Report - malloth-csr.com/

Report Overview

Submitted URL
malloth-csr.com/
IP
188.34.132.6
ASN
#24940 Hetzner Online GmbH
Submitted
2022-10-04 10:17:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	598 B	746 B	142.250.74.10
malloth-csr.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	768 B	787 B	188.34.132.6
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
malloth-csr.ch	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	1.1 MB	188.34.132.6
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	70 kB	216.58.207.195
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	45 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.81.125.88
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	malloth-csr.com/	Phishing
2022-10-04	medium	malloth-csr.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	malloth-csr.ch/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	19 kB	2023-03-07	2024-04-24
Pretty URL malloth-csr.ch/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 15:15:44 Times Seen38033 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 17:16:04 Times Seen37041952 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	malloth-csr.ch/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.1.2	5.7 kB	2023-03-07	2024-04-18
Pretty URL malloth-csr.ch/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.1.2 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:46 Last Seen2024-04-18 11:14:36 Times Seen119 Hash 391dd880affd7733f011a5873ad70312 4e2dd731b903030adfd69408f9d19e07c41f3939 9ab6ba1e7e051b464b2a5855abc359ba0f4cde98edc2335e2648bbfe5a35cf38 Loading...

	malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.9.0	9.2 kB	2023-03-07	2024-04-24
Pretty URL malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.9.0 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-24 12:46:48 Times Seen3162 Hash 5ff487a413612cbbf6bc391c10ff7bac acbbd8a96ecad33158f29e45afcd41e4b2dd6579 357ad057de8ffc0fc9df301dd1873c3d482e926791195ee262da3886269f84d8 Loading...

	malloth-csr.ch/	2.8 kB	2023-03-08	2023-03-08
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:56 Last Seen2023-03-08 05:42:56 Times Seen1 Hash 86d11f8acbbb090c0b5e67fa37d9918a 35457d38e8f47ed0e132d987830d7cae66f3aaa2 88a51db155e9a5a390b4119f681d83240133b35e7324a3aaff5ee9872de91bc9 Loading...

	malloth-csr.ch/	32 B	2023-03-07	2024-04-18
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:46 Last Seen2024-04-18 11:14:35 Times Seen280 Hash 36b6264c7cef7454ab66f28e63fc0b1a 47a2ff8432203e340aa1b1d2596bdb461007ab54 000e580fb5f0233300ffd016893fa214ae25f735fc3655ab18a1037a6823d815 Loading...

	malloth-csr.ch/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5	26 kB	2023-03-07	2024-02-27
Pretty URL malloth-csr.ch/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:41 Last Seen2024-02-27 06:32:40 Times Seen729 Hash 924c4330ff4cc8da91b1d3193aba9dbb 0e2c1df265aabb608d2a50c73f07ae6280fa2c93 37569d024102d3b4fe238db257d1df719764726a86692aca7168bd92c9393d6f Loading...

	malloth-csr.ch/	177 B	2023-03-07	2024-04-22
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:21 Last Seen2024-04-22 13:14:10 Times Seen38 Hash 9c1816df4e6ef75c591a0a4db00213f7 81c173da4fde99d9aba487d04ab8e3e19d9f4b17 bc7647d87be8388f1026c834502ddbcadaf821ba1a05d333f44102c7cf112cac Loading...

	malloth-csr.ch/	155 B	2023-03-07	2024-03-25
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:46 Last Seen2024-03-25 13:53:35 Times Seen64 Hash 33595d2290e4d2f317497602bb2a520f b1266f9267c19ae3f4a6ec33ce1620800900e324 0af9ddfb86b38cc8294a69de25e859d7c3bbfacb419e9e199d69a06a3de9cb37 Loading...

	malloth-csr.ch/wp-content/themes/generatepress/assets/js/back-to-top.min.js?ver=3.1.3	763 B	2023-03-07	2024-04-22
Pretty URL malloth-csr.ch/wp-content/themes/generatepress/assets/js/back-to-top.min.js?ver=3.1.3 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:33 Last Seen2024-04-22 12:22:06 Times Seen90 Hash fa664125598aa4f20ad415f31970ff63 52fe933779da89629300fbf61b2c6c9d0d5f2c36 fa6953b24e42640645ebc36a7bdead13b10abdddd28abec1d8d7904d329e6cd0 Loading...

