www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
85.13.149.139301 Moved Permanently 285 B URL HTTP/1.1 www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 611d137616f8d65f876598f61a4e83cc
41b4b07239b0a95730bc360a19f3f66f1c3f0229
8aef7c770b992f42c313240ebfde04e112b15ab44b5f15742387456a586fdbd3
GET /produkt/fussballcamp-am-26-02-27-02-2020/ HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Dec 2022 12:25:56 GMT
Server: Apache
Location: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Content-Length: 285
Keep-Alive: timeout=2, max=1000
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9423
Expires: Thu, 15 Dec 2022 15:03:00 GMT
Date: Thu, 15 Dec 2022 12:25:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 555d8608594803d49eeb9581c6b70702
d01e0201e0ba0cf751ef97226620338a853bc635
2885cdac311a30161a8ac9ef8e54c788afafd4f86ed197a651fc6d8bda077908
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2885CDAC311A30161A8AC9EF8E54C788AFAFD4F86ED197A651FC6D8BDA077908"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3099
Expires: Thu, 15 Dec 2022 13:17:36 GMT
Date: Thu, 15 Dec 2022 12:25:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 11:33:53 GMT
content-type: application/json
age: 3124
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 51bd0cc75ed746fd33c950eb12936b7e
4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50
188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Thu, 15 Dec 2022 13:56:25 GMT
Date: Thu, 15 Dec 2022 12:25:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: s01S8d3YFazo8Ap1EkyKpfVFQnHcgvqTN41TMI0gKvvRHMBlkkUUBabk9EKVzN3ot3fma6jcTao=
x-amz-request-id: BR4X65CHX6VKJ0KE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 11:50:54 GMT
age: 2103
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 12:25:57 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ec44b4185c2fb703040841d81cdde4e5
26fd8ee9d7d2d7d30d75a9313a27827abf064ae6
644e1b6f237881709f4039d2226dc176f9b19820a6bfd9addb2f5cbcd161777b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "644E1B6F237881709F4039D2226DC176F9B19820A6BFD9ADDB2F5CBCD161777B"
Last-Modified: Thu, 15 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Thu, 15 Dec 2022 18:25:49 GMT
Date: Thu, 15 Dec 2022 12:25:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 12:08:00 GMT
age: 1077
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b9f0adeb27a19629aeff6f34de67f3ad
3876d1b871d7da6d18de23c2edb301eb30728066
c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4997
Cache-Control: max-age=165860
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 12:25:57 GMT
Etag: "639ae3b4-1d7"
Expires: Sat, 17 Dec 2022 10:30:17 GMT
Last-Modified: Thu, 15 Dec 2022 09:07:00 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.ballschule-hochrhein.de/wp-content/themes/responive-child/style.css?ver=1.9.3.2
85.13.149.139200 OK 1.8 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/themes/responive-child/style.css?ver=1.9.3.2
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash 6a1274ea0049ac0cade2939a2f567b24
236f3199102a07b55868fe2c55a68aa43627789a
cefb5d9414b020a86d059073d5b3fbb3fb640ea0e4274bac30f01c2edd48d847
GET /wp-content/themes/responive-child/style.css?ver=1.9.3.2 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Jul 2013 06:35:50 GMT
etag: "17ae-4e0bde7df2860-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1810
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
85.13.149.139200 OK 5.7 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (41045), with no line terminators
Hash 5dfd8d6c36e3e7767b7daae5ce3d3373
b7f001766652b2a42f1d9c71ac65dea786cb7b2b
2542874d01475a70acd023c1c292cfb0995ccff287281884be9ebb15c312dab2
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Jun 2020 06:49:54 GMT
etag: "a055-5a7c95e3d4302-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 5729
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14
85.13.149.139200 OK 7.4 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash fb1cea24a00ef911a8680339221f753b
0516aa663d1e35935a3312ffdc003bf99655e56a
19c3d3e325206e9130379770682552672c577cfda061842ab90320ee7002345f
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "1020a-5d9e118bd9815-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 7369
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/css/style.css?ver=5.3.14
85.13.149.139200 OK 1.3 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/css/style.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash 039109da63997eb13b174f262c5e413f
682419f39f85e992af353f17ea37734070ed7004
5967d5353b00631f74f39c21364857d9a444a42129fdc0e4e99f9ac03e2d6ef2
GET /wp-content/plugins/bst-dsgvo-cookie/includes/css/style.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:39 GMT
etag: "1a62-59c99b715ee77-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1341
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/css/bst-mesage.css?ver=5.3.14
