detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Wed, 11 Jan 2023 19:34:30 GMT
Age: 71863
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
www.hiwentis.de/
301 Moved Permanently 232 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3424fa35622d26f9d532fa4da1d870e2
8580481156641eb2087d21ff8b79d4f42908db7a
82f246e1c31666ad1f378d92b5b530c9a12f11bed91c6501a0eb5e54730d1a7c
GET / HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 12 Jan 2023 15:32:13 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 232
Connection: keep-alive
Location: https://www.hiwentis.de/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4634
Expires: Thu, 12 Jan 2023 16:49:28 GMT
Date: Thu, 12 Jan 2023 15:32:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e9528a669e7d4a4680d746045c17e5da
3e1bc26d3af4a15cfdadd0e7c7fbad85a96ac564
844102d2eca5fedc26dae275f8ddc4f08852272eafaa9d167ffc17c7bfb8eec8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "844102D2ECA5FEDC26DAE275F8DDC4F08852272EAFAA9D167FFC17C7BFB8EEC8"
Last-Modified: Thu, 12 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6110
Expires: Thu, 12 Jan 2023 17:14:04 GMT
Date: Thu, 12 Jan 2023 15:32:14 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
200 OK 41 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 9827aa684721153183f7b0a636b6ba44
281e7c2384362b7aa9318ad8ade041d2dbf0b1ee
2a132daed518e0d7f61788d374de782df187a54370cf876d3f2e87c1447d145e
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: EdPN4pmOeLVaeEO86fjjUd8FDxgVBtT-SevZZHvdPaZiSQc0H2j2Pw==
content-encoding: gzip
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 15:22:27 GMT
age: 731
content-type: application/json
content-length: 40567
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 718fc486cd6a70fcacc1653759703fae
bf60ba7a37d2deef1b7000e91cc88da586bb75ca
398d02e16da466ffe87b64ac34b007615951cca14d43610b4acd58bc2a5fadff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "398D02E16DA466FFE87B64AC34B007615951CCA14D43610B4ACD58BC2A5FADFF"
Last-Modified: Tue, 10 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7566
Expires: Thu, 12 Jan 2023 17:38:20 GMT
Date: Thu, 12 Jan 2023 15:32:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JWLnt4SLg9LXIknLU5cBmfjOYEkA9XsyY7HN350AbWbfNZWPcEsXBSMs+QvJHK2QSwcNQ5SFI+Hqt3ohhnVsMA==
x-amz-request-id: MDCRWJ4TEX0FH7H0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 14:33:59 GMT
age: 3495
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cab5b63e128895128726181aff42e42e
d39c36237554fcd41addec0664d7fe7f7d157c06
18e82a5b82eb8f2d8b49df824c336015f19367c5a05467ad139a56db59f88852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E82A5B82EB8F2D8B49DF824C336015F19367C5A05467AD139A56DB59F88852"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7786
Expires: Thu, 12 Jan 2023 17:42:00 GMT
Date: Thu, 12 Jan 2023 15:32:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 12 Jan 2023 14:48:44 GMT
content-type: application/json
age: 2610
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:14 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dbea4ace3b669acaef7d23ac9c46177c
293b6697495f0b62bcbb0affb1d1201ffed138a0
f7e893aa02d7aeabebb7edd99aaa0e45299a1bc529ce0b1f4c851467748584da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7E893AA02D7AEABEBB7EDD99AAA0E45299A1BC529CE0B1F4C851467748584DA"
Last-Modified: Thu, 12 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Thu, 12 Jan 2023 21:32:12 GMT
Date: Thu, 12 Jan 2023 15:32:14 GMT
Connection: keep-alive
detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Wed, 11 Jan 2023 19:34:30 GMT
Age: 71864
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
ocsp.digicert.com/
200 OK 471 B IP
Hash 63b1464398f169821b1570246443e9ac
2fea25615a8764811088e5f978bd7374e6632ad3
b0926b043abfe67a65d5b3d112dc290dfb476ec73f8a9b151dfef0e9c0d8f751
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6538
Cache-Control: max-age=101534
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:14 GMT
Etag: "63bef812-1d7"
Expires: Fri, 13 Jan 2023 19:44:28 GMT
Last-Modified: Wed, 11 Jan 2023 17:55:30 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 12 Jan 2023 14:33:45 GMT
age: 3509
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Thu, 12 Jan 2023 15:32:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
ocsp.digicert.com/
200 OK 471 B IP
Hash 1362750c01a8e1a2db32aa73ae46a48d
a423b43f2bd52bd4ec38b760a674866a1294c5ad
f0f57e27c4ec8f1cd8e05f530edc37fb1e4a94ffe92e5729939998346f2e204f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6473
Cache-Control: max-age=156145
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:14 GMT
Etag: "63bfcda6-1d7"
Expires: Sat, 14 Jan 2023 10:54:39 GMT
Last-Modified: Thu, 12 Jan 2023 09:06:46 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.hiwentis.de/wp-content/uploads/2016/06/Classroom-100.png
200 OK 2.5 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2016/06/Classroom-100.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3db843e0cf22b41493118c7244d2bcec
fe3f3a9a6a11a860fa8065767092a8bf67bb0b38
e7128c94f05d82a022ab87a0de7801217c50884152411eeca269c521353db124
GET /wp-content/uploads/2016/06/Classroom-100.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 2539
last-modified: Fri, 12 Jul 2019 16:50:12 GMT
etag: "9eb-58d7eb4301900"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/Anthem/fonts/font-awesome-4.4.0/css/font-awesome.css?ver=6.1.1
200 OK 6.9 kB URL HTTP/2 www.hiwentis.de/wp-content/themes/Anthem/fonts/font-awesome-4.4.0/css/font-awesome.css?ver=6.1.1
IP
Hash 13f9980f41ddb957b6a4b45e11327447
6a040f546d52b1d6ea2c32d85c77c6779286ef80
11f481e87e55eb4da30956d11b9bf0bbbc3676f2fc31f0d51fafe14550904149
GET /wp-content/themes/Anthem/fonts/font-awesome-4.4.0/css/font-awesome.css?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 12 Jul 2019 16:29:39 GMT
etag: W/"7e3e-58d7e6ab202c0"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2016/06/Overtime-100.png
200 OK 2.4 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2016/06/Overtime-100.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e075722fd3e87b1815a519ac0866ebc4
