pistenspass.de/
85.214.242.31301 Moved Permanently 178 B IP 85.214.242.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET / HTTP/1.1
Host: pistenspass.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 10 Nov 2022 04:52:26 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://pistenspass.de/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3698
Expires: Thu, 10 Nov 2022 05:54:04 GMT
Date: Thu, 10 Nov 2022 04:52:26 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=106719
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:26 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 10:31:05 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=106719
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:26 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 10:31:05 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc90abd8b3ea8e75a68c144d74d75788
1ce29dca1ee9ca8931397de31ffb6cf7833baaf8
807000997bcf1b7a1fa35e43908cbfa54cd1704a5a0f53c09e1ae154638f10e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807000997BCF1B7A1FA35E43908CBFA54CD1704A5A0F53C09E1AE154638F10E0"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2501
Expires: Thu, 10 Nov 2022 05:34:07 GMT
Date: Thu, 10 Nov 2022 04:52:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a8F7Fnsbt2NJQyobJO8jOd4/DxPRn7xhmx3NOvOgaxwnte/HeDT4dyTcHiwWEHIJdTj3PnMiZVE=
x-amz-request-id: AJM0VEDST0ERZW82
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 10 Nov 2022 04:49:16 GMT
age: 190
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d5419107be7438b9d1591b26630e47a
9a86042559591faf2491a19ba32568582c02f0ba
4b311bf61b6120d48953273086f22163b7c5d543b146072bc8b1531280f36271
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B311BF61B6120D48953273086F22163B7C5D543B146072BC8B1531280F36271"
Last-Modified: Tue, 08 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Thu, 10 Nov 2022 10:51:45 GMT
Date: Thu, 10 Nov 2022 04:52:27 GMT
Connection: keep-alive
pistenspass.de/
85.214.242.31200 OK 317 B IP 85.214.242.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 61bbdf0cdc4c59e687ada492f7a1f843
2cea3a0ab9e8c0896e6d7e872798053db5fb41a6
02b98cce51a65d1d904f215d5ced961430db47f593c27da1c205aa9a83a91e12
GET / HTTP/1.1
Host: pistenspass.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/html
content-length: 317
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.5.9-1ubuntu4.29, PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bda7520669ea8839b3e538a8b06e276c
af3a8ec1e7fd038ebde3f46dbffdee41f01736a0
22c4836afa1048db429516232d6d4da9969b2e590d02dd7ae01be6f34ca5f9d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22C4836AFA1048DB429516232D6D4DA9969B2E590D02DD7AE01BE6F34CA5F9D4"
Last-Modified: Tue, 08 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7039
Expires: Thu, 10 Nov 2022 06:49:46 GMT
Date: Thu, 10 Nov 2022 04:52:27 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c59d06092401e375df491b06ee8e6dbc
2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da
23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5940
Cache-Control: max-age=107602
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:27 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 10:45:49 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.107.141101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.107.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gE3T4Qn7ulaNDExnqmBe6Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jeIiwMJUdFCTSrhw6aCZ17D7eJs=
use.typekit.net/pjf6itf.css
23.36.76.186200 OK 908 B URL HTTP/2 use.typekit.net/pjf6itf.css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 5d5733692e42f2a872592acd465f4967
5c2d947d9c5f65c4166d2cad7967586a95fb1f37
e52c0bdb12780e6beac7c4ec5baff30317534189385db9215269c5bf0b30cca6
GET /pjf6itf.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 908
date: Thu, 10 Nov 2022 04:52:27 GMT
X-Firefox-Spdy: h2
consent.cookiebot.com/uc.js
104.84.152.233200 OK 32 kB URL HTTP/2 consent.cookiebot.com/uc.js
IP 104.84.152.233:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash 3c4e162c3321e924fd3d27dc6d095f08
9d2027cab49aaf66a89a521c16133ba818ff3d9d
425713b3dc09882376e466e3e6798ade37f8262d82138cf0e11ecbe92e2d565b
GET /uc.js HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 04 Oct 2022 09:02:48 GMT
accept-ranges: bytes
etag: "0ac913d0d7d81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31718
cache-control: public, max-age=1139
expires: Thu, 10 Nov 2022 05:11:26 GMT
date: Thu, 10 Nov 2022 04:52:27 GMT
X-Firefox-Spdy: h2
code.jquery.com/ui/1.10.3/jquery-ui.min.js
69.16.175.10200 OK 60 kB URL HTTP/2 code.jquery.com/ui/1.10.3/jquery-ui.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32389)
Hash a7ce53700e16c90b70c3be8acf81721a
92ba9c7c014c5bf8221149c0d6019457730244eb
af0868593f770e080ccbbc2ca7e6de22596b23694d7f6354ce42adc894a01506
GET /ui/1.10.3/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:27 GMT
content-encoding: gzip
content-length: 60381
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:40 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd700-37aed"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1668055947.dop071.sk1.t,1668055947.cds248.sk1.hn,1668055947.cds255.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6d4b20bc0c8453c98abd1bcd757ae2b5
1779e427acc8e5e217416d72ff8cef52497d8be4
61f58b58361df104250290aa89e51140d74d1d82ba54b21d380fe1cb488d1648
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1009
Cache-Control: max-age=90094
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:27 GMT
Etag: "636b3c88-116"
Expires: Fri, 11 Nov 2022 05:54:01 GMT
Last-Modified: Wed, 09 Nov 2022 05:37:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
www.allgaeuhit.de/mainticker/engine1/style.css
85.214.242.31200 OK 4.0 kB URL HTTP/2 www.allgaeuhit.de/mainticker/engine1/style.css
IP 85.214.242.31:0
Hash 0f53db36d8d9e710c436b120526a1afd
f2322b3e9f4d778389a0592643360c82ce6f90ec
ecbd528c7cd81caa7f6bc24fa577047c53aa9280324b66ab2a160ea547ead95a
GET /mainticker/engine1/style.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 3987
last-modified: Wed, 14 Nov 2018 14:27:21 GMT
etag: "5bec30c9-f93"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/stmenu.js
85.214.242.31200 OK 24 kB URL HTTP/2 www.allgaeuhit.de/stmenu.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (599)
Hash 68e8606d1d02b20b68ffb5fbe878ff40
ae15e6c37533aa8b87ef7b1ba6eb68cc1c11f26d
1e8b58d7948f0e5acc059d86f9525674d339eed1713cb41e2a81d54bd1b8886d
GET /stmenu.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 24448
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-5f80"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=pjf6itf&ht=tk&f=6835.6836.6837.6838.17154.17155.17158.17159&a=7215342&app=typekit&e=css
23.36.76.186200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=pjf6itf&ht=tk&f=6835.6836.6837.6838.17154.17155.17158.17159&a=7215342&app=typekit&e=css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=pjf6itf&ht=tk&f=6835.6836.6837.6838.17154.17155.17158.17159&a=7215342&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Thu, 10 Nov 2022 04:52:27 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P9CBJL4
142.250.74.168200 OK 47 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P9CBJL4
IP 142.250.74.168:0
File type ASCII text, with very long lines (2315)
Hash f55b6fb6a0ea64efc3c926391de46021
f078d5ca24a6f3bca54ead8403a76114b0858abe
9e3116b7931353ff0202cc5a54b786dc0da63b998d9c748a778873045ff88c02
GET /gtm.js?id=GTM-P9CBJL4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 04:52:27 GMT
expires: Thu, 10 Nov 2022 04:52:27 GMT
cache-control: private, max-age=900
last-modified: Thu, 10 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46646
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.allgaeuhit.de/SpryAssets/SpryTabbedPanels.js
85.214.242.31200 OK 11 kB URL HTTP/2 www.allgaeuhit.de/SpryAssets/SpryTabbedPanels.js
IP 85.214.242.31:0
Hash b02e2984bf23c95626bcf50d58d21531
d4c689f52bd7b9dee9cf448aebc5a76834f5d1ef
2b73a4a694c92289d84c65d0456c514c9e8aa1b9422e033f571ee2ca16a8e529
GET /SpryAssets/SpryTabbedPanels.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 11358
last-modified: Thu, 24 Mar 2016 15:21:00 GMT
etag: "56f405dc-2c5e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/SpryAssets/SpryValidationTextField.css
85.214.242.31200 OK 3.1 kB URL HTTP/2 www.allgaeuhit.de/SpryAssets/SpryValidationTextField.css
IP 85.214.242.31:0
File type assembler source, ASCII text
Hash 0e98fb4e24f7f2fa0faecfdb0c315f80
776217f2f3fdc561dcd2b0d2d6de6187edb88739
4bed5820941ccb8f3013579dd5e6b96c660c2080dbc877ed95876df207815248
GET /SpryAssets/SpryValidationTextField.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 3130
last-modified: Thu, 24 Mar 2016 15:21:00 GMT
etag: "56f405dc-c3a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/kommwahl.css?ver=5.5.2.2
85.214.242.31200 OK 2.9 kB URL HTTP/2 www.allgaeuhit.de/kommwahl.css?ver=5.5.2.2
IP 85.214.242.31:0
Hash 74469ec781e8ce6e63ab62b12cacca0e
f828c79ea95e49aea52cc6d69a44ecab818f86a0
444868a00143de14fb2230c73c4e45a0f929c2b1efca52b212f63b9e6be029d7
GET /kommwahl.css?ver=5.5.2.2 HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 2875
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-b3b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 19 kB URL HTTP/2 www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
Hash b413cac749b64a687dac3288a9698b8b
d64219adcf97ed80fbaf770636bff8ede70ae0ba
4f89bf3dc56e9f72e132437b36bd0bbff2c5abc324effb0f3e8174f8f77f7a6e
GET /Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/html
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; path=/; domain=.allgaeuhit.de
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/SpryAssets/SpryValidationTextField.js
85.214.242.31200 OK 75 kB URL HTTP/2 www.allgaeuhit.de/SpryAssets/SpryValidationTextField.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (430)
Hash cb5d591ab3ae137715aeeda1fba09ab6
546721b9fd09155dce7575afdf0b9d1769d62eed
c68f7f490ee04a990e47c93086b6eb344516546e94bccb0ed1f07e8b6424a8bf
Analyzer Verdict Alert urlquery Phishing website detected
GET /SpryAssets/SpryValidationTextField.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 75266
last-modified: Thu, 24 Mar 2016 15:21:00 GMT
etag: "56f405dc-12602"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/allgaeuhit.css?ver=5.5.2.2
85.214.242.31200 OK 66 kB URL HTTP/2 www.allgaeuhit.de/allgaeuhit.css?ver=5.5.2.2
IP 85.214.242.31:0
Hash 340d0d303212ab0f2a826979db525732
04f08a6f5c0d432343b44cc3b9dd2517f2c586e0
2623952d62a5384aa1c8ddf5d86783f2bc5c06b835a5b816a7bea513ec8d0ea1
GET /allgaeuhit.css?ver=5.5.2.2 HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 66032
last-modified: Fri, 16 Sep 2022 22:33:01 GMT
etag: "6324f99d-101f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/css/lightbox.css
85.214.242.31200 OK 3.8 kB URL HTTP/2 www.allgaeuhit.de/css/lightbox.css
IP 85.214.242.31:0
Hash fac864955c857d3eb43123861e63ad3c
364c94e83c36deecb0298dbced30928f9763a304
0ff56f2353ce10f1e6e5de9fc670b1526f4703a310969bf713f3b569e6810d27
GET /css/lightbox.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 3779
last-modified: Thu, 24 Mar 2016 16:46:00 GMT
etag: "56f419c8-ec3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/jquery-scrolltofixed.js
85.214.242.31200 OK 20 kB URL HTTP/2 www.allgaeuhit.de/jquery-scrolltofixed.js
IP 85.214.242.31:0
Hash a9f31ac3b4bb42bc796603c40dda72fc
dbfe6ee9c11d6584fa0675e413d9d8950e6888f3
80acf13d5257fb7bb8a6bfd2324e524be1776fb99dbb8940373b7134eb3f8434
GET /jquery-scrolltofixed.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 19633
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-4cb1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/nyro/styles/nyroModal.css
85.214.242.31200 OK 1.9 kB URL HTTP/2 www.allgaeuhit.de/nyro/styles/nyroModal.css
IP 85.214.242.31:0
Hash f0b7069e2132e5473ff74ff37bc42855
141b8e996e8996a0cfc9323aec0f4dd23f9b5138
3d99123a83c14f445a847723e63ebe433d0680a63377ea4999ff5d0a73800b47
GET /nyro/styles/nyroModal.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 1946
last-modified: Thu, 24 Mar 2016 14:57:00 GMT
etag: "56f4003c-79a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/audioplayer/audio-player.js
85.214.242.31200 OK 12 kB URL HTTP/2 www.allgaeuhit.de/audioplayer/audio-player.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (11589)
Hash 024352f62e93b5ca0901cd0084a9f53d
6174bbf3a4efc8d9575e640c13dbdc752ac9b827
81992feb8f472074216118452ce054b2772d1fa3659607f66068bedf44eecdec
GET /audioplayer/audio-player.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 11738
last-modified: Thu, 24 Mar 2016 16:45:00 GMT
etag: "56f4198c-2dda"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/nyro/js/jquery.nyroModal.custom.js
85.214.242.31200 OK 49 kB URL HTTP/2 www.allgaeuhit.de/nyro/js/jquery.nyroModal.custom.js
IP 85.214.242.31:0
File type HTML document, ASCII text
Hash e80798e306670027eff14fc81698f793
fa5ded89f60513f768c94599818989e4a3f2de7e
5f8a2a4583b203f74a3629dc9f5de8ab370e5c7258f51eead4460f3551f4921f
GET /nyro/js/jquery.nyroModal.custom.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 48831
last-modified: Wed, 14 Nov 2018 14:30:18 GMT
etag: "5bec317a-bebf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/audiojs/audio.min.js
85.214.242.31200 OK 16 kB URL HTTP/2 www.allgaeuhit.de/audiojs/audio.min.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (3925)
Hash cfc727b1bd11a91d1284ae69ecdf0f38
50a26308435693a378079042c5cb9e32578af887
a92209555ee2bf22e3339c9c6635fd0b73a30e053d0fc13339b8c4de7ab61cba
GET /audiojs/audio.min.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 15980
last-modified: Thu, 24 Mar 2016 15:21:00 GMT
etag: "56f405dc-3e6c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/head-includes.js?ver=5.5.2.2