	malloth-csr.ch/	57 B	2023-03-08	2023-04-07
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:56 Last Seen2023-04-07 03:50:19 Times Seen2 Hash 136608ea6472d61e3591c7c43fa9d1fc 2caec2e39c7edbad6733899bc7f3f515ab25f39c 0743b38527e0976724d6cc70ee68c822eb481532ac4de7289dc9cac1ac5c4eae Loading...

	malloth-csr.ch/	2.2 kB	2023-03-08	2023-03-08
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:42:56 Last Seen2023-03-08 05:42:56 Times Seen1 Hash 931d02fec9edc07c42c71e7cad3c1b8c 88e4b3ae8a4e2d8a54f27bfca45fe9a0b26696f4 884c7e57d27661f3d0cdfde80b83e3590fd0bc10820d300c39ff69df49cdb612 Loading...

	malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=6.0.2	36 kB	2023-03-07	2024-04-14
Pretty URL malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=6.0.2 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:21 Last Seen2024-04-14 18:37:37 Times Seen285 Hash d05421c41e9dea91b3062536cff32336 0422fcfb4a60828e06e2d5a68f1058ea86393620 534ecb7e84cbd36918c179af2d074fa62a121f425e605c4a4eb9a8ffd898b12a Loading...

	malloth-csr.ch/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.10	226 B	2023-03-07	2024-04-24
Pretty URL malloth-csr.ch/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.10 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:09 Last Seen2024-04-24 17:07:50 Times Seen1359 Hash 75f8808dbb8323b160d674092b26eb90 838fc18f9cabdbe3d02fbcc45e9fc56fcf24b8ed 71966cb221a057ee9313fb232e40c7a0a70d2e472909c3947f4878c8e195ad53 Loading...

	malloth-csr.ch/	260 B	2023-03-07	2024-04-24
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-04-24 13:49:24 Times Seen2518 Hash 9b78b28b396646badfc6017235ee4be9 18103240bf0cb760cdf7febc628b56b8fca44319 215f517010a20f2f4c55d34dd3c574568bd0fb83662f0b915ddb6561f97c3904 Loading...

	malloth-csr.ch/	1.3 kB	2023-03-07	2024-03-17
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:07 Last Seen2024-03-17 20:01:26 Times Seen35 Hash 095173ef2b5b937eecd3e3d4eda0a5db ed75c38fd29a7c8f987be61b6846b0ccbe4073a0 dfbd78aece42120d5414425b7bf4495d591f0d707a8351829aa0e2d8afa9369c Loading...

	malloth-csr.ch/	46 B	2023-03-07	2024-04-19
Pretty URL malloth-csr.ch/ IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:33 Last Seen2024-04-19 06:51:09 Times Seen613 Hash bec9c700df243a74235f459eeaa0d9cb 47c8b6aff8817c560284ab7f629d1fb9903a4391 b419ddf3962f2f32b55824f2bc29e97b342f8df820c6913c9f58e91cb1608df8 Loading...

	malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.9.0	2.5 kB	2023-03-07	2024-04-22
Pretty URL malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.9.0 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:15 Last Seen2024-04-22 11:09:37 Times Seen281 Hash 84a2c2f91d0ba10a26aa6adfb0f269b1 def1b3917e4ecbd7019cbaea813c2ec59bf7609b 1a42f85eadd49c912f3a89bfb4cbd02cbc2cd4f5f920eca34bc4be97547b3474 Loading...

	malloth-csr.ch/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.1.3	6.9 kB	2023-03-07	2024-04-23
Pretty URL malloth-csr.ch/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.1.3 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-04-23 20:54:18 Times Seen890 Hash 203bfc7ab2d64673e71c76d7b20aefea 5479e74e26118cacfecee3f519a0a1a6f0e6dca6 775a02c37772954d38fe41b802b94a0ee37dccb98a03827cdef3eddd2abc13d1 Loading...

	malloth-csr.ch/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0	20 kB	2023-03-07	2024-04-23
Pretty URL malloth-csr.ch/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-04-23 22:28:14 Times Seen2123 Hash 6ce179ee275d3bd58d0407b79d6366cd fb1393daafde2f3e85f31777543c3194a4ab11d0 1bd0097cd9d76a31566f4236a1aaa31cdd43c5857a9502679805fddbc7599a54 Loading...

	malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.9.0	11 kB	2023-03-07	2024-04-22
Pretty URL malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.9.0 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:15 Last Seen2024-04-22 11:09:38 Times Seen296 Hash 55e7f4da2aa9b716a66e44b023b169b2 ed6867fe9c625fd00f6c95593750ca35a7775df7 ca4f2adf09e4128a4891836dbdffb8037d09011834dc2783fe956713d40aacc7 Loading...

	malloth-csr.ch/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-24
Pretty URL malloth-csr.ch/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 188.34.132.6 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 15:15:44 Times Seen68590 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

HTTP Transactions (69)

URL IP Response Size

malloth-csr.com/

188.34.132.6

301 Moved Permanently

162 B

URL HTTP/1.1
malloth-csr.com/
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: malloth-csr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 10:16:55 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://malloth-csr.com/
Strict-Transport-Security: max-age=63072000

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 09:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OXq4Wv7IK7oTz6A8bB3N52iwHOOChIMWQAn-x45Mv5lLUamCeNxYQw==
Age: 1791

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6379
Expires: Tue, 04 Oct 2022 12:03:14 GMT
Date: Tue, 04 Oct 2022 10:16:55 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UBCFxMwuaJvq0qgzXqdPvKTLfVy8Ptjv6hu1qxFlyzJ9zvtnK-4CiQ==
age: 17309
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
79fe98af109cf792fa4c401ad11823c4
58b2090575957788398b6dc0f090c31009864144
03f1956865afaf14ddf87de69c7f3d44f5eb368f8e3a4e7da514dadad1ac7600

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03F1956865AFAF14DDF87DE69C7F3D44F5EB368F8E3A4E7DA514DADAD1AC7600"
Last-Modified: Mon, 03 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21581
Expires: Tue, 04 Oct 2022 16:16:37 GMT
Date: Tue, 04 Oct 2022 10:16:56 GMT
Connection: keep-alive

malloth-csr.com/

188.34.132.6

301 Moved Permanently

162 B

URL HTTP/2
malloth-csr.com/
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: malloth-csr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 04 Oct 2022 10:16:56 GMT
content-type: text/html
content-length: 162
location: https://malloth-csr.ch/
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MsSGFMbeX5lMfzqei4YvDLTIoYSN55weyhKkDoT2njP9vzVP_soiCQ==
Age: 2843

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f1639e1a9b2cdfb20feb3fc15c80c2b4
5cb05dc35d6b6ce0b1ceb9ddb96d9dc5507d94b8
10f7bab57ab6b6dcfe6ae6ebf4ab4b642b9c9bfdf2dfc06f8b9b2606255e81ce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10F7BAB57AB6B6DCFE6AE6EBF4AB4B642B9C9BFDF2DFC06F8B9B2606255E81CE"
Last-Modified: Mon, 03 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21574
Expires: Tue, 04 Oct 2022 16:16:30 GMT
Date: Tue, 04 Oct 2022 10:16:56 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5236
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:16:56 GMT
Last-Modified: Tue, 04 Oct 2022 08:49:40 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.81.125.88

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.81.125.88:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h2HE49QW8QWSk2Jk6fu5NA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YiZ9NYoW6efXbBOpSs1k1sO2fx4=

malloth-csr.ch/

188.34.132.6

200 OK

44 kB

URL HTTP/2
malloth-csr.ch/
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17009)
Size
44 kB (43799 bytes)
Hash
79283fde0088f6ddac725214e8602f55
31827d454bab7e2effc41780d69be25ef4cbd818
e725425bc538ce522443da4486806ec8c5c6fa5f452b4b2b3449250e48d8b368

HTTP Headers

GET / HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/html; charset=UTF-8
content-length: 43799
x-ua-compatible: IE=edge
link: <https://malloth-csr.ch/wp-json/>; rel="https://api.w.org/", <https://malloth-csr.ch/wp-json/wp/v2/pages/1817>; rel="alternate"; type="application/json", <https://malloth-csr.ch/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.1.3

188.34.132.6

200 OK

695 B

URL HTTP/2
malloth-csr.ch/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.1.3
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (3358), with no line terminators
Size
695 B (695 bytes)
Hash
917e03c70ea9f338ef531d8017725781
39bf92c4baf5ba4058390cefc45f84d9f37a0a26
4b09586c7fb06f6251b3faa122c977d0781e174d51cc0e624921fdc5e61994ba

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.1.3 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 695
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "d1e-5e5e122ac7de4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/css/flashblock.css?ver=6.0.2