85.13.149.139200 OK 578 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/css/bst-mesage.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash 26dc767c1bba3b32e0e313b5ee4b7095
41b124624b9d2dade03fac872a1378f174804d23
91872363de2ecd9cf5c0784f1d52f60e3b8ebf758a28348cc387b79f64154347
GET /wp-content/plugins/bst-dsgvo-cookie/includes/css/bst-mesage.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:39 GMT
etag: "8ee-59c99b715ee77-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 578
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/css/bst-mesage-flat-theme.css?ver=5.3.14
85.13.149.139200 OK 1.5 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/css/bst-mesage-flat-theme.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (1742)
Hash cc846ea481b59655a5310a258ace9a32
207ac6d80b7d6cb5393e6849ef0c41486396fe9e
5dc26e18e9f4291c72aa5471793b982f9aaa444c0aa0e22c4f141908dc68f641
GET /wp-content/plugins/bst-dsgvo-cookie/includes/css/bst-mesage-flat-theme.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:39 GMT
etag: "3c75-59c99b715ee77-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1473
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.5
85.13.149.139200 OK 2.3 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (17637), with no line terminators
Hash db0a5bb47ab1c06c678a895f1c52c75b
245ffe86fe852135fc64120dda5c5b83a9c3bfe2
219f2e8e4f1cd5125043270385a9ea9e7431d3cd94959c4512e8e97982483ec2
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "44e7-5d9e118bdc6f5-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2258
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.5
85.13.149.139200 OK 8.4 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (62655), with no line terminators
Hash 3271c9a66c601c98a2aa5a368c98ab72
9bea1b91593091d716ad3f10020a3e345db4758d
8c81946d1434c3995ace54101ab937c22563ac27d8f28014864e8a4e39b4ccb2
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "f4cd-5d9e118bdd695-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 8373
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/bootstrap-grid.min.css?ver=3.0.20
85.13.149.139200 OK 5.4 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/bootstrap-grid.min.css?ver=3.0.20
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (64577), with CRLF line terminators
Hash 2bb771355910c7431c97b8a72d54bb75
6308741d6b1c1bf91d991d7a9287b8b3553553a7
19a7cf9f7e2fdc5e4835195435bb01b7c86720fb376abdb9e4dd91fab7db2b28
GET /wp-content/plugins/shapepress-dsgvo/public/css/bootstrap-grid.min.css?ver=3.0.20 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "fd53-59c99b831ad79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 5431
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/easy-table/themes/default/style.css?ver=1.6
85.13.149.139200 OK 703 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/easy-table/themes/default/style.css?ver=1.6
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (461), with CRLF line terminators
Hash c59c8d175ea5367f7972769c5fb86e19
68147974139efa924f0d0833f94c7b97fbd797f9
6003e932af479c4400d68a8dd1815ecf8d8321d18db81e5d2688ca69202428a3
GET /wp-content/plugins/easy-table/themes/default/style.css?ver=1.6 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Sep 2016 16:15:44 GMT
etag: "c32-53cca81f1bf05-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 703
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-public.css?ver=3.0.20
85.13.149.139200 OK 827 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-public.css?ver=3.0.20
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash 5b41fd16f5fbfe0c44ae72d9c2c38ffd
c6ddd9fe66e03c4aaf881dd01ccdb5518cf84a60
66c144fcf18c222e496b83ce59935720e0f9af815e55a3a33548a954d8f82b8a
GET /wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-public.css?ver=3.0.20 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "a05-59c99b831ad79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 827
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=5.3.14
85.13.149.139200 OK 818 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash d62eb8a668a7cf9c4c2e55c3681d9282
a98f2badcaf46de3d64842e9cf054b25ae1f5bb0
3d31d1a8f7011c2de403b69952a99f96d760d8e4eb78e60aea46d5b34a4b04da
GET /wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:22:04 GMT
etag: "fe3-59c99b8919f6d-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 818
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/js/scripts.js?ver=1.0
85.13.149.139200 OK 352 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/js/scripts.js?ver=1.0
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash f498106df6b712dd999a5be142ebffda
e59fcab9ae55affe515272cfc689cbf155b3dff7
cb45d65475bceed3854ad00042ada5d5ec905a1a8060bc89659172d3f8683d7b
GET /wp-content/plugins/bst-dsgvo-cookie/includes/js/scripts.js?ver=1.0 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:39 GMT
