Overview

URL www.einsundnull.space/
IP81.169.145.158
ASNStrato AG
Location Germany
Report completed2022-10-04 05:19:28 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-10-04 2 einsundnull.space Sinkholed


Files

No files detected



Passive DNS (29)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS stats.wp.com (1) 2711 2017-01-30 05:06:59 UTC 2022-10-03 09:10:55 UTC 192.0.76.3
mnemonic passive DNS www.einsundnull.space (1) 0 2022-09-30 07:36:00 UTC 2022-10-03 17:46:02 UTC 81.169.145.158 Unknown ranking
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-10-04 05:06:06 UTC 74.125.131.154
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-10-03 22:00:40 UTC 172.64.155.188
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-10-04 02:04:45 UTC 142.250.74.10
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-03 09:28:24 UTC 52.40.161.235
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-10-03 09:28:40 UTC 142.250.74.3
mnemonic passive DNS s0.wp.com (20) 6184 2017-01-30 05:08:18 UTC 2022-10-03 13:29:36 UTC 192.0.77.32
mnemonic passive DNS media3.giphy.com (1) 2238 2013-08-07 16:12:05 UTC 2022-10-04 04:59:14 UTC 151.101.86.2
mnemonic passive DNS ssl.google-analytics.com (2) 275 2013-05-22 02:04:34 UTC 2022-10-03 23:14:19 UTC 142.250.74.168
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-04 00:45:50 UTC 143.204.55.35
mnemonic passive DNS ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-10-03 07:14:52 UTC 142.250.74.3
mnemonic passive DNS giphy.com (5) 1010 2013-02-04 20:21:25 UTC 2022-10-04 04:18:52 UTC 151.101.65.185
mnemonic passive DNS s.pubmine.com (2) 9518 2015-01-02 18:51:31 UTC 2022-10-03 20:37:18 UTC 176.34.151.72
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-10-04 04:18:32 UTC 34.120.237.76
mnemonic passive DNS 0.gravatar.com (3) 6977 2012-05-21 07:08:47 UTC 2022-10-03 22:18:22 UTC 192.0.73.2
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-03 08:07:24 UTC 143.204.55.25
mnemonic passive DNS einsundnull.files.wordpress.com (5) 0 No data No data 192.0.72.24 Domain (wordpress.com) ranked at: 1450
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-10-04 05:10:46 UTC 142.250.74.174
mnemonic passive DNS public-api.wordpress.com (1) 6465 2012-07-08 04:15:07 UTC 2022-10-04 01:03:29 UTC 192.0.78.22
mnemonic passive DNS a.teads.tv (1) 1219 2015-05-27 09:05:16 UTC 2022-10-04 04:20:14 UTC 23.38.201.50
mnemonic passive DNS pixel.wp.com (4) 2545 2017-01-30 05:31:40 UTC 2022-10-03 09:10:56 UTC 192.0.76.3
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-04 02:06:24 UTC 93.184.220.29
mnemonic passive DNS fonts.gstatic.com (5) 0 2014-08-29 13:43:22 UTC 2022-10-03 23:48:04 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-04 03:36:29 UTC 142.250.74.164
mnemonic passive DNS c0.pubmine.com (1) 28649 2019-06-10 16:09:08 UTC 2022-10-03 15:49:02 UTC 192.0.77.38
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-03 09:28:24 UTC 34.117.237.239
mnemonic passive DNS einsundnull.wordpress.com (1) 0 No data No data 192.0.78.12 Domain (wordpress.com) ranked at: 1450
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-10-03 07:33:36 UTC 23.36.76.226


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 81.169.145.158

Date UQ / IDS / BL URL IP
2022-11-14 18:38:35 +0000
0 - 0 - 11 baumann-systemtechnik.com/ 81.169.145.158
2022-11-14 14:10:29 +0000
0 - 0 - 30 wir-sind-mehr.com/ 81.169.145.158
2022-11-04 17:39:19 +0000
0 - 0 - 2 julianbrand.de/sjeixzoxnlsy/KTEQ_9759909_0306 (...) 81.169.145.158
2022-10-27 00:56:51 +0000
0 - 0 - 20 marlonmedia.de/ 81.169.145.158
2022-10-18 22:08:43 +0000
0 - 0 - 35 cracked-vst.com/category/all/software/adobe/ 81.169.145.158

Last 5 reports on ASN: Strato AG

Date UQ / IDS / BL URL IP
2022-12-08 18:08:09 +0000
0 - 0 - 15 itmdf.de/ups.com/WebTracking/FS-17532695/ 81.169.145.152
2022-12-08 15:56:16 +0000
0 - 0 - 1 deist-online.de/ups.com/WebTracking/KKV-71871 (...) 193.141.3.69
2022-12-08 11:59:30 +0000
0 - 0 - 1 minijob-duesseldorf.net/ 81.169.145.105
2022-12-07 09:16:44 +0000
0 - 0 - 3 mycare2x.biz/antiturnpikeism1481573/?AX=dBHfB (...) 85.214.250.156
2022-12-07 00:49:13 +0000
0 - 0 - 1 agitated-dewdney.81-169-240-217.plesk.page/wo (...) 81.169.240.217