188.34.132.6

200 OK

1.3 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/css/flashblock.css?ver=6.0.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1276 bytes)
Hash
d227bec64165da6357f3b3cd9645a6fd
f2f98ab4b539d2dbc96f0cb670c533067a594822
4a140963fcbe291f9d6b24e2a81f3d14d66beb6eef59080deb510f222834262c

HTTP Headers

GET /wp-content/plugins/compact-wp-audio-player/css/flashblock.css?ver=6.0.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 1276
last-modified: Wed, 10 Aug 2022 11:13:17 GMT
etag: "e5f-5e5e122c3bf26-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

malloth-csr.ch/wp-content/uploads/malloth-csr-consulting.png

188.34.132.6

200 OK

177 kB

URL HTTP/2
malloth-csr.ch/wp-content/uploads/malloth-csr-consulting.png
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 2048 x 278, 8-bit/color RGBA, non-interlaced\012- data
Size
177 kB (177055 bytes)
Hash
a867a4ef0e6d00a423169f135cdc52f2
520f3c14765a6a57f9d0faa76197d915fa94c533
324d3399dd019488430207af21841fcf9053833561a1ebf777ea6796816a312c

HTTP Headers

GET /wp-content/uploads/malloth-csr-consulting.png HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/png
content-length: 177055
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: "2b39f-5e5e123089888"
accept-ranges: bytes
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=6.0.2

188.34.132.6

200 OK

12 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=6.0.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (542), with CRLF, LF line terminators
Size
12 kB (12440 bytes)
Hash
8af7e959ee52cc2a73190a9a0925d714
fab88f2d5093614850170edb8f5ac903f6effe26
0e599a4005acc231c9afc46c128981b4baed62c90e09c93e721bf04fc601caa4

HTTP Headers

GET /wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=6.0.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 12440
last-modified: Wed, 10 Aug 2022 11:13:17 GMT
etag: "8e7a-5e5e122c3cec6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.1.3

188.34.132.6

200 OK

1.7 kB

URL HTTP/2
malloth-csr.ch/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.1.3
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (6940), with no line terminators
Size
1.7 kB (1651 bytes)
Hash
1a94843105210db320afd5e4828b7da1
d8df854b2fe887eea3f57d70f7077b749c733525
1412fcd9ddff0a1d7171762a58818592035df0dbea4d86c2676157219e368ffd

HTTP Headers

GET /wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.1.3 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 1651
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "1b1c-5e5e122accc05-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2

188.34.132.6

200 OK

5.0 kB

URL HTTP/2
malloth-csr.ch/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (15660)
Size
5.0 kB (5009 bytes)
Hash
e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 5009
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "48b9-5e5e122a9af20-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0

188.34.132.6

200 OK

5.7 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (20096)
Size
5.7 kB (5723 bytes)
Hash
766a822e9383034fc6e9537286fe7c66
89b5421829c59f4845b152f94634b5ffffb6f8ec
61f089610d1cc00935d44bf1ee62f2c6b8c55b8e8734b31fdee4891ba1bacae4

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 5723
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "4f5b-5e5e122b76ad4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.9.0

188.34.132.6

200 OK

2.7 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (10806)
Size
2.7 kB (2682 bytes)
Hash
0f96becbe3ec3eab8a0acb7c2ebf830c
8c7bfdf5ada0deb9f8520c1c9f40759110ccb88f
360c0dfda3f7059f20ab58fea1aa19e74ee35193a805a581228c9919481715ef

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 2682
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "2b11-5e5e122bac639-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5

188.34.132.6

200 OK

6.3 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (25961)
Size
6.3 kB (6337 bytes)
Hash
5e5ce0255bf6a3a91f8daa749ac1550b
daee0c82b00ecc2ad45695f5558daf497007714b
fbc9440b2e0d46a3183da57a904780de841786a8a9ff0e2adec3ee4e35786696

HTTP Headers

GET /wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 6337
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "6591-5e5e122bfd720-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

malloth-csr.ch/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

188.34.132.6

200 OK

31 kB

URL HTTP/2
malloth-csr.ch/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65447)
Size
31 kB (30908 bytes)
Hash
9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 30908
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "15db1-5e5e122a75d5d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.9.0