etag: "45a-59c99b715ee77-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 352
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/themes/responsive/js/responsive-modernizr.js?ver=2.6.1
85.13.149.139200 OK 5.9 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/themes/responsive/js/responsive-modernizr.js?ver=2.6.1
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document, ASCII text, with very long lines (14448)
Hash 4324fbe01d3b6c493fdc5e31107e8d30
c8491291c4d57d44edf920f6ecd988ec83e3e65f
57af130f122d16b01e89b94d861eb007010017ad73d09f94967ace252d0ac1e2
GET /wp-content/themes/responsive/js/responsive-modernizr.js?ver=2.6.1 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 27 May 2013 16:19:15 GMT
etag: "3b0d-4ddb58288abda-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 5855
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
85.13.149.139200 OK 3.3 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (9172)
Hash 80d3ae6353867d9dbc8a479614b68e34
fb711ecfcd10f74dce56c0f73243588429ce007a
097ec4d854a89fd689f92d37b8dd0e347320cbb547b90eb2f72f72e019fe34d3
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "255e-5d9e118bdf5d5-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3287
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5
85.13.149.139200 OK 906 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document, ASCII text, with very long lines (2750), with no line terminators
Hash 8c27088f610be4c3af91bf42f5a0e725
88e94eed5b784c17221c4e8e88abf7f0197c919d
1269eca9305ea98dafe09eb3002ce30ebcda07fd667beb94fbf64a08c3cd2bbf
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "abe-5d9e118bde635-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 906
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/lightbox-gallery.css
85.13.149.139200 OK 4.0 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/lightbox-gallery.css
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3f8cdd625328e5f5b284b501357dd850
c2fc1fae5c5f53931ec9a1f59230d74d97328e2e
8d90fda72dfac0dd2627d4c3ec0b8e27c11f0e294d1dd129fbce42793a70be07
GET /wp-content/plugins/lightbox-gallery/lightbox-gallery.css HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 31 Jan 2020 22:36:43 GMT
etag: "5c78-59d77353e0c53-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3958
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5
85.13.149.139200 OK 656 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (1985), with no line terminators
Hash 2d5ad13dab296be0d66b22835b885b31
969ab7a616cb87fc74f46328048f23e5ffc8cbb0
7e705ac2643dbed560e5fa99e116df4b420ed180d9cd3a12d9e271bfc9462742
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "7c1-5d9e118bde635-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 656
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/js/jquery.colorbox.js?ver=5.3.14
85.13.149.139200 OK 8.4 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/js/jquery.colorbox.js?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash 3d30b3931fddda9f4245c5c88bd8ad9c
daa9191fad3a4c5a7f2e0f38a4a72af5948f1c6f
e7427c14d5adb42d2977114dad5e37b16fca333349a4af957f26129e277fefb2
GET /wp-content/plugins/lightbox-gallery/js/jquery.colorbox.js?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 31 Jan 2020 22:36:43 GMT
etag: "71f1-59d77353e0c53-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 8449
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/js/bst-message.js?ver=1.0
85.13.149.139200 OK 11 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/bst-dsgvo-cookie/includes/js/bst-message.js?ver=1.0
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (865), with CRLF, LF line terminators
Hash 1eec78f9e8050cf7b39e34080a79a7cf
37a7fdc678319b17d62ee9b5cdde28bbfa7c43ea
8b5227a2e8071452e48ba7d3211e5345eb372ec5a2c8459e0031a3c382471ee5
GET /wp-content/plugins/bst-dsgvo-cookie/includes/js/bst-message.js?ver=1.0 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:39 GMT
etag: "c4b8-59c99b715ee77-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 11038
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/images/legalwebio-icon.png
85.13.149.139200 OK 17 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/images/legalwebio-icon.png
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type PNG image data, 401 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 033cb29a80157a2fd408120c24c6a2a8
7d1dba96f335fc472108fed9213182fdfa180661
128a4bc5213d429b34515acb7802fb8e4e077644b5201902a685d100ee1dc802
GET /wp-content/plugins/shapepress-dsgvo/public/images/legalwebio-icon.png HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "427d-59c99b8319dd9"
accept-ranges: bytes
content-length: 17021
content-type: image/png
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 215b076267525eee2fadb8d889e5f351
28d0a048b68627916191262fee89a8db4b1614b2
