,i
content-length: 265
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y9/l/0,cross/H8ot5psuu7W.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y9/l/0,cross/H8ot5psuu7W.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash e09a971dad13f2d7d5b631ffaeaadd16
25281b3a99653d664b930611db0641773e6e6e2e
14ba5222cbd8a08ac0742919faf6ba8b4b33ba5d735dbb522a1bcf85029fa8bf
GET /rsrc.php/v3/y9/l/0,cross/H8ot5psuu7W.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 20 Sep 2023 08:00:32 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: 4JqXHa0T8tfVtjH/rqrdFg==
x-fb-debug: L1Uj3GsJnKYHEGiB0u8hOZ6OquL3c+AttUjQwoD69a7JtZ8nHccYwyaGgu/2/ScoTQ3X+fEDnRh0Qp0vb0iAXg==
content-length: 5082
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4556)
Hash d162f6af013f19ae6c43e3cfc69a2db4
806a400dc8510158b36d430ac4d2f054da090a83
1a243df2e9541c1c1ab933f2d0bc049426a5de8c8f937e6b53a3093c6d9dea97
GET /rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:49:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0WL2rwE/Ga5sQ+PPxpottA==
x-fb-debug: p6qANsfnBxVgh0brT/W9N8I+JHRCawPq68RMJzW2Y0VNQcri01NUVwacHeE7nlI/dBv4magunmiUYjL2aG/JFg==
priority: u=3,i
content-length: 6691
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5329)
Hash adcd01b197549ab05ed54746a81151f8
edb56528c008d8a431e350179ff6df1aa40c2ae6
e6456b195e1064b44db169404417d1c68777133c14d6188bd9ffdfc60e70393c
GET /rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:46:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rc0BsZdUmrBe1UdGqBFR+A==
x-fb-debug: C07wPTKkFnDbXPQ8vUNI3lcu/5k/bTda27QKkFJ9VZyjj7xORU1WFpcBwCcD6MzV+uZmh6QVmeBURIlfIWfoiw==
content-length: 12252
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 005f9ca7a90e837713461c0dbc7b67e4
f36cc292d57f687a7ad1fd04773761e9cf0e935d
6a1cb1d6d3c0f8a1f88faa3473791e80e560a70df7c39be65111e81b127d451d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 20 Sep 2022 12:10:43 GMT
server: ESF
cache-control: private
content-length: 30937
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36110)
Hash d348ea7c67cf70cc27add8ec15920c5f
46b2db74425f5c6c10c69831277b83c76c8c24b8
e9198b139add4e4683e04549366c63b57000c4e9d719c0e5820124d63d0fccff
GET /js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:09:26 GMT
expires: Thu, 14 Sep 2023 05:09:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Sep 2022 11:00:00 GMT
content-type: text/javascript
age: 543678
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4c49cafcb6c1050bd6062ca77021b0f
391b19a1f787aaf2769aa4d8b77c8a494b7ccf58
9a41450a0f09390e532d6193d9309fee56fd9a2512375af64516f88b330674ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4aebec42ca2e6505dc8921d4e374fb5e
e43838649932d95af63c651d94b8ca67845156ef
01edca4a2f977f1dc6c0a068f97fd17e04dc96d88d9664107af3b2ffb6f18ffb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/DEROcJF1-NM/sddefault.webp
216.58.207.246200 OK 64 kB URL HTTP/2 i.ytimg.com/vi_webp/DEROcJF1-NM/sddefault.webp
IP 216.58.207.246:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e408562a04481e4ce5c2f25b43ba1d85
10146dd9c73b60665ce2da4459847ec12413db95
4f18f12547fb74814350dfffe1d9c318bed19eece044a4002460a96b4eb264c2
GET /vi_webp/DEROcJF1-NM/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 64134
date: Tue, 20 Sep 2022 12:10:44 GMT
expires: Tue, 20 Sep 2022 14:10:44 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 02a7f9f20d565aa182c7b2303bd9a307
869c68091700d06408e3488b6ec644e2121e1944
a9c2f78d69b97230d5b3d4755a358d579a379838c78c538c8b30d9e0159a8bee
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 20 Sep 2022 12:10:44 GMT
server: ESF
cache-control: private
content-length: 31017
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4c49cafcb6c1050bd6062ca77021b0f
391b19a1f787aaf2769aa4d8b77c8a494b7ccf58
9a41450a0f09390e532d6193d9309fee56fd9a2512375af64516f88b330674ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/jxeXkrpYDblCejRN7iqYpX9U8nD3i9NGZesN28RkGUx59xYz0Nkr2Nz41DZ2TueuCy3OTXhHkQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.5 kB URL HTTP/2 yt3.ggpht.com/jxeXkrpYDblCejRN7iqYpX9U8nD3i9NGZesN28RkGUx59xYz0Nkr2Nz41DZ2TueuCy3OTXhHkQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 97dc495b1bb3fb3a194db09a5a6deba7
e804387f16ff66b37f93027dfc809ca9cb179246
5833b855cce7db96c29b2efbb2db8ee6249424b2f616f5667d7931eb9c52b080
GET /jxeXkrpYDblCejRN7iqYpX9U8nD3i9NGZesN28RkGUx59xYz0Nkr2Nz41DZ2TueuCy3OTXhHkQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Wed, 21 Sep 2022 12:10:44 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 20 Sep 2022 12:10:44 GMT
server: fife
content-length: 2479
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/T1oMBrgJQCd.png
157.240.200.14200 OK 522 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/T1oMBrgJQCd.png
IP 157.240.200.14:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash b4fb567dfdf0df35a097f6e9ecfefd34
f9aa0cbb0dcb1442c15f39e84279c8568ac86beb
87790b81d9cc99d100bc5996e0f70701a922877b1f7f9afc3146d4b17522b510
GET /rsrc.php/v3/ys/r/T1oMBrgJQCd.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: tPtWff3w3zWgl/bp7P79NA==