188.34.132.6

200 OK

953 B

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (2326)
Size
953 B (953 bytes)
Hash
7b2e4cb22d53f72e98b6360bbbebed1e
6b2d66893d27068eba6387dd7aff56417aa3f307
fab414046ea3edded90d68efe9f9afc51de42e40fcb27ddcff5ee670e2593e67

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 953
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "9f1-5e5e122bac639-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.9.0

188.34.132.6

200 OK

3.7 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (51719)
Size
3.7 kB (3653 bytes)
Hash
b56aabb4f35984f3e74659f7b23254bf
9e12c8b4c80428a847b50e922b1a8a38d807c23c
825101fe8abc67771f316bff138dbd33445065033cc7efb4b103a26b100bb464

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 3653
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "caa8-5e5e122b92056-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.1.2

188.34.132.6

200 OK

2.1 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.1.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (5681), with no line terminators
Size
2.1 kB (2053 bytes)
Hash
a044ca40bb70f470dbc6454fed66190b
1c8cf83b29698d377a05a7a881f2a8e438be35fb
31004905f456283afa4e8f6da989114ebb538a5ff2caea409cbffeec38fdfb32

HTTP Headers

GET /wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.1.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 2053
last-modified: Wed, 10 Aug 2022 11:13:17 GMT
etag: "1631-5e5e122c50747-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/themes/generatepress/assets/js/back-to-top.min.js?ver=3.1.3

188.34.132.6

200 OK

403 B

URL HTTP/2
malloth-csr.ch/wp-content/themes/generatepress/assets/js/back-to-top.min.js?ver=3.1.3
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (763), with no line terminators
Size
403 B (403 bytes)
Hash
e3792915ee8e9e7176b130e256d7e616
422724e4b01254c63b3a3234c9dcfcec5864db56
a54d5978d5d8ad5d873fd3ba22f15c51d9d69afdaf27f7a902a5e0036b467935

HTTP Headers

GET /wp-content/themes/generatepress/assets/js/back-to-top.min.js?ver=3.1.3 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 403
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "2fb-5e5e122acbc65-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.9.0

188.34.132.6

200 OK

14 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65358)
Size
14 kB (14467 bytes)
Hash
f422208e48889ef51af7b8c28aa44240
65475cd7538b7dd796d87f06a838d73b4ec6d13b
d86395f70a20069f3ffd0f11178868cb24e734a0ff28b821139618735666659e

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 14467
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "431b5-5e5e122b6edd3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/css/player.css?ver=6.0.2

188.34.132.6

200 OK

311 B

URL HTTP/2
malloth-csr.ch/wp-content/plugins/compact-wp-audio-player/css/player.css?ver=6.0.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
311 B (311 bytes)
Hash
2c616618af82a5c2c61ab6bbae350bce
db29652273f62b41ae15b909a51137e1fee417c3
08ae007ba503fafd95e50e510474da034cd2f20c7735425222ee151bd855ea64

HTTP Headers

GET /wp-content/plugins/compact-wp-audio-player/css/player.css?ver=6.0.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 311
last-modified: Wed, 10 Aug 2022 11:13:17 GMT
etag: "464-5e5e122c3bf26-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.min.css?ver=1

188.34.132.6

200 OK

318 B

URL HTTP/2
malloth-csr.ch/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.min.css?ver=1
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (907)
Size
318 B (318 bytes)
Hash
7069bf4cc8dca7a09fc9c2d5f0ea33e8
9b00b8c4c084470e238b66d86392ec554a36551c
a3e23eaf5e307c0df6dc6d7533501173b393d967d562785130228e40a31a3730

HTTP Headers

GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.min.css?ver=1 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 318
last-modified: Tue, 20 Sep 2022 07:53:29 GMT
etag: "38c-5e9171fc3a4bf-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/themes/generatepress_child/style.css?ver=1660129995

188.34.132.6

200 OK

172 B

URL HTTP/2
malloth-csr.ch/wp-content/themes/generatepress_child/style.css?ver=1660129995
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
172 B (172 bytes)
Hash
96c4088205899167a08217335d14d27d
9a616e715f85e9908a99e32cc4c49c25b0166635
ac35e7b2fee676287d36075ec5a75931b8ebd92e7c3aec2270fdac3a47930a7e

HTTP Headers

GET /wp-content/themes/generatepress_child/style.css?ver=1660129995 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 172
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "ff-5e5e122ad4905-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.1.3

