Overview

URL www.hebamme-jh.ch/
IP92.43.219.71
ASNWebland AG
Location Switzerland
Report completed2022-09-05 20:32:31 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-05 2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1660262238 Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (3) 344 2020-12-02 08:52:13 UTC 2022-09-05 04:38:00 UTC 23.36.76.226
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-05 05:10:58 UTC 35.83.91.138
mnemonic passive DNS fonts.googleapis.com (3) 8877 2014-07-21 13:19:55 UTC 2022-09-05 18:28:12 UTC 142.250.74.10
mnemonic passive DNS cdn2.editmysite.com (8) 11564 2012-10-02 18:27:39 UTC 2022-09-05 07:15:31 UTC 151.101.85.46
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-05 16:49:34 UTC 142.250.74.174
mnemonic passive DNS ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-09-05 09:13:39 UTC 35.82.13.103
mnemonic passive DNS www.hebamme-jh.ch (16) 0 2020-06-21 23:51:20 UTC 2022-08-12 11:50:39 UTC 92.43.219.71 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-05 04:38:54 UTC 34.117.237.239
mnemonic passive DNS www.weebly.com (1) 21455 2014-01-19 01:07:09 UTC 2022-09-05 09:13:58 UTC 74.115.50.109
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-05 14:49:07 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-05 05:14:21 UTC 143.204.55.49
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-05 08:52:38 UTC 34.120.237.76
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-05 17:53:49 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (2) 175 2017-06-14 07:23:31 UTC 2022-09-05 04:38:08 UTC 142.250.74.3
mnemonic passive DNS fonts.gstatic.com (4) 0 2014-08-29 13:43:22 UTC 2022-09-05 04:37:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 92.43.219.71

Date UQ / IDS / BL URL IP
2022-09-05 20:32:31 +0000
0 - 0 - 1 www.hebamme-jh.ch/ 92.43.219.71

Last 2 reports on ASN: Webland AG

Date UQ / IDS / BL URL IP
2022-09-15 18:57:27 +0000
0 - 0 - 31 gigermd.com/ 92.43.218.116
2022-09-05 20:32:31 +0000
0 - 0 - 1 www.hebamme-jh.ch/ 92.43.219.71

Last 1 reports on domain: hebamme-jh.ch

Date UQ / IDS / BL URL IP
2022-09-05 20:32:31 +0000
0 - 0 - 1 www.hebamme-jh.ch/ 92.43.219.71

No other reports with similar screenshot



JavaScript

Executed Scripts (22)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (52)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         92.43.219.71
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Cache-Control: private
Location: http://www.hebamme-jh.ch/index.html
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:20 GMT
Content-Length: 245


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   245
Md5:    68faa1b899e6c74fe9c8555322a293e7
Sha1:   18f18b23963b7be50b91141d8b5275b618bda332
Sha256: 4b42639ba3f05d139e4028aa4c4a42f9b329ecd6edd7fd3b4363e678645a3d93
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 19:44:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KMSbx8iwcbaZJ-c43QOTF90oSNR26QsHqgBrOLBpU8oZtv7veqyxMQ==
Age: 2843


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2806
Expires: Mon, 05 Sep 2022 21:19:06 GMT
Date: Mon, 05 Sep 2022 20:32:20 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XAueVjDswh-fk5-UrSDudByMBdCLIX2DsDLcUUEUvlKhRpm3nJ8UGA==
age: 69423
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /index.html HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Sun, 14 Aug 2022 20:42:06 GMT
Accept-Ranges: bytes
ETag: "023e3501eb0d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:20 GMT
Content-Length: 7314


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Size:   7314
Md5:    c94beb2b13d464c1a21a495331fd4a1e
Sha1:   529516f56d61fff88847e2175be553873c83a7d3
Sha256: dff64a4c83f034d0249f0d313584b48b4339472349669a733cb8021341d7c96e
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 05 Sep 2022 20:32:20 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 05 Sep 2022 19:38:16 GMT
Expires: Mon, 05 Sep 2022 20:29:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gtIxxbIGSPVAOYe0Y7to_48LYybW00Wx1ofadvr9IiCAKXG-EfBtnA==
Age: 3244


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3379
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 20:32:21 GMT
Last-Modified: Mon, 05 Sep 2022 19:36:02 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0MWmmsws8oF4abeSDZ2xAQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.83.91.138
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7lBeuPerW5yA/bRpRh8MIEOew7M=