44da07142c9aad7201a7ccb38b4bf03c82f1a66b730a953c0306fe09e3025ad5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 12:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/lightbox-gallery.js?ver=5.3.14
85.13.149.139200 OK 511 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/lightbox-gallery.js?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash 34219a1deb31983ca8dd7ec758a496c4
0118dcd5c00ba1b1aa374ebbe3fd0d28e04c24ee
b652e0b259556f3cf3ee24f101399d88bb81e4305ff677a2c3ec9cb6b5bc0c2b
GET /wp-content/plugins/lightbox-gallery/lightbox-gallery.js?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 31 Jan 2020 22:36:43 GMT
etag: "50f-59d77353e0c53-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 511
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-includes/js/wp-embed.min.js?ver=5.3.14
85.13.149.139200 OK 639 B URL HTTP/2 www.ballschule-hochrhein.de/wp-includes/js/wp-embed.min.js?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (1391), with no line terminators
Hash 9ef94d40be33894b9393ba38665cdc0e
fee3d545ddf2d24d500309d7d6e4707abaa761d9
9c00aef184dd7f30dbd1a270d2c245d4b0bb8741651b548698104a8d502cc4b7
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 18:50:16 GMT
etag: "56f-5c00755993136-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 639
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.5
85.13.149.139200 OK 938 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (2940), with no line terminators
Hash 38c5532e362e7ba904c1c2356ab91690
dd248be85fbb86972be2533a7b246781ab813380
43b3abea57f20dce14f4284bb971c9f49ad22df1754871b793a7fd85a019f8ee
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "b7c-5d9e118bdf5d5-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 938
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/colorbox/example1/colorbox.css?ver=5.3.14
85.13.149.139200 OK 1.3 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/colorbox/example1/colorbox.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash e04fdd3725e96a88d8eba34d618f9629
d5f5735bec48f1911b766d12fc31bbcc835298c1
2b7f7850efd16ca18752000c58e78d331900d6a6bf3fa53bdec04d370fa37cdd
GET /wp-content/plugins/lightbox-gallery/colorbox/example1/colorbox.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 31 Jan 2020 22:36:43 GMT
etag: "117a-59d77353dfcb3-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1293
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/themes/responsive/js/responsive-plugins.js?ver=1.2.3
85.13.149.139200 OK 386 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/themes/responsive/js/responsive-plugins.js?ver=1.2.3
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash 8dfe1f209531edb82f9613b627f236a8
3a01b76230f31e883912aa9c5bbb48c99d33e3c9
7f9ceb556690caa3f5cb6f3872dd9527db19b7baef127ab57be8685d9505851e
GET /wp-content/themes/responsive/js/responsive-plugins.js?ver=1.2.3 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 27 May 2013 16:19:15 GMT
etag: "301-4ddb58285313d-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 386
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
85.13.149.139200 OK 896 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (1680)
Hash 1b3f08b14ee83eed0695062a08ebd4d9
4018aef38d4bb705a6af38dce21c8af247e51d97
0fddc6ea074cb1b5f61173719145f05bf4b11a8bb630397fc83e8061fc5498bb
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "736-5d9e118bdf5d5-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 896
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/count-per-day/counter.css
85.13.149.139200 OK 2.3 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/count-per-day/counter.css
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash 892eedec11e5948c80940b7a7c9f0ea2
7abb1f25191ebe9378349e6a9e5b3020afeac7d9
3a1f828172e6e965358d27636612e5f0ea8b4a6f2d33f075fe3cc35a6b700a96
GET /wp-content/plugins/count-per-day/counter.css HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Sep 2016 16:15:31 GMT
etag: "2e80-53cca81265219-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2341
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-popup.css?ver=3.0.20
85.13.149.139200 OK 2.8 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-popup.css?ver=3.0.20
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash b4b0f5559a6f8f63b67785d8c73497bf
5c53a4102320d7d6ff353d08e84c1327ea060727
f2abf1dd693fc794fa710c44bc08ca2afbd557616f7e08e03a20fe94c78aff87
GET /wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-popup.css?ver=3.0.20 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "3eac-59c99b831ad79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2752
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/js/jquery.tooltip.js?ver=5.3.14
85.13.149.139200 OK 2.7 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/lightbox-gallery/js/jquery.tooltip.js?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2193d487c008770218a95a16aa26916f
d81fde9d897076961926683e8fa27762119ff48c