Last 1 reports on domain: einsundnull.space

Date UQ / IDS / BL URL IP
2022-10-04 05:19:28 +0000
0 - 0 - 1 www.einsundnull.space/ 81.169.145.158

No other reports with similar screenshot



JavaScript

Executed Scripts (43)


Executed Evals (1)

#1 JavaScript::Eval (size: 265, repeated: 1) - SHA256: 288e3bf626e213b2f816b8e6ebcafa1590b9ea04c61ccc9f0a176f7d9ca05e77

                                        window.teads_analytics = window.teads_analytics || {};
window.teads_analytics.analytics_tag_id = "PUB_6977";
window.teads_analytics.share = window.teads_analytics.share || function() {;
    (window.teads_analytics.shared_data = window.teads_analytics.shared_data || []).push(arguments)
};
                                    

Executed Writes (0)



HTTP Transactions (87)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: www.einsundnull.space
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         81.169.145.158
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 04 Oct 2022 05:19:17 GMT
Server: Apache/2.4.54 (Unix)
Location: https://einsundnull.wordpress.com/
Content-Length: 242
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   242
Md5:    a5b63893c78273ea9ac4910f86ffd831
Sha1:   958cb0391ab19d182730be75594203f9586e2a69
Sha256: 846cdbd99549cedf0924a529bb2e216d0ff881760b934cdbf398ef5f69b0cce0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 04:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iMaYjQvvughrQYmSqDWNKd6h-dBgiGUs05qauok9beWLGkBdc4nRGQ==
Age: 1933


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12577
Expires: Tue, 04 Oct 2022 08:48:55 GMT
Date: Tue, 04 Oct 2022 05:19:18 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cN-9TTd-g_DXlxsutm1MA4NCPTdnax-WXBtcesdv7IZKak8sn4jUVg==
age: 85851
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 04:29:33 GMT
Expires: Tue, 04 Oct 2022 05:11:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WW24oY-FaEemYQ3MGMwJz728Zo3aciC8Q93nrkW_FBzZwTPHLTs3ZA==
Age: 2985


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /i/logo/wpcom-gray-white.png HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
content-length: 8203
last-modified: Thu, 29 Nov 2018 13:53:22 GMT
etag: "5bffef52-200b"
expires: Thu, 10 Nov 2022 15:10:54 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Size:   8203
Md5:    5f7b74563bafaff6e4ca77bb82d511c5
Sha1:   ebcb367071a682d64a2e6471d553ad1fc1f90cd6
Sha256: c0e93b5ebf107af77d9e7d101d186b3b93e9d5ad4fbb6a74e2dea60173cc04f8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5400
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 05:19:18 GMT
Last-Modified: Tue, 04 Oct 2022 03:49:18 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /_static/??-eJyNkl1uAyEMhC9UltJW26eqZzFgURLzIwNZcfuyWzXaJEraF6TB/kaDsVyyMClWjFWGJjI152ORSzYpiBI8Yb9SkynlSe4wTcmdwQB8xOqjExpYjtbLm8fwktiCLdJR0kA3vb9trg2pkd2oMMqTepvUpKRunuxqaI6CvGbgLkvthGcjHw01i0UeRiy0HpAwbC/fiUzQkQWhA9On4OPf+Kjt9QV0P/yWdJhhzbBGhp5aFY69vYr9bwuGdc7lDr773nVu4z5kuA3/APvZA60zYylinMG3IOrXALe1+Awfap5fZ/X+Mj8fvgFQ6+MN?cssminify=yes HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 19:54:42 GMT
etag: W/"6328c902-297aa"
content-encoding: br
expires: Wed, 20 Sep 2023 21:47:09 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65518)
Size:   19913
Md5:    d1dd671bd2e521bd3205057e66bc0f49
Sha1:   1a0717f82d2477f4f7684c48b673099f4d786fa9
Sha256: 33f06f03f64da14c1abcbee48e7feee12d62fe548b1fab63794eb127916d3183
                                        
                                            GET /wp-content/blog-plugins/marketing-bar/images/wpcom-mark.svg HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s0.wp.com/_static/??-eJyNkl1uAyEMhC9UltJW26eqZzFgURLzIwNZcfuyWzXaJEraF6TB/kaDsVyyMClWjFWGJjI152ORSzYpiBI8Yb9SkynlSe4wTcmdwQB8xOqjExpYjtbLm8fwktiCLdJR0kA3vb9trg2pkd2oMMqTepvUpKRunuxqaI6CvGbgLkvthGcjHw01i0UeRiy0HpAwbC/fiUzQkQWhA9On4OPf+Kjt9QV0P/yWdJhhzbBGhp5aFY69vYr9bwuGdc7lDr773nVu4z5kuA3/APvZA60zYylinMG3IOrXALe1+Awfap5fZ/X+Mj8fvgFQ6+MN?cssminify=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
last-modified: Thu, 03 Sep 2020 12:18:21 GMT
vary: Accept-Encoding
etag: W/"5f50df0d-4d5"
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:56 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1237), with no line terminators
Size:   57398
Md5:    ad6ced5d79a57461cf26590ab504da89
Sha1:   6416cfbb890d9da20c557d4fe01a00556cee61fa
Sha256: b55650455e352615edbef6abfb915865cd3d1844a5aab8bfee0c29c046788999
                                        