expires: Sun, 17 Sep 2023 00:13:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 8+mKqo9W0F4KJ5SnKMlD1oaKMDh2gEuRKyyIujkSc3ioJo2JHXu4/KgTdqT8F6tsx7+kxL7i6ALCeVGAcnzJJg==
content-length: 522
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:44 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu_aw9MXQc5C_1EpRKZ7UcxJzXgsy-M2MWh-_K3S=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.5 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu_aw9MXQc5C_1EpRKZ7UcxJzXgsy-M2MWh-_K3S=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash fcb155793cabb63420fd14317463f613
00df053827c2923d23ae0329d1d7c96be4134469
49837245eaee16c633f8c71903f30c2469d8ea0bce53159f330a5d2a65316b95
GET /ytc/AMLnZu_aw9MXQc5C_1EpRKZ7UcxJzXgsy-M2MWh-_K3S=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v43"
expires: Wed, 21 Sep 2022 12:10:44 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 20 Sep 2022 12:10:44 GMT
server: fife
content-length: 2456
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4aebec42ca2e6505dc8921d4e374fb5e
e43838649932d95af63c651d94b8ca67845156ef
01edca4a2f977f1dc6c0a068f97fd17e04dc96d88d9664107af3b2ffb6f18ffb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 12:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/sIYDkHEBquA?rel=0&controls=0
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/sIYDkHEBquA?rel=0&controls=0
IP 142.250.74.14:0
GET /embed/sIYDkHEBquA?rel=0&controls=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=T0NfAJfRkHw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=JDU6Mk7SSRc; Domain=.youtube.com; Expires=Sun, 19-Mar-2023 12:10:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+877; expires=Thu, 19-Sep-2024 12:10:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext&display=fallback
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext&display=fallback
IP 216.58.211.10:0
GET /css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 12:10:41 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/Ox7ik5Xb-pc?rel=0&controls=0&showinfo=0
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/Ox7ik5Xb-pc?rel=0&controls=0&showinfo=0
IP 142.250.74.14:0
GET /embed/Ox7ik5Xb-pc?rel=0&controls=0&showinfo=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=FtKkAPGfUUI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=-2fC8Ln5KsU; Domain=.youtube.com; Expires=Sun, 19-Mar-2023 12:10:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+800; expires=Thu, 19-Sep-2024 12:10:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.wp.com/e-202238.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202238.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 12:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 11 Sep 2023 07:31:45 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
www.youtube.com/embed/nt7QAL3KNkQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/nt7QAL3KNkQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent
IP 142.250.74.14:0
GET /embed/nt7QAL3KNkQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=o9wnrkV6SgM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=hcSVwPyIHUg; Domain=.youtube.com; Expires=Sun, 19-Mar-2023 12:10:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+724; expires=Thu, 19-Sep-2024 12:10:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
GET /rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:31:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: RJohu9F/SyjiCbYqUg8owA==
x-fb-debug: b/9iM3h/ATaWKSyjpM2mDs84WsCeGkA+2fC9MuFXXf5VbF+0pDM4UQMxrk0nMX8kt+zJVcrKHJQ442C8HlUvIQ==
content-length: 91358
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 12:10:43 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/DEROcJF1-NM?rel=0&controls=0
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/DEROcJF1-NM?rel=0&controls=0
IP 142.250.74.14:0
GET /embed/DEROcJF1-NM?rel=0&controls=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=n1On7A3Mw8I; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=q-zqz2lnhyY; Domain=.youtube.com; Expires=Sun, 19-Mar-2023 12:10:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+870; expires=Thu, 19-Sep-2024 12:10:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/iUZTEdo21L8
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/iUZTEdo21L8
IP 142.250.74.14:0
GET /embed/iUZTEdo21L8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=g4Bh5OX2Tuk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=nz_TkCNHbaA; Domain=.youtube.com; Expires=Sun, 19-Mar-2023 12:10:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+044; expires=Thu, 19-Sep-2024 12:10:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/CaR-3UWI4vw?rel=0&controls=0
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/CaR-3UWI4vw?rel=0&controls=0
IP 142.250.74.14:0
GET /embed/CaR-3UWI4vw?rel=0&controls=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Sep 2022 12:10:41 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=T6BS66AaHh4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=kOl1zL1cZhY; Domain=.youtube.com; Expires=Sun, 19-Mar-2023 12:10:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+230; expires=Thu, 19-Sep-2024 12:10:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2