                                        
                                            GET /gdpr/gdprscript.js?buildTime=1660262238&hasRemindMe=true&stealth=false HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: text/javascript;;charset=UTF-8
                                        
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-DS-Version: 1660509717
Date: Mon, 05 Sep 2022 20:32:21 GMT
Content-Length: 6462


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- C source, ASCII text, with very long lines (14060)
Size:   6462
Md5:    ded7d6766f865fb920b0215e156c880f
Sha1:   4c9f3d2c6ffb8b9cd539a737ee24215eb4beab53
Sha256: 6ae299197055afcb7ecd45b8cfaf34fc45a604bb46468ffbabdff30cd5a522cb
                                        
                                            GET /css?family=Quattrocento+Sans:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 05 Sep 2022 20:32:21 GMT
Date: Mon, 05 Sep 2022 20:32:21 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   472
Md5:    60fadf88b54e335b6243b8419d46b7d1
Sha1:   e10f7f20b72f782fb74f3c21f2165bfbf2993253
Sha256: 7b2b764c6611562b3c6cf97196b291bd2488f7522d6b06fa2d9bbb8abcddfbd5
                                        
                                            GET /css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 05 Sep 2022 20:32:21 GMT
Date: Mon, 05 Sep 2022 20:32:21 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   882
Md5:    f1f3c8d0ba46895d5d119b0891e31880
Sha1:   de105aa0c695a042c509ca7dd4c9dd5df6105171
Sha256: 7f6cd431355a752e3cd7873f1d0a89b488a563f675092bab7e31d358e13e44f6
                                        
                                            GET /css?family=Quattrocento:400,700&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 05 Sep 2022 20:32:21 GMT
Date: Mon, 05 Sep 2022 20:32:21 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   385
Md5:    0d582c553aef3f4aa73d81d99a9f6506
Sha1:   8ca4ed9070410fd919077a23d6090f35a525a49c
Sha256: decf04b0960798013cc8282f7e95ddd63d865031e34a6d63fbc696a6b03b7e23
                                        
                                            GET /css/social-icons.css?buildtime=1660262238 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 25 Aug 2022 21:16:22 GMT
ETag: W/"6307e6a6-3319"
Expires: Thu, 08 Sep 2022 23:59:37 GMT
Cache-Control: max-age=1209600
X-Host: grn6.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1639
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:21 GMT
Age: 937965
Connection: keep-alive
X-Served-By: cache-sjc10072-SJC, cache-bma1669-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 3
X-Timer: S1662409942.745407,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (13080)
Size:   1639
Md5:    243120f4b71fec847a87698dc4cbac6d
Sha1:   e13f40bd3e33d36e0d962600725068ca06f2f00f
Sha256: 3c533d4365608b04a206ffa7ad7f13714771e11bfde5b0e4253b19e29aa1c587
                                        
                                            GET /js/lang/de/stl.js?buildTime=1660262238& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Tue, 23 Aug 2022 17:51:51 GMT
ETag: "630513b7-2e5a0"
Expires: Wed, 07 Sep 2022 19:58:27 GMT
Cache-Control: max-age=1209600
X-Host: blu119.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 36676
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:21 GMT
Age: 1038834
Connection: keep-alive
X-Served-By: cache-sjc10027-SJC, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662409942.745057,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64820)
Size:   36676
Md5:    3bacd629bbb9243afa4fea31d9336161
Sha1:   9b9974127dfbbf60feca312257ec973365f2a963
Sha256: 19be869ebdf4121af00278b7c953c6a2d7c1d6873bfabc9c7d5cd094efb0459f
                                        