                                            GET /wp-content/mu-plugins/jetpack-plugin/production/_inc/blocks/gif/view.css?m=1656348725h&cssminify=yes HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"62b9e048-26b"
content-encoding: br
expires: Thu, 28 Sep 2023 14:48:36 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (619), with no line terminators
Size:   703
Md5:    a16a296e788b956b31e31e233d19f953
Sha1:   5d8c8ae7e7b9c0d3a80331cfea7a47350c162620
Sha256: 2f9ddc68b3fe655f9899e5a94351df602a319ad1a4ebda5a8eb967789d5788f6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_static/??-eJyFjUsOwjAQQy/ENCAqKhaIs+QzRIkmH2YSld6eIqgEK1aW7GdbzRVsyQ1zU1FUKiYQQhdk7VcPQr6VIcpO/XJMDSqXx7JlIVvqDuUVxntHXj4ypJD/QpCCZ93wG97eDBUPlboPWdRc2GknYEmLvIdsqiCtm7V3TZfD6ThN+3E8T/EJVhBQsA== HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
last-modified: Tue, 23 Nov 2021 21:55:38 GMT
etag: W/"619d635a-1d82a"
content-encoding: br
expires: Tue, 29 Aug 2023 07:56:42 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46140)
Size:   63347
Md5:    7536721c2274ab6b8896883b33a3e5b2
Sha1:   1478b2bd35cec389ea9d0cd198fffbaa33f7e4c9
Sha256: eb6635b6af61c4ebd630a654fec4457f8d6f652bd1f66a3f059873849863fbdd
                                        
                                            GET /g.gif?crypt=UE5XaGUuOTlwaD85flAmcm1mcmZsaDhkV11YdWFnNncxc1tjZG9XVXhRY3VQY2YtbFl6U21XP1AuP09%2BSDJVbEtQbkZMeHdmRUZPU3xSLjVia3ZHRHNdWVptYnliTS9bOWMya0FOXzNpUCVjdGFQTGx3RXJ1aitIbnNVV3xPTX5tSnNlbVYlWTlTUmJDbHxZd01vbVJdTnY%2FQzVqNzBbJlIuSFk0U19ocG1iX2d4ZlBacDYlayx0fHctbVVYSCU%2FJXl2Nngwdn4vRXF6OWQ0MmRnVDI9ck9fbis1eFF5fi1aTUoyX10sJll4OUg5SlpYWVk4R0doLnh3cSZwOQ%3D%3D&v=wpcom-no-pv&rand=0.5833391830144207 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.76.3
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5\012- data
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"5ffc31a9-465"
content-encoding: br
expires: Wed, 23 Nov 2022 13:57:43 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (365)
Size:   20199
Md5:    aa3c3c1ee235df38712b70d95e349195
Sha1:   b0407a409defc25a2b479a12b1a329db5915f684
Sha256: ff11cc788724579dce7795ffa05bbb9d0c9411e4390e93f2484ccd2317ce1a3e
                                        
                                            GET /g.gif?blog=205151675&v=wpcom&tz=2&user_id=0&subd=einsundnull&host=einsundnull.wordpress.com&ref=&rand=0.8769923770872374 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.76.3
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5\012- data
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.43303979779822843 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.76.3
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5\012- data
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 562138
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            GET /g.gif?x_wordads_cmp_view=no_cookie&v=wpcom-no-pv&rand=0.46720645634725466 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.76.3
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5\012- data
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:15:31 GMT
expires: Wed, 27 Sep 2023 17:15:31 GMT
cache-control: public, max-age=31536000
age: 561828
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Size:   22504
Md5:    1c6c65523675abc6fcd78e804325bd77
Sha1:   898d9808304dc157f5dcb18ca169ec6e2b96b3d7
Sha256: 08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
                                        
                                            GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:37:09 GMT
expires: Wed, 27 Sep 2023 17:37:09 GMT
cache-control: public, max-age=31536000
age: 560530
last-modified: Tue, 26 Apr 2022 15:48:58 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19780, version 1.0\012- data
Size:   19780
Md5:    03717344e4dbb2de44988b281bb7430b
Sha1:   0cd3f7724bd0a5bf2460e1a85e35ccfbd5e85c05
Sha256: 499ec54eb2afd103ec37505e23c6570fc7d89a0d728dde19d87a092e4a3261b4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G5IT4sGx0P5jvlHaST5QWA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.40.161.235
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HcEeozopaVgiU2zDFUuNmwcBiu8=

                                        
                                            GET /w.js?63 HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.76.3
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"61376814-2a40"
content-encoding: br
expires: Thu, 10 Nov 2022 15:20:41 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10816), with no line terminators
Size:   6828
Md5:    939067c7e36a9c3e1690ccd421a79ee7
Sha1:   214a2eb4a097c0b0703f3226a723110ada1603f6
Sha256: f5f87c36ee18bb735c6c75319d8dd3c4ea75269e0abf10402f52f4743e5bf8a1
                                        
                                            GET /wp-content/mu-plugins/global-print/global-print.css?m=1465851035h&cssminify=yes HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"5c066eac-1f6c"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:54 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (1465)
Size:   21240
Md5:    d83d4298b119b3cfc841b732506d9be8
Sha1:   9bdca9de5f0d956997280d20ff086daf1b6eef5f
Sha256: 5a26a11e7314eac2d821c0461b3da96298422b3a0f55719747002808b41e80d6
                                        