552ed84d78aa0f942633c6df7bbdf2ae5f0590ee
2e3a71858f7de328063503fb6fce0b1eff03099f6f5d40b6016e959025ed77a5
GET /wp-content/uploads/2016/06/Overtime-100.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 2447
last-modified: Fri, 12 Jul 2019 16:50:12 GMT
etag: "98f-58d7eb4301900"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2016/06/logo-1-768x286.png
200 OK 123 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2016/06/logo-1-768x286.png
IP
File type PNG image data, 768 x 286, 8-bit/color RGBA, non-interlaced\012- data
Size 123 kB (123256 bytes)
Hash 5aad7eda4b1963a40b8ff8e8727fb814
1f585963dd1c5daa0abc61144ba1e6abe3dd2f07
1746938b0c766ab7189173817e1410bdbe73cb28b03c5edf8ac45b4a20145333
GET /wp-content/uploads/2016/06/logo-1-768x286.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 123256
last-modified: Fri, 12 Jul 2019 16:50:21 GMT
etag: "1e178-58d7eb4b96d40"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2019/07/logo-1.png
200 OK 70 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2019/07/logo-1.png
IP
File type PNG image data, 1346 x 501, 8-bit colormap, non-interlaced\012- data
Hash 5b8b984fa82d57d70ac4f07c1f930cbc
e85a83f195fb8ec869807407bf81683c8e147b75
a1b43b64a1261796f5114d1d0a03710eecbdebdb18a51235101644712cbb09eb
GET /wp-content/uploads/2019/07/logo-1.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 69990
last-modified: Fri, 12 Jul 2019 16:44:35 GMT
etag: "11166-58d7ea019e2c0"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/image-intense/styles/style.min.css?ver=1.0.0
200 OK 5.2 kB URL HTTP/2 www.hiwentis.de/wp-content/plugins/image-intense/styles/style.min.css?ver=1.0.0
IP
Hash ff6ff41491a7d1bdb3aff21e5f9a4cd2
48bc7ed6fb7805b3be17e3181f44699c2af36176
ebdde0f92c0c5ada766f92626c87dac9466daec9424d60b447c4ec98674033e4
GET /wp-content/plugins/image-intense/styles/style.min.css?ver=1.0.0 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 01 Sep 2019 12:19:24 GMT
etag: W/"8ebd-5917cddaf446a"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2016/06/Collaboration-100.png
200 OK 3.2 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2016/06/Collaboration-100.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a04601609801de3c85a8265d543efe33
424831d0dead5243d63b0e19a336821965b6e354
9b9e140e604b20de5c7c17b0720d3ad1dd2101bc6f2875650500dd8a392f1c04
GET /wp-content/uploads/2016/06/Collaboration-100.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 3182
last-modified: Fri, 12 Jul 2019 16:50:13 GMT
etag: "c6e-58d7eb43f5b40"
accept-ranges: bytes
X-Firefox-Spdy: h2
app.usercentrics.eu/latest/main.js
200 OK 7.8 kB URL HTTP/2 app.usercentrics.eu/latest/main.js
IP
File type ASCII text, with very long lines (25232)
Hash e9448356bda96e25ac34fd6ed11b738a
5b18cc1021b78ae09c40348b248842aa3a0bca28
c62ab9c774fa99b2dd8c81c76c492d6eea48c2355dd16529250e2974bd1fa261
GET /latest/main.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvXt73DIDerX1y3btA0bS8z9_4M4VPStY8dfhypQI031d2LLr2Z_PsrguzYmUYyNt9SpTsJVDx-WuX4koME9ywx1ShpcWJN
x-goog-generation: 1666097577450067
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7809
x-goog-meta-version: 2.18.1
content-encoding: gzip
x-goog-hash: crc32c=VY37eA==, md5=6USDVr2pbiWsNP1u0Rtzig==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7809
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 12 Jan 2023 10:49:46 GMT
expires: Fri, 13 Jan 2023 10:49:46 GMT
cache-control: public, max-age=86400, no-transform
age: 16949
last-modified: Tue, 18 Oct 2022 12:52:57 GMT
etag: "e9448356bda96e25ac34fd6ed11b738a"
content-type: application/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2017/05/Logo_AZAV-Traeger_in.png
200 OK 43 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2017/05/Logo_AZAV-Traeger_in.png
IP
File type PNG image data, 389 x 384, 8-bit/color RGBA, non-interlaced\012- data
Hash 7035e2b75027b909efed969f61c8f148
5bf2d87144d24f9e23f62ddcdbe07ceffa261c1b
00432ea742f98242ee6b465e3fede22452f0832f4ed88f53a5aa91c88ffd353f
GET /wp-content/uploads/2017/05/Logo_AZAV-Traeger_in.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 43209
last-modified: Fri, 12 Jul 2019 16:50:41 GMT
etag: "a8c9-58d7eb5ea9a40"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2017/05/Logo_AZAV-Traeger_ohne_Jahr_in.png
200 OK 63 kB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2017/05/Logo_AZAV-Traeger_ohne_Jahr_in.png
IP
File type PNG image data, 389 x 384, 8-bit/color RGBA, non-interlaced\012- data
Hash 97997f97faee11c9fa818453e4ce96a3
145548e7b34268720687c16770090c4a79087901
e1f1fb1dc0c3276d52ce81a85df521568e79df9b8b246ca45a8370d2bd624d53
GET /wp-content/uploads/2017/05/Logo_AZAV-Traeger_ohne_Jahr_in.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/png
content-length: 62761
last-modified: Fri, 12 Jul 2019 16:50:41 GMT
etag: "f529-58d7eb5ea9a40"
accept-ranges: bytes
X-Firefox-Spdy: h2
privacy-proxy.usercentrics.eu/latest/uc-block.bundle.js
200 OK 30 kB URL HTTP/2 privacy-proxy.usercentrics.eu/latest/uc-block.bundle.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 346eb1e9a3690f25fd999caf5ab3867d
df22703a6dab1bc5151284ebd34195459232dc6a
377d28b9452cfaacdaa9854d31091e0a3d3b65577ed778343a1e1351f473e043
GET /latest/uc-block.bundle.js HTTP/1.1
Host: privacy-proxy.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtlDm-k_qguh6rEp4r2BC8wfo_0Scm6UZG1cL89890C1K0Mjaqg1QCQ0j9iNRMH2Q9QDQ_EZ7rsT-3M0vSQxwj8gnmB1NYZ
x-goog-generation: 1673349530506439
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 30054
x-goog-meta-version: 3.0.2
content-encoding: gzip
x-goog-hash: crc32c=89D6Xg==, md5=NG6x6aNpDyX9mZyvWrOGfQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 30054
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Transfer-Encoding
server: UploadServer
date: Thu, 12 Jan 2023 15:11:08 GMT
expires: Thu, 12 Jan 2023 16:11:08 GMT
cache-control: public, max-age=3600
age: 1267
last-modified: Tue, 10 Jan 2023 11:18:50 GMT
etag: "346eb1e9a3690f25fd999caf5ab3867d"
content-type: application/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
200 OK 1.0 kB URL HTTP/2 www.hiwentis.de/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP
Hash 1308829f9422be8fba5f59d66a60e389
237c6f5d2689e98c212e0c8dbe400814ce3d8fc6
1653e98ae4f69c84433fb73b0de48549acd39b864f6ba655091630533b219b7d
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Sun, 29 May 2022 23:11:09 GMT
etag: W/"4a7-5e02ea7a666b5"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
200 OK 4.6 kB URL HTTP/2 www.hiwentis.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP
Hash fd9dfb24db315e737038137e97bd0d8e
bd683d8af534ee7dfbeeaa4df00829982a728d14
2ba299b61e1387e79168805cf1a6ab5c157d735619120156f4842603b45a29b6
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Fri, 30 Dec 2022 12:13:24 GMT
etag: W/"316c-5f10a873c8709"
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pMCBbY7XD77Plj3ETN9hYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eGDGromyc4Ce1/NUkSLD8xnv/ag=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash da36646164b086297e9c07d2dd8e68f3
03c82562d2740d38cd7f9f997a2789ec62805ffd
033be8d08a015d2805682206fe5de2cfe2c7749d1ef95ba6b5bc952e87349704
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "033BE8D08A015D2805682206FE5DE2CFE2C7749D1EF95BA6B5BC952E87349704"
Last-Modified: Thu, 12 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21572
Expires: Thu, 12 Jan 2023 21:31:47 GMT
Date: Thu, 12 Jan 2023 15:32:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221673535433993%22
200 OK 21 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221673535433993%22
IP
File type JSON data\012- , ASCII text, with very long lines (20973), with no line terminators
Hash 1d2cd7a6acd4c2c48f0946767991d26b
03f85fe685182410cffa33acae60561409d6969c
f1881cd83fb81440103843a63e2e00ccff13ac40f5c37715a501a9c22832831d
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221673535433993%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 20973
via: 1.1 google
date: Thu, 12 Jan 2023 15:01:57 GMT
last-modified: Thu, 12 Jan 2023 14:57:13 GMT
content-type: application/json
age: 1818
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fortbildung-bw.de/static/linkbanner1.png
200 OK 11 kB URL HTTP/1.1 www.fortbildung-bw.de/static/linkbanner1.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 200 x 50, 8-bit/color RGB, interlaced\012- data
Hash e43c4ca5e2df3f337e94f88344ed0734
d02cd0e394fdf32d384748cf81f2364b793adc64
fde9eadfaf5f8905a0492b8da3112a4cc68398ebcd519f1791dd031a7c18c94f
GET /static/linkbanner1.png HTTP/1.1
Host: www.fortbildung-bw.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 15:32:15 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 27 Sep 2019 16:18:03 GMT
ETag: "29a5-5938b3b0074c6"
Accept-Ranges: bytes
Content-Length: 10661
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1673462243232&_since=%221666204638208%22
200 OK 8.2 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1673462243232&_since=%221666204638208%22
IP
File type JSON data\012- , ASCII text, with very long lines (8167), with no line terminators
Hash 841039e1f0a8f7889f0e5484e9442fe9
dff5f7a248484cc0af68d2b98cbcd77dd949a9dd
ef9252ed7267314dc1b7c397b98ec353e06b5b2180a68a5bb38dc69cb4eb947c
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1673462243232&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 8167
via: 1.1 google
date: Thu, 12 Jan 2023 15:30:22 GMT
age: 113
last-modified: Wed, 11 Jan 2023 18:37:23 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Ca+DH9yLY3hCLt+Zn2KwLn3C4WDT1vF71a5vF+swfGb8RlWMFmrWsUe+HdR47qTzUUsbLkfXmRM=
x-amz-request-id: 7SM2BXAED00HSZ5E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 14:42:54 GMT
age: 2961
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 12 Jan 2023 14:41:50 GMT
content-type: application/json
age: 3025
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e84c53bba4b6bddde670f5129de776f5
2e2d054a36a572bebf09b27c05a6a651d196838e
5ddf03b55666bb859b805c0fd3b9218fc08f5485a592b2fb12fcf3aa9c49e807
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DDF03B55666BB859B805C0FD3B9218FC08F5485A592B2FB12FCF3AA9C49E807"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7849
Expires: Thu, 12 Jan 2023 17:43:04 GMT
Date: Thu, 12 Jan 2023 15:32:15 GMT
Connection: keep-alive
www.hiwentis.de/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
200 OK 808 kB URL HTTP/2 www.hiwentis.de/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP
Size 808 kB (808336 bytes)
Hash 41475d7765df066a61ea208e7ffc1018
408adb75ad9af75414ce9fde4705d58cac0d9928
6159edeee5499d8252510d5fd21e239089a2b5534897431956d2ffbed88755ba
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 09 Sep 2021 12:39:20 GMT
etag: W/"105a-5cb8f49b4ea3a"
content-encoding: gzip
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1673517253376&_since=%221657747510534%22
200 OK 2.1 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1673517253376&_since=%221657747510534%22
IP
File type JSON data\012- , ASCII text, with very long lines (2053), with no line terminators
Hash c9dfad8fb4f66de06991e6a07810fd81
f52da6b70dcdbc23965b701d5814910db2b352f4
809ef846c4956a8fce795fe871cb2d6c5ab2746c1fc3c76c4cd182e4cbf3aded
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1673517253376&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2053
via: 1.1 google
date: Thu, 12 Jan 2023 14:34:29 GMT
last-modified: Thu, 12 Jan 2023 09:54:13 GMT
content-type: application/json
age: 3466
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1673476297654&_since=%221666279968541%22
200 OK 52 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1673476297654&_since=%221666279968541%22
IP
File type ASCII text, with very long lines (51512), with no line terminators
Hash f6c46fa2d372bf22d468f3ed25a3d14a
de7de1e3f2bced44dfc6ffe1ad500d3f5db4ad68
e22ca055394290f5a989788c8f0617b8adc5d37e84923f18205dd8ac10e0edf3
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1673476297654&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 51512
via: 1.1 google
date: Thu, 12 Jan 2023 14:46:22 GMT
age: 2753
last-modified: Wed, 11 Jan 2023 22:31:37 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP
File type JSON data\012- , ASCII text, with very long lines (1506), with no line terminators