                                            GET /css/sites.css?buildTime=1660262238 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 25 Aug 2022 21:16:22 GMT
ETag: W/"6307e6a6-347ac"
Expires: Thu, 08 Sep 2022 23:59:36 GMT
Cache-Control: max-age=1209600
X-Host: blu30.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 29746
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:21 GMT
Age: 937964
Connection: keep-alive
X-Served-By: cache-sjc10049-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 2
X-Timer: S1662409942.745218,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /css/old/fancybox.css?1660262238 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Mon, 29 Aug 2022 23:13:57 GMT
ETag: "630d4835-f47"
Expires: Tue, 13 Sep 2022 09:18:42 GMT
Cache-Control: max-age=1209600
X-Host: blu106.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1218
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:21 GMT
Age: 558819
Connection: keep-alive
X-Served-By: cache-sjc10043-SJC, cache-bma1665-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1662409942.745677,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1660262238 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Mon, 22 Aug 2022 20:43:39 GMT
ETag: "6303ea7b-82588"
Expires: Tue, 06 Sep 2022 08:15:07 GMT
Cache-Control: max-age=1209600
X-Host: blu127.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 159020
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:21 GMT
Age: 1167434
Connection: keep-alive
X-Served-By: cache-sjc10038-SJC, cache-bma1649-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662409942.746485,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   159020
Md5:    19fd4a473c58275a9e8110c598292a56
Sha1:   3ff56cbf5a3677387aef743acdf1a8abf822d28d
Sha256: 89b155f71eeef3fb8d9c95ff95288c29a0b5b722d9c0a3dfdeadfea8b8032884

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 20:32:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/templateArtifacts.js?1660509712 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Fri, 15 Oct 2021 14:42:36 GMT
Accept-Ranges: bytes
ETag: "0160e5d2c1d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:21 GMT
Content-Length: 1635


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (1630)
Size:   1635
Md5:    ecd7ae470e2efe883e901bd61476d37f
Sha1:   110806dc541fea608d3898f88ea7d46317ac70c3
Sha256: 3ad878d8c7422210e24c400a566681187cc15ca466de4018eb99c27d688bd960
                                        
                                            GET /files/main_style.css?1660509712 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Sun, 14 Aug 2022 20:42:10 GMT
Accept-Ranges: bytes
ETag: "33b97b531eb0d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:21 GMT
Content-Length: 7628


--- Additional Info ---
Magic:  ASCII text, with very long lines (632)
Size:   7628
Md5:    f2dd927ed6601be3690dba8e0bbeb8d2
Sha1:   5dc28b98ec0a58f7e62f5614f8e01006b75195d0
Sha256: 3556011c34b6e53d6ec7aa752ba871870129cda6c68220ff9482b3538f6883e8
                                        
                                            GET /files/theme/custom.js?1556830342 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Wed, 19 Aug 2020 19:40:46 GMT
Accept-Ranges: bytes
ETag: "0f3f2a16076d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:21 GMT
Content-Length: 1759


--- Additional Info ---
Magic:  ASCII text
Size:   1759
Md5:    9db44c537270db23803193d4790ca6ad
Sha1:   ad71294b7adce0add4177cbf2b5f1be742df9d0f
Sha256: df5a810ec7fced7d39a2eca2991c3a963e45f44caa6a0bfa8dec9f0750434ae5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 20:32:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/plugins.js?1556830342 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Wed, 19 Aug 2020 19:40:47 GMT
Accept-Ranges: bytes
ETag: "80898ba26076d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:21 GMT
Content-Length: 15769