                                            GET /static/dist/runtime.1454cb64.bundle.js HTTP/1.1 
Host: giphy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://giphy.com/embed/5QRtIHJTH1bzYf5GXg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.65.185
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"d1fc7594188298590766b2a773c7719a"
last-modified: Thu, 29 Sep 2022 17:54:45 GMT
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 05:19:19 GMT
age: 385343
x-served-by: cache-iad-kiad7000175-IAD, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 68, 484
x-timer: S1664860759.232356,VS0,VE0
vary: Accept-Encoding, X-UA-Device, Fastly-SSL
strict-transport-security: max-age=15465600
content-length: 2818
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5703)
Size:   2818
Md5:    5dc1d6d93efdb4bec7f7af9be35f25ab
Sha1:   cc41909d39a2f38bc3a940675e14dc27a6884b51
Sha256: f3bcd4d6f842573f50e9258e3a5d38162df8d8d631e8b39505331a1940f0c798
                                        
                                            GET /s/exo2/v20/7cHmv4okm5zmbtYoK-4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:31:27 GMT
expires: Tue, 03 Oct 2023 18:31:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:19:25 GMT
age: 38872
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 39772, version 1.0\012- data
Size:   39772
Md5:    82f7e35c99fed67bd51e1cfb7c73c3d7
Sha1:   7f40240f48e5783e59483cf9a8b4dd720115fab7
Sha256: d2f675f4572825d07c6bd49d03a2e7db7b58165f8175c0e162a1a1221dede462
                                        
                                            GET /s/exo2/v20/7cHov4okm5zmbtYtG-wc5Q.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 06:11:25 GMT
expires: Fri, 29 Sep 2023 06:11:25 GMT
cache-control: public, max-age=31536000
age: 428874
last-modified: Mon, 11 Jul 2022 19:14:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 42124, version 1.0\012- data
Size:   42124
Md5:    bb021fa565dac29dd9f0fa636260363e
Sha1:   d9dab01e98b0c3f1ceb8567fc85461361191e31d
Sha256: edf30ee68666819b1d8d9142bc8bc7eafc1710cb1c6746ed3158aac70303dd47
                                        
                                            GET /static/dist/gifEmbed.894d1827.bundle.js HTTP/1.1 
Host: giphy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://giphy.com/embed/5QRtIHJTH1bzYf5GXg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.65.185
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"7372a04b32c4654ddc7989334104c3a8"
last-modified: Wed, 28 Sep 2022 17:50:03 GMT
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 05:19:19 GMT
age: 472997
x-served-by: cache-iad-kcgs7200134-IAD, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 25730
x-timer: S1664860759.268994,VS0,VE0
vary: Accept-Encoding, X-UA-Device, Fastly-SSL
strict-transport-security: max-age=15465600
content-length: 200712
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65454)
Size:   200712
Md5:    52fd14bb3128d566c1bab1ceda883d5a
Sha1:   1a46231edc7ceb49b7165f8d77eff8e5cc9e2ae1
Sha256: 9841286cbde7669d36e243a50511992bcacc12825c691d552ac704be5d9c9f2f
                                        
                                            GET /wp-content/mu-plugins/highlander-comments/style.css?m=1663315160h&cssminify=yes HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"63242ce6-45a9"
content-encoding: br
expires: Sat, 16 Sep 2023 07:59:40 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2702)
Size:   14417
Md5:    3c5167f74d37d84498084a8d8fbbc8d6
Sha1:   6990e81dfb3e50af6da4f356dfd24d251b183799
Sha256: 8812fda5509ab53ce79903eb17d8a34526100487a26ece51da434abe6a07363a
                                        
                                            GET /2022/06/boot-device.jpg?w=400&h=200&crop=1 HTTP/1.1 
Host: einsundnull.files.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Cookie: __utma=11735858.960179978.1654051761.1654283748.1654515678.4; __utmz=11735858.1654051761.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _pubcid=a88f885c-7f87-4c85-9c1b-8257bb586379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         192.0.72.24
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 9922
last-modified: Wed, 22 Jun 2022 12:14:11 GMT
expires: Wed, 09 Nov 2022 10:18:53 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://einsundnull.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 24 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 400x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9922
Md5:    f1c18fd4d919fe3a24b7da1d9dc2eeeb
Sha1:   3356ffd3dc8796ff192939d341a1530833000505
Sha256: 8fe774850197d5890b937856dcc6e60606fbceaab38fe386167f7c0af91433e1
                                        
                                            GET /2022/07/server-certificate.png?w=400&h=200&crop=1 HTTP/1.1 
Host: einsundnull.files.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Cookie: __utma=11735858.960179978.1654051761.1654283748.1654515678.4; __utmz=11735858.1654051761.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _pubcid=a88f885c-7f87-4c85-9c1b-8257bb586379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         192.0.72.24
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 41024
last-modified: Thu, 07 Jul 2022 12:13:19 GMT
expires: Fri, 11 Nov 2022 05:45:44 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://einsundnull.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 24 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   41024
Md5:    c15c77406fefe9afb74618d6bde85ea6
Sha1:   927d3889464bc4393a8030c022b75b913818492b
Sha256: 99902c7a4679a1f8707c3c14f67ea113d581c7d19c6dee018000921f4957cddc
                                        