85.214.242.31200 OK 5.2 kB URL HTTP/2 www.allgaeuhit.de/head-includes.js?ver=5.5.2.2
IP 85.214.242.31:0
Hash d5280f59999e6472901d10dd22c34dba
86189003ee69a8238f6c3789b617e4394d1dfb5e
943b59648137047753d3489ce7027cecdf77c0674716ae0f71695671068cca6b
GET /head-includes.js?ver=5.5.2.2 HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 5246
last-modified: Wed, 17 Feb 2021 11:57:55 GMT
etag: "602d04c3-147e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/adframe.js
85.214.242.31200 OK 16 B URL HTTP/2 www.allgaeuhit.de/adframe.js
IP 85.214.242.31:0
File type ASCII text, with no line terminators
Hash 760222d2e529d3e84eb01378cfc46e2e
f789f3c0007640b5549fca2710cf3da500b95e86
0059cb4ff0a271382c38af8a7367aaf45cbeb31449637d3928d25317401e2828
GET /adframe.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 16
x-accel-version: 0.01
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "10-52ece476cb300"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/zebra/css/zebra_datepicker.css
85.214.242.31200 OK 4.6 kB URL HTTP/2 www.allgaeuhit.de/zebra/css/zebra_datepicker.css
IP 85.214.242.31:0
Hash 8d10d7091d6b2c134b103e1c3cb7eaf7
47fa9e3406d51c9fb9558c5dbd780048963dea8b
aedf3b3fa289ea466e386aa32908033a28f360f4036a557f9b6e974a251d3dac
GET /zebra/css/zebra_datepicker.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/css
content-length: 4618
last-modified: Thu, 24 Mar 2016 16:52:00 GMT
etag: "56f41b30-120a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/zebra/javascript/zebra_datepicker.js
85.214.242.31200 OK 19 kB URL HTTP/2 www.allgaeuhit.de/zebra/javascript/zebra_datepicker.js
IP 85.214.242.31:0
File type Unicode text, UTF-8 text, with very long lines (19043), with no line terminators
Hash e71d326a0427050f5884414dcf6060a8
c66bed2febc048d0363300377f9b4d9b453eb32b
806fc746cec44f6b6179b645f6b1086cb792723e47d6e825e7bc6da8edaacd72
GET /zebra/javascript/zebra_datepicker.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 19044
last-modified: Thu, 24 Mar 2016 16:52:00 GMT
etag: "56f41b30-4a64"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/zebra/javascript/functions.js
85.214.242.31200 OK 2.2 kB URL HTTP/2 www.allgaeuhit.de/zebra/javascript/functions.js
IP 85.214.242.31:0
Hash ea304f1b1713f165c53429b174a8be56
c92658e7173e3670d812ce82b7b065d4771722a7
8026eed3ef26acac907a29d79122653be89a57a3d92bbc65ccfe723d0dd9e6ad
GET /zebra/javascript/functions.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 2237
last-modified: Thu, 24 Mar 2016 16:52:00 GMT
etag: "56f41b30-8bd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/jquery.inputlabel.js
85.214.242.31200 OK 2.2 kB URL HTTP/2 www.allgaeuhit.de/jquery.inputlabel.js
IP 85.214.242.31:0
Hash 0828e50b4206944b9e1e44b4582649e5
82024b406a1bf487ce3f64148c7037d25ff7a333
e048b9778190ee1798b762729e826e8822e7eee01fe49ba6423e0e15300c1e4f
GET /jquery.inputlabel.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 2228
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-8b4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/plcode/js/lastfm.api.cache.js
85.214.242.31200 OK 2.9 kB URL HTTP/2 www.allgaeuhit.de/plcode/js/lastfm.api.cache.js
IP 85.214.242.31:0
Hash e3f5ca76c582875955a6b563685f6059
288934fb2f2697bfe7fd0b669d127949e63e75e8
cd31d4829c742b78aea5e5940c3314701de1b1f2f2785e5429cb7ca4e51c9f29
GET /plcode/js/lastfm.api.cache.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 2856
last-modified: Wed, 17 Jan 2018 11:25:49 GMT
etag: "5a5f32bd-b28"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/plcode/js/jquery.touchSwipe.min.js
85.214.242.31200 OK 11 kB URL HTTP/2 www.allgaeuhit.de/plcode/js/jquery.touchSwipe.min.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (11417), with no line terminators
Hash e18a1319eeff8fcb4b6374b3fdda08d8
6b3670f59186923576e343e6b8b8daa645d14dbc
0ab340987711378e8cb5582b1f97f6938037712213396d8e7c7f8fa7b1ab4e5a
GET /plcode/js/jquery.touchSwipe.min.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 11417
last-modified: Wed, 17 Jan 2018 11:25:49 GMT
etag: "5a5f32bd-2c99"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/plcode/js/audio8_html5.js
85.214.242.31200 OK 55 kB URL HTTP/2 www.allgaeuhit.de/plcode/js/audio8_html5.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (5538)
Hash 2067bea9e73ee62c801d0359d512dcec
1a50b0c05b39f10160c03a798bc8878ca5b4ad2b
472ecf2cd99c277217e7988d9b7361f6c1ae88c15b2418289dce5990f9aa4896
GET /plcode/js/audio8_html5.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 54882
last-modified: Wed, 17 Jan 2018 11:25:49 GMT
etag: "5a5f32bd-d662"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/plcode/js/swfobject.js
85.214.242.31200 OK 10 kB URL HTTP/2 www.allgaeuhit.de/plcode/js/swfobject.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (10071)
Hash 892a543f3abb54e8ec1ada55be3b0649
5847ed101f55d51c53538a7078971e7de8fb6762
8677971b119ccdb82af697ff0e08f218490d15116f221d44301f1cc8797e67d4
GET /plcode/js/swfobject.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 10220
last-modified: Wed, 17 Jan 2018 11:25:49 GMT
etag: "5a5f32bd-27ec"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/plcode/js/lastfm.api.md5.js
85.214.242.31200 OK 8.6 kB URL HTTP/2 www.allgaeuhit.de/plcode/js/lastfm.api.md5.js
IP 85.214.242.31:0
Hash d9fb4f9f586b1bafd884006d31a9ae4e
a240143d054f44e92eb16d5ee36b333425a98874
d87a19359196f324b84c91e08302a74e11fb150601c46909a8e13d5c689372b8
GET /plcode/js/lastfm.api.md5.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 8609
last-modified: Wed, 17 Jan 2018 11:25:49 GMT
etag: "5a5f32bd-21a1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/programm/moderator_top_new/mod_mik.png
85.214.242.31200 OK 1.7 kB URL HTTP/2 www.allgaeuhit.de/gfx/programm/moderator_top_new/mod_mik.png
IP 85.214.242.31:0
File type PNG image data, 488 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash 815d2d06cf9e6ad83313bed8eae52d24
bb30982003f4b4a1d053afe4004b75df4c77c804
327cfb10f64c8735343ed7c78bf46eace4e9ed0ee3935c29358364f964ba2e67
GET /gfx/programm/moderator_top_new/mod_mik.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 1748
last-modified: Thu, 24 Mar 2016 15:07:00 GMT
etag: "56f40294-6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logo2021winter.png
85.214.242.31200 OK 27 kB URL HTTP/2 www.allgaeuhit.de/gfx/logo2021winter.png
IP 85.214.242.31:0
File type PNG image data, 343 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash 79f46e3e319ae364353b399a02f3bde7
82a58b2b83db68d3d8a5889f6ebde57013bb06a6
662e12b5a0d3eb6aa0b73d28abe4387963527ab20acd355551919dce93bc0322
GET /gfx/logo2021winter.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 26958
last-modified: Wed, 01 Dec 2021 11:49:18 GMT
etag: "61a7613e-694e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/einschalten.png
85.214.242.31200 OK 10 kB URL HTTP/2 www.allgaeuhit.de/gfx/einschalten.png
IP 85.214.242.31:0
File type PNG image data, 281 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 89e3a9a84fa130940ef7073d690f4722
5e92257d966b542691389d11b48bf6794b21218d
8640d2ebf97b730ed07f321ca3e46af6b1e69a3e8de03b3a758ccd3ff5bc0bf7
GET /gfx/einschalten.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 10263
last-modified: Wed, 28 Jul 2021 10:41:16 GMT
etag: "6101344c-2817"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/suchfeld.png
85.214.242.31200 OK 1.5 kB URL HTTP/2 www.allgaeuhit.de/gfx/suchfeld.png
IP 85.214.242.31:0
File type PNG image data, 289 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash e367029fb3a43e74f38bc586f76742be
15919e8738b0084d1b4af10e053be7fa33b6cf0a
4892ce78c77b551187574df338266b9917582f968d9757e395a9a92918263a07
GET /gfx/suchfeld.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 1544
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-608"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/btn_druck.jpg
85.214.242.31200 OK 3.6 kB URL HTTP/2 www.allgaeuhit.de/gfx/btn_druck.jpg
IP 85.214.242.31:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x20, components 3\012- data
Hash 45e359e90d94a31cc19ea51b5355d79b
a22ab4fce911873118f7c210803f6404d6d0536b
990b0866b3223976e8d559f5c696b19ec634d05fe7b4169a7d55cf65b93b46e8
GET /gfx/btn_druck.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 3592
last-modified: Thu, 24 Mar 2016 15:07:00 GMT
etag: "56f40294-e08"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/mail1.png
85.214.242.31200 OK 3.0 kB URL HTTP/2 www.allgaeuhit.de/gfx/mail1.png
IP 85.214.242.31:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a899acd12501bbe91148d8799de541b6
c9df713505561d638514e8bd910229b5cadb0ac0
a10d5bad24f74b1f71628cccf65a3ce9638668eeaa266680ddac2e4a95823d5d
GET /gfx/mail1.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 2959
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-b8f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/btn_send.jpg
85.214.242.31200 OK 3.4 kB URL HTTP/2 www.allgaeuhit.de/gfx/btn_send.jpg
IP 85.214.242.31:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x20, components 3\012- data
Hash 6f44e9b00ae45cd3c846cc3154d8ed20
6c2f31d178cbe9aea62944a6badb0e06fe4a2b00
86ca070b098f210018b4f3b569b2cd2efa87e640876e5bc83b276fc0295f3d56
GET /gfx/btn_send.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 3372
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-d2c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbs/93489f7226135de1c2b24e3d3be348fc.jpg
85.214.242.31200 OK 9.3 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbs/93489f7226135de1c2b24e3d3be348fc.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x61, components 3\012- data
Hash 00337558a5a8415c681b1fd74a38ec0e
51b2ce0ff610fdc3524d99e335152b41304d6701
0066ed0251bf5404fca5cee4115ba501ea3ec8673206d417d3590dc96b3a8d2a
GET /webbilder/thumbs/93489f7226135de1c2b24e3d3be348fc.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 9279
last-modified: Sun, 16 Oct 2022 09:28:28 GMT
etag: "634bcebc-243f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbs/24b7b369de6c85dfac1c6a925b3a2b45.jpg
85.214.242.31200 OK 6.6 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbs/24b7b369de6c85dfac1c6a925b3a2b45.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x61, components 3\012- data
Hash 5eb3171715684485a1674ffad1478c7f
bcb37c58973123f7637facc4556257559423662b
814879810e8d80a9f805f0d03fed0801a5c71e9850c6ec1152029f84917dd8f8
GET /webbilder/thumbs/24b7b369de6c85dfac1c6a925b3a2b45.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 6625
last-modified: Sun, 23 Oct 2022 14:57:20 GMT
etag: "63555650-19e1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/newsshow_inter_trenner.png
85.214.242.31200 OK 985 B URL HTTP/2 www.allgaeuhit.de/gfx/newsshow_inter_trenner.png
IP 85.214.242.31:0
File type PNG image data, 670 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ff29504bf51652ee5d2eccf426cd515
caa25286f4505f9bfe1adba41a6390a315b3c4ac
c3bdd6d792edea11cbeb8a2f9320cae44d7d17ad84cfc5118ab2a0a1775710f2
GET /gfx/newsshow_inter_trenner.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 985
x-accel-version: 0.01
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "3d9-52eccac270e00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/landkarte/voll.png
85.214.242.31200 OK 16 kB URL HTTP/2 www.allgaeuhit.de/gfx/landkarte/voll.png
IP 85.214.242.31:0
File type PNG image data, 281 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 0aaa88c74833ff5919b2be643f0ab87b
513af22f29cc837ac3f5641b8dc4b21b770a19a6
c4c144d7a98f9478c8ef63cd83b09d97f03abe599daa61c2a5896a026d4840d7
GET /gfx/landkarte/voll.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 16302
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-3fae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/play_small.png
85.214.242.31200 OK 1.1 kB URL HTTP/2 www.allgaeuhit.de/gfx/play_small.png
IP 85.214.242.31:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 91358f4172bdf07548879eba37cae3e3
db140fec1a563820c50976ca55202fd6a9de28c7
beb09b4f448e86ba139c0dd715eefcc4218023ae754b628c45833caff6619fb4
GET /gfx/play_small.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 1124
last-modified: Thu, 24 Mar 2016 15:07:00 GMT
etag: "56f40294-464"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbs/21ea125eb6a427b0b0f3030949036971.jpg
85.214.242.31200 OK 9.8 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbs/21ea125eb6a427b0b0f3030949036971.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x65, components 3\012- data
Hash ac3e9ae5cb88155c2afe8afe0b79b65e
5ed23be291ef10821d7f0a7617886e96b9892276
32e0cf7d9af7fd7d7792be6d1e023d293eb5eb2adbf854464a88d01499253581
GET /webbilder/thumbs/21ea125eb6a427b0b0f3030949036971.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 9839
last-modified: Fri, 14 Oct 2022 09:21:32 GMT
etag: "63492a1c-266f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbs/3dfad135421cd178a62aa21b11e33f10.jpg
85.214.242.31200 OK 9.9 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbs/3dfad135421cd178a62aa21b11e33f10.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x61, components 3\012- data
Hash c1ab40ad14131df8b2b0c9255f1fdae9
951085703ca80bfc80af31a9fc7415d10d2d65ad
72f661e27510355dff8f4401dd913aa8f4897af7c4ef3c5b014b76bcf0c03f30
GET /webbilder/thumbs/3dfad135421cd178a62aa21b11e33f10.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 9851
last-modified: Tue, 20 Sep 2022 12:43:58 GMT
etag: "6329b58e-267b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbs/8d25ec598949dafd44172d27ef9039df.jpg
85.214.242.31200 OK 10 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbs/8d25ec598949dafd44172d27ef9039df.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x61, components 3\012- data
Hash 51574e5f8fb83be3df1d4048f6485809
fab479ca9260dae1bee702869e0c687e6af52b28
8659770f512937167f4cd4ff4d235bb5592ca48e16e655999cf74a2e96240468
GET /webbilder/thumbs/8d25ec598949dafd44172d27ef9039df.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 10343
last-modified: Fri, 09 Sep 2022 08:58:19 GMT
etag: "631b002b-2867"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/gallery_thumbs/d17cf54a6b027ebef91afafa9d445b3d.jpg
85.214.242.31200 OK 7.1 kB URL HTTP/2 www.allgaeuhit.de/webbilder/gallery_thumbs/d17cf54a6b027ebef91afafa9d445b3d.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x65, components 3\012- data
Hash 4d823fa7048c695168db0d802bba1aac
54230cb809c81b9e21dc27c8e50e711685514b27
951434b8877558f0fded8229c24af8a1daf86c9d285cb77eb9a963bc81a9fbb7
GET /webbilder/gallery_thumbs/d17cf54a6b027ebef91afafa9d445b3d.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 7068
last-modified: Tue, 08 Nov 2022 08:06:32 GMT
etag: "636a0e08-1b9c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/gallery_thumbs/c4214c984b545b4f0ef488ebd421da46.jpg
85.214.242.31200 OK 7.7 kB URL HTTP/2 www.allgaeuhit.de/webbilder/gallery_thumbs/c4214c984b545b4f0ef488ebd421da46.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x65, components 3\012- data
Hash 33fb46ec5c126766861a7b08670a1278
3892a33b6fe82613c7034295b36f72e9e30b89d2
6547515f82aa6df4228bc279f5bb105cb1a95688b4d787aec1056fb615deec4c
GET /webbilder/gallery_thumbs/c4214c984b545b4f0ef488ebd421da46.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 7694
last-modified: Tue, 08 Nov 2022 08:06:53 GMT
etag: "636a0e1d-1e0e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/gallery_thumbs/f971343dc8106c5f43675c37d49743ed.jpg
85.214.242.31200 OK 9.8 kB URL HTTP/2 www.allgaeuhit.de/webbilder/gallery_thumbs/f971343dc8106c5f43675c37d49743ed.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x65, components 3\012- data
Hash 7c6131039c535d01b56a53e88f491d86
d4b4c4d805c0d6ce5f72032cd34e30702d9af822
aa0d89ae3618c5e9543ddc0a11dfc651c110d600f2e8bc628c390a4888a00d7d
GET /webbilder/gallery_thumbs/f971343dc8106c5f43675c37d49743ed.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 9815
last-modified: Sat, 03 Sep 2022 18:04:22 GMT
etag: "63139726-2657"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 32 kB URL HTTP/2 www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
Hash 4ba12e01740c8dbd1b9b28534e64683d
af81aef14b4c20c54cb81401ba3ca983f78cbaec
a8514a41b47d7f091b558a964d2f827cf02abf5060d2331e6567e300b2b31df3
GET /Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/html
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/gallery_thumbs/b1c736fb6eedefa90b15b420c432b5f4.jpg
85.214.242.31200 OK 10 kB URL HTTP/2 www.allgaeuhit.de/webbilder/gallery_thumbs/b1c736fb6eedefa90b15b420c432b5f4.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x65, components 3\012- data
Hash b93a4e0c026f2faa12ebc337a72ce300
87f9d59455a4078e0db4db5ce4c3260ef971f483
e4a38b763c0f3b877916bacc8dee408033c363bea7ea0769a1909b2477603c67
GET /webbilder/gallery_thumbs/b1c736fb6eedefa90b15b420c432b5f4.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 9979
last-modified: Mon, 25 Jul 2022 10:08:59 GMT
etag: "62de6bbb-26fb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/gallery_thumbs/bd2cc2d2b38a7aea5ac4bdaefe3d16fa.jpg
85.214.242.31200 OK 9.6 kB URL HTTP/2 www.allgaeuhit.de/webbilder/gallery_thumbs/bd2cc2d2b38a7aea5ac4bdaefe3d16fa.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 110x65, components 3\012- data
Hash 0ce643ad02040b8c790d42061b04e299
64536b5f552a56c2cf6f5a880aaa54c47db7809c
ddcf9449a12e014143536025b5ae7cf976a61825cbd181be4419f70c225fb4c9
GET /webbilder/gallery_thumbs/bd2cc2d2b38a7aea5ac4bdaefe3d16fa.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 9592
last-modified: Sat, 03 Sep 2022 18:04:52 GMT
etag: "63139744-2578"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/foot_trenner_partner.png
85.214.242.31200 OK 7.8 kB URL HTTP/2 www.allgaeuhit.de/gfx/foot_trenner_partner.png
IP 85.214.242.31:0
File type PNG image data, 1059 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 55fa9bad6c70d089cd591c32b6cb30a3
811100fc58b60ac67912d732f200350703892ed5
c711b50f2e60d71cd675ad2b4435376705f56cd93b2189d0ffa077f7aa97264e
GET /gfx/foot_trenner_partner.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 7757
last-modified: Thu, 24 Mar 2016 15:07:00 GMT
etag: "56f40294-1e4d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/hirsch.png
85.214.242.31200 OK 23 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/hirsch.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash a32327bf2cc3d717014017e784cf85c1
56906c53ba1be532e2573b3541dc250de16d2ca9
d2d374227e2500435ed21be4021010ea33e6a34d08f0fc7b05afe918d47d7d6b
GET /gfx/logos/hirsch.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 22888
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-5968"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/allgaeuoutlet.png
85.214.242.31200 OK 9.9 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/allgaeuoutlet.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 0096906e4b162d06cc60ac06729e0843
200045e155fa5a9a0ff1f17da0b4d623f3600da7
3aa68f799d936c23c1ed0c9963f578fa117af84fd5216b5c7aaac8c64180f1d3
GET /gfx/logos/allgaeuoutlet.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 9936
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-26d0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/alpenwasser.png
85.214.242.31200 OK 12 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/alpenwasser.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 57d3f45245ca4f8e0dd77233d38a89fa
b111f04ed24a70196aef28be70b4f4f9665a4fe2
407e661ae4372459b55d00ad62f0b822ecde9a5462be8fb639f998f5821bf0aa
GET /gfx/logos/alpenwasser.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 11837
last-modified: Tue, 15 Sep 2020 08:31:59 GMT
etag: "5f607bff-2e3d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/ccoberallgaeu.png
85.214.242.31200 OK 15 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/ccoberallgaeu.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 88309e231a64a2e31501e6412309fb56
194752646d1ae42695657219af8b91f8e4e5838f
12c1fb95fe53176bb781b07bb1e7cdee96c70a80837a1a8ad1acae2806f06693
GET /gfx/logos/ccoberallgaeu.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 14936
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-3a58"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/baumit.png
85.214.242.31200 OK 14 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/baumit.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 80ab568d4b67936b90ca1413c41666bd
e7c61572cb7587a5c2d86204baa60e925ba78b8a
8f96806f42240fef69aa2bf952507a9f2ed5853ce25172b9d1e213d19f6fed3d
GET /gfx/logos/baumit.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 14391
last-modified: Wed, 01 Mar 2017 15:09:56 GMT
etag: "58b6e444-3837"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/fetzer.png
85.214.242.31200 OK 10 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/fetzer.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash cfd758c9600f96dbba96f9f520cf1e23
fecd1628eadc0dfe5ad6a5f697978d76a923a154
1c81a996fd207929ea37043f7d265c2b5265561276d592ca8e0ffd94211d8bc9
GET /gfx/logos/fetzer.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 9977
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-26f9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/asr.png
85.214.242.31200 OK 20 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/asr.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 71ddead0e6ec3c114beb6bd393c28bd8
3a9b40ead015d1177f1c6119ec71d3ab78d93e4e
94e3a735145b37a39e88254dbc5f88cb2e77718bf2a6d177382cdfe9bf8c6d1e
GET /gfx/logos/asr.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 19679
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-4cdf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/lokale.png
85.214.242.31200 OK 14 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/lokale.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash f3e743b2fdd4d5ab94ee3d21851da4ce
fef895743c3b622b76fcb12edfbee6a1cecaf8c5
b134fe67b261f509d03799d0390d57692aaffe7f5554bdfcfa3afcb66b339c67
GET /gfx/logos/lokale.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 13932
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-366c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/fritzgern.png
85.214.242.31200 OK 7.0 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/fritzgern.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 7bd1fa19e302fb8ef23beea207f121c3
19b0e1b264c8ef4d1c34c871a02c02d37fb7e163
ba83e2df6dcfd25d7cd1072ca8365cc5424f087879f688701b6096d46132ea1d
GET /gfx/logos/fritzgern.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 6997
last-modified: Tue, 15 Sep 2020 08:42:26 GMT
etag: "5f607e72-1b55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/reifenfeneberg.png
85.214.242.31200 OK 13 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/reifenfeneberg.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d3cc1f591e7429f3cae09c9d04dba0e
18acea11e4f34b624a169b7bae7502cb4e7371cc
757b784637142bf45772e3e84e30f81540864a56535dfa20785903d4a46411b5
GET /gfx/logos/reifenfeneberg.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 12744
last-modified: Sat, 29 May 2021 11:45:47 GMT
etag: "60b2296b-31c8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/c1event.png
85.214.242.31200 OK 22 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/c1event.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 83aad7d7b9c24f8105384f172ece507c
66acce3ec398972af56c102fafa7dddac9e0d6b9
08ed245602c9c19d84c89d50ea713b536844cf2cf86748416823348575533164
GET /gfx/logos/c1event.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 21749
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-54f5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/logos/silberstern2019.png
85.214.242.31200 OK 13 kB URL HTTP/2 www.allgaeuhit.de/gfx/logos/silberstern2019.png
IP 85.214.242.31:0
File type PNG image data, 252 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash d020bba00202ca0fd2c4ae1c5712bfd4
f9f407cf3733d06dc39681e8cd779c2c36d834fd
2034c16197be5c503e9455f1de7135639c2f7ee6b732d957e7b260c340866a87
GET /gfx/logos/silberstern2019.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/png
content-length: 13015
last-modified: Wed, 03 Apr 2019 12:22:17 GMT
etag: "5ca4a579-32d7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6d4b20bc0c8453c98abd1bcd757ae2b5
1779e427acc8e5e217416d72ff8cef52497d8be4
61f58b58361df104250290aa89e51140d74d1d82ba54b21d380fe1cb488d1648
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1010
Cache-Control: max-age=90094
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:28 GMT
Etag: "636b3c88-116"
Expires: Fri, 11 Nov 2022 05:54:02 GMT
Last-Modified: Wed, 09 Nov 2022 05:37:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
www.allgaeuhit.de/webbilder/tops/0d97784aad6aee771536f74222a1313c.jpg
85.214.242.31200 OK 235 kB URL HTTP/2 www.allgaeuhit.de/webbilder/tops/0d97784aad6aee771536f74222a1313c.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 670x376, components 3\012- data
Size 235 kB (235332 bytes)
Hash 71b99951fd88e563eb4d62caf77ff4e5
c498ac1cc8f755095c07ac7948296069f7339e8e
c0ca35307c7894027c02f5001edc603fad593db4ce6ef5a2466afb4894c17989
GET /webbilder/tops/0d97784aad6aee771536f74222a1313c.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 235332
last-modified: Wed, 26 Oct 2022 13:44:37 GMT
etag: "635939c5-39744"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
consent.cookiebot.com/e5ab0936-61c8-467f-9dc0-aa7ed23d1128/cc.js?renew=false&referer=www.allgaeuhit.de&dnt=false&init=false
104.84.152.233200 OK 361 B URL HTTP/2 consent.cookiebot.com/e5ab0936-61c8-467f-9dc0-aa7ed23d1128/cc.js?renew=false&referer=www.allgaeuhit.de&dnt=false&init=false
IP 104.84.152.233:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (373), with no line terminators
Hash 55d61b52d1d9455f93ccbfd30a75e980
b27413e4ce96dce03e85b11396483a3753a439e1
b5daca8f589aa2dc44efbf44744381c2a840efa5546e3e0626e0c4675f7797dc
GET /e5ab0936-61c8-467f-9dc0-aa7ed23d1128/cc.js?renew=false&referer=www.allgaeuhit.de&dnt=false&init=false HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=60
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 361
date: Thu, 10 Nov 2022 04:52:28 GMT
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/bottom_blau.png
85.214.242.31200 OK 3.9 kB URL HTTP/2 www.allgaeuhit.de/gfx/bottom_blau.png
IP 85.214.242.31:0
File type PNG image data, 184 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash d7e2296f30c9d7b904edc3c9c2dbb925
b74e662d97a30fd5d7486cb031538b6fa2b9c48d
4a4f3fefe52a5e8fb8f4a1f96294bfd9a676e9cf0f2dfcb5ac0e0a6b92dfdac6
GET /gfx/bottom_blau.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 3930
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-f5a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/bottom_empfang.png
85.214.242.31200 OK 4.5 kB URL HTTP/2 www.allgaeuhit.de/gfx/bottom_empfang.png
IP 85.214.242.31:0
File type PNG image data, 184 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash 8efdf9b092f5489b42a4c9f10063e6b5
0c211bf7f03fbeb6ca08ca52215dfca97b0fdabd
62e69d79e6b1fa62b4f4b73e686ddd8f5382340446ab9786d9435caec82e331d
GET /gfx/bottom_empfang.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 4482
last-modified: Thu, 24 Mar 2016 14:58:00 GMT
etag: "56f40078-1182"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/foot_neu.jpg
85.214.242.31200 OK 124 kB URL HTTP/2 www.allgaeuhit.de/gfx/foot_neu.jpg
IP 85.214.242.31:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1059x300, components 3\012- data
Size 124 kB (123661 bytes)
Hash 0c6de5ae315131e455e69a822b48c30c
a906db72d908d24a8288a34bb56a503523eedc9f
7ada0d9e2b65aac570dd4d6267a98bb86ffc65cf5a4eaca903a115230013f9ed
GET /gfx/foot_neu.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/jpeg
content-length: 123661
last-modified: Thu, 29 Nov 2018 14:34:29 GMT
etag: "5bfff8f5-1e30d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/bottom_spot.png
85.214.242.31200 OK 4.7 kB URL HTTP/2 www.allgaeuhit.de/gfx/bottom_spot.png
IP 85.214.242.31:0
File type PNG image data, 184 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash f8720e54a1fa3af487e0bbdb6c132493
787ff14b86d07847e20729f65dc79d67c6ea7083
6eca40ebbef3328bd06727938c5041e3131588ed4ea8663bea89603e156fb4c8
GET /gfx/bottom_spot.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 4655
last-modified: Thu, 24 Mar 2016 15:07:00 GMT
etag: "56f40294-122f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2b6e814cf24d6076a53097eacb138a7f
7e3b9b5d44699f81209a7ea0182640f5596804a5
218be263224d3d1a01ba126d0a7311b972bd88744ec0919b5e471077abe68e03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.allgaeuhit.de/stcode.js
85.214.242.31200 OK 91 kB URL HTTP/2 www.allgaeuhit.de/stcode.js
IP 85.214.242.31:0
File type ASCII text, with very long lines (4877)
Hash 59cd85db1e8da76205d50e69d39630e1
6caacc9d70e0c1f093a00c097b67dd4eff93c156
7bf18bd8c49b44fcef779142da246181311325b288628b389397569a6debd1ff
GET /stcode.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: application/javascript
content-length: 91377
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-164f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
use.typekit.net/af/98e9b8/000000000000000077359b99/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.186200 OK 16 kB URL HTTP/2 use.typekit.net/af/98e9b8/000000000000000077359b99/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 16316, version 1.0\012- data
Hash c370809231207c33fa9b1ebc343ce240
986fba740955884a9bb42380aa712ac5729a1049
f05fc0f2f6fedd2614d21c76348a47659f62ad8b7b623024972b3a00714b5dbd
GET /af/98e9b8/000000000000000077359b99/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16316
etag: "c69791c45b46334eb02f7de05ac53e8b090753c0"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 10 Nov 2022 04:52:28 GMT
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=6
185.76.9.16200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=6
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash 763718ba9b6d63daf1ea23feab919b66
68c10b6462c1650c6c30e9f4eaa0caaf463ad6ea
e66fff1a2d30f469a6c07f3dcc729a44f767d6d092bf8c7c593166246c8870e8
GET /s/gen.js?type=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1668575087
server: CDN77-Turbo
x-77-nzt: AblMCQ29Hzn/nU4BAA
x-77-nzt-ray: ffffffffd275a8478c836c63affa6200
x-cache: HIT
x-age: 85661
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_news_on.png
85.214.242.31200 OK 7.0 kB URL HTTP/2 www.allgaeuhit.de/mnu_news_on.png
IP 85.214.242.31:0
File type PNG image data, 126 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 887c9818c1fa7f9a08db430f4be925ea
01a8592ad0085f1712c1416a4cc7f1974f008c27
4b86da152ab8ca640310731c0591ac9a4de1684b261352cb5fbba8e5e33998f9
GET /mnu_news_on.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 6978
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-1b42"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/blank.gif
85.214.242.31200 OK 49 B URL HTTP/2 www.allgaeuhit.de/blank.gif
IP 85.214.242.31:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1184485f130fd0fe785dc2a2d0c2fc0c
d4642139451c29a56e1dc9f91e7a054e2db1b9cd
4a962a349a505265aeb57099df429a871d1cdc7d3056f317c5c686820ac8e7d6
GET /blank.gif HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/gif
content-length: 49
x-accel-version: 0.01
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "31-52ece476cb300"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_programm_on.png
85.214.242.31200 OK 7.1 kB URL HTTP/2 www.allgaeuhit.de/mnu_programm_on.png
IP 85.214.242.31:0
File type PNG image data, 116 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 23f872e2abe945a452cd58310ce68ef6
f49c69d68567d86462c09fd72c4b65fa5277c417
6f69c2d0530928e413c8e8bfdf372028bc9576d28880783ee89eb6b69c7758bb
GET /mnu_programm_on.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 7091
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-1bb3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 842cb69094a222c6f86c83dfbcf87b19
a95fec07faf993b1d71d716053f849a7814baf41
2436f57abcc38d8a2e64fee6df74b40ffabf81a53554b610a037f11165cba5dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 435
Cache-Control: max-age=157197
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:28 GMT
Etag: "636c44e7-139"
Expires: Sat, 12 Nov 2022 00:32:25 GMT
Last-Modified: Thu, 10 Nov 2022 00:25:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313
www.allgaeuhit.de/mnu_back.png
85.214.242.31200 OK 367 B URL HTTP/2 www.allgaeuhit.de/mnu_back.png
IP 85.214.242.31:0
File type PNG image data, 9 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 1e60fe340e0e9cf033abd07248977d69
08c55d57846ff2a43509e998472a3bfa9c702ae0
c7235b2a1262e652977b0258670f9231ef264f8b972ba934c521658aafcd099f
GET /mnu_back.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 367
x-accel-version: 0.01
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "16f-52ece476cb300"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.16200 OK 3.8 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (2659)
Hash 3bfd5ba60391cdbc69301e735bd9ac67
dc851fb7f6c7461e548c20ffd723232447fb0848
5abf96d812cc5c9b0aca53b386374a90a40df2067ced3ce504337d2806f5645e
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1668575087
server: CDN77-Turbo
x-77-nzt: AblMCQ0X6bT/nU4BAA
x-77-nzt-ray: ffffffffd275a8478c836c63d20f2200
x-cache: HIT
x-age: 85661
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_home_on.png
85.214.242.31200 OK 4.7 kB URL HTTP/2 www.allgaeuhit.de/mnu_home_on.png
IP 85.214.242.31:0
File type PNG image data, 54 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash b7b4a661a33fb54a9ab7ce412c9d8d36
03dceaf484c46577690b1414a9ca3b6375e41b34
37fc7c693097906e891e22469acb65d9e78eb352b985fc5f3a33cd7a333e16b6
GET /mnu_home_on.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 4651
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-122b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=77801&formatId=2
185.76.9.16200 OK 16 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=77801&formatId=2
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (19616)
Hash c7d26fe01e0224a73dcf3f222ab8649f
3de8bccbf0c5599a63cef6c96b8413db2f7f1e2e
13f2e091f77b791b7cd33dcba744e84b41574cadb4c78361e19e00430b35a988
GET /s/requestform.js?siteId=77801&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1668586289
server: CDN77-Turbo
x-77-nzt: AblMCQ3UAAv/2yIBAA
x-77-nzt-ray: ffffffffd275a8478c836c6380542b00
x-cache: HIT
x-age: 74459
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_programm_off.png
85.214.242.31200 OK 1.6 kB URL HTTP/2 www.allgaeuhit.de/mnu_programm_off.png
IP 85.214.242.31:0
File type PNG image data, 116 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 5bee206d036ea7f90c156d2097167025
8d6944d82bd23ca646eb83975fe18f2c409ffd65
cfb76e0a19e4c37b83ee02d3f3c579a4c382f09f96d36e61571dfb0d130c7955
GET /mnu_programm_off.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 1637
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-665"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_events_off.png
85.214.242.31200 OK 1.3 kB URL HTTP/2 www.allgaeuhit.de/mnu_events_off.png
IP 85.214.242.31:0
File type PNG image data, 83 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 7c853846ae1173e115421065ff8e6016
6bd8f3e37d798fa0a36fb19f2c4f043a0aa521a5
936a7da4708797569cac359bdbbf8d3fcd6e291fa2d7b763d812b7ef92455ddb
GET /mnu_events_off.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 1276
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-4fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_events_on.png
85.214.242.31200 OK 5.9 kB URL HTTP/2 www.allgaeuhit.de/mnu_events_on.png
IP 85.214.242.31:0
File type PNG image data, 83 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 25798da9d95ea5dfc62cef7f7a8b0666
96dc925fb1ba2e95b05346cf2e1b5ac81823e264
4819bc0fb29669580ca9de0d62b08747725ae5b3842117e1eee649b84baa8b5c
GET /mnu_events_on.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 5882
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-16fa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_service_on.png
85.214.242.31200 OK 6.0 kB URL HTTP/2 www.allgaeuhit.de/mnu_service_on.png
IP 85.214.242.31:0
File type PNG image data, 87 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash f874fde9cf3e619a7c74b11e3a5ae7a3
dba3183aa21e13d163469d35c6f4500368fe4417
bc0835a4e09f4a36ba8e6d61079af830a1d053aac0eb18f99d68d17a85907cc0
GET /mnu_service_on.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 6025
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-1789"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_mediathek_off.png
85.214.242.31200 OK 1.8 kB URL HTTP/2 www.allgaeuhit.de/mnu_mediathek_off.png
IP 85.214.242.31:0
File type PNG image data, 115 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ec6a1b2b5fa98acdacfa8dd939bfe7c3
9be17850dbb924cd973f1351b466bf3aff25fdb7
1615584f00df6c8fbbbcfc3486cdb74229ca563cede9af9e4ec8189cf9f894de
GET /mnu_mediathek_off.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 1771
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-6eb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_mediathek_on.png
85.214.242.31200 OK 6.5 kB URL HTTP/2 www.allgaeuhit.de/mnu_mediathek_on.png
IP 85.214.242.31:0
File type PNG image data, 115 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d5d4d4b7b06067d8323f16b2229e2a6
97c8e36eebddc15f62382dbe94c6376bb2d78f2c
63283c80544d22d6ad004c913db25c2af28c54df2e72f3324adbfd82edd295e7
GET /mnu_mediathek_on.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 6451
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-1933"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mnu_service_off.png
85.214.242.31200 OK 1.2 kB URL HTTP/2 www.allgaeuhit.de/mnu_service_off.png
IP 85.214.242.31:0
File type PNG image data, 87 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash e3769c516190653a5bcdd040e4208374
5d48ab774cf77e58b6c93ece14f201fba6f305df
8e74ba3a370cb54906e0580a4543e670010790d1c9d17ca01197980c5ce0d1b1
GET /mnu_service_off.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 1241
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-4d9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/plcode/js/lastfm.api.js
85.214.242.31200 OK 1.6 kB URL HTTP/2 www.allgaeuhit.de/plcode/js/lastfm.api.js
IP 85.214.242.31:0
File type PNG image data, 37 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash fe54b819d19b8c86156f670c42e04c85
7ea80e85bb7d6447154ebd3e51158468e4061561
914836763762c81ebf55468554fc3342cf7f9dd7c0831e14c2896ad02c583f9d
GET /plcode/js/lastfm.api.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 21939
last-modified: Wed, 17 Jan 2018 11:25:49 GMT
etag: "5a5f32bd-55b3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/index.htm
85.214.242.31200 OK 3.4 kB URL HTTP/2 www.allgaeuhit.de/gfx/richt5/index.htm
IP 85.214.242.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1200)
Hash 866a16f0ae19d455e25c37c330cecb3b
2a0561ee7181e3ed2562e507d9523d5e701bfd47
5cabcce78d3bb9d47a20a4c0b71ba457fdc34e9e2617b766509dad63ea9b783e
GET /gfx/richt5/index.htm HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html
content-length: 3416
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "635162b2-d58"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/mainticker/engine1/jquery.js
85.214.242.31200 OK 367 B URL HTTP/2 www.allgaeuhit.de/mainticker/engine1/jquery.js
IP 85.214.242.31:0
File type PNG image data, 9 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 1e60fe340e0e9cf033abd07248977d69
08c55d57846ff2a43509e998472a3bfa9c702ae0
c7235b2a1262e652977b0258670f9231ef264f8b972ba934c521658aafcd099f
GET /mainticker/engine1/jquery.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 189678
last-modified: Thu, 24 Mar 2016 15:21:00 GMT
etag: "56f405dc-2e4ee"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbsbig/6e827cc8b25e408bad01c447d1743784.jpg
85.214.242.31200 OK 26 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbsbig/6e827cc8b25e408bad01c447d1743784.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 339x190, components 3\012- data
Hash e1dd3709c91e69082fc51cf5093c2ec2
668165118730558ea2e5204f72153237e36c7a22
bc193987a8383d1cbe4b7cf2e59af0a9c5131f51c4c025464b611dd6f64d7264
GET /webbilder/thumbsbig/6e827cc8b25e408bad01c447d1743784.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/jpeg
content-length: 25895
last-modified: Wed, 09 Nov 2022 09:10:54 GMT
etag: "636b6e9e-6527"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbsbig/524baf25640903d4cdc20ba500a575c2.jpg
85.214.242.31200 OK 48 kB URL HTTP/2 www.allgaeuhit.de/webbilder/thumbsbig/524baf25640903d4cdc20ba500a575c2.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 339x200, components 3\012- data
Hash e70bf280e7d5fd1c2097e050d20190f2
831e6df8ea847c0783f311b2007fd1e69b6a995d
2fbf78095b57b7cf76f070cca5141ffaebfe99d41bb66adef7944771324022d2
GET /webbilder/thumbsbig/524baf25640903d4cdc20ba500a575c2.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/jpeg
content-length: 47530
last-modified: Wed, 09 Nov 2022 07:40:05 GMT
etag: "636b5955-b9aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/audio8_html5.css
85.214.242.31404 Not Found 241 kB URL HTTP/2 www.allgaeuhit.de/audio8_html5.css
IP 85.214.242.31:0
Size 241 kB (241305 bytes)
Hash 6ff0949ad224f2c228ca675b060755a3
4f94f3d5d07408bd57ff59387ffacae80c59a7fc
e2039cdc35cbc62f8ce02d27ad5da1326ba8e3bb46344d175df7b35503488161
GET /audio8_html5.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html
x-powered-by: PHP/5.3.29