1f7861f58495abdb59baf32aecfaf17826f9f3118c5087b3c288a27fa3c858f8
GET /wp-content/plugins/lightbox-gallery/js/jquery.tooltip.js?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 31 Jan 2020 22:36:43 GMT
etag: "218f-59d77353e0c53-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2698
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.9.5
85.13.149.139200 OK 1.7 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (6343), with no line terminators
Hash 4feb656c908946f420f13c8a39119098
27d7f17614127ad2a160c6df9f69a31363208138
9530399d111e5caa7202112d9dec5cf2dea3f134ec711eb2e7941d28f3a5d382
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "18ca-5d9e118bdf5d5-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1700
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/simplebar.css?ver=5.3.14
85.13.149.139200 OK 631 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/css/simplebar.css?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash bedb4a409d7e56e1e7a003aaa0036516
a6101f0a44c820a6f5ca4bfed78de48e736d0fe2
d413dcb4e04e4c9dad8db72ecf81e9466aaea9ed91cb9c3d5b041091113a5d74
GET /wp-content/plugins/shapepress-dsgvo/public/css/simplebar.css?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "925-59c99b831ad79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 631
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
85.13.149.139200 OK 3.8 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (9959)
Hash 64058b5c90087e60ed2b342c1d18fcd3
a394e8d8379db2385e0708ecfc5e6d5808d3a73c
0e89b20002741f049bb2e8391164783a67e89ce1cf8c2646a7417e20b8fb5cce
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Sep 2016 16:14:28 GMT
etag: "2748-53cca7d66ee62-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3826
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/js/sp-dsgvo-public.js?ver=3.0.20
85.13.149.139200 OK 4.9 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/js/sp-dsgvo-public.js?ver=3.0.20
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash 801761e4c0b5504a9fe8693900ac12f3
49eff000b3d8ab542eb3113e044700e97af9cecf
8b023e4eba66338523b7c9223075e1edf609e9f83d869d586c2bd63aec2e7f6c
GET /wp-content/plugins/shapepress-dsgvo/public/js/sp-dsgvo-public.js?ver=3.0.20 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "681d-59c99b831ad79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 4864
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/js/simplebar.js
85.13.149.139200 OK 9.5 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/shapepress-dsgvo/public/js/simplebar.js
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (21045), with CRLF line terminators
Hash 8e07ccc2f78852819e9504382e7afea3
9bbed0c3130ae3c8dc58678c742e729555b80b31
68275852bb55946fa39d1388203122c7298a54d2fc91f75f3c577910c0b2abcb
GET /wp-content/plugins/shapepress-dsgvo/public/js/simplebar.js HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:21:57 GMT
etag: "7d23-59c99b831ad79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 9481
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/themes/responsive/js/responsive-scripts.js?ver=1.2.3
85.13.149.139200 OK 4.0 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/themes/responsive/js/responsive-scripts.js?ver=1.2.3
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document, Unicode text, UTF-8 text, with very long lines (6984)
Hash 86c1d114a3b0e9155c67336c1d092297
0dc4c3f2e05a892edda85a727fdde149de96dde3
e3c891b62b5a3ec84cc10413fd7ad93889612c4485741cc3b9911b4fbb5f3936
GET /wp-content/themes/responsive/js/responsive-scripts.js?ver=1.2.3 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 27 May 2013 16:19:15 GMT
etag: "2ba9-4ddb5828705fb-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3951
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4
85.13.149.139200 OK 8.9 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash 7e0af681f0aa73603dddd4a9b5e1a84d
a6cb99c2bdc0b6aea5b09053e59108131a22144f
8da85a47488f2f3cb85c8af0ef971a1caa1446cdcc106f7bd8cb69b099f25b7a
GET /wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:22:04 GMT
etag: "dab8-59c99b8919f6d-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 8851
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
85.13.149.139200 OK 33 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (31997)
Hash 4b8dce7b06d15e6a910e80540997665e
f744242089bdfb1426969c85eabb372ddd3c9e82
81c75adb208ca49d416b19972b6e0dd772f07be5fd36a373d453db6c4ceaae46
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Jan 2020 22:02:19 GMT
etag: "17a69-59c9971f53da8-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 32866
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8kuk1he/414MOKmnnhBjhw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TGLL9nCy7Fb90mmFK5x8d0qhFYw=
www.ballschule-hochrhein.de/wp-content/uploads/2013/06/cropped-baho_bahei_logo_header.png