                                            GET /2022/08/mini-crt-monitor-render-1.gif HTTP/1.1 
Host: einsundnull.files.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Cookie: __utma=11735858.960179978.1654051761.1654283748.1654515678.4; __utmz=11735858.1654051761.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _pubcid=a88f885c-7f87-4c85-9c1b-8257bb586379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         192.0.72.24
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 431958
last-modified: Mon, 29 Aug 2022 12:12:10 GMT
expires: Wed, 09 Nov 2022 11:25:10 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://einsundnull.wordpress.com
vary: Origin
x-nc: MISS arn 24 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 500 x 500\012- data
Size:   431958
Md5:    7593493a93516f2571e47d619451892f
Sha1:   8fd4678821ce8dd103a63523b7e3003bf9c43a97
Sha256: cb1f3bbc0d14b2009c53d677b8c914585c7da70df8aad83259d642047ef744d2
                                        
                                            GET /media/5QRtIHJTH1bzYf5GXg/200w_s.gif?cid=dda24d50c1848a789d4fca6937dcfa7f65c58fa3ee03dfcf&rid=200w_s.gif&ct=g HTTP/1.1 
Host: media3.giphy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://giphy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         151.101.86.2
HTTP/2 200 OK
content-type: image/gif
                                        
last-modified: Fri, 15 Mar 2019 05:26:40 GMT
etag: "22bc27866361ffcb3be3118ffd9b9038"
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 04 Oct 2022 05:19:19 GMT
age: 0
x-served-by: cache-iad-kjyo7100055-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 22, 0
x-timer: S1664860759.358767,VS0,VE100
strict-transport-security: max-age=15465600
cache-control: max-age=86400
content-length: 5181
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 180\012- data
Size:   5181
Md5:    22bc27866361ffcb3be3118ffd9b9038
Sha1:   1b0dc13b013ea65a4a2fbe29e18cfee2f14f3228
Sha256: 939697720b5c3c3e384706acb2dfb88f696a0ca2719d4bf5e691ac3cc08f1bb5
                                        
                                            GET /static/webfonts/InterFace_W_Rg.woff2 HTTP/1.1 
Host: giphy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://giphy.com/embed/5QRtIHJTH1bzYf5GXg
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.65.185
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=31536000
etag: "9fc43020f3fb290aba53a8a695d7ae67"
last-modified: Mon, 06 Jun 2022 19:48:16 GMT
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 05:19:19 GMT
age: 10276859
x-served-by: cache-iad-kiad7000102-IAD, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 3463, 480
x-timer: S1664860760.599383,VS0,VE0
vary: X-UA-Device, Fastly-SSL, X-UA-Device, Fastly-SSL
strict-transport-security: max-age=15465600
content-length: 22308
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22308, version 1.0\012- data
Size:   22308
Md5:    9fc43020f3fb290aba53a8a695d7ae67
Sha1:   8754da9367856972a50ea735356498c63ddcdd8f
Sha256: ac847a969ab93af28fbd7bf6d8724265407a6dd6cdbd569a0c1c94ae466de2f9
                                        
                                            GET /static/webfonts/ss-standard.woff2 HTTP/1.1 
Host: giphy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://giphy.com/embed/5QRtIHJTH1bzYf5GXg
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.65.185
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=31536000
etag: "941eea93fa0e52ded6b14148a223fbb4"
last-modified: Tue, 15 Mar 2022 16:17:13 GMT
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 05:19:19 GMT
age: 17449202
x-served-by: cache-iad-kcgs7200136-IAD, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 315, 483
x-timer: S1664860760.600637,VS0,VE0
vary: X-UA-Device, Fastly-SSL, X-UA-Device, Fastly-SSL
strict-transport-security: max-age=15465600
content-length: 12332
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12332, version 1.0\012- data
Size:   12332
Md5:    941eea93fa0e52ded6b14148a223fbb4
Sha1:   eb7b511ba8f83155f477371aa6ea57e233534cef
Sha256: 84f28a147c3083b02d80fc6414943eb9bb09078f80dfcc4cb186984bd48de6a9
                                        
                                            GET /static/webfonts/InterFace_W_Bd.woff2 HTTP/1.1 
Host: giphy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://giphy.com/embed/5QRtIHJTH1bzYf5GXg
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.65.185
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=31536000
etag: "45c6053e1b94086b438166f9fa38e871"
last-modified: Thu, 03 Feb 2022 16:56:30 GMT
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 05:19:19 GMT
age: 20815043
x-served-by: cache-iad-kcgs7200114-IAD, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 361, 482
x-timer: S1664860760.601673,VS0,VE0
vary: X-UA-Device, Fastly-SSL, X-UA-Device, Fastly-SSL
strict-transport-security: max-age=15465600
content-length: 23396
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23396, version 1.0\012- data
Size:   23396
Md5:    45c6053e1b94086b438166f9fa38e871
Sha1:   c540209143368297de782a5ec040b7f0b1091486
Sha256: 72c3d25c9ca9d49c8d2373e1e1efa231d9c125a25d017ab8f152887d97eb6b47
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://giphy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 04:41:09 GMT
expires: Tue, 04 Oct 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 2290
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /i/webclip.png HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 10046
last-modified: Thu, 29 Nov 2018 13:53:25 GMT
etag: "5bffef55-273e"
expires: Thu, 10 Nov 2022 15:10:57 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Size:   10046
Md5:    f9797465cedb90bc270112c571bbe7bb
Sha1:   67850f31ca703df3cdc5ca017cdaa139f1effd2c
Sha256: 9f6d1439ca686bcc3ad821a74d7d9583b389ad74077e3cf34d5da6f79152fffe
                                        