Hash 04e8681bd37cd9936118efcc4f31393e
c4fc04440eaabf9fd6cbb8fa329e3613c20f4af9
c30333d7ffeb2568b19b0574dfe60261a7fe5920b8cf8f3309928638dad4007c
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1506
via: 1.1 google
date: Thu, 12 Jan 2023 14:59:44 GMT
age: 1951
last-modified: Wed, 11 Jan 2023 16:36:47 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1672778333687&_since=%221661199949574%22
200 OK 15 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1672778333687&_since=%221661199949574%22
IP
File type JSON data\012- , ASCII text, with very long lines (15184), with no line terminators
Hash 916d3ce5150a0223e7fa70a174231ae0
885d48d877af9ff31a0af142664d9716f25e816a
8e75c22521885eeab98b4cd6aae8bc2ebff94e3e5c45b4e8a0c6869e376a7e93
GET /v1/buckets/main/collections/search-config/changeset?_expected=1672778333687&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 15184
via: 1.1 google
date: Thu, 12 Jan 2023 15:30:47 GMT
age: 88
last-modified: Wed, 11 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1673395264024&_since=%221666483264567%22
200 OK 54 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1673395264024&_since=%221666483264567%22
IP
File type JSON data\012- , ASCII text, with very long lines (53666), with no line terminators
Hash 1b1a37ef799a1e8b0bf564988f3d182f
856132a36f8204ad4f6e5da53c242d4af0a5dd93
f076b1279026d5184d66be58d27c60db01b894bc3e45b008b441c82f12e8863f
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1673395264024&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 53666
via: 1.1 google
date: Thu, 12 Jan 2023 14:37:30 GMT
age: 3285
last-modified: Wed, 11 Jan 2023 00:01:04 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
200 OK 49 kB URL HTTP/2 www.hiwentis.de/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP
Hash 17a28973e5889b0618751d8b067b14f5
6f84c5382b9666f5bd97f6bdf43ab8d0e13cbcec
19ea570f65f0249aa7a7eddf002547f7a355d9982d067f4e7490a5094a79e3b9
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Mon, 07 Nov 2022 00:13:03 GMT
etag: W/"26935-5ecd649819651"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/includes/builder/styles/images/preloader.gif
200 OK 9.4 kB URL HTTP/2 www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/includes/builder/styles/images/preloader.gif
IP
File type GIF image data, version 89a, 32 x 32\012- data
Hash 9895a027d72a1a9bd7c2e922d0ad273c
350a7c0f6b64e19c61b183afef7ffaca57befa30
27422f830d71474144ea902369ce78d178d1ace4e38a029ba2e359b7b55b4176
GET /wp-content/themes/innotag_theme_hiwentis/includes/builder/styles/images/preloader.gif HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/style-static.min.css?ver=6.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: image/gif
content-length: 9427
last-modified: Tue, 20 Dec 2022 13:46:04 GMT
etag: "24d3-5f042a841c027"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/core/admin/fonts/modules/all/modules.ttf
200 OK 92 kB URL HTTP/2 www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/core/admin/fonts/modules/all/modules.ttf
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash de27b3e66b2f8017e000aa9d8d24d60e
e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7
d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
GET /wp-content/themes/innotag_theme_hiwentis/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/style-static.min.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:16 GMT
content-length: 92400
last-modified: Tue, 20 Dec 2022 13:46:04 GMT
etag: "168f0-5f042a8409747"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e87185e70f595e12a3613f1ac35c67
f1818783717cc0cb399a0bcddb8a9029cf7166d1
dff5f1029a06d6f1ed59e1f3e33af77d2ac550553d9fc69be48c2a81093dc2db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e87185e70f595e12a3613f1ac35c67
f1818783717cc0cb399a0bcddb8a9029cf7166d1
dff5f1029a06d6f1ed59e1f3e33af77d2ac550553d9fc69be48c2a81093dc2db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e87185e70f595e12a3613f1ac35c67
f1818783717cc0cb399a0bcddb8a9029cf7166d1
dff5f1029a06d6f1ed59e1f3e33af77d2ac550553d9fc69be48c2a81093dc2db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVewo.woff2
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVewo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26988, version 1.0\012- data
Hash 2a2fd49a7386029c0c97a28d3f43004b
5530c6f441b5669fd451b03706b75e0a29f2c153
f74aad5a547641598812109e1ac979a24579e5be1fb7c9419d5730e04fea5bee
GET /s/lato/v23/S6u9w4BMUTPHh6UVewo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 08:12:28 GMT
expires: Fri, 12 Jan 2024 08:12:28 GMT
cache-control: public, max-age=31536000
age: 26388
last-modified: Tue, 26 Apr 2022 16:41:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2
200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 37872, version 1.0\012- data
Hash f3fc1b8bc8fa9dc7a053f0fabdcd77b5
06b490bb2006a9d56ae8bc089daecb09713ca603
856aa3fb45811fe7c3185e9acf6ae2c969799654e5ae203e381e972d51dced86
GET /s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4WjMPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 21:33:52 GMT
expires: Tue, 09 Jan 2024 21:33:52 GMT
cache-control: public, max-age=31536000
age: 237504
last-modified: Fri, 24 Jun 2022 19:39:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/et-cache/201607/et-core-unified-deferred-201607.min.css?ver=1671813130
200 OK 41 kB URL HTTP/2 www.hiwentis.de/wp-content/et-cache/201607/et-core-unified-deferred-201607.min.css?ver=1671813130
IP
Hash 374615fcef19621121de500cf3972320
69cdc0af5c816af7d9174224b59da2b743758bb5
ff091404268df191185b3a71c6a9d851df106cb17ebd1a038265df23f020cd95
GET /wp-content/et-cache/201607/et-core-unified-deferred-201607.min.css?ver=1671813130 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Dec 2022 16:32:10 GMT
etag: W/"1bc4-5f08153cc2340"
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4TbMPrE.woff2
200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4TbMPrE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 36456, version 1.0\012- data
Hash af95c9bcdc8626df41d78601b7613ba4
2a8edb1b776c129b6dcbf93ab893e1e40b7f5f2d