188.34.132.6

200 OK

4.7 kB

URL HTTP/2
malloth-csr.ch/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.1.3
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (19510), with no line terminators
Size
4.7 kB (4666 bytes)
Hash
b32ddb18fbf3d9521bfe63a809eb7fd3
9628246a40a52fe0e899fe7f462cace6245bc00b
fe479a05aa900efd06e3eef23b84486a474c0f4f6a544a137379616f6bd43894

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/main.min.css?ver=3.1.3 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 4666
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "4c36-5e5e122ac7de4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2

188.34.132.6

200 OK

12 kB

URL HTTP/2
malloth-csr.ch/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (43771)
Size
12 kB (11681 bytes)
Hash
e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 11681
last-modified: Wed, 10 Aug 2022 11:13:14 GMT
etag: "15b64-5e5e122a12394-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

188.34.132.6

200 OK

4.2 kB

URL HTTP/2
malloth-csr.ch/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 4169
last-modified: Wed, 10 Aug 2022 11:13:15 GMT
etag: "2bd8-5e5e122a76cfd-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.1.2

188.34.132.6

200 OK

1.5 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.1.2
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (5936), with no line terminators
Size
1.5 kB (1519 bytes)
Hash
56b9c4ac48536ce2cba01a6df86c75d8
bf0f036d29e65ba8459a3da2ff7c970c43e74667
c3743979c15707cfb763e5743093f52a992f35eb11b34f92a08153f2e35ec723

HTTP Headers

GET /wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.1.2 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 1519
last-modified: Wed, 10 Aug 2022 11:13:17 GMT
etag: "1730-5e5e122c4f7a7-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.10

188.34.132.6

200 OK

148 B

URL HTTP/2
malloth-csr.ch/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.10
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
148 B (148 bytes)
Hash
d660fe5cb235fe11eadc620a37765bca
3e874b2b7935e2e03574cd64740d5530b801891b
12d878b56e2a2b7ca91005a50121c12ebc00d8941fde5da544fb5ab682975572

HTTP Headers

GET /wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.10 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 148
last-modified: Tue, 20 Sep 2022 07:53:29 GMT
etag: "e2-5e9171fc1147c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.9.0

188.34.132.6

200 OK

2.8 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (8853)
Size
2.8 kB (2813 bytes)
Hash
bfbdca93ba95323d2d8a1420298f8429
5838f907c4898a5b092f4edd88190b2798f1a3c8
8a10fc2a3464e3c3a6d0015197004d70ebcb22c493bab35ac0bd23f5aa415722

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: application/javascript
content-length: 2813
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "2415-5e5e122bad5d9-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 10:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2

216.58.207.195

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size
21 kB (21144 bytes)
Hash
2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e

HTTP Headers

GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://malloth-csr.ch
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 22:36:56 GMT
expires: Wed, 27 Sep 2023 22:36:56 GMT
cache-control: public, max-age=31536000
age: 560401
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/baskervville/v13/YA9Ur0yU4l_XOrogbkun3kQQsJmp.woff2

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/baskervville/v13/YA9Ur0yU4l_XOrogbkun3kQQsJmp.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 24440, version 1.0\012- data
Size
24 kB (24440 bytes)
Hash
699789114c0c82d9624596de81d34336
71a0e21303cbb0226b8ee0ba8e8bd1b0a47366f0
bb1f7d3a4bade80285c7d75b2f1468041ab7c5ee6bb4b9adfc2d9f4652ee3fdf

HTTP Headers

GET /s/baskervville/v13/YA9Ur0yU4l_XOrogbkun3kQQsJmp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://malloth-csr.ch
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:48:21 GMT
expires: Thu, 28 Sep 2023 19:48:21 GMT
cache-control: public, max-age=31536000
age: 484116
last-modified: Tue, 19 Apr 2022 17:58:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size
22 kB (21724 bytes)
Hash
c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://malloth-csr.ch
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 22:37:03 GMT
expires: Wed, 27 Sep 2023 22:37:03 GMT
cache-control: public, max-age=31536000
age: 560394
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/play-gruen.svg

188.34.132.6

200 OK

1.2 kB

URL HTTP/2
malloth-csr.ch/wp-content/uploads/play-gruen.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
1.2 kB (1229 bytes)
Hash
a45b286b0ca6aa53dcf26d3f34c652a5
1858f919cbc351ef403d5865925ad2cf86fe65a5
0cd1198360cd47832ec3a420e0ef1badcdc85b5270e99c152f2457518e4672c4