                                            GET /2022/04/ts-2.gif?w=400&h=200&crop=1 HTTP/1.1 
Host: einsundnull.files.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Cookie: __utma=11735858.960179978.1654051761.1654283748.1654515678.4; __utmz=11735858.1654051761.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _pubcid=a88f885c-7f87-4c85-9c1b-8257bb586379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         192.0.72.24
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 212024
last-modified: Mon, 11 Apr 2022 10:02:59 GMT
expires: Thu, 03 Nov 2022 21:20:56 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://einsundnull.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 24 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   212024
Md5:    7fd7b863417072d2ae51cf9b514bdc24
Sha1:   28dc218702baa0cee284b27b58ee74c0e776c751
Sha256: 7aa87084ede32b77f89186ca6841b5dd6d10e2a204539b96aef916738957f4f5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 04 Oct 2022 04:17:11 GMT
expires: Tue, 04 Oct 2022 06:17:11 GMT
cache-control: public, max-age=7200
age: 3728
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            GET /2022/05/domain.png?w=400&h=200&crop=1 HTTP/1.1 
Host: einsundnull.files.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Cookie: __utma=11735858.960179978.1654051761.1654283748.1654515678.4; __utmz=11735858.1654051761.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _pubcid=a88f885c-7f87-4c85-9c1b-8257bb586379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         192.0.72.24
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
content-length: 20238
last-modified: Fri, 06 May 2022 14:27:47 GMT
expires: Fri, 28 Oct 2022 23:04:00 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://einsundnull.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 24 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   20238
Md5:    668a500f5b434091dbb756cbce8ae0ce
Sha1:   ea44e250b225675b41f3d92fd9870492beb76281
Sha256: a5f6f56bb9bcec4584447e88bc896bc63b9909dd352398f44177cef3cd881878
                                        
                                            GET /geo/ HTTP/1.1 
Host: public-api.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         192.0.78.22
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
vary: Accept-Encoding
x-hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
host-header: WordPress.com
access-control-allow-origin: *
content-encoding: br
x-ac: 2.arn _dca BYPASS
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   110262
Md5:    3dce2f323e577453170c29af7624f97a
Sha1:   ca3026f143961e45b208114b5e89ca487a3b3190
Sha256: 55c58c9809049959e5b9099088bd16d0d152aea1a168b8d689ea694c74af98fd
                                        
                                            GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1685148825&utmhn=einsundnull.wordpress.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1140x836&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=EINS%20UND%20NULL%20%E2%80%93%20Der%20IT-Info%20Blog&utmhid=1174336354&utmr=-&utmp=%2F&utmht=1664860759372&utmac=UA-52447-2&utmcc=__utma%3D11735858.960179978.1654051761.1654515678.1664860759.5%3B%2B__utmz%3D11735858.1654051761.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&aip=1&utmjid=2054655560&utmredir=1&utmu=uBQAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-allow-origin: *
date: Tue, 04 Oct 2022 05:19:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38174542-5&cid=528666106.1664860759&jid=1402485737&gjid=1439739577&_gid=423573549.1664860759&_u=IGBAgEABAAAAAEAAIC~&z=918616125 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://giphy.com
Connection: keep-alive
Referer: https://giphy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         74.125.131.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://giphy.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 05:19:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38174542-5&cid=528666106.1664860759&jid=1402485737&_u=IGBAgEABAAAAAEAAIC~&z=766562746 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://giphy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 05:19:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38174542-5&cid=528666106.1664860759&jid=1402485737&_u=IGBAgEABAAAAAEAAIC~&z=766562746 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://giphy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 05:19:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 05:19:20 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 30 Sep 2022 19:17:04 GMT
Expires: Fri, 07 Oct 2022 19:17:03 GMT
Etag: "35bd5b24202567bb22b5fd73741cfae0e8100edd"
Cache-Control: max-age=308863,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 754b7644fde6b4f4-OSL

                                        
                                            GET /conf?gdpr=1&pp.pt=0&pp.ht=0&pp.tn=rowling&pp.uloggedin=0&pp.amp=false&pp.consent=0&pp.gdpr_applies=true&pp.ad.label.text=Werbeanzeigen&pp.ad.reportAd.text=Diese%20Anzeige%20melden&pp.ad.privacySettings.text=Datenschutz&pp.siteid=8982&pp.blogid=205151675&pp.js_hint=tcf2_test&rid=4592784331631&ref=https%3A%2F%2Feinsundnull.wordpress.com%2F&vp=1152x836&cb=callback__l8tr3ytl_1 HTTP/1.1 
Host: s.pubmine.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         176.34.151.72
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 05:19:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (853), with no line terminators
Size:   510
Md5:    afb4e9e34012f39b68bf6fd35fde0a02
Sha1:   7c68e96639e670a7bee0754188f3081e0492d383
Sha256: 676c457d4a04a48ac09cc4922efd1c893c7bf4c9660cf527c80646c9190dc6ed
                                        