c4e34e84aa2bee6373026ec2132dfc31653745ee91d32a1b43637701b289035c
GET /s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4TbMPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:18:39 GMT
expires: Sat, 06 Jan 2024 07:18:39 GMT
cache-control: public, max-age=31536000
age: 548017
last-modified: Fri, 24 Jun 2022 19:39:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2
200 OK 37 kB URL HTTP/2 fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 37212, version 1.0\012- data
Hash 10f088d2b436d5cd7a53ead7ae5b0eaa
154c849b53fddd9144463c6709e95c6c04e1b460
cb047c6c33136dc3d04c06aa1329552849123a63ddb4d175ac5ad741729181aa
GET /s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 19:41:42 GMT
expires: Thu, 11 Jan 2024 19:41:42 GMT
cache-control: public, max-age=31536000
age: 71434
last-modified: Fri, 24 Jun 2022 19:39:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4VrMPrE.woff2
200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4VrMPrE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 38724, version 1.0\012- data
Hash cb2a32c140b44da05d3ef3fbf6ac775f
ab5e797d7eaf63f6a06b3a63ad49b45d1a149498
67f0f19540044f8194a97868e8b7652f023339bb02704a9b19d04baaaf01fc57
GET /s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4VrMPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 23:39:55 GMT
expires: Sat, 06 Jan 2024 23:39:55 GMT
cache-control: public, max-age=31536000
age: 489141
last-modified: Fri, 24 Jun 2022 19:39:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
200 OK 1.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP
File type JSON data\012- , ASCII text, with very long lines (1250), with no line terminators
Hash f4bfc548895b7182bf7479e2a17a4cf4
dd58abaf2c8724d3d7c86153600d7465f7520745
f16866ca809fa1496147b014c5d7bb4d98b6909897ffe29ee5deebfbd5336011
GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1250
via: 1.1 google
date: Thu, 12 Jan 2023 15:22:29 GMT
age: 587
last-modified: Mon, 09 Jan 2023 13:18:42 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Ew7.woff2
200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Ew7.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 40076, version 1.0\012- data
Hash 92d6477a2a7ef808586f3164e364ac86
566d14c121263de2ad3d6d32c738d178e3a85522
60a9cb6c3588b3674d7019bdd3ff5ce664f1ccc64c0abf722eb383976ff808d1
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Ew7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 07:52:02 GMT
expires: Thu, 11 Jan 2024 07:52:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:56:34 GMT
content-type: font/woff2
age: 114014
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e87185e70f595e12a3613f1ac35c67
f1818783717cc0cb399a0bcddb8a9029cf7166d1
dff5f1029a06d6f1ed59e1f3e33af77d2ac550553d9fc69be48c2a81093dc2db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: HiAI4HgRXYzU0EoMkLbznbJJ3aOE/tMjGvaZmEPU+4HSnvUWNNQhonIgpeUPYT4mfsHoHTAWrng=
x-amz-request-id: NTAYDJYGF0QR67SG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 15:02:32 GMT
age: 1784
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP
File type JSON data\012- , ASCII text, with very long lines (1719), with no line terminators
Hash 5dcc9284583dc7197138f26e818425b2
228e5cb98f175f44dea8f1c858b6621c58f74293
299aa567ad2af0eec26fe9011e6182b1e143a2f9937cfc0b006dbec621e2ea2d
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1719
via: 1.1 google
date: Thu, 12 Jan 2023 15:11:21 GMT
age: 1255
last-modified: Sun, 08 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3811
Expires: Thu, 12 Jan 2023 16:35:47 GMT
Date: Thu, 12 Jan 2023 15:32:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3811
Expires: Thu, 12 Jan 2023 16:35:47 GMT
Date: Thu, 12 Jan 2023 15:32:16 GMT
Connection: keep-alive
www.hiwentis.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
200 OK 1.5 kB URL HTTP/2 www.hiwentis.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP
Hash c22c535037cfe6d20f534daae43dc8a1
59a59b33cb3d14cfbf30390d7ebcf877947e3fc7
e58aa375a88c2d124f5825af18179919fe0ab069adc11e17e6f7fe997f1bce1e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 30 Dec 2022 12:13:24 GMT
etag: W/"af3-5f10a873c96a9"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
200 OK 978 B URL HTTP/2 www.hiwentis.de/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP
Hash cca74a1483e7ae00e3b8deced17e47dc
3191357b66323b2644f06a747bbe81b893e855d8
5b95e7164afce6fa69ca09123e858ab3ab08e0006ffb3c91bf952ed1ada1fa9d
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Thu, 09 Sep 2021 12:39:20 GMT
etag: W/"38a-5cb8f49b4f9da"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.2
200 OK 1.0 kB URL HTTP/2 www.hiwentis.de/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.2
IP
Hash 283670ca942075ab3b116cda4e292bd0
8eb590bf1b25ab31b5818bb6ec9c88784b080596
b80ecd2d0ea86c3944b538d452d7b2fa629f360241f418dc8d1d9c7d97879166
GET /wp-content/plugins/cf7-conditional-fields/style.css?ver=2.3.2 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 30 Dec 2022 12:13:15 GMT
etag: W/"651-5f10a86b55585"
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c49e1d8385d23251cbd4ac2574545982
f283baf033327519c05c725f2319b9465f29b1d6
dc91b181ea0e78ff27bbac3e80f3f937fe9f067ef417f02fe0095ef10fdcd1d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e59b65e-133d-4564-94e3-e913d5a394ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10382
x-amzn-requestid: a9fc1c50-7606-46cb-b49e-62e765d0c88f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPC9GLfIAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bac-3cbf968a6447542b6c931ac0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0_k4itQfrb5xSRcgR9G4zFvhCS1YYX9RgOHX3sNDjitBM5t7cyUDWA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:54:49 GMT
etag: "f283baf033327519c05c725f2319b9465f29b1d6"
content-type: image/jpeg
age: 63447
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a708649e0d6b128eb599b221445a8e06
59f9b06ee8e4c9608e29e7b19832fb925789f373
b4e17cfdee53b56ac33cb5a86253e4839ed7bd9bb1604209834bb22d881472f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7140