HTTP Headers

GET /wp-content/uploads/play-gruen.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"5c6-5e5e122ffde1c"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0

188.34.132.6

200 OK

789 kB

URL HTTP/2
malloth-csr.ch/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
789 kB (789058 bytes)
Hash
deabb7fdd64556b2a9ce791ae8a472fc
545ed99bd52cddbf14ce4228bb8c3bc171c64d3f
d261f1109b454cd29344a7eae86cc54f4945f5615c688eaaa97829fd007d690c

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: text/css
content-length: 45824
last-modified: Wed, 10 Aug 2022 11:13:16 GMT
etag: "76891-5e5e122b6edd3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12748
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:16:58 GMT
Connection: keep-alive

malloth-csr.ch/wp-content/uploads/play-grau.svg

188.34.132.6

200 OK

986 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/play-grau.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
986 B (986 bytes)
Hash
bb725928eb0fd5d8190c26c3f7a9155d
1812e890ecac4cd555671e8a07967f24287e321b
40996840849b9781451d97579f1d0fa84e4f0e02f025f258f59b3d697e3fb038

HTTP Headers

GET /wp-content/uploads/play-grau.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"466-5e5e122ffde1c"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12748
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:16:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12748
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:16:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3430 bytes)
Hash
488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 22a0e400-1567-4c9c-aca9-782f3f81a8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLCrEn4IAMFZWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f210-11fa888c78719c44160accf8;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69u2trVvquFefzPFeOg_AuyzqQ6EBpY_ok9d9RXv71NE3TB_qELdtg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 16:24:09 GMT
age: 64369
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11101 bytes)
Hash
ae824db4a95391149198a4b6b8556c70
db07d58d8feff4ea01866d095e5264ee5c8e1ca3
19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 43691
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5083 bytes)
Hash
34f2dfb2faff276db1d4a57739db2450
f5ce815082043a4efce28fc790ae7d8b3a8531f8
e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 43559
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4858 bytes)
Hash
6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 44412
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5504 bytes)
Hash
6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 42459
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8308 bytes)
Hash
de29d0d95d22e4e246a90feed644baf0
4ac6c5691df804078d5da54233cf4d8e7012f9ca
8e34ad07e098df14f7001d1ee538479de11afa4c255006cb6e8e2207c0e50a47

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 3348b2e8-915a-492b-8241-89c13a21232c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFlFyyoAMFz_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-2baf7ac2213c31fc384e8317;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y1H21zphqs9mIGVYHojfc-nvW35BS3nq4hunM_JmyT9mC100bXlgWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 44472
etag: "4ac6c5691df804078d5da54233cf4d8e7012f9ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-pink.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-pink.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-pink.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"2bb-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-lila.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-lila.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-lila.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"2bb-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-orange.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-orange.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-orange.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"2bb-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/play-button-blau.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/play-button-blau.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/play-button-blau.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"466-5e5e123027dff"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-gruen.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-gruen.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-gruen.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"3c1-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-grau.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-grau.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-grau.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"3c1-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-violett.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-violett.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-violett.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"2bb-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-gold.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-gold.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-gold.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"2bb-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-blau.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-blau.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-blau.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"3c1-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/play-violett.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/play-violett.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/play-violett.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"466-5e5e122ffedbc"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/play-button-orange.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/play-button-orange.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/play-button-orange.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"5b6-5e5e123028d9f"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Barlow%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBaskervville%3Aregular%2Citalic&display=fallback&ver=3.1.3

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Barlow%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBaskervville%3Aregular%2Citalic&display=fallback&ver=3.1.3
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Barlow%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBaskervville%3Aregular%2Citalic&display=fallback&ver=3.1.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 10:16:57 GMT
date: Tue, 04 Oct 2022 10:16:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/malloth-csr-icon-2.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/malloth-csr-icon-2.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/malloth-csr-icon-2.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"4b9-5e5e12308a828"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

malloth-csr.ch/wp-content/uploads/slash-black.svg

188.34.132.6

200 OK

0 B

URL HTTP/2
malloth-csr.ch/wp-content/uploads/slash-black.svg
IP
188.34.132.6:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/slash-black.svg HTTP/1.1
Host: malloth-csr.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://malloth-csr.ch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 10:16:57 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Aug 2022 11:13:21 GMT
etag: W/"394-5e5e12302ace0"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP