denkodrom.de/
83.169.35.10301 Moved Permanently 291 B IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b4b2a9dd20b37d6cdfae60298b6d5354
b3ab412521cb4cbb70cf2e2d1fd67fb20f4cf2a7
06ad618207b2a3bae75152fa1b27984d089ac7fdd3a7215be9b3731ab35098b5
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 00:10:41 GMT
Server: Apache
Location: https://denkodrom.de/
Content-Length: 291
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4997
Expires: Fri, 25 Nov 2022 01:33:58 GMT
Date: Fri, 25 Nov 2022 00:10:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3300
Cache-Control: max-age=126930
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:41 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:26:11 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 23:19:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3101
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10132
Expires: Fri, 25 Nov 2022 02:59:33 GMT
Date: Fri, 25 Nov 2022 00:10:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LcCta9SosoYDqe2V81kxfHJV3ePPS5NtOyaEyLJXBTa+kLiLGBlo8G45ZXMUfHZrcgyS2IHSdg1BbTl2UvJ3nA==
x-amz-request-id: HZE282PFBZSJ325G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 23:40:35 GMT
age: 1806
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c1b0b28598bdaf9385fd39892452535b
82172fe9abca5a5a55fc64f30b564c3ef1c54562
ca18be5a563043d137b55dd5956c747fb4635912f4ecdf0ad32db8dea4dba322
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA18BE5A563043D137B55DD5956C747FB4635912F4ECDF0AD32DB8DEA4DBA322"
Last-Modified: Wed, 23 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Fri, 25 Nov 2022 06:10:01 GMT
Date: Fri, 25 Nov 2022 00:10:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 23:11:11 GMT
cache-control: public,max-age=3600
age: 3571
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4559
Cache-Control: max-age=123126
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:22:48 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
denkodrom.de/
83.169.35.10200 OK 44 kB IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8491)
Hash 09640a95af45107edb56872f4e652c21
8f4e84cfe55699e53d567aebb47bab7803df6fd7
9b985b358db56b2c35f7b62e1cf08dc530a53b499dac94cf96ebe509d3e692cc
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:41 GMT
Server: Apache
Link: <https://denkodrom.de/index.php?rest_route=/>; rel="https://api.w.org/", <https://denkodrom.de/index.php?rest_route=/wp/v2/pages/11>; rel="alternate"; type="application/json", <https://wp.me/P7Y4B1-b>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.4.16, PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/frontend.css?ver=1.0
83.169.35.10200 OK 407 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/frontend.css?ver=1.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 96715e73de53052e2da1cb15fe023429
4649ba927ac7afb5e2a70b86c18f7f5b2b484f10
888367a4ed32cf98042f1a24333d148d5903056b6e25862ceb19e68536f58ae8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/frontend.css?ver=1.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sun, 10 Apr 2022 16:37:42 GMT
ETag: "457-5dc4f7255e19c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 407
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/admin-font.css?ver=3.8.1
83.169.35.10200 OK 821 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/admin-font.css?ver=3.8.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (653)
Hash c356bd6b1182505cc845b5bd5c48c9aa
9a61f980cb2af5f9f09725431b7821345fc1ce14
e860f1aba9ba3e1c9a7ad4ec44d128ef21bf3cc3bf79039d3764d46213c51724
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/podlove-podcasting-plugin-for-wordpress/css/admin-font.css?ver=3.8.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sun, 10 Apr 2022 16:37:42 GMT
ETag: "c86-5dc4f7255e19c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 821
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/compat/twentysixteen.css?ver=11.0
83.169.35.10200 OK 3.1 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/compat/twentysixteen.css?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 2932679d98fe461e0df0f70f7d3e9c1d
5256a2fdb53d00db4e475bad71c2a50028035d02
1f93012b40a0ce4eb9088b0251cfc73b4b6330e70666d10233085b014bf5fe6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/modules/theme-tools/compat/twentysixteen.css?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "4236-5e128803ea3f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3119
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/themes/twentysixteen/style.css?ver=20201208
83.169.35.10200 OK 14 kB URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/style.css?ver=20201208
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (413)
Hash 3cd23c072cbb4b1fc87ad39d7d7ff79b
df201c4be696ffc13509482f77c94d940db44204
b3299bfac8851600960fe8ad8f2be54f3a58937727239cf3ffa189e522d0eca8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentysixteen/style.css?ver=20201208 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "114a6-5e128a486433d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 13456
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
83.169.35.10200 OK 12 kB URL HTTP/1.1 denkodrom.de/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 00:17:06 GMT
ETag: "15b64-5e3a4b48f4b7c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 11681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
83.169.35.10200 OK 2.6 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sun, 24 Jan 2021 14:27:35 GMT
ETag: "2bf8-5b9a638f9e388-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2592
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/themes/twentysixteen/css/blocks.css?ver=20220524
83.169.35.10200 OK 1.9 kB URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/css/blocks.css?ver=20220524
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 1643c2c1872b8975dfe9b3216095638a
bf3f2e6d2702b8ddb3a8d662b05f08c9c4503941
d80c11bdc71b5a09d02e315fd1e9d0b506d14e7da982e206f7575ca5d952d1c1
GET /wp-content/themes/twentysixteen/css/blocks.css?ver=20220524 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "214e-5e128a4862fb4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1892
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
83.169.35.10200 OK 1.2 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4186), with no line terminators
Hash 30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Fri, 22 Nov 2019 15:35:18 GMT
ETag: "105a-597f12940691f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1156
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg?w=836&h=302&ssl=1
192.0.77.2200 OK 18 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg?w=836&h=302&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x289, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 545ae77661b8698c0fac24aa4378785c
94f7b3acb45377d9989d5806480268d1ade92a93
abc62e5bf95b9e72448e759e089a6d56fbfacf21b5cb45117c0e6d1fe96eb0b4
GET /denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg?w=836&h=302&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 18232
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/FlyerSHEMAERAweb-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3f5edd39462a18ca"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
denkodrom.de/wp-content/plugins/jetpack/css/jetpack.css?ver=11.0
83.169.35.10200 OK 16 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/css/jetpack.css?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash b07332d0f1dd3507e39a09c83764f078
bfeeb2b2d8204d8a158d95b431ccafc27211320e
f57839acebd788d72bf4e9f8e76e845e97e10e8fa3451f40629bc04a825fa84b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "14ef8-5e12880433fae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 16431
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-content/plugins/podlove-web-player/js/cache.js?ver=5.5.1
83.169.35.10200 OK 787 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-web-player/js/cache.js?ver=5.5.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (1837), with no line terminators
Hash de26d99b84a45a22c32211a3a421e261
0e8abef53a2256c3876d9cf452492979130dd4aa
4eb4eb5c67c6647697ab570ddeafc33f6176451c170c2fd20ba486f874c65dfb
GET /wp-content/plugins/podlove-web-player/js/cache.js?ver=5.5.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 07 May 2022 14:56:02 GMT
ETag: "72d-5de6d2c750a2e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 787
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1
83.169.35.10200 OK 16 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (18732)
Hash dd0f53262702f111ddf86f20d1f605d1
a073021fe1aed82f104e7da84fa70bf8815a7d2b
7292e6d1bfe7ed6ee6bb7e9d5cd0483dae1d629955f6efae5c431e928422d1a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "6e6a-5e1288047faa6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 16441
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
denkodrom.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
83.169.35.10200 OK 4.2 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sun, 24 Jan 2021 14:27:35 GMT
ETag: "2bd8-5b9a638f8baa7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
denkodrom.de/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
83.169.35.10200 OK 5.0 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:13:34 GMT
ETag: "48b9-5e1287831097d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/podlove-web-player/web-player/embed.js?ver=5.5.1
83.169.35.10200 OK 43 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/podlove-web-player/web-player/embed.js?ver=5.5.1
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65473)
Hash 7c6bd52e10fdddfb5617c797c18b1817
335e27f209a14e45c36677a3eb1f699b5202742f
76ff6133a901f35e703fbd4b10194b06dcd77e167e651343c5c6dd4630456807
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/podlove-web-player/web-player/embed.js?ver=5.5.1 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 07 May 2022 14:56:02 GMT
ETag: "212ed-5de6d2c746a06-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 42952
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
83.169.35.10200 OK 369 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (685), with no line terminators
Hash accd80b294f42169b1e447e68bacfffe
40847092d82d78897a8219b270b22838fcc0bb95
35e8294d38f054cd6fbcdef72076443685888546d93b41a596e981a5e9a61552
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "2ad-5e128804a0231-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 369
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png?w=1200&ssl=1
192.0.77.2200 OK 267 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png?w=1200&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 267 kB (267230 bytes)
Hash 2f78c6ece059f19b0b2b58f3b265d7f2
b9cc8c8c6925549c1a6a4451018b0bc1bb377b88
0bf6635adea54616336ef022d4f6a5247cf394ca4d749a5654dde43299ce0149
GET /denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png?w=1200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 267230
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2016/10/cropped-cropped-stempeldenkodromSMALL-1-2.png>; rel="canonical"
x-content-type-options: nosniff
etag: "dca0653551437d83"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2022/05/taeterheader.png?resize=1024%2C606&ssl=1
192.0.77.2200 OK 307 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2022/05/taeterheader.png?resize=1024%2C606&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 307 kB (306652 bytes)
Hash 4c319783fd744c82ac702f4d77ed139a
44d3d85fd8c9620c1c8aee5f00ffae40bbedcf73
c248d18c0ace349e15d7f13fccefc83879b34dfcd5d7c07070cd7293b375a8f4
GET /denkodrom.de/wp-content/uploads/2022/05/taeterheader.png?resize=1024%2C606&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 306652
last-modified: Thu, 17 Nov 2022 08:17:26 GMT
expires: Sat, 16 Nov 2024 20:17:26 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2022/05/taeterheader.png>; rel="canonical"
x-content-type-options: nosniff
etag: "07c7685072868fd4"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg?w=836&h=162&ssl=1
192.0.77.2200 OK 5.2 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg?w=836&h=162&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 836x161, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b94f1f9297e0a46c1c59cdd75d01b9a7
9bf70d8fce6691bc9cdf16a9e3ddb916a6452b60
40d989f38c7c4236047e4b76525ca49b62eb4b1fcdc8c5d7b16119903de95e28
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg?w=836&h=162&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 5184
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-logoNEU-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "54bacd4a8accd89f"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg?w=276&h=391&ssl=1
192.0.77.2200 OK 8.7 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg?w=276&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash be1713dea138ea0f2403a598e5baae53
c7fd493e5d9d0860ccf6840b6df4460535861759
7f0fbc0a6cf5ad2fc4b102f5e50933d6df37d37c4f26b7533ae3232fe2dab364
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg?w=276&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 8724
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen3-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e38a666c2e17ce34"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg?w=276&h=391&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg?w=276&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5afab76f26c76e80d91fda11e0c1396c
ca4c3fb036377fd026ed100c13ac9123f4189a28
5fc03bce0a179aa9c45af1b6a63db34f919439e3de5787be4c7e46d9b9aa37d4
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg?w=276&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 14198
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "26e89b7da48e48c5"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg?w=480
192.0.77.2200 OK 33 kB URL HTTP/2 i1.wp.com/denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg?w=480
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x262, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ed7e622df019333d5b1b02e14436b34e
51397230768ec1a010cdfe87c09160ce2a28aa89
98a7254f6f45fadf9b2f6729f12fe86855407de1e1538b67a5d7e8f689e3d56e
GET /denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg?w=480 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 32982
last-modified: Sun, 20 Nov 2022 14:18:40 GMT
expires: Wed, 20 Nov 2024 02:18:40 GMT
cache-control: public, max-age=63115200
link: <http://denkodrom.de/wp-content/uploads/2019/05/60208005_1011136579082985_1746620700858253312_n.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "20d9d3ff08796f2a"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg?w=276&h=391&ssl=1
192.0.77.2200 OK 12 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg?w=276&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 70a6bcf99f7d9b97c9dfbc5ef46f7f08
af78f5d5f4c2fae413776a7c6e7bf8f9b59cabb2
e6f5f18a6b694f9e5749a15c07a05bee9288445005948f269fc4b8664184ca07
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg?w=276&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 11476
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen2-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "655a4c991b59140e"
vary: Accept
x-nc: HIT arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg?w=416&h=589&ssl=1
192.0.77.2200 OK 24 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg?w=416&h=589&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 416x589, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 659edf65ba106a94daf983035d90caec
0aa57eb0be053e24bab89b35998119f504a32ad5
ff8685960326fde245a0bdc352b6bbf8f35775ee19dd839cf79473727d91f444
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg?w=416&h=589&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 23560
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen4-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c55041bf7aa532d0"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg?w=416&h=589&ssl=1
192.0.77.2200 OK 16 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg?w=416&h=589&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 416x589, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d69a042c2608bf760584451238f117e4
1649017bd5d2867fc8c309e4fdb21dbb36f9a876
89ae9c0f6ee8cd25c3a7a6a1423d5c4f6254e52b9e2f825fb65328e44b4f6a3f
GET /denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg?w=416&h=589&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 16238
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/09/denkodrom-stadtmachen5-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a52f680996477403"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg?w=836&h=394&ssl=1
192.0.77.2200 OK 38 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg?w=836&h=394&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 836x394, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8ff8e6a5628d37a17d5a063daa57bba3
a7d06ca0df656819fb716e22ad6fefbb14416413
2e6b09584eaf3ce53b06298361c9dea2efe69a9a2551cf89c0b43ed3114a5648
GET /denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg?w=836&h=394&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 38096
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/FlyerFestival-XdrUck-e1486836829857-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6cb3c2e506c0573c"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg?w=836&h=398&ssl=1
192.0.77.2200 OK 25 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg?w=836&h=398&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 836x398, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 505b31187d42d3b45f2d0d1396f01a8d
679eb3317924070eaf882fcb389497e5a1563598
850db455ce3ce1b6d5fd29b474fa36b181d52a30d70ece367aa295683723ee0e
GET /denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg?w=836&h=398&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 25152
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkotest2016flyerVorn-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6832bd8ffe5ffeb2"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg?w=332&h=288&ssl=1
192.0.77.2200 OK 2.6 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg?w=332&h=288&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 332x288, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af935920da9f41e5280aa14e2bc11902
5a3b75769bae6bba658ffd1b0078839e1af7bc60
1d7a0df0fa9ee51c131db7a5bf8159d212d29b5c58e11a91f5f01d52beb4337e
GET /denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg?w=332&h=288&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 2600
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/WEBDenkodrom2016FirouziVornFLYER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "31be674fdc1fc9f2"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg?w=553&h=391&ssl=1
192.0.77.2200 OK 6.7 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg?w=553&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 553x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4558ca5f27738b25067767259459963d
bec6b3a6b21ed63ede252f420e1236eed544ec8c
bb853ca239a7a2c305c70409f936af574793dd320ba65b621f570c66765e6ea1
GET /denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg?w=553&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 6712
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/roxxychaosundderangsthaseFRONTFLYERNEU-724x1024-e1486836859124-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e6989f0a7f19df4f"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
denkodrom.de/wp-content/themes/twentysixteen/js/functions.js?ver=20181217
83.169.35.10200 OK 2.1 kB URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/js/functions.js?ver=20181217
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash d03942453ec530effaadcfffcd4bada9
49e6b8c586d6919d60fd0d94849cc9060b7efcd6
48a2e867393371e38135d2087c0c7f6e1a3170661e66cb042b24b989faf6a428
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentysixteen/js/functions.js?ver=20181217 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "1ca1-5e128a4864b0d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2084
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
83.169.35.10200 OK 31 kB URL HTTP/1.1 denkodrom.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Mon, 06 Sep 2021 21:18:22 GMT
ETag: "15db1-5cb5a30604c8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 30908
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/widgets/eu-cookie-law/eu-cookie-law.min.js?ver=20180522
83.169.35.10200 OK 669 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/widgets/eu-cookie-law/eu-cookie-law.min.js?ver=20180522
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (1604), with no line terminators
Hash 96910fa5e877382dca1d53961c945dfc
6d8a48dc7873d601d1836904a73c63a2187627d8
5f4fc85b7b1e489bffa35e361248937db954246932e0188efa9f0bee621b9b89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/build/widgets/eu-cookie-law/eu-cookie-law.min.js?ver=20180522 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "644-5e128804a96a2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 669
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=11.0
83.169.35.10200 OK 7.4 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (24247), with no line terminators
Hash cfeb5cda9604ac407a38e2e38c550686
3a590af7eb2c38f99cf4046f4e1d19f1f2d685a0
9f45f4938861e2eb25fb613b2f5b080a2bc91d29758b3e7c34fe78a3277d0ea9
GET /wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "5eb7-5e128804a7762-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7408
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/themes/twentysixteen/js/skip-link-focus-fix.js?ver=20170530
83.169.35.10200 OK 588 B URL HTTP/1.1 denkodrom.de/wp-content/themes/twentysixteen/js/skip-link-focus-fix.js?ver=20170530
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
Hash 6209669d9298e364d532dac780c3b015
a00a7286154427c580f0b5fd65ffab6148662104
7f119c8a8a132ff8c30088b18d4a4479c2d4fc1c65c275f49348db4de92fc58f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/twentysixteen/js/skip-link-focus-fix.js?ver=20170530 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:25:58 GMT
ETag: "423-5e128a4864b0d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 588
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.min.js?ver=6.0.3
83.169.35.10200 OK 425 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.min.js?ver=6.0.3
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (758), with no line terminators
Hash 1f4f6fb19bb5fe725ff003c00776d9f3
f18859fb57e00675a86bd82ab4a40568eefd64cd
28ab9fb7681b46c212aee56eab3166a5d50152a59c3dcea50895a1a686069e9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.min.js?ver=6.0.3 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Fri, 16 Nov 2018 17:25:07 GMT
ETag: "2f6-57acb72da95c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 425
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg?w=554&h=199&ssl=1
192.0.77.2200 OK 5.5 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg?w=554&h=199&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 554x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a084232a6bea24c10b975dff8c73f53d
cfc046959cb24fc8b9a02ea146fd29b5f93f0fd3
003ab56e3b2c62ad38f19743ee9f5ef26bc13cc9a9f87d7bbcf8319b4937aac8
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg?w=554&h=199&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 5456
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-flyer-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f49369b6aa1648a7"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg?w=278&h=199&ssl=1
192.0.77.2200 OK 17 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg?w=278&h=199&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 278x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e628a49d7a9ad0aa17868c4678be44cf
b656d21556ce666b36bd007192f59c6c47d63857
545cbf23409f02988c90539ad2445abdc945442e46a3b0e75959705a9846caf4
GET /denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg?w=278&h=199&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 16996
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2016/10/WEBdenkodrom-bataille-aufkleber-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7fdb301d52b3a668"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg?w=453&h=230&ssl=1
192.0.77.2200 OK 7.2 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg?w=453&h=230&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 453x230, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4456117d225dc48a7d2e50a2c2f685ac
92833b930742f49f63edec5f5c95bcc0d2789882
b33975999413be894f2c463eaddf9122c951711780778d7613e228744defb773
GET /denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg?w=453&h=230&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 7206
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-ALLEIN-e1486836875441-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "28943fffffb0eb07"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg?w=302&h=298&ssl=1
192.0.77.2200 OK 19 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg?w=302&h=298&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 302x298, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b251635dd18d32c28aed8b5268f4ef55
02ee55efc6b6780f88d4d93803a84950314f4ca0
70f82275acb45610b65d2b3920eea3600a83173a068ab6a7d03e3ef256675e53
GET /denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg?w=302&h=298&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 18854
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2016/10/stempeldenkodromCENTER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "412a31584cce328d"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
denkodrom.de/wp-content/plugins/jetpack/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js?ver=11.0
83.169.35.10200 OK 1.1 kB URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js?ver=11.0
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (3156), with no line terminators
Hash 83b62b43597cbf6234809db22be8a07d
d9213019e87b6ea47ab3e21ab7517333e5c6a569
c0ec22e47b171f212b70022432369149ab57d0a1640edb9c68db7395d7691af1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js?ver=11.0 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "c54-5e128804a8702-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1115
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/responsive-videos/responsive-videos.min.js?ver=1.3
83.169.35.10200 OK 406 B URL HTTP/1.1 denkodrom.de/wp-content/plugins/jetpack/modules/theme-tools/responsive-videos/responsive-videos.min.js?ver=1.3
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (777), with no line terminators
Hash 39593a85fb622426c540b5d71bc4543f
7b2536b7210e340b7e7166b28c73f8de70ee1cf5
078b3ac68fb4fe678b0372e8a6844913d22d9bda991d6feb64e9b9bc3c81ba1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/modules/theme-tools/responsive-videos/responsive-videos.min.js?ver=1.3 HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Sat, 11 Jun 2022 09:15:50 GMT
ETag: "309-5e128803e7517-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 406
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg?w=500&h=700&ssl=1
192.0.77.2200 OK 28 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg?w=500&h=700&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 37596454f3b5a1d6c701d07ed52d5462
f62ea0a6d8a152a35b1cfc3a8e143b16372c4d15
425d4cdc7a39119cf409b7ad93377540c0d00de8313e142a49ac593958f45718
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg?w=500&h=700&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 28334
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom_2013_festival_flyer_hinten_copy-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6bdbc2b10a47c46e"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.93.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.93.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gyXy1bWh98/caoXi2LZvAQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Zf92Ry93AyUzA0GaGrRncfGDBIs=
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg?w=222&h=311&ssl=1
192.0.77.2200 OK 10 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg?w=222&h=311&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 222x311, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1173aed232a2f29e0420c87f65567799
af4d70c40c355e0d351465f37069a34fea5c7d43
22c8376b5e18eb94fd2ab45a7f6f426aac2246b3721fe2a055822c7562d85ba3
GET /denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg?w=222&h=311&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 10428
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer11-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f8acdd093b82ea93"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg?w=751&h=172&ssl=1
192.0.77.2200 OK 15 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg?w=751&h=172&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 568x130, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 60f99621382b1c2e0daa9e064943a5d6
3963884cfddef562587f42c2d0c98b809ec4c837
39a35a4fc81207e3970bac83de8bc4b0ca1fd52da5a5b517c67e967c429b2161
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg?w=751&h=172&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 14660
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-f%C3%BCr-tk-copy-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "358afe1e2943a82c"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg?w=210&h=294&ssl=1
192.0.77.2200 OK 24 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg?w=210&h=294&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 210x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 258274a40573c2c13691f3c69b74a136
92b012b9d419dcbc23ec1e2817d43578e8a49dd9
870f34ef8b9636c83f4c03dbd4f6dcb38f16cd9d18a41c755ee5eaddf224b3fa
GET /denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg?w=210&h=294&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 23836
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/WEB-FLYER-DENKODROM-091211-SCHICKEN-HINTEN-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "33c11fa549438114"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg?w=280&h=393&ssl=1
192.0.77.2200 OK 37 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg?w=280&h=393&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 280x393, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 72d0bd90735826dd322580520b998671
d24b1b22a5f86cf0fa9dac3ff76147d133ef64a7
fb437ac59998167b7ccae9125c8431bb7889106c7f65ca1f8f2927c5e8dce883
GET /denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg?w=280&h=393&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 36946
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/WEB-DENKODROM-FLYER-091211-SCHICKEN-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4c32dd2346f406b4"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg?w=453&h=302&ssl=1
192.0.77.2200 OK 9.1 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg?w=453&h=302&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 452x302, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0d9cca35b7cfa2fefb92209edd93959
1466cced4b6e2cbd856ee919c60023ebe0778729
ef9b97c14c455d0b99a6382defecfb49f3a0f69055a60a006b5367527e75e929
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg?w=453&h=302&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 9076
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom_im_bau-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "da4cf167ecc61892"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg?w=621&h=439&ssl=1
192.0.77.2200 OK 10 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg?w=621&h=439&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 621x439, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cd5e9816d0cd70d8a5c04b61767b64dc
0f6b93f24fcda9d0390e3e360dc6d8711c2ae0a9
e3a50f462e5887da7145f8e5115a4250c06c5adb9103bd9258d31c8831926872
GET /denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg?w=621&h=439&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 10270
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/Ruhe-sanft-Bittergedanke-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "66831b61d24d2e7f"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg?w=211&h=439&ssl=1
192.0.77.2200 OK 8.6 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg?w=211&h=439&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 211x439, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e1364918daa84f77435552aac3057fdc
250614ba9d8208941bfcbe770b3e4bb9cd1b7ed0
5976d92ba7e642c0ed1b6253a255257e00119c81391c2d4fc9dc23e5c8a3ec66
GET /denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg?w=211&h=439&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 8550
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/Tag-Im-Park-Logo-mit-Schrift-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "889a94334387fbe0"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg?w=552&h=393&ssl=1
192.0.77.2200 OK 6.6 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg?w=552&h=393&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 552x393, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cd228afaccdd4ff53f48c2dfbc9f9f9c
5cd9b7933b3028182b74b70939c0e45999dd3aef
d31bba8410ee69c628a03b505ef8275b5b2f96754cd4a6b17124584f73d605e0
GET /denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg?w=552&h=393&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 6640
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodromtransgression-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "dd0ef99c4852264b"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg?w=279&h=391&ssl=1
192.0.77.2200 OK 24 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg?w=279&h=391&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 279x391, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 577b3fc11abda317f7a4385e97f3183a
7d021f9af4767241ad6811c3d7cacdc08a4aab0c
b511c09d5e71f2d9fc88d514877f8175b4575195815dfe639685c32a73ea6943
GET /denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg?w=279&h=391&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 24050
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/DENKODROM-FESTIVAL-15122012-FLYER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7ca583e9b45a29af"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg?w=332&h=169&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg?w=332&h=169&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 332x169, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash faa94b4ce35ccbd7ad86b89f930a4b70
a3d8b627447414b9debf7e3774958a597f7fd80d
11e091bb66809966d8fae30ca7887d84c4f24fdff4d583f43de23d509bdc2508
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg?w=332&h=169&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 12966
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-bunt-logo-fun-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ee39dffbc4a4841c"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg?w=610&h=311&ssl=1
192.0.77.2200 OK 32 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg?w=610&h=311&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 610x310, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af5df8ef8bfc5cbf0ab0492986a434c7
3e9d04089d22b8d484c7a4e50f8004e9fbe2351e
8ecf7073f60f23839abe83f20baff2c83f8a356955d68b6c97f74eb93d1200c9
GET /denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg?w=610&h=311&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 31938
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyerSENDvorn-denkodrom-2016vornSEND-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "46227bcb928a2685"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg?w=81&h=172&ssl=1
192.0.77.2200 OK 3.8 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg?w=81&h=172&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 81x172, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9ffa87158e315678572beb0cf543fd8d
3e639959a76bae86b6885d0c0748e7055666f3eb
aa061e53a19f6c07a4839d4a90a85ceac7d9e3e9ba4faa149fa75bf49c03dbff
GET /denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg?w=81&h=172&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 3824
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/Tagimpark_16_Flyer_RZ_vorne-2-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "73926e9553d3ffdd"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg?w=622&h=294&ssl=1
192.0.77.2200 OK 23 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg?w=622&h=294&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 622x293, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b419c6c57911852fc67b03b96d0eb1b3
2a8359d4bcad6d6d3f0ead7348b0e3e6e0e0e032
c326878a8f902a3555bc792adaacbeb8e707c91c58ea5c5c1f76ff88b224fe20
GET /denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg?w=622&h=294&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 22992
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer-denkodrom-2015-2te-HJ-COLOUR-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "cec11d46f441b95d"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg?w=379&h=536&ssl=1
192.0.77.2200 OK 20 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg?w=379&h=536&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 379x536, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 45514bd94c3066971d47b8c03d1efc53
34aab8a1400a04fe9e2b17192af7843490dce526
e5304ab4af86009b18544b7c196de0243099a2798f1c41a5baff5a29d6f7a573
GET /denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg?w=379&h=536&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 19940
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/roxxyangsthase-flyer-bochumessen-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "dac89a0c2c4baf26"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg?w=332&h=235&ssl=1
192.0.77.2200 OK 8.9 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg?w=332&h=235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 332x234, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3b1f55886a30775262559a94f8998f5d
0a4941c70a87c863b42bf1180f30c2a0bd9ede04
8ff7daa3d9dd3944a7cc86d9a813a1043ac9e61db50b81cf3963e8ebe116e148
GET /denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg?w=332&h=235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 8864
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/flyer-452012-denkovorn-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "cd2072bfda142da0"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
denkodrom.de/wp-content/uploads/2016/10/denkobackjpg2-1.jpg
83.169.35.10200 OK 17 kB URL HTTP/1.1 denkodrom.de/wp-content/uploads/2016/10/denkobackjpg2-1.jpg
IP 83.169.35.10:0
ASN #20773 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x671, components 3\012- data
Hash 08d2b87e4125702bb5fcd9335ba2b982
43e7a7cfc75bad3ee10be249df53aff2bace5a29
8faa01bf08a525321a53124d8d3ab96de802e7e2f98dea7f8212bc099a2695b5
GET /wp-content/uploads/2016/10/denkobackjpg2-1.jpg HTTP/1.1
Host: denkodrom.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 00:10:42 GMT
Server: Apache
Last-Modified: Thu, 11 Jan 2018 16:37:36 GMT
ETag: "41bc-56282c3ee5400"
Accept-Ranges: bytes
Content-Length: 16828
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
pixel.wp.com/g.gif?v=ext&j=1%3A11.0&blog=117751703&post=11&tz=0&srv=denkodrom.de&host=denkodrom.de&ref=&fcp=0&rand=0.30775706689267035
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A11.0&blog=117751703&post=11&tz=0&srv=denkodrom.de&host=denkodrom.de&ref=&fcp=0&rand=0.30775706689267035
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A11.0&blog=117751703&post=11&tz=0&srv=denkodrom.de&host=denkodrom.de&ref=&fcp=0&rand=0.30775706689267035 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg?w=530&h=298&ssl=1
192.0.77.2200 OK 164 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg?w=530&h=298&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 164 kB (163632 bytes)
Hash 94a0c9bcb448dfca66d0d55b6ee1061e
e742e8206dd4647f714a394c3c6ea3b249c686b2
b6ec5617ed25a4874403f98aa18af8b33160d160da6a2bf498a2013901fc4150
GET /denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg?w=530&h=298&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 163632
last-modified: Fri, 25 Nov 2022 00:10:42 GMT
expires: Sun, 24 Nov 2024 12:10:42 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkodrom-b%C3%BChnenbild-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "df47f4d552e69d52"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Last-Modified: Thu, 24 Nov 2022 23:29:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:40:39 GMT
expires: Fri, 24 Nov 2023 21:40:39 GMT
cache-control: public, max-age=31536000
age: 9003
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19900, version 1.0\012- data
Hash bac4e4fc860f0a92beb62a776048f7c0
26eb7089b1050997d371be35946a12ae0cc7218f
3642df12f0d930d5846a96652080908eb2f383b602a95cf80d1e6227e66e1c46
GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:59:14 GMT
expires: Wed, 22 Nov 2023 17:59:14 GMT
cache-control: public, max-age=31536000
age: 195088
last-modified: Tue, 26 Apr 2022 15:46:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Hash 101cf2a65d64322878605fa8472bb025
6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:14:57 GMT
expires: Wed, 22 Nov 2023 17:14:57 GMT
cache-control: public, max-age=31536000
age: 197745
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inconsolata/v31/QldgNThLqRwH-OJ1UHjlKENVzkWGVkL3GZQmAwLYxYWI2qfdm7Lpp4U8WR32lw.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/inconsolata/v31/QldgNThLqRwH-OJ1UHjlKENVzkWGVkL3GZQmAwLYxYWI2qfdm7Lpp4U8WR32lw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16244, version 1.0\012- data
Hash 8e34cbcc4dfe30cc0f1afc341388aad8
feb205d0a09ad06d4fb1c62d2b61fb91c8015cef
4f9f98d74dc5dea24db279aedd49367424c72cba9fb67341cbef8bcd2f0ad002
GET /s/inconsolata/v31/QldgNThLqRwH-OJ1UHjlKENVzkWGVkL3GZQmAwLYxYWI2qfdm7Lpp4U8WR32lw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 22:54:56 GMT
expires: Sun, 19 Nov 2023 22:54:56 GMT
cache-control: public, max-age=31536000
age: 436546
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png?w=600&ssl=1
192.0.77.2200 OK 128 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png?w=600&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 128 kB (128518 bytes)
Hash a166375aa2322bde7122a41d357579c4
32fdf43294aa05d56a3181195b8e1a73bb6e5150
d5a3bb3094b17ba2ea95c8a5f3eb9b656c19d94fd9fce44a172957aeef68af9d
GET /denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png?w=600&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 128518
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2022/01/iofestivalsharepic.png>; rel="canonical"
x-content-type-options: nosniff
etag: "d59c556c180b9918"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 27024
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19780, version 1.0\012- data
Hash 03717344e4dbb2de44988b281bb7430b
0cd3f7724bd0a5bf2460e1a85e35ccfbd5e85c05
499ec54eb2afd103ec37505e23c6570fc7d89a0d728dde19d87a092e4a3261b4
GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://denkodrom.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:37:12 GMT
expires: Wed, 22 Nov 2023 17:37:12 GMT
cache-control: public, max-age=31536000
age: 196410
last-modified: Tue, 26 Apr 2022 15:48:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 8.3 kB URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 78558a4cad6a7e70d8d33a973011f0d7
5846d954715e381b367fbdd492425ecc37b00f67
770dffb9ef9042973011c73e1384c6e8b480fe55fa9d851f9285bfea548464ea
GET /denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 8328
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f4749ab83e10cf1f"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 548 B URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 203b1c998a993b8933ebff28a0f20006
345b755b2b13f812520aa0fa4299b47d031d73c3
fe6272f811111aedc53f01ec009b6c3d58e12ee788aae9341543fe5464a257c9
GET /denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 548
last-modified: Mon, 21 Nov 2022 02:10:48 GMT
expires: Wed, 20 Nov 2024 14:10:48 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/04/cropped-cropped-cropped-stempeldenkodromCENTER-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0c0a760a90b5d791"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 473924
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 8666
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/DEROcJF1-NM?rel=0&controls=0
216.58.207.206200 OK 31 kB URL HTTP/2 www.youtube.com/embed/DEROcJF1-NM?rel=0&controls=0
IP 216.58.207.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58642)
Hash d04b131109a519ba2e42e1af8f112bce
46f34a91fd51b11a3a3650e7f5d820dc4a90accd
1a58565a8fa142f3f7c3a1133fe65a6843ea8d948a7c836b4850967a88665ce0
GET /embed/DEROcJF1-NM?rel=0&controls=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 00:10:42 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=dDzGKL5R3IU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=t0f2ooU7sWI; Domain=.youtube.com; Expires=Wed, 24-May-2023 00:10:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+075; expires=Sun, 24-Nov-2024 00:10:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2458
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:43 GMT
Last-Modified: Thu, 24 Nov 2022 23:29:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14131
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 00:10:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14131
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 00:10:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14131
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 00:10:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14131
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 00:10:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6292a2988fb4505d0098553b8e99ddc
9b8aafcda0e22edcc16d3048f4b88659d3b42419
16b7b473229c5e519ab81b385c50277424f3f3b2a5d7647035e84ba58e44f3be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6385
x-amzn-requestid: 1946379e-4e55-4f88-af6f-1b97b23ed91d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_c6lHpkIAMFUkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c7510-6b1a2a885ccfed6a79ecfc6a;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dqSKXJ-wDRV1EvLG8O8iL1658j4HdMmxR3nD-UkRKhW-N9UWjeQ3rA==
via: 1.1 feda34dcbf6a00e232656b7983c2c7f0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:22:46 GMT
age: 60477
etag: "9b8aafcda0e22edcc16d3048f4b88659d3b42419"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd87485db-f230-4024-987f-6b9ea6098576.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd87485db-f230-4024-987f-6b9ea6098576.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05a92b9f554600c920e8b772eb16ee75
7f29e0e2de89f7a88ff0bf2a720365032ef11cc1
4b51a70a0ee6fe0d723880ea70fee25c15bff671d8a484bbb2a3c9962303c735
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd87485db-f230-4024-987f-6b9ea6098576.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10356
x-amzn-requestid: 8450975f-bcb2-4b59-b0ef-42e43d1bb16a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM-cGKIIAMFo7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8ec2-7f95154e3177c6e30a925244;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _dHgUlzLnOsFrI73NzPGn0VJ2NvJqRew6bHzlD6_n2zwHPfQ-8kIvA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 03:18:19 GMT
age: 75144
etag: "7f29e0e2de89f7a88ff0bf2a720365032ef11cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 60996
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4abf25d4a15ce58edadd54994b3434a2
18800e21d05596f7b64213072dee7dda5c1faf61
633138e70f43e2be9cc447967044c4070bfc4d9285e5228361bebe255dc286e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10950
x-amzn-requestid: 9bb73841-83d9-48b2-8c79-f00a57612b4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFNstFeZoAMFopQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec31d-4e6aafd367c7740c77df133b;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:04:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Flw9EdzENUCOukD9HilOxntWCGlJbRReExn8Wb6p7bIUx8iSeIg1xg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:43:51 GMT
age: 59212
etag: "18800e21d05596f7b64213072dee7dda5c1faf61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 03:27:30 GMT
age: 74593
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4f6042-6f6f-4572-b535-71b1a4b587e8.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4f6042-6f6f-4572-b535-71b1a4b587e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f65dfa986cf95e8fb459778b945c59
29edd439b6e7894bc4771fc655a50d926f349a08
c6182797d5fce1a086580a338929e851a73ccb75e6432b12969aae6f0952fa27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4f6042-6f6f-4572-b535-71b1a4b587e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 02dc5c46-069f-4ee3-aa45-16b1bce00785
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b7NIBG02oAMFu-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ac233-4e8f84ed5695d26359c12846;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 00:11:31 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: ZZe5ifdG_5LZ1E5rc4gHFEbc7IFI04waHgJRIWx0Hh-s6Uw66Qu42g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 02:54:44 GMT
age: 76559
etag: "29edd439b6e7894bc4771fc655a50d926f349a08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7dd014d15e688837e6648e02ffb2d72e
873df827d32872cc237acdf35272bcf3769690a1
2aaec05bb3663336374697fe259f2a372d1d22d56773ed92dd2842324ad74b78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 00:00:21 GMT
expires: Fri, 25 Nov 2022 00:15:21 GMT
cache-control: public, max-age=900
age: 623
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.98302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 25 Nov 2022 00:10:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7dd014d15e688837e6648e02ffb2d72e
873df827d32872cc237acdf35272bcf3769690a1
2aaec05bb3663336374697fe259f2a372d1d22d56773ed92dd2842324ad74b78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 25 Nov 2022 00:10:44 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6324cfd766f412b5194f362842c3bfbe
f3c83dc0da3932baf76ec1541593fb17a0550903
022c62c68f2d1c5b37796a147035e8d1d24df560213b76bd7442aaf537a53eda
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 00:10:44 GMT
server: ESF
cache-control: private
content-length: 30952
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/iUZTEdo21L8
216.58.207.206200 OK 28 kB URL HTTP/2 www.youtube.com/embed/iUZTEdo21L8
IP 216.58.207.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58642)
Hash e03565be46d26e40ce09cf774ad0179d
31fee548c3cea8ea1c85ef6fe4be4b447b3af2db
b3f92ab30834d14d6172c6c782070189016733139820051290ebd102b8d25631
GET /embed/iUZTEdo21L8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 00:10:42 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=A8J2yxHUs8U; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=ZD1kWKU99kY; Domain=.youtube.com; Expires=Wed, 24-May-2023 00:10:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+717; expires=Sun, 24-Nov-2024 00:10:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.wp.com/e-202247.js
192.0.76.3200 OK 30 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash 14fe81017f449fbca65bedbd91ba10ac
c00ba725d0e3582d89cafaeab0ab95bb250eec67
5d11529b6d92df3e3c18fe23c2568e0fa7c8b00ebe6b3a3a234b6d096212cdf4
GET /e-202247.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 13 Nov 2023 09:17:34 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 10:09:03 GMT
expires: Mon, 20 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
age: 396101
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 4c5b89e92448cf00786f3e5997984a34
2d9d6b749b89e9d92b832fca2606d5584ba2cd8f
861a7376573baeb22b35cf2f5130d0803a055fbb63cbecde05ad80335b6f5f35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/PU4XElb3dEc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 265 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/PU4XElb3dEc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (993)
Hash e0e78328c7d39527b50d23be97ec21cd
cb983ba70e6d934d7f973fce0741dd6f395f4356
f556751ac7feea7f563ae2b7f13227fedc78aebc85e572ca7d8522cc891110b1
GET /rsrc.php/v3/y1/l/0,cross/PU4XElb3dEc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:26:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4OeDKMfTlSe1DSO+l+whzQ==
x-fb-debug: MMdMC6iZ6CRe2JwKysJaeENLJk2YWWTSSiY1VeVcSsTDGXiozKMxLDLj1P6wTtCeJt0uHK+U6kjMUEAnAQFo5g==
content-length: 265
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/V9MZjuNNYY8.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/V9MZjuNNYY8.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4488)
Hash 35b110baa0cc83f5a3d30f3a413b721b
26d35084f51f9c34fd5f217059e8ffadf2124898
d5e8017b56bf8031d70a105f97857bb52c59084ec39fc6a65e90018591801db2
GET /rsrc.php/v3/yR/r/V9MZjuNNYY8.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 24 Nov 2023 18:45:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NbEQuqDMg/Wj0w86QTtyGw==
x-fb-debug: 3Nd/VyRPyXPYUProB3EChUooKN7oTGqQ157HKJsZHYdRnsY6wteFnX18eCPVMQi5gnzUVpQlF1sUk5GzEM3hFw==
content-length: 6318
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18622)
Hash 151e87d38f4f425e44d9c851c9aecf05
762111e5095f5354be95b98ad476f6e7161ce6b1
f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0
GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:54:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: XKYCuFqqNH0kZrgnBK9d939R6pWs+fcIzk26id8p6lRkOvr6n2vQtYYz0yMcJoZ8xMvN0Ztyy0Cqwk+0Rwgf4Q==
content-length: 91088
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:24:38 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: Kj7wDR4ZUhOCqpydHIir3jrZeY0lgM+7J9w/C7ydajKnbRQOLDivzqfww/dDUDhdoi+4Uz0SpoApq3vwuwWS0A==
content-length: 830
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:07:00 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: bP7Hn62kFAjWr7jSa5xbIHjvtrymCc5+/BWiU8jmZWvoE9UNywvxV+fazhrnkAfvO75toNN1+8hqwJRQpK4bpw==
content-length: 1657
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a7ca7622f16f88b3b5a56386d625a7c1
a52b7f36d5614848361cc6c9630f2d00c248f6bc
4c09e6688654c45e95d02072b9ef6b9efdf6b3f3b2eb4dd9f4a8e20302dfa375
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 00:10:44 GMT
server: ESF
cache-control: private
content-length: 30981
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:07:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: GDGRfZeyuE1OHpy9ahIhaU0kclOXpFQYQ7/1M/D5cI7JUQ4Ew0DXCSWEFfX2Lc8mzeEZzI90+YEWxbLFPyoGUw==
content-length: 338
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 427 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (704)
Hash 953b705e213d67a5c9f193be03af94d2
20ba97702ad0d0ca499a65bffd5ca50740c62b79
1e7fa0e9a2ddc308ed653e5928c1ff4edcfffabe518f18407beffac932b7f93e
GET /rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 03:47:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: lTtwXiE9Z6XJ8ZO+A6+U0g==
x-fb-debug: gvtAjlFnYV+8J8eegCTlSjZB6Pc3t+yiYIQaQ0RwoyyfqerT0/ld0yspNordXPBg3oNPbJq4DXljeX1FbmkpoQ==
priority: u=3,i
content-length: 427
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2905)
Hash 7734711815478192096a4df90abbfa01
ea16129c6f54227d9d01bf3421e68863e75ffd7a
22cf4b88ca3b9208f44974e02dc6f784021871877121c7d03b310d7264ced0e3
GET /rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:17:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dzRxGBVHgZIJak35Crv6AQ==
x-fb-debug: NPG7cUx7io88tftsvvRij0CszNI0CPq7sIm2xUD4riF1w4KATain+ASLapi2Soo40inw5jzizwlumjWHHhA6UQ==
content-length: 8360
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9885)
Hash 71e8e93b5e55f2010013b0814f4e3ae5
4732ba3acc539a0e9ff12d08c1b5a16f535bd594
b710ea52f812ac39c5195f0c170142bfcfcc274aa6b250a29a1ed1c59ea58556
GET /rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:39:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cejpO15V8gEAE7CBT0465Q==
x-fb-debug: H2PI3oGS9Y4J9xsW92eZpy446nXHTXfc0oS1Ip5KPRUh1uSqu1kjsSpEPgFjjn+tiZ3P/nPgRYBruWBygKDW9g==
content-length: 8748
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4431)
Hash 1edd6626ecc1fe1c708fe86319f5bc22
dd58cc72446f8658aac8f9c46075874d5df96b6a
afb2ce31a60811eac42759964232e5b0f6d23463b318c21677bff49f1ef71b9c
GET /rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 24 Nov 2023 18:45:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Ht1mJuzB/hxwj+hjGfW8Ig==
x-fb-debug: Ne8hjCb1Wi8nV30MsIucv1btJPTzvPzf0BPF4YklJfmkDr6VcEK7+MJSceq5ShE19wiwjTayjaDbWg2TZp11QA==
priority: u=2
content-length: 5146
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yk/r/lNQKzORH_3o.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yk/r/lNQKzORH_3o.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4643)
Hash 3d04fb0bfeec2de76f7a043b3c9d381d
42f49d096e57efaf7d7fe8332d40c4c72da97f7e
81b535cf6d8acd9c9841ae1fc8750ef9c4ee0892e11ed6edb30747f9a4b5d3d2
GET /rsrc.php/v3/yk/r/lNQKzORH_3o.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 18:09:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PQT7C/7sLedvegQ7PJ04HQ==
x-fb-debug: ww0Xi9Utahc6hfg2xq/bjaIJgBYj5x/K092WWy7BPcHdcUiu+01AuLYO0MegWkvHa7KEuokuXE+PYXbytro7RQ==
priority: u=3,i
content-length: 7564
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEBX4/yg/l/en_US/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEBX4/yg/l/en_US/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5962)
Hash ba1e18b79724944f946c55a1dc9d4682
f8298c56161c54c767a04a7d6536c62c5214d497
149e9937131b6e28ab9b176a7b5e52780b3bcf86befbdc1f9e6ca7157a756965
GET /rsrc.php/v3iEBX4/yg/l/en_US/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:21:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: uh4Yt5cklE+UbFWh3J1Ggg==
x-fb-debug: I4OI/YyAqyNT9urRbC22CjVh9TSnvPs6Wb/8xgAylwc09Lq1nTTWpBSA2FIoa7DDk9DHLBet8CP0COpP5zR/eA==
priority: u=3,i
content-length: 6746
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yf/l/0,cross/aA9vo_lLY_p.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/l/0,cross/aA9vo_lLY_p.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type assembler source, ASCII text, with very long lines (2642)
Hash 513d333d5f739328f34b4b7a6096e90d
fef1bb3dae2e785caca660d3bd56322cb8aeee6a
4bb46abd6ab79cfb08f61850467e5bde32ca565e00aeb1b719cab10b4d46dfcc
GET /rsrc.php/v3/yf/l/0,cross/aA9vo_lLY_p.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 24 Nov 2023 19:42:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: UT0zPV9zkyjzS0t6YJbpDQ==
x-fb-debug: Js3EaQBEAUyrb8zK9b97nqCf0NAfdYaLkWoEWFhLRsUE7GMNGYiojqjgy8rHFeGoK5029tQh97LIrvp0t9bKNA==
priority: u=2
content-length: 4518
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4057)
Hash 571700b5a1e8db88d5d79007a910b962
07102cc5f2b19f190830664e1ec6718efb33c011
ecccefedaf39e094079b22880aba987993015fbf1b70fd3c63bc57dc10685f11
GET /rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:13:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VxcAtaHo24jV15AHqRC5Yg==
x-fb-debug: toyuB3SAldiJbPiFmTzqS82YUXCgo1xj24kbDL0MQa9hnhIbaWdcJ2i2753fIkvf+ZVJbaC46+TMmqv8MGguuA==
content-length: 7238
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.ytimg.com/vi/nt7QAL3KNkQ/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH6A4AC0AWKAgwIABABGGUgZShlMA8=&rs=AOn4CLAb_fsaJGBsWuDKVKujdYiI-55WWw
172.217.21.182200 OK 58 kB URL HTTP/2 i.ytimg.com/vi/nt7QAL3KNkQ/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH6A4AC0AWKAgwIABABGGUgZShlMA8=&rs=AOn4CLAb_fsaJGBsWuDKVKujdYiI-55WWw
IP 172.217.21.182:0
Hash cf6e5e2fa29f01fbd327ef1219566994
0320136c6de71b2aa07aba8a50320daeeb00f810
ce5f1c095ec4d033e3ab3e2c4a50f6702f6cd1ffed8ea5a546003580f2c5131f
GET /vi/nt7QAL3KNkQ/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH6A4AC0AWKAgwIABABGGUgZShlMA8=&rs=AOn4CLAb_fsaJGBsWuDKVKujdYiI-55WWw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 40943