                                            GET /2.36.71660581586862/ata.js HTTP/1.1 
Host: c0.pubmine.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.38
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:20 GMT
last-modified: Mon, 15 Aug 2022 16:43:43 GMT
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding, Origin
x-amz-cf-pop: ARN56-P1
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (51390)
Size:   54755
Md5:    ac60dfbbe8ac377c59cfa8bd6f912879
Sha1:   6920bb02c97c3563d0fd8f1d1e8b4f9e97aec110
Sha256: 1fe4b0b29e0f7fe30a12ebab68f5f496d351c3be2435c7260737f5df3a13ccf3
                                        
                                            GET /analytics/tag.js HTTP/1.1 
Host: a.teads.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.50
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
                                        
x-amz-id-2: OcMovej99gPZ4phntcYbvwqKiH30Q6TNKFkEmNkRQfua36kK8447PqvZscNrOCB05xmNS8jfFeA=
x-amz-request-id: DJZJZ0MDY5N4XZTD
last-modified: Thu, 29 Sep 2022 14:53:50 GMT
etag: "17c0d6e20839220eda6b6705a5927ecd"
x-amz-server-side-encryption: AES256
x-amz-version-id: e3HRkV45dlKSU2VLXzuV.1qsEv2pzDxO
accept-ranges: bytes
content-length: 3375
cache-control: private, max-age=3600
date: Tue, 04 Oct 2022 05:19:20 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4822)
Size:   3375
Md5:    17c0d6e20839220eda6b6705a5927ecd
Sha1:   7be150d4a843663f701b277490a61e7129ff96ff
Sha256: 7e0bd8b7407f2c07df78a42a431c8e9ec8b1737631c8793e6aeb19d502acca91
                                        
                                            POST /adjr?pvid=5953d719-4060-43cf-be74-f192eee8e618&rid=4592784331631 HTTP/1.1 
Host: s.pubmine.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 996
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         176.34.151.72
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 05:19:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://einsundnull.wordpress.com
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   66
Md5:    413cd60922bec20c29f28bc03b71848c
Sha1:   86bbf9fa836277c5b4666dda81f9e5ef476e3b8d
Sha256: 83ffc7d661ee823c160e2bb83c7a8045abc79cc709c2d5351eecc0031a6f342e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11733
Expires: Tue, 04 Oct 2022 08:34:53 GMT
Date: Tue, 04 Oct 2022 05:19:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11733
Expires: Tue, 04 Oct 2022 08:34:53 GMT
Date: Tue, 04 Oct 2022 05:19:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11733
Expires: Tue, 04 Oct 2022 08:34:53 GMT
Date: Tue, 04 Oct 2022 05:19:20 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O1yNc4H21kixhUEE7099oNqs7a5ZnJBBjlZbsbmLvaXyzXzrK0dL3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:33 GMT
age: 27287
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5504
Md5:    6c6882c60d7ca6f918c77104e3ad1d52
Sha1:   20ef861be49c652a938e0145e4ca3a60159367e2
Sha256: 861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11733
Expires: Tue, 04 Oct 2022 08:34:53 GMT
Date: Tue, 04 Oct 2022 05:19:20 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:51 GMT
age: 2189
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            GET /wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:20 GMT
vary: Accept-Encoding
etag: W/"624b18ad-346d"
content-encoding: br
expires: Tue, 04 Apr 2023 16:11:33 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1015)
Size:   8157
Md5:    45df049201e26bb824178708e58bf9a9
Sha1:   68041102aa684f0cbd46a74858755d4e1d7b4caa
Sha256: 13079b5b1ed0e84f3de7d8676d7ecc536f76e39123b0b97d317311356e9fed4e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0001afba-471a-49f7-bb38-3d4741a9581b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9708
x-amzn-requestid: 7cfcaf0d-1663-47d7-b08e-be3d0c39e035
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFjHB5IAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-04c5da1940a620507649b822;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: j6Dmt8fKVZpnIz2xaZxPMgcGiimesfZoXqtMRv7QFt0pH42Dp976jg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:16:17 GMT
age: 25383
etag: "dc7bc4a378c0ddcd81e51046d21ed02b8be11a92"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9708
Md5:    90fead0b9104991552ce689230661d48
Sha1:   dc7bc4a378c0ddcd81e51046d21ed02b8be11a92
Sha256: 94a1a4199f7cb7bc0b48b00aec745e89f2c65dadd905b27879d39347deb44496
                                        
                                            GET /wp-content/mu-plugins/actionbar/actionbar.css?v=20210915 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:20 GMT
vary: Accept-Encoding
etag: W/"61439ab3-4620"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:53 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5325)
Size:   8884
Md5:    f63b53e19e3aaaaae1dbcebbafeec0ad
Sha1:   a5ddd7fb3bf217b1b613aab6e9e8d3dabc10f41b
Sha256: 9c501fd9cf516633a262a0e94fced793b0a4b90ed37b60f6fe86fb40febb25d6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 27300
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4858
Md5:    6779181f9c06975f2a662da743893939
Sha1:   585e7146fd24cdc2496b05baafea04091dc541e2
Sha256: 8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
                                        