85.13.149.139200 OK 13 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/uploads/2013/06/cropped-baho_bahei_logo_header.png
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type PNG image data, 469 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 5ace77d5052b2bc322c9415ba48c25fc
cd3eea88985735fd3ccb4dea2711baa6db13ccd4
c63c656cff1ebbb3692327119162ceb2977e53b480d6eb7098bccc79126b70d5
GET /wp-content/uploads/2013/06/cropped-baho_bahei_logo_header.png HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Jun 2013 13:52:44 GMT
etag: "3209-4de40476b860c"
accept-ranges: bytes
content-length: 12809
content-type: image/png
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/uploads/2020/01/fussball-pixabay-child-613199_1280-300x241.jpg
85.13.149.139200 OK 13 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/uploads/2020/01/fussball-pixabay-child-613199_1280-300x241.jpg
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x241, components 3\012- data
Hash b90d8d679417e40771695f83ed0ffb0c
150d171ad082ddba9b7c248ab55c27da9935931f
715b1e9ffe9d600a81292e19d47690d884e2937d48e8f706b2d2c0bcee4fbc21
GET /wp-content/uploads/2020/01/fussball-pixabay-child-613199_1280-300x241.jpg HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 01 Feb 2020 08:58:30 GMT
etag: "3235-59d7fe4e976c5"
accept-ranges: bytes
content-length: 12853
content-type: image/jpeg
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
85.13.149.139200 OK 4.3 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (10927)
Hash 748caa6523c4e2aa1409d21d4e45bab3
79431771e26149739b2c84d952fa215afa8dbe55
318d44e72754e30885dbfc7c205e307e49feccfe1c1e6c4b9324e414070ca1db
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.14 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 18:50:16 GMT
etag: "3619-5c00755993136-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 4267
content-type: application/javascript
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/plugins/easy-table/css/easy-table.css
85.13.149.139200 OK 424 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/easy-table/css/easy-table.css
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with CRLF line terminators
Hash 2321ed0600d79107ff9902eec20eaaaa
c99e2c1003251e9a8ffe77ffdd24788130d3e158
a17fd12895ac73542a62ffec5984aceb38fe8a92e108ff9c5e28a8c9185b5da9
GET /wp-content/plugins/easy-table/css/easy-table.css HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/wp-content/plugins/easy-table/themes/default/style.css?ver=1.6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Sep 2016 16:15:44 GMT
etag: "988-53cca81ed794c-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 424
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/wp-content/themes/responsive/style.css
85.13.149.139200 OK 11 kB URL HTTP/2 www.ballschule-hochrhein.de/wp-content/themes/responsive/style.css
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (724)
Hash bea2f402fd1a8314c1cebfc2e92b5e5a
fc38631dba70392b768906e216520a71750192ad
b513d1c5218fff5570892090d03a267392cdd82b5d7323079ca330d08dd4f05b
GET /wp-content/themes/responsive/style.css HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/wp-content/themes/responive-child/style.css?ver=1.9.3.2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 27 May 2013 16:19:12 GMT
etag: "10206-4ddb5825efc28-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 11237
content-type: text/css
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/l
85.13.149.139301 Moved Permanently 0 B URL HTTP/2 www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/l
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /produkt/fussballcamp-am-26-02-27-02-2020/l HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
x-redirect-by: WordPress
location: https://www.ballschule-hochrhein.de/mein-konto/logout/
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 215b076267525eee2fadb8d889e5f351
28d0a048b68627916191262fee89a8db4b1614b2
44da07142c9aad7201a7ccb38b4bf03c82f1a66b730a953c0306fe09e3025ad5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 12:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.9.5
85.13.149.139200 OK 945 B URL HTTP/2 www.ballschule-hochrhein.de/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.9.5
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (6758), with no line terminators
Hash 95819553d72916bc942739b6d9f6af5f
e43a39dc6521c644ba9979a432b097d5ee088d94
6754c664d90327ab72bd4a1cdf1cdd9a16c807e58df4b1ab97edc212fc7f5452
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.9.5 HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 18:08:09 GMT
etag: "1a66-5d9e118bdd695-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 945
content-type: text/css
date: Thu, 15 Dec 2022 12:25:58 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/favicon.ico
85.13.149.139200 OK 0 B URL HTTP/2 www.ballschule-hochrhein.de/favicon.ico
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: User-Agent