--- Additional Info ---
Magic:  ASCII text
Size:   15769
Md5:    d4b368221da90dedb4352bb3d4564d8b
Sha1:   75489a97986dc3040ac79a091d316283bea23603
Sha256: ddb7dff00e2e422a4d82bc6c108ff3d01214ceb15df136fcef8e966070139234
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11214
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:32:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11214
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:32:22 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7830
x-amzn-requestid: c56af3b5-2c48-4243-b220-d56a9be47990
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3H4JoAMFiMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-23ec24d867e3e5906fffa1a6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VgP7BDBmd5A5bAmRgO88geep419uZ0TQop4jEmRkx-q9rX4PUJZOCQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:16:55 GMT
age: 80127
etag: "3633391a8dd87ef10fcb0d04d7b309738affc4a7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7830
Md5:    290f6551c5ac539ea60810b135750f17
Sha1:   3633391a8dd87ef10fcb0d04d7b309738affc4a7
Sha256: d94d133faaf232cf15b5c3f38f5b45d87d70bce0668d607b5c66a8d3f836540f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb23e94d-8ec7-469f-94d2-e08f8feef5d5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9428
x-amzn-requestid: 050a7e34-6ee3-4562-bd9d-8122b0432cc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjaFXEoAMFjnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7af-4915a10726ffab79380d6a52;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8JY3zR6jyQuBUz51jRM-fAcXQnzsebpTEFX_DDOTrNFonbO8tB3BYQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:22:25 GMT
age: 79797
etag: "3578b5c8eba646e94f574a996703d6b7b4911ab7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9428
Md5:    e571197d8c99877f806a60c79368d657
Sha1:   3578b5c8eba646e94f574a996703d6b7b4911ab7
Sha256: 290a444ba0f434f25313d9ce96f93bcb749cb5c7d8bad51a63c2775539b594fb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XY2liZJvZjSSNT0u90GlCn3HGPxVaYO4xztkeALLJOTRRwruDELcvg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:48:06 GMT
age: 81856
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4426
Md5:    c81f3df885bdee8cac46ea9495e6b63b
Sha1:   fc766bca874a352a4acb569577d4cf6527f4f074
Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uz2NbcE4AmOvFQkhJALSpXCGizilya0TuFcczfEwtV09cGXtgVNlpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:08:58 GMT
age: 80604
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5652
Md5:    10318189f33f071dda64249ab9c8c5bb
Sha1:   e5b5b649a243e5c004d9923d19d4421d1ea96d23
Sha256: 3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5377
x-amzn-requestid: 2adc68e8-1889-4233-8ac4-e2a8d44ccbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_4XzF1FoAMF3AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63163a98-5918897d7de556f75bbfab34;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 18:06:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DpNb6dBygeDbRbFWIkeXYVddcgxlSVuq4y73JvG315Xp-wkwiDhZyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:09:25 GMT
age: 8577
etag: "b5a7380f294876dd308c7fde294f36a425c1be01"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5377
Md5:    c4b2d6a516e93799b54fe2bbd6630f86
Sha1:   b5a7380f294876dd308c7fde294f36a425c1be01
Sha256: 7463878d8967ff31d7ce20d5a4408c23ad59123032a990c21a47df0881edcb86
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GuATNx2xnWnEl0cr_2ZWZo_jOWbHlSBYksIeHFDoHAK9o5Tf0PPliQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:03:29 GMT
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
age: 80933
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8469
Md5:    30bf854fd3e27e2313a3d26fc43b9990
Sha1:   032acf1bfb0c8e2cbce8f2ff4d2964424b044951
Sha256: 7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13
                                        
                                            GET /gdpr/gdprscript.js?buildTime=1660262238&hasRemindMe=true&stealth=false HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: text/javascript;;charset=UTF-8
                                        
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-DS-Version: 1660509717
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 6462


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- C source, ASCII text, with very long lines (14060)
Size:   6462
Md5:    ded7d6766f865fb920b0215e156c880f
Sha1:   4c9f3d2c6ffb8b9cd539a737ee24215eb4beab53
Sha256: 6ae299197055afcb7ecd45b8cfaf34fc45a604bb46468ffbabdff30cd5a522cb
                                        
                                            GET /uploads/1/3/3/4/133447197/published/logodatei-judit-heri-hebamme.jpg?1634405943 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Last-Modified: Tue, 01 Sep 2020 09:09:03 GMT
Accept-Ranges: bytes
ETag: "5a13d2893f80d61:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 9088


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x189, components 3\012- data
Size:   9088
Md5:    8fc1728f0a997fec8f2203b18e72180b
Sha1:   4ab0baf8cc355e8791772042eb1d403559c992dd
Sha256: 570dae64e2a5eb78d1965e6f338ad308671fc71385d0612a9091bdd676104e4f
                                        
                                            GET /uploads/1/3/3/4/133447197/published/line_5.png?1626181944 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: private
Last-Modified: Tue, 13 Jul 2021 13:14:22 GMT
Accept-Ranges: bytes
ETag: "cd7cecfee877d71:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 126


--- Additional Info ---
Magic:  PNG image data, 180 x 30, 4-bit colormap, non-interlaced\012- data
Size:   126
Md5:    f780d3edcc94337d2b38bd6b14df9623
Sha1:   39594d39205b0ef6bcc8f0eef7dbe684d1790ecb
Sha256: 7604fcd7b7973ed8e34010892fb8d12de0da0fe519b525bd6926e6ed5a49d6b5
                                        
                                            GET /uploads/1/3/3/4/133447197/aioo5063_orig.jpg HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Last-Modified: Fri, 15 Oct 2021 11:20:01 GMT
Accept-Ranges: bytes
ETag: "1ea77998b6c1d71:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 89059


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x734, components 3\012- data
Size:   89059
Md5:    008391edf0f32d5140072b945e7ffa26
Sha1:   168fd7169a451decfeaa9283ece1111f68babfac
Sha256: 293f47bdc37223b47b55bc4963bd13f6b7fb51fde2ce4fcf2747433a2af5636f
                                        