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/footer_background.png
85.214.242.31200 OK 150 B URL HTTP/2 www.allgaeuhit.de/gfx/footer_background.png
IP 85.214.242.31:0
File type PNG image data, 14 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash d53e8d0eccea3b0c750aa4050aa6f55c
6d1738ff6afab4cd36da76d2daf0918efe9c6aac
99c0adbed6a5fb2497cfff3b0067b6ec80cf98fbc2bcb1de201f8f3b67caad08
GET /gfx/footer_background.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/allgaeuhit.css?ver=5.5.2.2
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 150
x-accel-version: 0.01
last-modified: Thu, 24 Mar 2016 15:07:00 GMT
etag: "96-52ecccc56cd00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1668055944885
51.89.9.253204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1668055944885
IP 51.89.9.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=2a897e3f18e6769&cb=1668055944885 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
www.allgaeuhit.de/wb_code.php?wbid=90&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 235 B URL HTTP/2 www.allgaeuhit.de/wb_code.php?wbid=90&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
File type HTML document, ASCII text
Hash 3030b9f945194e89fa9177a901c60572
1e62d4eada779250339d46547b322e698136e2b3
0895525554ed2c3cde18caeeea00a6144cddb3a415c59f23a4d903ab3e520d8b
GET /wb_code.php?wbid=90&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html
content-length: 235
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/wb_code.php?wbid=185&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 235 B URL HTTP/2 www.allgaeuhit.de/wb_code.php?wbid=185&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
File type HTML document, ASCII text
Hash d4401ec5553b0f1938dc8869440fc30b
4ec1c8f69f966e8d050490cda4706a99e671634c
08887b084ae0e48e1fbf2c6af59e06460324e1c8bef6ae8d000a2d3184e5f49f
GET /wb_code.php?wbid=185&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html
content-length: 235
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash bdae0572b52e8a05302d54bbedc4018d
65ce0750697436d09cb6fb2c801fb54cb281e1b4
21e07bd6341d49e5a96efd4485ec818347a1bc5074f9525cfcdc59d09d3abb8f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:52:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 00:12:00 GMT
Expires: Tue, 15 Nov 2022 00:11:59 GMT
Etag: "65ce0750697436d09cb6fb2c801fb54cb281e1b4"
Cache-Control: max-age=414570,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2dcfaba31c06-OSL
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.195200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:14:39 GMT
expires: Tue, 07 Nov 2023 21:14:39 GMT
cache-control: public, max-age=31536000
age: 200269
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=77801&f=6&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=77801&f=6&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=77801&f=6&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 04:52:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:1359_36264064:01BB_636C838C_190DCAFE:12D82
X-IPLB-Instance: 38439
www.allgaeuhit.de/images/loading.gif
85.214.242.31200 OK 8.5 kB URL HTTP/2 www.allgaeuhit.de/images/loading.gif
IP 85.214.242.31:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed
GET /images/loading.gif HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/gif
content-length: 8476
last-modified: Thu, 24 Mar 2016 16:47:00 GMT
etag: "56f41a04-211c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
p.cpx.to/p/12761/px.js
52.48.231.49200 OK 2.0 kB IP 52.48.231.49:0
File type ASCII text, with very long lines (1990), with no line terminators
Hash 226a375bccdd05556ab6cb685658df34
1fc40ba22840e55e412374080348f799518f28f2
309f9e2fb5a81f1cf516723a0dd4fb6ad24dbd7c9d919f8f5c35f3013d7aee95
GET /p/12761/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2419200, public
Content-Type: application/javascript; charset=UTF-8
Date: Thu, 10 Nov 2022 04:52:28 GMT
Content-Length: 1990
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8710
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:52:28 GMT
Connection: keep-alive
www.allgaeuhit.de/images/close.png
85.214.242.31200 OK 498 B URL HTTP/2 www.allgaeuhit.de/images/close.png
IP 85.214.242.31:0
File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 57f501358b988e33ee87a403168ec408
7d9cda7e1f66b7ce4782b0a82986a5b7fdda329a
1d14df1c96aa4765a4454c1729225fc4e9af05a92ab96e931471ea696a5de03d
GET /images/close.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/png
content-length: 498
x-accel-version: 0.01
last-modified: Thu, 24 Mar 2016 16:47:00 GMT
etag: "1f2-52ece31f78900"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/aktsong_new.php
85.214.242.31200 OK 337 B URL HTTP/2 www.allgaeuhit.de/aktsong_new.php
IP 85.214.242.31:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 12e7f1ebc513ba56fe17bb2395516634
2449a8c243a2ef04eac754425d1475f83fa130c8
08721d969de49faa76875bf5db2051727fe4aa869061ad436ebe53b3f1989519
GET /aktsong_new.php HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html
content-length: 337
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8710
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:52:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8710
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:52:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8710
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:52:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8710
Expires: Thu, 10 Nov 2022 07:17:38 GMT
Date: Thu, 10 Nov 2022 04:52:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paNICiysr9pIOxtqOqjnIOValYbM8InQZ9SmEOUIJirFQd03IN6eRw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:43:10 GMT
age: 25758
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc04eddc597d6b10db5d59c53f20aec
dddc0da13526d24aaea990cc1d68d9212612da43
a7e2d1fd141c4383de3411be95b8875c9d969d5f001020793a2b4d939aaa780b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12268
x-amzn-requestid: cd9ea4f7-9a75-47b4-a0ad-817c821a592e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpZHbBIAMFfUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca2-69a98f453929cc817bead2c7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xq1vIovXXR0pPaaHjKWeLcZszoEkISrYvqKvshtQ9dFTf6CUwxmIWA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:16:00 GMT
etag: "dddc0da13526d24aaea990cc1d68d9212612da43"
content-type: image/jpeg
age: 23788
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7edb51fa0fbe8bf317da2d9091b9e21b
02a9b9bec9d4392bbbabb6cabb129c1fb12d01f6
80c9dd829626ec07aa750aa3154eaf27ef79de25d3181e020a13bc9f8e9d8676
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1631e1f0-6fa1-464b-a40b-00a9866b7b25.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5314
x-amzn-requestid: ad6e7919-c033-4361-8e3d-0badbb9f6fc7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWnb0GTrIAMF4xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1f7e-0524b86652bbacde023deb2a;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bau3xXgpMJavWBFqC_X7hBaA4UZHRKrwlFW_uyimScF0nqfzFRc-gg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:56:35 GMT
age: 24953
etag: "02a9b9bec9d4392bbbabb6cabb129c1fb12d01f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74db090f-5da5-464b-91b1-7fac90d3e5eb.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74db090f-5da5-464b-91b1-7fac90d3e5eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d68ac59950c3276cd8f92b777a004df1
94c0ee5c14e8e8cdf95883582ba8084cc5867f93
b02d6d61c1fae8260d1fc30c0a78ebbc3482a3aa0acafb58d8269942ff8e732b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74db090f-5da5-464b-91b1-7fac90d3e5eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7987
x-amzn-requestid: 6a465dcd-6a4e-49fb-9fa9-169678d39b5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlo7HBFIAMFSQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c9f-4ffe8f2534aeaef73329a8cd;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:19 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gbK3hyzE9RBuLiIQHUrouV-Kqe6r2cTMLYauv9W0ych9irxQexKWAQ==
via: 1.1 637ef0a7bc474e9a314fa064b65e8082.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:53:35 GMT
age: 25133
etag: "94c0ee5c14e8e8cdf95883582ba8084cc5867f93"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:400,300,700
142.250.74.10200 OK 9.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Oswald:400,300,700
IP 142.250.74.10:0
Hash 0721cb708409d07b7d809facbfee4c15
5e01c9287039f252a64c713874c285268667a0ba
679900a8426d697ee751b0ff9409d68be8fc09e4a2a087355f47b7f047b6b960
GET /css?family=Oswald:400,300,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Nov 2022 04:52:27 GMT
date: Thu, 10 Nov 2022 04:52:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 10 Nov 2022 04:52:28 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Mon, 18 Oct 2021 12:21:41 GMT
ETag: "616d66d5-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:9A14_91EFC0A6:01BB_636C838C_281AD1AF:237B8
X-IPLB-Instance: 30195
c.tmyzer.com/c/?s=77801&f=2&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=77801&f=2&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=77801&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 10 Nov 2022 04:52:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:B67B_36264064:01BB_636C838C_190C6F66:18F8D
X-IPLB-Instance: 24857
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfc306260ce6b4d62c619ce08b47b95a
89a46fdf3787da4bb8ff621078971b2a7f065f9c
cbf17e18ef94ead764379964b4bca0f8c1779cd526d28a1d8190d6a0dd647ae2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4873
x-amzn-requestid: d71cb1a2-e8e3-4adb-a642-ce21ae8579bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmCIHR6IAMFq5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d40-322737b620672fa66c264414;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jvqQMn902Aa40eCqqKNvDtnOgevnZuc6K_2J74oS6nv2mLP4-8P69Q==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:11:23 GMT
age: 24065
etag: "89a46fdf3787da4bb8ff621078971b2a7f065f9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.allgaeuhit.de/gfx/richt5/main.css
85.214.242.31200 OK 3.9 kB URL HTTP/2 www.allgaeuhit.de/gfx/richt5/main.css
IP 85.214.242.31:0
Hash c0fbba383fe063dd1c85b84d810fc20b
545c74bb5468b7a4a5108c9b94194a575c7d4020
019d8ece89ac87dd299818784bdd1bfdd4dfd9cebcd92142e1f9b5f895259753
GET /gfx/richt5/main.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/index.htm
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/css
content-length: 3875
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "635162b2-f23"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/js/main.js
85.214.242.31200 OK 3.6 kB URL HTTP/2 www.allgaeuhit.de/gfx/richt5/js/main.js
IP 85.214.242.31:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ad5a3a5d475c2aca7fa68d519b802ae3
21b57c704575521263a8b28dc0699f4164ba5fe8
5f688baea19e0bd282b32bf76b787568d215ba145f82183db1ea3b3a02d91657
GET /gfx/richt5/js/main.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/index.htm
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: application/javascript
content-length: 3623
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "635162b2-e27"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/js/data.js
85.214.242.31200 OK 624 B URL HTTP/2 www.allgaeuhit.de/gfx/richt5/js/data.js
IP 85.214.242.31:0
File type Unicode text, UTF-8 text, with very long lines (372), with CRLF, LF line terminators
Hash 6c12d0e9dfe04a37936ad90b92a91c1d
b2bf58faa875e95020f9650d50435466d3f0222b
8cb39983b6cae032debc55b169f0378b77462e419a63bbd871651414c9ec7e63
GET /gfx/richt5/js/data.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/index.htm
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: application/javascript
content-length: 624
x-accel-version: 0.01
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "3e9-5eb7898389080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/js/sctVars.js
85.214.242.31200 OK 3.0 kB URL HTTP/2 www.allgaeuhit.de/gfx/richt5/js/sctVars.js
IP 85.214.242.31:0
File type HTML document, ASCII text, with CRLF line terminators
Hash de84222ca8a994d6b39ce72b94d2c080
a320ae3230fb0663a3d1260b0b914cb17f887141
ff4d9fa4625048162353177d4f1e330f637e60ea9d476062814657cc788c63b3
GET /gfx/richt5/js/sctVars.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/index.htm
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: application/javascript
content-length: 3000
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "635162b2-bb8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/wb_allianz2022.jpg
85.214.242.31200 OK 72 kB URL HTTP/2 www.allgaeuhit.de/gfx/wb_allianz2022.jpg
IP 85.214.242.31:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.3 (Macintosh), datetime=2022:03:16 16:27:19], progressive, precision 8, 300x150, components 3\012- data
Hash 9c5124b1432ebc4fb99eb0a060238185
cecc01c90e16490e2a7a7b86b3af6b3145d066a4
8c0028c65ca586a3088e714735bfa4bc8d1684a851681bcedd351e545c50223f
GET /gfx/wb_allianz2022.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/wb_code.php?wbid=90&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/jpeg
content-length: 72032
last-modified: Tue, 29 Mar 2022 09:10:58 GMT
etag: "6242cd22-11960"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/wb_frick2022.jpg
85.214.242.31200 OK 19 kB URL HTTP/2 www.allgaeuhit.de/gfx/wb_frick2022.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 300x339, components 3\012- data
Hash 67808321400342e0dbe73a77f1d95140
81976a59779240f34ee8f5e20fb97be087a11020
79a5d480d1930c77807c437de33fd4ca535474f451fae996431800f6020a6355
GET /gfx/wb_frick2022.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/wb_code.php?wbid=185&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/jpeg
content-length: 19089
last-modified: Fri, 11 Feb 2022 13:05:34 GMT
etag: "62065f1e-4a91"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
54.230.245.46200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 54.230.245.46:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Thu, 10 Nov 2022 02:56:21 GMT
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c1pcp4MNzRKBQtdLDcJOCdplUiBz50N0jlye5CKOXEjJv1Qqm0YvfQ==
Age: 6970
ced.sascdn.com/tag/1097/smart.js
23.36.77.24200 OK 32 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash f89309190a62a033a97c3b3437afe20c
1e506ba712d583758b90196fafdffe43153d20d8
da4f09f1134f2b2a4daf3575ecfe2a8f31f24302df4e7a80a2ca00c0e23f2db9
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32496
Cache-Control: public, max-age=7200
Expires: Thu, 10 Nov 2022 06:52:29 GMT
Date: Thu, 10 Nov 2022 04:52:29 GMT
Connection: keep-alive
consentcdn.cookiebot.com/sdk/bc-v4.min.html
104.110.3.72200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP 104.110.3.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=29771517
expires: Fri, 20 Oct 2023 18:44:26 GMT
date: Thu, 10 Nov 2022 04:52:29 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c282fb89bdded9707f257751f23fc185
bfe872622a162e0afa35c9cd45742fba2fb15b13
3e66dbf4d736534ca78c1e386311a188e985a015e284a5659213b3b528e7cbc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3933
Cache-Control: max-age=127180
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 16:12:09 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 10 Nov 2022 04:41:09 GMT
expires: Thu, 10 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 680
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2f722a901e04407f5be0a9d2bbeee115
827357170dba6eb3602af40fe88275088865d2c2
b970d7955b4aeaf018c670022ec6b6a599ba114abf117994570b7f89281b72e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 691
Cache-Control: max-age=109547
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Etag: "636b89c5-139"
Expires: Fri, 11 Nov 2022 11:18:16 GMT
Last-Modified: Wed, 09 Nov 2022 11:06:45 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 84d0bda6455ac61abfc43daa003e9d21
a7eb2cfc89872f3b7b92c375ffbeac8fb7a42dca
40aa199c57486e8af0c07cf46126e84b0b6bfe9129e5389593853406c68b476e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5239
Cache-Control: max-age=139298
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Etag: "636bec39-1d7"
Expires: Fri, 11 Nov 2022 19:34:07 GMT
Last-Modified: Wed, 09 Nov 2022 18:06:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/de_DE/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/de_DE/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 86d969ead61d5e28c34ed12f987bf9e9
b7bf4d4bc47b82383de9033634eb070e67ba8408
5cf601927a418d58ea257481ce1645e550176cd072c831feb8ae2061038a8e6c
GET /de_DE/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f6155dff7ac2dcd6853be5e8516c7c03
etag: "a3e4c42fcc479d90cc442a40a90804f7"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 10 Nov 2022 05:07:40 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: htlp6tYdXijDTtEvmHv56Q==
x-fb-debug: DQjrgIxeSSjJmAYLF+Ewvavx60eTkA9ok1vBnTBoD5J75mUSOvXoyugM1L7Wq5K6Jrz1l2LfqwM8MUDgd26aVA==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=OPT-PDGQFP9
142.250.74.174200 OK 45 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-PDGQFP9
IP 142.250.74.174:0
File type ASCII text, with very long lines (1921)
Hash d74135cb88778460bfc5533f57e6f9a3
7d4394ac28d7d03c7398d465d9bfbda62650bcf8
c40024bd1da53bd191bfb96ff1cb48814de74b204b1e44cc5528455448f9ca5a
GET /gtm/optimize.js?id=OPT-PDGQFP9 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 04:52:29 GMT
expires: Thu, 10 Nov 2022 04:52:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45076
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.34200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (2776)
Hash b12bc20e41d6ec1525f205d7b964a530
f17e9d2bdd961ecc1bbb45293419e343dcf351f5
850bdad6cf41e036a40972cd689454aba268ced0264c9b8d323d0de17cd8de92
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 10 Nov 2022 04:52:29 GMT
expires: Thu, 10 Nov 2022 04:52:29 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18252342661029348301
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 55322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 2.8 kB IP 93.184.220.29:0
Hash 5dadb4109e7c3e79961cf65a8ba0f402
0d270cc9947e1b7277ed3f60600a05820639243f
2ac11e85659786d7415d6e5198c883b4b12616977bcb572b3c11a0aa16ff8d9f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3933
Cache-Control: max-age=127180
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Etag: "636bc1fc-1d7"
Expires: Fri, 11 Nov 2022 16:12:09 GMT
Last-Modified: Wed, 09 Nov 2022 15:06:36 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 58ad273c5ead6b1184f0bae78c306a52
a044ddd19e4523d2ddb42bfd4343aa1a0d3c4bce
71b62e94dda1d7d3c0ba08ca34c487e819b424b2da7f7cb3ec2120fb5b049b20
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash bb1443ec5d3152ab09ed5edb89475abd
9bc72ea58d27f446ffaec7dc2f05d84ca9a48a8d
b1b40a71c5408ec04be670195b635e0c3b8b91e7875d96cfa5f620649bd14b51
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 04:52:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 09 Nov 2022 23:33:23 GMT
Expires: Thu, 10 Nov 2022 23:33:23 GMT
ETag: "9bc72ea58d27f446ffaec7dc2f05d84ca9a48a8d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
googleads.g.doubleclick.net/pagead/html/r20221108/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221108/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221108/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 10 Nov 2022 00:37:11 GMT
expires: Thu, 24 Nov 2022 00:37:11 GMT
cache-control: public, max-age=1209600
age: 15318
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 420a7d9c60c7774cdde994b840dde91e
6ed0155bcbcf7f26b4f92ddbc5fe45862dcd85d5
ba7ea8f8870d252209ed76ffc59aba56bf47159c067d12d831ec1f5bd93ba14e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 04:52:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 02:13:42 GMT
Expires: Wed, 16 Nov 2022 02:13:41 GMT
Etag: "6ed0155bcbcf7f26b4f92ddbc5fe45862dcd85d5"
Cache-Control: max-age=508271,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 767c2dd35cd51c06-OSL
media.socoto.com/32/js/TweenMax.min.js
212.88.152.145301 Moved Permanently 178 B URL HTTP/2 media.socoto.com/32/js/TweenMax.min.js
IP 212.88.152.145:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /32/js/TweenMax.min.js HTTP/1.1
Host: media.socoto.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/html
content-length: 178
location: https://media.socotocdn.net/32/js/TweenMax.min.js
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.allgaeuhit.de/favicon.ico
85.214.242.31200 OK 1.2 kB URL HTTP/2 www.allgaeuhit.de/favicon.ico
IP 85.214.242.31:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 9933415d2bbda220a95aa9d57576ec74
0d96b017ab4af839d6a7a1cae18e5298265fcc17
243222892b9ffa47669a8c3b567c7f1f4ee0a43a4492fdeedf52bf0290b2a8f6
GET /favicon.ico HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/vnd.microsoft.icon
content-length: 1150
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-47e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/rp_zHajZTRk
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/rp_zHajZTRk
IP 142.250.74.35:0
Hash 66e932c9a94490852f47d6701b3179ec
e62b4485014924d3040e8d734567e34fc284cd67
94bba7a0b7f01b339284098a423948a2dc6583f86a55551a7b92ea14a00388fe
POST /s/gts1p5/rp_zHajZTRk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/de_DE/all.js?hash=218ecc208a10942e42eae5de5c4b33bc
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/de_DE/all.js?hash=218ecc208a10942e42eae5de5c4b33bc
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash c6ba8c005665f0314588355dfc222927
873c4c375cde4095309a67150074f3b9f8fdf484
73704774067bc5bc79f3822bcd485bc5f3cdea1392ea0a90b3631d2498b6ac06
GET /de_DE/all.js?hash=218ecc208a10942e42eae5de5c4b33bc HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 82bb47be65ed1956441b1b02a6acd4b8
etag: "c55db5ab247145823c219fe7167d1ef1"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 10 Nov 2023 04:47:40 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: xrqMAFZl8DFFiDVd/CIpJw==
x-fb-debug: 55HtaGKASbEJ4M9K/VSXkNoAFHtZ4g7vt5NH3HBpKYs+r8fGJHNkaVnHYSfCiH+8hHWyhC3oa175bllrhy1+Ww==
content-length: 88297
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32034)
Hash c54aac7ef64c39b4f384e0d5771d3b46
d3e059104378a3844862a5ed12a13f5d423e86b6
3e1b5002dd64d185f806edeefd333348f423584d876cfc966b5c13884c8fe3da
GET /ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:01:56 GMT
expires: Thu, 09 Nov 2023 19:01:56 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 35433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=333410dd-a060-4290-40eb-7ac0858d64cf&reqId=0003f92e-7bb7-4496-6257-71469caec026&zdid=1258&google_error=3
172.67.13.182200 OK 95 B URL HTTP/2 mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=333410dd-a060-4290-40eb-7ac0858d64cf&reqId=0003f92e-7bb7-4496-6257-71469caec026&zdid=1258&google_error=3
IP 172.67.13.182:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=333410dd-a060-4290-40eb-7ac0858d64cf&reqId=0003f92e-7bb7-4496-6257-71469caec026&zdid=1258&google_error=3 HTTP/1.1
Host: mwzeom.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allgaeuhit.de/
Connection: keep-alive
Cookie: zc=333410dd-a060-4290-40eb-7ac0858d64cf; zsc=%D9%AD%FCk8%99jy%E8%9E%96%18%023%A4%03-%F1%7B%5C%28%C1%B1S%5D%2C%08%10%29%D5%5B%F4w%F5%A1%C3%21%2C%8B%8Ah%C8%0D%99%C2z6%E6%F3%8D%A8%A2%8C%CB%13B%A3+%A7V%C1%F8%AE%A0%B4%9F%3E%A9a%5C%98+%80%E7%81%F813mWPb%DA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.allgaeuhit.de
set-cookie: zc=333410dd-a060-4290-40eb-7ac0858d64cf; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 767c2dd59fa2b51e-OSL
X-Firefox-Spdy: h2
www.allgaeuhit.de/wb_code.php?wbid=192&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 250 B URL HTTP/2 www.allgaeuhit.de/wb_code.php?wbid=192&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
File type HTML document, ASCII text
Hash 9f33cdec5b306b022d28d98c677aff69
8ea30a013826253d38bff8c3708bda9ed4bb5943
47db26fbc11d3a59f66eb7022b19a56e4d67d3ca60daac0c6382f9bc120e5d01
GET /wb_code.php?wbid=192&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/html
content-length: 250
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/studmail_data.php
85.214.242.31200 OK 489 B URL HTTP/2 www.allgaeuhit.de/studmail_data.php
IP 85.214.242.31:0
Hash c932aaa82b771e047fa185c3d5038b10
4e7c45d235c646930e166e4ba2923ad847f0e9be
855ebe39ef8cad4d8fec7175e6fc5c64f13ce3fb9130b3e97d2d9447b0a8fcc0
GET /studmail_data.php HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/html
content-length: 489
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=77801&formatId=6
185.76.9.16200 OK 14 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=77801&formatId=6
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (19616)
Hash 62d1324ad03652f50bf6e34388b502a6
3fd9be76ccebb03f86c0f1d715564df7b425feeb
9bad2251d957ecf79223b2abe5dd6f6828933100230f03056acb512f587da6c0
GET /s/requestform.js?siteId=77801&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1668586288
server: CDN77-Turbo
x-77-nzt: AblMCQ0oQq3/2yIBAA
x-77-nzt-ray: ffffffffd275a8478b836c6397f5783b
x-cache: HIT
x-age: 74459
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9cec7fd19118aaeb5702dd97a8dd2b0e
40769764dfe2e1d216aeb0f18b935ad9e2fd9b11
0d10421ffd21c60df554fc54330fb769ea6cf59b8a795c14500defff88f8b366
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/rp_zHajZTRk
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/rp_zHajZTRk
IP 142.250.74.35:0
Hash 66e932c9a94490852f47d6701b3179ec
e62b4485014924d3040e8d734567e34fc284cd67
94bba7a0b7f01b339284098a423948a2dc6583f86a55551a7b92ea14a00388fe
POST /s/gts1p5/rp_zHajZTRk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
test.cmp.quantcast.com/GVL-v2/cmp-list.json
54.230.111.106200 OK 2.5 kB URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 54.230.111.106:0
File type JSON data\012- , ASCII text, with very long lines (9979), with no line terminators
Hash 1bd852355a6c29d3385d7ffe7c6beb68
41595d599bfd9d8e280e4a7ea9449a2aeab13c37
3183d923dd688d531c1dc282bd0aa9b2414de9c6173fdfc811732e0737a6e2c8
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Thu, 10 Nov 2022 03:00:38 GMT
last-modified: Mon, 31 Oct 2022 19:52:29 GMT
etag: W/"9d3edb6b0958dc8fc9d74e44b3d6c1cf"
x-amz-server-side-encryption: AES256
x-amz-version-id: mbynXBBZ.ckIcnxGDVHS07C_p1g25FCO
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N3d-22GGrsxVuvEGBKy73c6TooEBrH7skMWcRyVLt8o028htuoKVcw==
age: 6712
X-Firefox-Spdy: h2
media.socotocdn.net/32/js/TweenMax.min.js
104.26.11.240200 OK 108 kB URL HTTP/2 media.socotocdn.net/32/js/TweenMax.min.js
IP 104.26.11.240:0
File type ASCII text, with very long lines (32187)
Size 108 kB (107587 bytes)
Hash 764adf0ad4ee74999f7533adfefb695f
d41dc6258f58e0f4b6e65c03682ab8b6ce7274a2
d223024dc8d479e43ad3f9a607b28f476d49d61712238970a7bd8a7b8e38f84d
GET /32/js/TweenMax.min.js HTTP/1.1
Host: media.socotocdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allgaeuhit.de/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: application/javascript
last-modified: Thu, 28 Mar 2019 15:07:50 GMT
etag: W/"5c9ce346-1995d"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F0Tj8K1vTXRkEXlLzgJ4DQyVTA5zNoqr2Xi2ymwH3IOa%2FkuU03%2BRL2IVBZmkQSSxafextMiIUiLaODDL5uRJvqVuj3zqRw29o5kNpQnHIU%2BZwTPaNRnI9Gehc2YcNqzBDqSAIu8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 767c2dd52fad1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.213.53200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8eec314a76b4c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0jYNsYwAAAADj2/swaCxGQ4W5I03qyK3PU1ZHMjBFREdFMDUxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 10 Nov 2022 04:52:29 GMT
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.4200 OK 52 kB URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.4:0
Hash a5eb141fc678efe0a952331f58b1a8b2
ad7df30b64847b825a45e5092d2be12fa4d62e3c
2f3ead1c1b8f9531b425a23a73f7a27122b8957de9a62641da786830bfe9b6dd
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Thu, 10 Nov 2022 04:10:29 GMT
cache-control: max-age=3600
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jLYMTU7Bz67uPOjFdmgLpwAphmafi5lxtQJEXRG66UsC6aeLIWyHNA==
age: 2522
X-Firefox-Spdy: h2
www.allgaeuhit.de/wb_code.php?wbid=193&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 250 B URL HTTP/2 www.allgaeuhit.de/wb_code.php?wbid=193&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
File type HTML document, ASCII text
Hash 0bfc8633b74f0f085f9f0e9ba4058ca3
facbd2a635bd48248d0639e6f2cbcaa1b549ddfa
182744446a27f8eff1879200b46cb3de854b75fd0fe8adc04c1ea26da235c66f
GET /wb_code.php?wbid=193&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/html
content-length: 250
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/wb_code.php?wbid=171&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
85.214.242.31200 OK 243 B URL HTTP/2 www.allgaeuhit.de/wb_code.php?wbid=171&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
IP 85.214.242.31:0
File type HTML document, ASCII text
Hash 98d341c188639fad3b203dd92818ec0f
4fba087530a36232171e833452b3daa26b8f1e1b
543195e89b465ded525a3b80acc41ae24d67b2a0e66de68770a73514bd597e5c
GET /wb_code.php?wbid=171&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/html
content-length: 243
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/img/overlay.png
85.214.242.31200 OK 5.6 kB URL HTTP/2 www.allgaeuhit.de/gfx/richt5/img/overlay.png
IP 85.214.242.31:0
File type PNG image data, 600 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash f1463211b8dc4f9421c05dfd80b60c24
88fb772212489e535a7550cf641984528286013a
a8585ea25e635bb1bfe104b782cebbd0af36645cbc489e0318e107455cc9c2c8
GET /gfx/richt5/img/overlay.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/main.css
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/png
content-length: 5610
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "635162b2-15ea"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.clarity.ms/tag/5583is3glk
13.107.213.53200 OK 55 kB URL HTTP/2 www.clarity.ms/tag/5583is3glk
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 8d3a2a5f0e5f3e0f703cbac3f6312053
d471c1c21b83deb27a30439a18de30847f62cd44
fac7b604082a5dce104a969700b3d0937e8741ca775709da516d57e7f519321a
GET /tag/5583is3glk HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=20aaf166ea074104a158ff0a0def6c0f.20221110.20231110; expires=Fri, 10 Nov 2023 04:52:29 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
x-cache: CONFIG_NOCACHE
x-azure-ref: 0jYNsYwAAAABWRmAIyEptTaboo8c3GIX3U1ZHMjBFREdFMDUxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 10 Nov 2022 04:52:29 GMT
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/img/logo.png
85.214.242.31200 OK 831 B URL HTTP/2 www.allgaeuhit.de/gfx/richt5/img/logo.png
IP 85.214.242.31:0
File type PNG image data, 180 x 35, 8-bit colormap, non-interlaced\012- data
Hash 68072baf6d6d88a7e390eb8dccfdb554
ce4ca795e97e2bcf6d4b6a1deb12d85c77480516
64b91a5181989d9a36cc7cb59fb255c5f6cf2c61ff48dce85f6d21b698eb978c
GET /gfx/richt5/img/logo.png HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/main.css
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/png
content-length: 831
x-accel-version: 0.01
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "33f-5eb7898389080"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/wb_whatsapp.jpg
85.214.242.31200 OK 21 kB URL HTTP/2 www.allgaeuhit.de/gfx/wb_whatsapp.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x90, components 3\012- data
Hash c8c744e9760d75d3e51cc98a388eca8c
beb04bc12cd49d5202ba2dcef60d48b5c8af74c3
9f71dabf7177c2c2fd78780117f51167645bc8fa36a5c898ef07ec9b7458c702
GET /gfx/wb_whatsapp.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/wb_code.php?wbid=134&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/jpeg
content-length: 20779
last-modified: Sat, 31 Jul 2021 07:58:04 GMT
etag: "6105028c-512b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/richt5/img/person.jpg
85.214.242.31200 OK 9.7 kB URL HTTP/2 www.allgaeuhit.de/gfx/richt5/img/person.jpg
IP 85.214.242.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 200x200, components 3\012- data
Hash ed5c8424121543bb7f6cbebd8e7e7a9c
5bbe6c628f614f969a420612a061013220807c66
bc2811d2e187cb91c23cafb42fffc61da1714ebb50f4904da893123376d19813
GET /gfx/richt5/img/person.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/gfx/richt5/main.css
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: image/jpeg
content-length: 9686
last-modified: Thu, 20 Oct 2022 15:01:06 GMT
etag: "635162b2-25d6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9cec7fd19118aaeb5702dd97a8dd2b0e
40769764dfe2e1d216aeb0f18b935ad9e2fd9b11
0d10421ffd21c60df554fc54330fb769ea6cf59b8a795c14500defff88f8b366
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.allgaeuhit.de/gfx/wb_cc_gastromed.jpg
85.214.242.31200 OK 60 kB URL HTTP/2 www.allgaeuhit.de/gfx/wb_cc_gastromed.jpg
IP 85.214.242.31:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x250, components 3\012- data
Hash 93868cd5e7274b79575b0652e418c4ab
a0d04981096aa6e61ac5d477b0b62962d0010f96
430bd3f0d624e701cf3bce2c58a793e1eec9165922916d9b6756ee80c48928ca
GET /gfx/wb_cc_gastromed.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/wb_code.php?wbid=193&url=/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1; _clck=w7s51b|1|f6g|0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:30 GMT
content-type: image/jpeg
content-length: 60032
last-modified: Thu, 03 Nov 2022 09:33:06 GMT
etag: "63638ad2-ea80"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0f73fd75633256dabb487a390bb40c9e
e87b4cd3dd476066c820c513113db7bdde7be1d0
25d4e11d236c69783d2e6bb04038783403f87af23d1572e88dcb47c7593a7ea4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145612
Date: Thu, 10 Nov 2022 04:52:30 GMT
Etag: "636c0cb0-1d7"
Expires: Fri, 11 Nov 2022 21:19:22 GMT
Last-Modified: Wed, 09 Nov 2022 20:25:20 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0L6njM_yIIGOaBagSzzszbgh7nVCJVNssi6U8Etpbi8PJOmHeSO1UA==
Age: 3242
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
54.229.34.241200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP 54.229.34.241:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.allgaeuhit.de
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Thu, 10 Nov 2022 04:52:30 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 10 Nov 2022 04:52:30 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
172.67.13.182200 OK 2.3 MB URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 172.67.13.182:0
File type Unicode text, UTF-8 text, with very long lines (50946), with LF, NEL line terminators
Size 2.3 MB (2333833 bytes)
Hash fc56a18a7d5e582ca65e96c0033d1508
036b69413a737d249c690ab4cdb1aefe0fcf43ec
1c5ad1bd1f0597b272bfb686019d42f677de2a582ffe9a8e35af837ab702d663
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.allgaeuhit.de
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 767c2dceebf8b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.cleverpush.com/channel/optin-visitor
104.26.14.31200 OK 0 B URL HTTP/2 api.cleverpush.com/channel/optin-visitor
IP 104.26.14.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /channel/optin-visitor HTTP/1.1
Host: api.cleverpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.allgaeuhit.de/
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:30 GMT
content-type: application/json; charset=utf-8
content-length: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type, accept, accept-language
access-control-allow-methods: OPTIONS, GET, POST, PATCH, PUT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zci%2BjKPVXbD5SNVGvsoiqUh8tCvcZYPOSptgxfC6dRn%2FQDcOcpi0g%2FFFb8aWyj91uOAripeuElQ005YADQf%2FHnnxpoaC%2FYBUu7TKKQYBKJibGb%2FLzX2t%2BShkzsZvHu5%2B8lhUIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 767c2dd8add0b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7c89768eee117880b59f8644d2138e52
49a829a38293c8f1eb86dbbccc82017f1d5d86bb
c512960cca090441f3c7e9ffea25448965eb4068d1506b8afa6d391b3c3a07be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 26416c316ff6cabe875546aeac2d162c
6c745809de8af65acca1d5d14979db7aec9c22f1
3ceb57c8a0e367dca65cddc6a3588198d34ce43f3e754a922ea46392fe15b525
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3CEB57C8A0E367DCA65CDDC6A3588198D34CE43F3E754A922EA46392FE15B525"
Last-Modified: Wed, 09 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4277
Expires: Thu, 10 Nov 2022 06:03:47 GMT
Date: Thu, 10 Nov 2022 04:52:30 GMT
Connection: keep-alive
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&gjid=1385662362&_gid=1052731124.1668055946&_u=aEBAAEAAQAAAACAAI~&z=1732202556
64.233.165.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&gjid=1385662362&_gid=1052731124.1668055946&_u=aEBAAEAAQAAAACAAI~&z=1732202556
IP 64.233.165.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&gjid=1385662362&_gid=1052731124.1668055946&_u=aEBAAEAAQAAAACAAI~&z=1732202556 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.allgaeuhit.de
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 10 Nov 2022 04:52:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
141.95.98.64200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
IP 141.95.98.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=true&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 10-Nov-2022 04:57:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 10-Nov-2022 04:57:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 10-Nov-2022 04:57:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 10-Nov-2022 04:57:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 10-Nov-2022 04:57:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 10-Nov-2022 04:57:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 10 Nov 2022 04:52:29 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7c89768eee117880b59f8644d2138e52
49a829a38293c8f1eb86dbbccc82017f1d5d86bb
c512960cca090441f3c7e9ffea25448965eb4068d1506b8afa6d391b3c3a07be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 936
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.allgaeuhit.de
access-control-allow-credentials: true
date: Thu, 10 Nov 2022 04:52:29 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 756bd50d8cb9500180e63a272297eb3a
15612f93cd3d9e8cbd3883e4b7c05caf20cc1ce6
764428c72001d1c514ad33e5abb562e9ecf6b18360409eda2cffef0a5b1a9af8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 438
Cache-Control: max-age=95621
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Etag: "636b545e-138"
Expires: Fri, 11 Nov 2022 07:26:11 GMT
Last-Modified: Wed, 09 Nov 2022 07:18:54 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 312
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22www.allgaeuhit.de%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1668055946746%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-yddgmn5qm3mbp38yamjp%22%7D
3.67.250.115200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22www.allgaeuhit.de%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1668055946746%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-yddgmn5qm3mbp38yamjp%22%7D
IP 3.67.250.115:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22www.allgaeuhit.de%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22clientTimestamp%22%3A1668055946746%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-yddgmn5qm3mbp38yamjp%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:30 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 952f908d8283855a70460d2f6bbcaf22
be97447f1f50f0ad67d15aa07425979da1a12694
6337d6ace429d0bc53cfebab8592c92c449ae969d92545d87f432321b4b494c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:29 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&_u=aEBAAEAAQAAAACAAI~&z=1124984482
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&_u=aEBAAEAAQAAAACAAI~&z=1124984482
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&_u=aEBAAEAAQAAAACAAI~&z=1124984482 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:52:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&_u=aEBAAEAAQAAAACAAI~&z=1124984482
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&_u=aEBAAEAAQAAAACAAI~&z=1124984482
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-24117994-1&cid=1638881987.1668055946&jid=436228956&_u=aEBAAEAAQAAAACAAI~&z=1124984482 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 10 Nov 2022 04:52:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&RedC=c.clarity.ms&MXFR=21412F70DDE565CA26AD3D28D9E56BAB
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=21412F70DDE565CA26AD3D28D9E56BAB; domain=.clarity.ms; expires=Tue, 05-Dec-2023 04:52:30 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 10 Nov 2022 04:52:30 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2817ce33ca8b3667491f155a141abfa7
c39855bf058d975083bd145b944a438b47307a36
33bb12b05df7cb1e19ba5647d57b5cc5f0a79095a2ca40a04e5fe076b7e33422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash da6ea2384d89dcf08521ba15aaa8c085
141a73f1f12700389cecb3548d37c2d5286e7a95
db36322a9271b8e877ba3b1b59c0b8783eb5e9ac8cddd9ecce4180904e7a1088
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 04:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.2.150200 OK 27 kB URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.2.150:0
Hash 3afc1037d243f2b9529f24ca775329f7
1e953e8cf463b08ac647a1663f9b4c5f46ce92ff
0902def47eed05bc649bdb41db26fe8d377a1013d94fec98b1846b84c183c751