x-amzn-requestid: 96450c55-6068-4946-9e5f-650c19d2772a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei739GoJIAMF0lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-2bf965d47a10fd61619d945f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t5mK-tl3WskwkQLUXPKR2ljEW32-Yo6_BHwqP2dNVUr09WoMyxYeZw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 21:42:07 GMT
age: 64209
etag: "59f9b06ee8e4c9608e29e7b19832fb925789f373"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fbbc90d-c4c5-45db-ac55-16077e5b0d1d.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fbbc90d-c4c5-45db-ac55-16077e5b0d1d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94f1c1490ac711097f5eef5e6adab49d
bb41e2958d267cc2d5b24457a6048f484c8cd429
94f854077e6008b97f63419a283f70327ebc8a05794a9dd9fa0518f0f5b00e14
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fbbc90d-c4c5-45db-ac55-16077e5b0d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8689
x-amzn-requestid: c88866a0-e22b-4f8c-b423-1d970ebde318
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ9sHuuoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6bd-063dab1f2c6aaab03e5fdb9a;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:08:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vSPK9nuciu6p2onwRcWmi08wmS-9X5ze7QMalJh1jw-5sVQHp-SNEQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 04:45:35 GMT
age: 38801
etag: "bb41e2958d267cc2d5b24457a6048f484c8cd429"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd511e402-775e-49af-87f1-40b071ae947e.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd511e402-775e-49af-87f1-40b071ae947e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cbf9979c9463fc2681e757256e9d028c
a45408076bf9fa5c6ec83c96a4c5680dc7be7da9
1d0d45cbbba75f0add27aae361e0dc31ce6e317ec62b23acf10db34b47f125e5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd511e402-775e-49af-87f1-40b071ae947e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9413
x-amzn-requestid: fb0125f5-e899-463d-ae4a-0a92945c1731
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPDYFKgIAMF7mQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2baf-080b963d391741252d9f67ee;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gyrxhGqUCH9JOcWSfuj0JAoNPBtI9YKeCrzqcq1kzl8RJts-Py0WsQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 22:12:48 GMT
age: 62368
etag: "a45408076bf9fa5c6ec83c96a4c5680dc7be7da9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/image-intense/scripts/frontend-bundle.min.js?ver=1.0.0
200 OK 9.9 kB URL HTTP/2 www.hiwentis.de/wp-content/plugins/image-intense/scripts/frontend-bundle.min.js?ver=1.0.0
IP
Hash 04a0fccad1608f3c29c9c5d2a0041838
3418093b640afeae1b5b6b9a5fbdfb7262ae4d80
9bfa46b1ebcdd41a210a6f7dc8d60f504b332cda444c319aaed26608079b4ce4
GET /wp-content/plugins/image-intense/scripts/frontend-bundle.min.js?ver=1.0.0 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Sun, 01 Sep 2019 12:19:24 GMT
etag: W/"24b-5917cddaf252a"
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrc.woff
200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrc.woff
IP
File type Web Open Font Format, TrueType, length 47148, version 1.1\012- data
Hash 0993015acedb5260a7618231d3955ae0
0b93c8b18caaa40f716b545f29b72eb412472d45
d4c7bf824c4d1397d20a1f81c063f70c3d0f9e90db10c17d53485a37dd733e71
GET /s/comfortaa/v40/1Pt_g8LJRfWJmhDAuUsSQamb1W0lwk4S4Y_LPrc.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hiwentis.de
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 18:29:35 GMT
expires: Sun, 07 Jan 2024 18:29:35 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 24 Jun 2022 19:39:49 GMT
content-type: font/woff
age: 421361
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 23 kB URL HTTP/2 www.hiwentis.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
Hash 71597a912123ad22438381de021a4133
ebf0defffa57471df6e6f7f62ba3310d610eec3b
d196f8eb60384a3536e7834422bf5e22ab2fd8c4fbf7cba6fc73ba37a0332941
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:16 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 16 Nov 2022 00:39:37 GMT
etag: W/"172a9-5ed8bb5126c6b"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.2
200 OK 33 kB URL HTTP/2 www.hiwentis.de/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.2
IP
Hash 86157305a65d1caa87e39548152d0269
6307d79076b106888b13fb513fa8fad464f2c8c1
7c9f1d4d02f59b8765207013bc06e721cced616ec8ca3bd6446b4abf0a195835
GET /wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.3.2 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Fri, 30 Dec 2022 12:13:15 GMT
etag: W/"220fa-5f10a86b55585"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/RFFQ8tpp2ig
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/RFFQ8tpp2ig
IP
Hash fef9dc944f7644131ec84ce032cb8598
1fdb75de360df621d81bf05dbef80fbe17d5ec4e
5db230d9c6963280713c82c4684d00b868bcc1d05ad3c24e25f0f6924e8dbdf3
POST /s/gts1d4/RFFQ8tpp2ig HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hiwentis.de/wp-content/uploads/2016/06/Film_10_04_2017-2.webm
206 Partial Content 1.7 MB URL HTTP/2 www.hiwentis.de/wp-content/uploads/2016/06/Film_10_04_2017-2.webm
IP
File type WebM\012- EBML file, creator webmB\20\012- data
Size 1.7 MB (1749002 bytes)
Hash 4ddfc422bf3c51494bd82a8f6334660f
378cdab50fcfc2cc97705d2129f65b60495d506a
f74b920a70d35b3420acd4a03a68d4e018a3fa12a2f271f1b9969bbc55db48c8
GET /wp-content/uploads/2016/06/Film_10_04_2017-2.webm HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Thu, 12 Jan 2023 15:32:16 GMT
content-length: 1749002
last-modified: Fri, 12 Jul 2019 16:50:59 GMT
etag: "1ab00a-58d7eb6fd42c0"
accept-ranges: bytes
content-range: bytes 0-1749001/1749002
X-Firefox-Spdy: h2
api.usercentrics.eu/settings/OP-zz_gEd/latest/de.json
200 OK 7.7 kB URL HTTP/2 api.usercentrics.eu/settings/OP-zz_gEd/latest/de.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (23720), with no line terminators
Hash e65c8456d8eebe7b1f04f42461c3d9de
4884479b4f99d1ecff9184d3307f7f26e73f2532
dd695995a6a5a0d18f040fb606e586a1a01a0cd4f1498b25a83b6e33360dd928
GET /settings/OP-zz_gEd/latest/de.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hiwentis.de/