                                            GET /uploads/1/3/3/4/133447197/editor/fgxh7880.jpg?1634296115 HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Last-Modified: Sat, 16 Oct 2021 18:20:45 GMT
Accept-Ranges: bytes
ETag: "c65c2589bac2d71:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 56965


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 920x614, components 3\012- data
Size:   56965
Md5:    d3911a0a0e94846623ce507df3f58185
Sha1:   7e7b93a0488878ab3e0c3fe14c09167be5e9aea4
Sha256: 33192c4c4179630d297887a9312dbdecdd0e1229c7a5381f5569adedca64d599
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Tue, 30 Aug 2022 19:50:08 GMT
ETag: "630e69f0-124fe"
Expires: Thu, 15 Sep 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: grn123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 25752
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:22 GMT
Age: 388422
Connection: keep-alive
X-Served-By: cache-sjc10034-SJC, cache-bma1649-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 3870
X-Timer: S1662409943.906314,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /uploads/1/3/3/4/133447197/bxps5778_orig.jpg HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Last-Modified: Fri, 15 Oct 2021 11:20:01 GMT
Accept-Ranges: bytes
ETag: "7aa59898b6c1d71:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 130647


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x734, components 3\012- data
Size:   130647
Md5:    3c7e7aa80dcbdada80046b38000b73a3
Sha1:   05e322dfa36853d6bfd905c0c00ec3544a62e9cd
Sha256: 03a6ae3013c2f87b88f1829e64b880d34853edd6e36774eb253e12af4264b0e0
                                        
                                            GET /s/quattrocentosans/v18/va9Z4lja2NVIDdIAAoMR5MfuElaRB0RyklrRPXw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 24232
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 13:29:00 GMT
Expires: Fri, 01 Sep 2023 13:29:00 GMT
Cache-Control: public, max-age=31536000
Age: 371002
Last-Modified: Wed, 27 Apr 2022 16:14:23 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24232, version 1.0\012- data
Size:   24232
Md5:    cbe1a8068bb09cd3931bbe4d89f768b1
Sha1:   7cc08b6e0ee00e2704b518af26c8b1851b412313
Sha256: 194c18a2b5dd01fb3f988112f03fdba314ad5f0051ecb8b2fbc652b7e7e46438
                                        
                                            GET /s/quattrocentosans/v18/va9c4lja2NVIDdIAAoMR5MfuElaRB0zJt08.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 24320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 12:11:46 GMT
Expires: Fri, 01 Sep 2023 12:11:46 GMT
Cache-Control: public, max-age=31536000
Age: 375636
Last-Modified: Wed, 27 Apr 2022 16:02:38 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24320, version 1.0\012- data
Size:   24320
Md5:    056a6ed9c698772e2438032629f4933e
Sha1:   e88b32e3d9492e241bf5451e95967c5597f29967
Sha256: 86380b40e3d14ed9f3e0a5ff79c04f510d7910f677a66685e2b10f8b8765797f
                                        
                                            GET /s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35952
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 15:04:57 GMT
Expires: Fri, 01 Sep 2023 15:04:57 GMT
Cache-Control: public, max-age=31536000
Age: 365245
Last-Modified: Wed, 27 Apr 2022 16:14:34 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35952, version 1.0\012- data
Size:   35952
Md5:    1ede9b49c70635ad07115dc802702118
Sha1:   a7cea5ca5f71b4fed7fc4a69434091c87faf71f5
Sha256: 5e232623c90033b45c4ca98c53ff6b4b5b6c54b1c2da2f05a3a1a7e68e2ca8f5
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 21:39:19 GMT
Expires: Tue, 29 Aug 2023 21:39:19 GMT
Cache-Control: public, max-age=31536000
Age: 600783
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /fonts/wSocial/wsocial.woff?ts=1661462182781 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: nginx
Last-Modified: Wed, 24 Aug 2022 21:53:26 GMT
ETag: "63069dd6-a4c"
Expires: Thu, 08 Sep 2022 21:40:03 GMT
Cache-Control: max-age=1209600
X-Host: grn14.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 2636
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:22 GMT
Age: 946340
Connection: keep-alive
X-Served-By: cache-sjc10045-SJC, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662409943.941628,VS0,VE1
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Size:   2636
Md5:    0e88795b66eeac48b209209aa0179411
Sha1:   983e16566390f9167c6c4fbbdb052623fc01a631
Sha256: e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
                                        