content-length: 0
content-type: image/vnd.microsoft.icon
date: Thu, 15 Dec 2022 12:25:58 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/?wc-ajax=get_refreshed_fragments
85.13.149.139200 OK 620 B URL HTTP/2 www.ballschule-hochrhein.de/?wc-ajax=get_refreshed_fragments
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 2f968d728a4cf5b75a1c39e8988c425c
40986d875f5137ea951f2ea3f147718fcce38cb5
b05ab90de5e9e3950e3c53a9e51b07a32aece43899840015d5c324b05da1ccdd
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.ballschule-hochrhein.de
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.ballschule-hochrhein.de
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
vary: Accept-Encoding,User-Agent
content-encoding: br
content-type: application/json; charset=UTF-8
date: Thu, 15 Dec 2022 12:25:58 GMT
server: Apache
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
216.58.211.10200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 216.58.211.10:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ballschule-hochrhein.de
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Dec 2022 12:25:58 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.ballschule-hochrhein.de
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 12:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e1cdd31fb0726d2c12bccc7989f094b6
12d46b97c28fd37bfb72b3a598a6b830628ba472
907f5f53153bc0bfcc2dd80f010e2843d383f41a2ad93dfc6f65c40a013b5f03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "907F5F53153BC0BFCC2DD80F010E2843D383F41A2AD93DFC6F65C40A013B5F03"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21547
Expires: Thu, 15 Dec 2022 18:25:06 GMT
Date: Thu, 15 Dec 2022 12:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Thu, 15 Dec 2022 13:21:04 GMT
Date: Thu, 15 Dec 2022 12:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Thu, 15 Dec 2022 13:21:04 GMT
Date: Thu, 15 Dec 2022 12:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Thu, 15 Dec 2022 13:21:04 GMT
Date: Thu, 15 Dec 2022 12:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3305
Expires: Thu, 15 Dec 2022 13:21:04 GMT
Date: Thu, 15 Dec 2022 12:25:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57e1af37-0e83-424f-98c5-a8245b583871.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57e1af37-0e83-424f-98c5-a8245b583871.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4e12af6d9653a205bf7314349bdea4
b39aa5fdef821f3138df8909781027cd05428dc9
6a5e05f85d0066300935c250be1b36d8efe9a3c56cc2473a58c18ae9599c509e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57e1af37-0e83-424f-98c5-a8245b583871.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9148
x-amzn-requestid: 0ea26bac-f713-41b4-b98d-d8b059a9cd1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpcOFHvoAMF6-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef81-348c18be1382b5762c952041;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:32:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GqIOMxqzRhR3CKOHQA8j1IpyoRODba6VcLVLyaLq_Y6QhCizxPEmBQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 21:59:22 GMT
age: 51997
etag: "b39aa5fdef821f3138df8909781027cd05428dc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cff467d-ce7f-4454-8f95-b9c6348a2347.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cff467d-ce7f-4454-8f95-b9c6348a2347.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 651b0f2569cf044585ce4f571cfd89fb
4c5e9db56536dd4145d63200d0fd74e2aa243fbf
c561267909b1e19768a2c11d78bab18faaa0de11d822e56324d7642daf798bf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cff467d-ce7f-4454-8f95-b9c6348a2347.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5820
x-amzn-requestid: aea526e4-f177-483a-bf63-4dbc3e526bf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dHHBHE8HIAMFn0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63991ed3-2fdc5eed7f4c006224bd29c5;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 00:54:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: usEmccGMldP3GGjxbRfQ_TuRDdRzDqo8C31tNcjXVpz3ke03xykUfg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 13:45:56 GMT
etag: "4c5e9db56536dd4145d63200d0fd74e2aa243fbf"
content-type: image/jpeg
age: 81603
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddad8a14-9003-4fb4-9419-dce4aa3ded2c.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddad8a14-9003-4fb4-9419-dce4aa3ded2c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3676a6ff14a538ae4948c0fac160908a
0ba1fb968c371d032e88a568e929887e077f451d
4f6cf6bd8a7ee4ec091c31cbb05997465d1112ef7787dd1c592cd833cbe31e16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddad8a14-9003-4fb4-9419-dce4aa3ded2c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4103