Origin: https://www.hiwentis.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduq9suxpisN5U6qSXxUqp2vV2hrScb50T6IdlEp1BDw3o375liIgbFEKDJ6GeJMo3mU1HD5sjm_YSqSEkwMz1ifC5AvH7Qh
date: Thu, 12 Jan 2023 15:32:16 GMT
cache-control: public, max-age=1800, s-maxage=10
expires: Thu, 12 Jan 2023 15:32:26 GMT
last-modified: Thu, 22 Dec 2022 10:39:19 GMT
etag: "e65c8456d8eebe7b1f04f42461c3d9de"
x-goog-generation: 1671705559895895
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7748
content-type: application/json
content-encoding: gzip
x-goog-hash: crc32c=7PlQjQ==, md5=5lyEVtjuvnsfBPQkYcPZ3g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 7748
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
200 OK 935 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP
File type JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Hash 8dfd6594683a5bf7cd93e01209f50211
19cb02aa7671f24647720f9e68c2cbb54877ecc5
a2d0798015b32a39d99f66bd308c7c5455fce64990124e6c7c9a4c445bc76a48
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 935
via: 1.1 google
date: Thu, 12 Jan 2023 14:47:43 GMT
age: 2673
last-modified: Thu, 05 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/RFFQ8tpp2ig
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/RFFQ8tpp2ig
IP
Hash fef9dc944f7644131ec84ce032cb8598
1fdb75de360df621d81bf05dbef80fbe17d5ec4e
5db230d9c6963280713c82c4684d00b868bcc1d05ad3c24e25f0f6924e8dbdf3
POST /s/gts1d4/RFFQ8tpp2ig HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hiwentis.de/favicon.ico
302 Found 0 B URL HTTP/2 www.hiwentis.de/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 12 Jan 2023 15:32:16 GMT
content-type: text/html; charset=UTF-8
content-length: 0
link: <https://www.hiwentis.de/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://www.hiwentis.de/wp-includes/images/w-logo-blue-white-bg.png
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/Anthem/fonts/stylesheet.css?ver=6.1.1
200 OK 575 B URL HTTP/2 www.hiwentis.de/wp-content/themes/Anthem/fonts/stylesheet.css?ver=6.1.1
IP
Hash f6e6a398ac3c48109aad233d314d65bc
ec19a8ae7a8841a438015b5c46a4a482923ad72b
f3533a90255be568e6505a76005a60412b3eaeaafc69c0ccadd4da098b6c3866
GET /wp-content/themes/Anthem/fonts/stylesheet.css?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 12 Jul 2019 16:29:40 GMT
etag: W/"5f-58d7e6ac14500"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/images/w-logo-blue-white-bg.png
200 OK 4.1 kB URL HTTP/2 www.hiwentis.de/wp-includes/images/w-logo-blue-white-bg.png
IP
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hiwentis.de/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:17 GMT
content-type: image/png
content-length: 4119
last-modified: Thu, 09 Sep 2021 12:39:20 GMT
etag: "1017-5cb8f49b305db"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/GLpZsxq0ZsM
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/GLpZsxq0ZsM
IP
Hash 1535b9969f0c5949e069c88701cb5e16
85edd251a01006242b352a3a769ed98396dad258
e36c051eb03dc059e3888feae8e9b0b38e5791c3f7b3a66b72d2c3f8e636e518
POST /s/gts1d4/GLpZsxq0ZsM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:17 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hiwentis.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 32 kB URL HTTP/2 www.hiwentis.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
Hash 74091be80b8405591d6319534d0de723
11914cae4b6d7e8cdc52953a360febf704cb0c55
36ebb3c8ba1ed94cc3608246b97417ca25488e8da5553a482a7ced58d2e77f99
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Mon, 07 Nov 2022 00:13:03 GMT
etag: W/"15e54-5ecd6498186b1"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.6 kB URL HTTP/2 www.hiwentis.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
Hash 21655e213d19a73209ca80fda62f3c13
dcbe4e0a3d9dab3a3c78ba989a2d887c0017ca89
68f2780f48a8468e10cd1711ca375143ee92cb738cbbae4d764890e204a45ff4
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Thu, 09 Sep 2021 12:39:20 GMT
etag: W/"2bd8-5cb8f49b4bb5a"
content-encoding: gzip
X-Firefox-Spdy: h2
graphql.usercentrics.eu/graphql
204 No Content 0 B URL HTTP/2 graphql.usercentrics.eu/graphql
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /graphql HTTP/1.1
Host: graphql.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,content-type,x-request-id
Referer: https://www.hiwentis.de/
Origin: https://www.hiwentis.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 12 Jan 2023 15:32:17 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: access-control-allow-origin,content-type,x-request-id
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b132174c9afdad94073bf2926a697334
23bc2ddee98ddddc3c12d139afee3031ee7007d5
43c7cc0c4866dbcb823442af6529a2ad18b7d80f87d915c09404194c06ba7f9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43C7CC0C4866DBCB823442AF6529A2AD18B7D80F87D915C09404194C06BA7F9B"
Last-Modified: Wed, 11 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3572
Expires: Thu, 12 Jan 2023 16:31:49 GMT
Date: Thu, 12 Jan 2023 15:32:17 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/VJA41Da9_CE
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/VJA41Da9_CE
IP
Hash 1cd6dea643741254d97cc51d152ce265
6e2aff1275ac1675c897ff64c70b9a1174f77846
730bd350e6e51a01a390ae2be5e6eba7e0ccc4477daa2286a5aee3fe1a201a1e
POST /s/gts1d4/VJA41Da9_CE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:17 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uc.e-recht24.de/erecht24_logo_inv.png
200 3.2 kB URL HTTP/1.1 uc.e-recht24.de/erecht24_logo_inv.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 98 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 39f7f78986437931aca728f45f00893e
117e24b907da4c71b78836ec21a94f0a02495f4f
9d837ca0f7617d3e7e5ff06e041521243160311068ceb6c0bf7565378b7d728b
GET /erecht24_logo_inv.png HTTP/1.1
Host: uc.e-recht24.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 12 Jan 2023 15:32:17 GMT
Content-Type: image/png
Content-Length: 3241
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Fri, 29 Jul 2022 06:46:14 GMT
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Sat, 13 Jan 2024 15:32:17 GMT
X-Frame-Options: DENY
Pragma: no-cache, public