date: Fri, 25 Nov 2022 00:10:44 GMT
expires: Fri, 25 Nov 2022 02:10:44 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (8741)
Hash dfb29285817fca7b068ba0ec98aa2392
78cd49585da28a245a096781c8e0fada59cf2b72
2c4a3a46d7dfaf97bbc16a2b93470d1b3382c0da3f44dca0c987a3384cee43d3
GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:07:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 37KShYF/ynsGi6DsmKojkg==
x-fb-debug: W8oNQ20RRci19DZRKo9uDRApdh+0a2rAY6qTH85H4Hi9P5kV6tLh8k37VYg3Sb5ZwVDl6wz3D24n8ZMMRcEPrQ==
content-length: 16262
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (15336)
Hash 1a57684b1bbad1c3239fa33bfb7bf4c9
5e2fc164f520b2e61813da6103e1026ff078c779
4a6c3da8ef6e418a2a3eabb2c60512dc28ce3b5daff71e3c2d1fa93af50b75ba
GET /rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 23:59:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GldoSxu60cMjn6M7+3v0yQ==
x-fb-debug: ddaPRBL+2G5b7FAwz4+y0/kjDW+z+AfkcCszusmpVHnFmd1YyULVV7FH0z+MPflFsAfzryYY7REoOw8uBrYmeA==
priority: u=3,i
content-length: 16255
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42048)
Hash 3051900d03a657ddbbc9afa8ac11cdbd
557f26734897e137a6678f6d2a81672fc6a34ad2
038035ce01be57324c7e251c8834229b4910f27e3a042912fd7276947e5750df
GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 03:32:37 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: bYJtwnmxjXNN/5yVzx0xIPOgUd6Q8v8AOjtZxr+sBc5dyqixEfG4vUGd0PG5yIVM8WsyOnRU3pNCX33EeE2n6Q==
content-length: 23455
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 4c5b89e92448cf00786f3e5997984a34
2d9d6b749b89e9d92b832fca2606d5584ba2cd8f
861a7376573baeb22b35cf2f5130d0803a055fbb63cbecde05ad80335b6f5f35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu8Wqn59dVtqfWgGDd8ZO_66ByX2ENWJI4Hz274S=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 4.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8Wqn59dVtqfWgGDd8ZO_66ByX2ENWJI4Hz274S=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 9e4278df3bdc446584c5912bbdcea6f3
bc27f49368d5140e7887f7f10d49eac9eaee4d27
0394067ecd17010bb3c8687ecdbbc1afe6fec7e5bf1042553d1ca151a21705af
GET /ytc/AMLnZu8Wqn59dVtqfWgGDd8ZO_66ByX2ENWJI4Hz274S=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4396
x-xss-protection: 0
date: Fri, 25 Nov 2022 00:10:45 GMT
expires: Mon, 21 Nov 2022 07:11:50 GMT
cache-control: public, max-age=86400, no-transform
etag: "v21"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 00:10:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/jxeXkrpYDblCejRN7iqYpX9U8nD3i9NGZesN28RkGUx59xYz0Nkr2Nz41DZ2TueuCy3OTXhHkQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.5 kB URL HTTP/2 yt3.ggpht.com/jxeXkrpYDblCejRN7iqYpX9U8nD3i9NGZesN28RkGUx59xYz0Nkr2Nz41DZ2TueuCy3OTXhHkQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 97dc495b1bb3fb3a194db09a5a6deba7
e804387f16ff66b37f93027dfc809ca9cb179246
5833b855cce7db96c29b2efbb2db8ee6249424b2f616f5667d7931eb9c52b080
GET /jxeXkrpYDblCejRN7iqYpX9U8nD3i9NGZesN28RkGUx59xYz0Nkr2Nz41DZ2TueuCy3OTXhHkQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2479
x-xss-protection: 0
date: Fri, 25 Nov 2022 00:10:45 GMT
expires: Fri, 25 Nov 2022 03:11:32 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu-gKcdeCwe8kxKmOPoMePbX-AvJcj4iPoPDnQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 930 B URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu-gKcdeCwe8kxKmOPoMePbX-AvJcj4iPoPDnQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash eda4da49ae7825b91a7d97bec2c90e06
c6c5ee75b371df3787616b7950e7dc1e18cf5835
05ec3fab684b462424abf71f0f286ca1db07b0d003541c664d6b5b3bfe87baf3
GET /ytc/AMLnZu-gKcdeCwe8kxKmOPoMePbX-AvJcj4iPoPDnQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 26 Nov 2022 00:10:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 25 Nov 2022 00:10:45 GMT
server: fife
content-length: 930
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/T1oMBrgJQCd.png
157.240.200.14200 OK 522 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/T1oMBrgJQCd.png
IP 157.240.200.14:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash b4fb567dfdf0df35a097f6e9ecfefd34
f9aa0cbb0dcb1442c15f39e84279c8568ac86beb
87790b81d9cc99d100bc5996e0f70701a922877b1f7f9afc3146d4b17522b510
GET /rsrc.php/v3/ys/r/T1oMBrgJQCd.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: tPtWff3w3zWgl/bp7P79NA==
expires: Mon, 13 Nov 2023 06:14:26 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: k6pxbEaefKHtfrQzJhTybCmk9frrWhYTLWOfX+r2ExAMs8nYixDwHCDPJrb7bLuvLDwq2ZxaTKk3Ua4SXSdplA==
priority: u=3,i
content-length: 522
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 2.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
Hash 0937c5875d6c88a3d404feb575ed0562
557a61d6bda988878f1e28070aac3d901389e63f
ae1c99073f37e47a4c63d0bf3fde834aa4f09eb11ed85c4905487cfd61666e6c
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 03:38:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: wiiQpSv+hINmxdmDh50qRYLH0Cc0/G7L/Ii7uM69ujJ9255olUBP7wXxq1ttCrD/GuMczOSWMrxFCttWIBEa7Q==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 00:10:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6673267df195141739d1018c17101368
b80047da428636adb7027f12718c8d11bd461da4
de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11954
x-amzn-requestid: c2484616-009c-47c4-b52a-36b956c7b207
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JzaHXLoAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2348-01d4a7be526475d31fce3c13;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:44 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 3KRN_6gYmJqP-Ehaxdu5iwp9xKOOg-dhtGdUcSaho56NVWqVCtyiFA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 14:49:47 GMT
age: 33663
etag: "b80047da428636adb7027f12718c8d11bd461da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/embed/Ox7ik5Xb-pc?rel=0&controls=0&showinfo=0
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/Ox7ik5Xb-pc?rel=0&controls=0&showinfo=0
IP 216.58.207.206:0
GET /embed/Ox7ik5Xb-pc?rel=0&controls=0&showinfo=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 00:10:42 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=jzqp0hV1Pzw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=dO-nW7WbbM8; Domain=.youtube.com; Expires=Wed, 24-May-2023 00:10:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+755; expires=Sun, 24-Nov-2024 00:10:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkotitel-neu-1.gif?w=836&h=208&ssl=1
192.0.77.2200 OK 0 B URL HTTP/2 i0.wp.com/denkodrom.de/wp-content/uploads/2017/02/denkotitel-neu-1.gif?w=836&h=208&ssl=1
IP 192.0.77.2:0
GET /denkodrom.de/wp-content/uploads/2017/02/denkotitel-neu-1.gif?w=836&h=208&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 00:10:42 GMT
content-type: image/webp
content-length: 467446
last-modified: Mon, 21 Nov 2022 08:17:14 GMT
expires: Wed, 20 Nov 2024 20:17:14 GMT
cache-control: public, max-age=63115200
link: <https://denkodrom.de/wp-content/uploads/2017/02/denkotitel-neu-1.gif>; rel="canonical"
x-content-type-options: nosniff
etag: "50183c70077d8423"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.youtube.com/embed/nt7QAL3KNkQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/nt7QAL3KNkQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent
IP 216.58.207.206:0
GET /embed/nt7QAL3KNkQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 00:10:42 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=6ssNnq_PA34; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=BDDbR88XUYk; Domain=.youtube.com; Expires=Wed, 24-May-2023 00:10:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+563; expires=Sun, 24-Nov-2024 00:10:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext&display=fallback
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext&display=fallback
IP 142.250.74.10:0
GET /css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 00:10:42 GMT
date: Fri, 25 Nov 2022 00:10:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/sIYDkHEBquA?rel=0&controls=0
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/sIYDkHEBquA?rel=0&controls=0
IP 216.58.207.206:0
GET /embed/sIYDkHEBquA?rel=0&controls=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://denkodrom.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 00:10:42 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=RpSAC4CMnjU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=-D5DT3eSo0Y; Domain=.youtube.com; Expires=Wed, 24-May-2023 00:10:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+054; expires=Sun, 24-Nov-2024 00:10:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2