x-amzn-requestid: 7900ba7e-218b-4f6f-b9f8-7961b1e02bf7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dJ8yNHEUoAMFbwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a41a7-6dd886c06496ec3f7b7fe0a5;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 21:35:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VXBN3dRkDFHhYSOkO9LFiV0g3YG1PEWy7tGgvjdnyEy8VJ4nbQ9Lkg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 21:45:14 GMT
etag: "0ba1fb968c371d032e88a568e929887e077f451d"
content-type: image/jpeg
age: 52845
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d2294cdacdc84b8b19874ba56035a6d
53009a81b15e464d5529d36b1e04b841b2ae034e
67d59aa026b43ed3f698f3853b986fc7c07e4e6e5f7b3551e59238f79978480a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 71bbe208-11e3-4280-bf09-bff8bd18fcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82fXGmPoAMF3Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950462-12393ca432808b7f0b2771dc;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:12:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G1MopDnv-WOAbIBMe0v-V9xXeJIVDReKWSMG33dQt1q5GpK41RU0PQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:03:37 GMT
age: 19342
etag: "53009a81b15e464d5529d36b1e04b841b2ae034e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 389fe7dd5f3f80351a97fe4106be49b5
a91f474e6d320797c2ea32ecaf7a341f5f77fe82
11957edbfb3dc06abbe8ee6aa9dac0a25f84ba909a6404030c9f081343384513
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: 2134a88c-a745-4061-ac63-16989306d7da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dH_FlF6MoAMFQsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63997889-18ba85822302c07e672f17e3;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 07:17:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cqlGj6xu4etxgHqsCba0T3DmafdJe71e4CRzfte5w2HSr-CQqweufQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:55:29 GMT
age: 16230
etag: "a91f474e6d320797c2ea32ecaf7a341f5f77fe82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 672ae812012d060ba75fbb8cb9d6038c
2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce
cd9c002af775a6ba6ff8902a67e19c2ed2663d23bf8a1c3fe763598a60ba8d69
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5259
x-amzn-requestid: 21c0e355-e696-4785-a162-5f96e02836f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c3fV1HHKIAMFsjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6392df58-608335604793d9f46939a81a;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 07:10:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YF20vWN7faRilx8H98vMPeAimGKAPA-32GulYRed4h-vQAzwkYNgbA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 22:14:27 GMT
age: 51092
etag: "2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
left.trainresistor.cc/clear.js?v=1.2.3
103.224.212.221404 Not Found 196 B URL HTTP/1.1 left.trainresistor.cc/clear.js?v=1.2.3
IP 103.224.212.221:0
ASN #133618 Trellian Pty. Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Malware
GET /clear.js?v=1.2.3 HTTP/1.1
Host: left.trainresistor.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 15 Dec 2022 12:25:59 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1
www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
85.13.149.139200 OK 0 B URL HTTP/2 www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
GET /produkt/fussballcamp-am-26-02-27-02-2020/ HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://www.ballschule-hochrhein.de/wp-json/>; rel="https://api.w.org/", <https://www.ballschule-hochrhein.de/?p=1130>; rel=shortlink
vary: Accept-Encoding,User-Agent
content-encoding: br
content-type: text/html; charset=UTF-8
date: Thu, 15 Dec 2022 12:25:57 GMT
server: Apache
X-Firefox-Spdy: h2
www.ballschule-hochrhein.de/mein-konto/logout/
85.13.149.139200 OK 0 B URL HTTP/2 www.ballschule-hochrhein.de/mein-konto/logout/
IP 85.13.149.139:0
ASN #34788 Neue Medien Muennich GmbH
GET /mein-konto/logout/ HTTP/1.1
Host: www.ballschule-hochrhein.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ballschule-hochrhein.de/produkt/fussballcamp-am-26-02-27-02-2020/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
link: <https://www.ballschule-hochrhein.de/wp-json/>; rel="https://api.w.org/", <https://www.ballschule-hochrhein.de/?p=14>; rel=shortlink
vary: Accept-Encoding,User-Agent
content-encoding: br
content-type: text/html; charset=UTF-8
date: Thu, 15 Dec 2022 12:25:58 GMT
server: Apache
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=en&ver=5.3.14
142.250.74.46200 OK 0 B URL HTTP/2 maps.google.com/maps/api/js?libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=en&ver=5.3.14
IP 142.250.74.46:0
GET /maps/api/js?libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=en&ver=5.3.14 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ballschule-hochrhein.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 15 Dec 2022 12:25:57 GMT
expires: Thu, 15 Dec 2022 12:55:57 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 59453
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2