Cache-Control: max-age=31622400, public
graphql.usercentrics.eu/graphql
204 No Content 0 B URL HTTP/2 graphql.usercentrics.eu/graphql
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /graphql HTTP/1.1
Host: graphql.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,content-type
Referer: https://www.hiwentis.de/
Origin: https://www.hiwentis.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 12 Jan 2023 15:32:22 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: access-control-allow-origin,content-type
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hiwentis.de/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 09 Sep 2021 12:39:20 GMT
etag: W/"2bf8-5cb8f49b4f9da"
content-encoding: gzip
X-Firefox-Spdy: h2
graphql.usercentrics.eu/graphql
200 OK 0 B URL HTTP/2 graphql.usercentrics.eu/graphql
IP
POST /graphql HTTP/1.1
Host: graphql.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hiwentis.de/
Content-Type: application/json
Access-Control-Allow-Origin: *
X-Request-ID: 0a5b550a-d6c9-42b4-a44f-08964f216c06
Origin: https://www.hiwentis.de
Content-Length: 2382
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 12 Jan 2023 15:32:17 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"1ba-phl4fnlDId5oBHKevn7DorKMhEA"
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Fri, 30 Dec 2022 12:13:24 GMT
etag: W/"2945-5f10a873ca649"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.19.4
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.19.4
IP
GET /wp-content/themes/innotag_theme_hiwentis/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.19.4 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 13:46:04 GMT
etag: W/"1f18-5f042a8423d27"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/uploads/2016/06/Film_10_04_2017-2.mp4
206 Partial Content 0 B URL HTTP/2 www.hiwentis.de/wp-content/uploads/2016/06/Film_10_04_2017-2.mp4
IP
GET /wp-content/uploads/2016/06/Film_10_04_2017-2.mp4 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Thu, 12 Jan 2023 15:32:16 GMT
content-type: video/mp4
content-length: 1200598
last-modified: Fri, 12 Jul 2019 16:50:19 GMT
etag: "1251d6-58d7eb49ae8c0"
accept-ranges: bytes
content-range: bytes 0-1200597/1200598
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/js/scripts.min.js?ver=6.1.1
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/js/scripts.min.js?ver=6.1.1
IP
GET /wp-content/themes/innotag_theme_hiwentis/js/scripts.min.js?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 13:46:04 GMT
etag: W/"42f69-5f042a8413387"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/Anthem/js/custom_scripts.js?ver=1.0
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/themes/Anthem/js/custom_scripts.js?ver=1.0
IP
GET /wp-content/themes/Anthem/js/custom_scripts.js?ver=1.0 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Fri, 12 Jul 2019 16:29:41 GMT
etag: W/"34-58d7e6ad08740"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 0 B IP
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 15:32:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/style-static.min.css?ver=6.1.1
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/style-static.min.css?ver=6.1.1
IP
GET /wp-content/themes/innotag_theme_hiwentis/style-static.min.css?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 13:46:04 GMT
etag: W/"c9550-5f042a84152c7"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/core/admin/js/common.js?ver=4.19.4
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/themes/innotag_theme_hiwentis/core/admin/js/common.js?ver=4.19.4
IP
GET /wp-content/themes/innotag_theme_hiwentis/core/admin/js/common.js?ver=4.19.4 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 13:46:04 GMT
etag: W/"53f-5f042a8407807"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/plugins/posts-table-pro/assets/js/jquery-fitvids/jquery.fitvids.min.js?ver=1.1
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/plugins/posts-table-pro/assets/js/jquery-fitvids/jquery.fitvids.min.js?ver=1.1
IP
GET /wp-content/plugins/posts-table-pro/assets/js/jquery-fitvids/jquery.fitvids.min.js?ver=1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: application/x-javascript
vary: Accept-Encoding
last-modified: Mon, 19 Dec 2022 03:17:55 GMT
etag: W/"7f3-5f025c3f19603"
content-encoding: gzip
X-Firefox-Spdy: h2
www.hiwentis.de/
200 OK 0 B IP
GET / HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://www.hiwentis.de/wp-json/>; rel="https://api.w.org/", <https://www.hiwentis.de/wp-json/wp/v2/pages/201607>; rel="alternate"; type="application/json", <https://www.hiwentis.de/>; rel=shortlink
content-encoding: gzip
X-Firefox-Spdy: h2
aggregator.service.usercentrics.eu/aggregate/de?templates=H1Vl5NidjWX@40.17.38,4OUatCDhD@8.2.2,ByjH5VouiZ7@6.4.4,SygB9VsdobX@4.0.0,BJz7qNsdj-7@15.8.13
200 OK 0 B URL HTTP/2 aggregator.service.usercentrics.eu/aggregate/de?templates=H1Vl5NidjWX@40.17.38,4OUatCDhD@8.2.2,ByjH5VouiZ7@6.4.4,SygB9VsdobX@4.0.0,BJz7qNsdj-7@15.8.13
IP
GET /aggregate/de?templates=H1Vl5NidjWX@40.17.38,4OUatCDhD@8.2.2,ByjH5VouiZ7@6.4.4,SygB9VsdobX@4.0.0,BJz7qNsdj-7@15.8.13 HTTP/1.1
Host: aggregator.service.usercentrics.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hiwentis.de/
Origin: https://www.hiwentis.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding, accept-encoding
access-control-allow-origin: *
content-type: application/json; charset=utf-8
cache-control: public,max-age=604800
etag: "pqdd1l"
content-encoding: br
date: Thu, 12 Jan 2023 15:32:17 GMT
server: Google Frontend
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hiwentis.de/wp-content/themes/Anthem/style.css?ver=6.1.1
200 OK 0 B URL HTTP/2 www.hiwentis.de/wp-content/themes/Anthem/style.css?ver=6.1.1
IP
GET /wp-content/themes/Anthem/style.css?ver=6.1.1 HTTP/1.1
Host: www.hiwentis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hiwentis.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 15:32:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 12 Jul 2019 16:29:44 GMT
etag: W/"97b0-58d7e6afe4e00"
content-encoding: gzip
X-Firefox-Spdy: h2
185.30.32.164
35.241.9.150
23.36.77.32
93.184.220.29