                                            GET /uploads/1/3/3/4/133447197/background-images/1902405570.jpg HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Last-Modified: Fri, 15 Oct 2021 22:23:56 GMT
Accept-Ranges: bytes
ETag: "3453b75713c2d71:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 423026


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1334, components 3\012- data
Size:   423026
Md5:    76dc653c530266268058eb17614d6c8e
Sha1:   5e64c8f1798516c11d42d74c508bb19a566bd4cc
Sha256: 5fdd3feda14c245b6ac416b734f271b310cce2db21bd1a2def3413aa5d7819a5
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Mon, 05 Sep 2022 19:04:43 GMT
Expires: Mon, 05 Sep 2022 21:04:43 GMT
Cache-Control: public, max-age=7200
Age: 5260
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.hebamme-jh.ch/
Origin: http://www.hebamme-jh.ch
Connection: keep-alive

                                         
                                         35.82.13.103
HTTP/1.1 200 OK
                                        
Date: Mon, 05 Sep 2022 20:32:23 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://www.hebamme-jh.ch
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 5

                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1813
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         35.82.13.103
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Mon, 05 Sep 2022 20:32:23 GMT
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=5aded754-7b99-44ab-8ab0-39f2cadee6ed; Expires=Tue, 05 Sep 2023 20:32:23 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://www.hebamme-jh.ch
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            GET /uploads/reseller/assets/1846026797-favicon.ico HTTP/1.1 
Host: www.weebly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         74.115.50.109
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: nginx
Date: Mon, 05 Sep 2022 20:32:23 GMT
Content-Length: 32038
Connection: keep-alive
Last-Modified: Thu, 15 Aug 2019 16:04:17 GMT
x-rgw-object-type: Normal
ETag: "4167efa366f445171ac668be2bf849d9"
x-amz-request-id: tx0000000000000154dfaca-0062e213b8-c033918-sfo1
X-Storage-Bucket: z3d7f
X-Storage-Object: 3d7faade1297b2427b347ea18c468d0ac3ffe004a56fc9f0360a1bf56edeacc5
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes
X-W-DC: SFO


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   32038
Md5:    4167efa366f445171ac668be2bf849d9
Sha1:   799607636d0cec5803f0cbd8afed4708a1ce82b6
Sha256: 3d7faade1297b2427b347ea18c468d0ac3ffe004a56fc9f0360a1bf56edeacc5
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://www.hebamme-jh.ch
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Cache-Control: private
Keep-Alive: timeout=10, max=74
Vary: X-W-SSL,User-Agent
Server: Microsoft-IIS/10.0, Apache
X-Host: grn133.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
X-DS-Version: 1660509717
Date: Mon, 05 Sep 2022 20:32:23 GMT
Content-Length: 375


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (375), with no line terminators
Size:   375
Md5:    ee5bd2747c30496476cc0895392da3ae
Sha1:   5d0090c69cb42c47b1430094589d72c83b48dcd3
Sha256: 8bc12ea7d68fffddf5dc2f7ac10a44c78087b1e7f7fe046fcfb7d3c77198d3f4
                                        
                                            GET /uploads/1/3/3/4/133447197/geof8490_orig.jpg HTTP/1.1 
Host: www.hebamme-jh.ch
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/index.html

                                         
                                         92.43.219.71
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Last-Modified: Thu, 11 Aug 2022 18:09:53 GMT
Accept-Ranges: bytes
ETag: "8bdc758eadadd81:0"
Server: Microsoft-IIS/10.0
Date: Mon, 05 Sep 2022 20:32:22 GMT
Content-Length: 160033


--- Additional Info ---
                                        
                                            GET /js/site/main.js?buildTime=1660262238 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hebamme-jh.ch/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Connection: keep-alive
Content-Length: 146400
Server: nginx
Last-Modified: Thu, 25 Aug 2022 21:16:47 GMT
ETag: "6307e6bf-74804"
Expires: Thu, 08 Sep 2022 23:59:36 GMT
Cache-Control: max-age=1209600
X-Host: grn89.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Mon, 05 Sep 2022 20:32:21 GMT
Age: 937965
X-Served-By: cache-sjc10069-SJC, cache-bma1666-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662409942.744280,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---