                                            GET /_static/??-eJx9jUEKwjAQRS9kHI2l4EI8Sxqm08gkEzIJobe33VmELh//PT70bLykiqlCXTCiQm4TFOkcEsG8TcZ1VIl4gKtXvcB5rHXlfzE2k7lRSAqEYli8q0HSAczMLpSztODEQrTfbNYP7tE7vu7jMFprH7fn5wtsxVSA?cssminify=yes HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
last-modified: Wed, 02 Mar 2022 11:58:36 GMT
etag: W/"621f5bec-144a8"
content-encoding: br
expires: Thu, 02 Mar 2023 11:58:57 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/gprofiles.js?ver=202240z HTTP/1.1 
Host: 0.gravatar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.73.2
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Tue, 11 Oct 2022 05:19:18 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/blog-plugins/wordads-classes/js/app.bundle.js?id=432ca0b0e43c55bb1713 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
vary: Accept-Encoding
etag: W/"6269b786-ea8"
content-encoding: br
expires: Thu, 27 Apr 2023 21:37:16 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/blog-plugins/wordads-classes/js/notice.bundle.js?id=580b1f18df005471bb6a HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
vary: Accept-Encoding
etag: W/"6269b786-81f2"
content-encoding: br
expires: Thu, 27 Apr 2023 21:37:16 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: einsundnull.wordpress.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __utma=11735858.960179978.1654051761.1654283748.1654515678.4; __utmz=11735858.1654051761.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _pubcid=a88f885c-7f87-4c85-9c1b-8257bb586379
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         192.0.78.12
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding, Cookie
x-hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
host-header: WordPress.com
link: <https://wp.me/dSNjZ>; rel=shortlink
content-encoding: br
x-ac: 1.arn _dca BYPASS
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"5bfee315-1d7"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:53 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Lato%3A400%2C700%2C900%2C400italic%2C700italic%7CMerriweather%3A700%2C900%2C400italic&subset=latin%2Clatin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 05:19:18 GMT
date: Tue, 04 Oct 2022 05:19:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /dist/css/hovercard.min.css?ver=202240z HTTP/1.1 
Host: 0.gravatar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.73.2
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
last-modified: Wed, 11 Nov 2020 15:57:10 GMT
etag: W/"5fac09d6-1e86"
content-encoding: br
expires: Tue, 11 Oct 2022 05:19:19 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /i/favicon.ico HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: image/x-icon
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
last-modified: Thu, 29 Nov 2018 13:53:22 GMT
vary: Accept-Encoding
etag: W/"5bffef52-1536"
expires: Thu, 10 Nov 2022 15:10:56 GMT
cache-control: max-age=31536000
content-encoding: br
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.0.2 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"627a5af9-48b9"
content-encoding: br
expires: Thu, 31 Aug 2023 12:49:08 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/custom-fonts/js/webfont.js HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
etag: W/"5bffef57-30cd"
content-encoding: br
expires: Thu, 10 Nov 2022 15:10:54 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Exo+2:r%7CExo+2:r,i,b,bi&subset=latin,latin-ext,latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 05:19:18 GMT
date: Tue, 04 Oct 2022 05:19:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_static/??-eJyNj91qwzAMRl9orggbJTdjjzIcW/GUyJax7KR9+7nsh1IGy52EvnP4BHs2TlLFVGFR8LiRw3w5LfoEd6f6gREVcpugyM6Uwi2tK2XTl9XM4pqamQ6CM+NFmTyWY3kvbWKsNlcJcgwJLJPlx+zEEkzmFigp7FK89WocW9Vu6JSL+TS15Bkfydh+OesjJTPZAtFqxdInU4t1q/5AlBw3/6X0pBU2TF4KFAyYsNgqxZSWKkU8ddd/WD9l4etMzPfxP6otWHMv8r1DLuKbqyQJ3rv89n5vCYFm2Aj3LnqLr8P5/DyM4/AyLp9RyMTv HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
last-modified: Wed, 14 Sep 2022 20:42:44 GMT
etag: W/"63223cc4-25415"
content-encoding: br
expires: Wed, 04 Oct 2023 05:19:18 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: MISS arn 2
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /dist/css/services.min.css?ver=202240z HTTP/1.1 
Host: 0.gravatar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.73.2
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:19 GMT
last-modified: Thu, 22 Mar 2018 09:46:04 GMT
etag: W/"5ab37b5c-a54"
content-encoding: br
expires: Tue, 11 Oct 2022 05:19:19 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_static/??/wp-content/js/textarea-autosize.min.js,/wp-content/mu-plugins/highlander-comments/script.js?m=1663141412j HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsundnull.wordpress.com
Connection: keep-alive
Referer: https://einsundnull.wordpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.32
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 04 Oct 2022 05:19:18 GMT
vary: Accept-Encoding
last-modified: Wed, 14 Sep 2022 07:43:45 GMT
etag: W/"63218631-a4f5"
content-encoding: br
expires: Thu, 14 Sep 2023 07:43:50 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2


--- Additional Info ---