GET /iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:30 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 27 Oct 2023 19:33:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: g4bcggfqaqB6Bja//OmajfUrx0iD2yV41F2rYNqDegICxI5i6HgojQBI/xCVMRSxvmDHzQHeNxDWlSGFOXronA==
content-length: 827
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/evgLweG1KIF.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/evgLweG1KIF.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash d8534aa0573be1f6ab5fe8a274b80fbb
4f5caa252a1376b88fdb5e55a80d266b173779d0
6af43fe29243080a4f646fe40b47e36e65aa304d59dbe0faa8777fe436fa5e1d
GET /rsrc.php/v3/yi/l/0,cross/evgLweG1KIF.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 20:44:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2FNKoFc74farX+iidLgPuw==
x-fb-debug: GLL5Dqpe9YGVkAX8iC+UD5tml8yd00Qvkk7a4YS+/skftzN4CdM6iWBF0PVqQd4N+2vjkrBkujKxA5+2WL8A4Q==
priority: u=2
content-length: 5106
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/WNuD0ewp6xQ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/r/WNuD0ewp6xQ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18630)
Hash 2735f6f13ab0e68d5d21650e8d76d90d
fac3c804bd2c335c0c6aa615a0f6bd9197d5ed87
1744afaa9fc41238e9cfa2073844a8c1ed9c80093e5f1555fc93acfbec268b5d
GET /rsrc.php/v3/yM/r/WNuD0ewp6xQ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 08 Nov 2023 01:32:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: JzX28Tqw5o1dIWUOjXbZDQ==
x-fb-debug: bC5+aa5Je0InC3pf1rVrCdTR4TP6lFHLdvrsN0ce1Cc3jv3cHGvzYTQToVx8+qOeVfHGmJ0JfNlleTuHo1Q+uQ==
content-length: 91137
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yE/l/0,cross/30Lp9AQzPc2.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yE/l/0,cross/30Lp9AQzPc2.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type assembler source, ASCII text, with very long lines (2642)
Hash f2ee10a25df1c49241dd4af7641219bf
7596b32f88f1ed6197e673cf221699244700fc23
e9fa52b3efb627da88dbe9710658bbb92863d8631c6419baee57df1efeaa0b89
GET /rsrc.php/v3/yE/l/0,cross/30Lp9AQzPc2.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 20:49:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 8u4Qol3xxJJB3Ur3ZBIZvw==
x-fb-debug: ymWqJ1PYFxPrJLEk7X5SBU9fP+1hjRDnTY/0F4VPr8BduCOX+VGHkEUWMPx+86f3iQdC4zWxWoG+0W/SxhZlTw==
priority: u=2
content-length: 4960
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 6.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (8976)
Hash f18f13f03eb9d52cf83c0aded64079c1
179fdcc3bd0003cfcce42e26e8660556a6dc7c8d
eb3454aa82bab984d96df0c169a4d2fcc20b98d50f2b96eef42452aa1f139d54
GET /rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 00:22:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 8Y8T8D651Sz4PAre1kB5wQ==
x-fb-debug: 3g2qe/DVotBXk2/ykmJxzm8GKfP2+RKG8XCSQeXryiW/ondl1qXIDE/9d0ORK2SpULvi5PVStUN6zQu7UZ1/6g==
content-length: 6445
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&RedC=c.clarity.ms&MXFR=21412F70DDE565CA26AD3D28D9E56BAB
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&RedC=c.clarity.ms&MXFR=21412F70DDE565CA26AD3D28D9E56BAB
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&RedC=c.clarity.ms&MXFR=21412F70DDE565CA26AD3D28D9E56BAB HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allgaeuhit.de/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&MUID=3A0FEB24853963AA1D65F97C84CC62BF
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=3A0FEB24853963AA1D65F97C84CC62BF; domain=c.bing.com; expires=Tue, 05-Dec-2023 04:52:30 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 22ECF6AF423746BB95742974CA71C8C2 Ref B: OSL30EDGE0217 Ref C: 2022-11-10T04:52:30Z
date: Thu, 10 Nov 2022 04:52:30 GMT
content-length: 0
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iAxA4/yL/l/de_DE/FelcvtA3NGC.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iAxA4/yL/l/de_DE/FelcvtA3NGC.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (42152)
Hash 6f63e95632bd7b39738767647cc5857b
14b01329543142231bf6bf6040333b8fa07d001a
e37f8bf0da5fcd300bf1c0b351c3f1b892d4221d6e4c350ffaf8e42b70dd4201
GET /rsrc.php/v3iAxA4/yL/l/de_DE/FelcvtA3NGC.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 00:13:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: b2PpVjK9ezlzh2dkfMWFew==
x-fb-debug: 9M8aHECBA8YDGF3YlD9AQFcLk0Z4FX6Wb/dvNv5rWZiXWL6VJ/2XOSl/u8/U9MmyF3+AixyeSdbwx04YNRtA5w==
content-length: 23372
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/EKwmV8fAj1M.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/r/EKwmV8fAj1M.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 8cd92cd2c236abbaa637f47b52ddcebb
bbfe26af99f45a792d24df8ea422a2da3f390628
95ea7851eb2f837b314ba57821ad71feae24cf383137728176114a21267cd07e
GET /rsrc.php/v3/y-/r/EKwmV8fAj1M.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 16:17:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: jNks0sI2q7qmN/R7Ut3Ouw==
x-fb-debug: 9W2bKyuOwpHNOS8Gt9+B7/tmQ0oVz76GrfCoqdV3eP32NHNLFtaffEQg4t1/YYY4YvyiN07GtaAJTfGbAji23g==
priority: u=3,i
content-length: 1807
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y_/r/wTglN12iuj9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y_/r/wTglN12iuj9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (10494)
Hash 7a251324c979f281c33a391e28e632b5
d923ec35e14b92409ad05bed1ff3a018a10edb4e
3508e37a9692eac38f87221db9769070a336586c499a49c80b1b6fdf2d111c58
GET /rsrc.php/v3/y_/r/wTglN12iuj9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 02:00:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: eiUTJMl58oHDOjkeKOYytQ==
x-fb-debug: Qwaa81rXokHbAW3EuWOSCkP5mUbIWvd2ZhX3Of/Xa+DHsfFqPP9QEvudtR9QLn/Zr2+tIORPPM7uPI52hg9tiQ==
priority: u=3,i
content-length: 8632
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 27 Oct 2023 20:08:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: C8ru5zkRydgvHeANSR5CCnJiMJOKT/Cn1D/peSgWNQK5UFwPIyoKe+MHTJeZ5YMaL9iMR1r/NPoYeX9Euxr11g==
priority: u=3,i
content-length: 338
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 02 Nov 2023 18:54:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: nETVm4WUsTBjWzPPz30+NcQ/dUZibWclH+7BC3skx38X1frzgZPa413yNFDo1GF9yx7utvfMwnrRvZAKq6brWw==
content-length: 7236
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yl/r/SuHirPIqipH.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yl/r/SuHirPIqipH.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (9885)
Hash 0eaa197a5c011011e1489f411b042249
9ba134dd641bbbc6ce70619ccd94f5d5ef47a899
145cfec975ec864e6589409173f8f9fee2a59faf0ce28c42889897e812ab9ac4
GET /rsrc.php/v3/yl/r/SuHirPIqipH.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 05:50:55 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DqoZelwBEBHhSJ9BGwQiSQ==
x-fb-debug: yMzCe1sdU6mg7klvggXuZjDYvUcaDAkJnsXnHCkzBQ/uvXgKylMoqhhpMHmyOsGd3IWLNB0nsY5GHPnHulUPqg==
content-length: 8222
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yd/r/zge0LHF8dqs.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 19 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yd/r/zge0LHF8dqs.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (8610)
Hash 71784d64e0730a4231030112bc940424
e3e7d4984225fdbf12dbad61346e907cd35f71e4
8b5aa4ccf01ce902d15f71da668eefe12f44c12626415446e1720992f2c56094
GET /rsrc.php/v3/yd/r/zge0LHF8dqs.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 02:42:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cXhNZOBzCkIxAwESvJQEJA==
x-fb-debug: of7wzu3jYEJMPPwjdxt9dlZ+JyntVBdyTSg4ayv5c+O6v86H8j/WmjJR4jsmOJwS/QOpRYL483Avd8mxE2scdg==
priority: u=3,i
content-length: 19177
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3i2aq4/yx/l/de_DE/9ceEMw7kTfT.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i2aq4/yx/l/de_DE/9ceEMw7kTfT.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash f2417672e6aaabd8dfd8ffc4a560b1a5
2052d823693b6b9e0b88fa332e8f74adabbd44a5
64f0c479f839fe213e044dc42abc68ea4f4dc56656ac47cab3ebd3cbd73d4dc5
GET /rsrc.php/v3i2aq4/yx/l/de_DE/9ceEMw7kTfT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 17:18:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 8kF2cuaqq9jf2P/EpWCxpQ==
x-fb-debug: GIkYKeyEHcxcq/H5uXptN1McOL2TxYFd1k7Bs4lIgJMc2arKl3PZkc4keeqch4hNr2Djoar6ud5RypIy+nTBcA==
priority: u=3,i
content-length: 7101
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iMqR4/yE/l/de_DE/qk2dbOUObQD.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 42 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iMqR4/yE/l/de_DE/qk2dbOUObQD.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (10798)
Hash 65624c0104ea759a2554195e9b93682a
fb084f3561a0f5bb6c657fb3e980e50e62985043
7b6c822b9985c5a95b3aad46df068361f2bdb04c203a5bdfe9e50e91549d7f44
GET /rsrc.php/v3iMqR4/yE/l/de_DE/qk2dbOUObQD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 14:40:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZWJMAQTqdZolVBlem5NoKg==
x-fb-debug: lXODDyGRO4nk07Jv1H7FoT4EProtzkWNEFLlcBb0fd9NOr8mJy4crbXQKrZ0XDQgp4bExpuEjIRqISlrMMFmtw==
content-length: 42048
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iiuU4/y8/l/de_DE/PRLdM6JdoNy.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 80 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iiuU4/y8/l/de_DE/PRLdM6JdoNy.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5723)
Hash 1fbf6d6af800f612044082bf33c269eb
5d151c8c587049bbbe36b2a6d8d71532bd2dc524
d8eac80b471aaafd25607abc7326a8feffe8645a77ff04f459ba10c78861d7b5
GET /rsrc.php/v3iiuU4/y8/l/de_DE/PRLdM6JdoNy.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 08 Nov 2023 08:08:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: H79tavgA9hIEQIK/M8Jp6w==
x-fb-debug: jBhGCSwDJGF1Tr5lEl1d5AXL9Fe6yc4hgi8S+Snbki3cYQoc+Xjxo0DYEufLFSHBB5HaKARYidOWGN/5SmUDtw==
priority: u=3,i
content-length: 80511
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&MUID=3A0FEB24853963AA1D65F97C84CC62BF
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&MUID=3A0FEB24853963AA1D65F97C84CC62BF
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=AE3D888E0B96488B9C5A092487E9540B&MUID=3A0FEB24853963AA1D65F97C84CC62BF HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allgaeuhit.de/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 10-Nov-2022 05:02:30 GMT; path=/; SameSite=None; Secure;
date: Thu, 10 Nov 2022 04:52:30 GMT
content-length: 42
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yI/r/gczkeIw2IoN.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 760 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yI/r/gczkeIw2IoN.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (618)
Hash c6b205adbfcb0dbb16aad47f1936afe2
727e7921e9ce632e744bf9947c9900cab5f07237
b7f71557aa65acef460826f273569fe8dbb7283844b18995c30a27d181ba8f89
GET /rsrc.php/v3/yI/r/gczkeIw2IoN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 02 Nov 2023 18:54:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: xrIFrb/LDbsWqtR/GTav4g==
x-fb-debug: HGW/a/MKWDghkRPtzm7QhfHINKMO9zjnCbPZ00azYu99srQ2CzZKjHsQr2/p0b8WbX+YSIVtFlbBE9b1oLqyLg==
content-length: 760
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/r/TDGT8euSbGZ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 48 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/r/TDGT8euSbGZ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (5068)
Hash 665807dc951fccbc2a2b7ef1253cc871
65ddbeb36ef1fb9f550f189607879fe8dadce807
e2ae716c6d655993db0b4d2df0cb0b262a411badaeeb87518e39f74c320823fd
GET /rsrc.php/v3/yn/r/TDGT8euSbGZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 09 Nov 2023 20:41:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZlgH3JUfzLwqK37xJTzIcQ==
x-fb-debug: IWyKPTxV6NsiBapIPnU/wOFfmeHpK/Q6C5OtLRE8Csh2KfidiHzHVX/Yp60x9soOpwLBTe0Uv4PMAJE7nhlIpg==
priority: u=3,i
content-length: 48095
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.2.146200 OK 17 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.2.146:0
Hash a0e2f25001077886ea88e25f70abf1aa
940722bfb211fe98f8c098511dfdcd948c6950d6
b7103c91916900a107da4793b09566bc332e7bd8b237d5ee0a8be60be28a6eff
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allgaeuhit.de/
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:30 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://www.allgaeuhit.de
server-processing-duration-in-ticks: 810629
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/Y1Vj4wvi23s.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 3.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/Y1Vj4wvi23s.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4488)
Hash 64e49c34f30d6183fd9c5f6cee967f5c
9197478fcdda35e040fa7e6190b7427e11b535df
a95c113c157591cafb76092d133d210d56f0446432d572eb1a1160c024bfeb54
GET /rsrc.php/v3/y6/r/Y1Vj4wvi23s.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 03:05:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZOScNPMNYYP9nF9s7pZ/XA==
x-fb-debug: XMj8Yma38+IVGm3NTsUEfLOv1s7bFyeiFB3HEYDPs4j64bvN4OCQWc05teqByOm5BAIWL1A0wdPdcSB2Q4ql1Q==
priority: u=3,i
content-length: 3827
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 15 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (56534)
Hash e266a3ccc2395fbcb9ddc3e5cf3fe8a4
eb22fd1e27291f601742a4da697539e046b72de5
ea280deb9b1274ac87adf23d5b5f523079d776271b910ee945d0127a2dea806d
GET /rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 31 Oct 2023 20:10:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4majzMI5X7y53cPlzz/opA==
x-fb-debug: I5IU0N1yPAYYR78xtAdt+6x/vIJQIib+BkSkmcCjKjOT3TAt+SFqz8AQPlZNmnbwzwmTCkKYdKYMoJysLxXv8A==
priority: u=1,i
content-length: 15209
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y0/r/ksSG7BCGzVy.png
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y0/r/ksSG7BCGzVy.png
IP 31.13.72.12:0
File type PNG image data, 65 x 730, 8-bit colormap, non-interlaced\012- data
Hash bb29fc0ca834dad745632b7ba95e8806
221166c768156576b20ad65a7a3021a701da75f4
55e8c619d20bc3f1a22efd0fec83dba0d8bd9e898f0d5847eaff094f0887fad3
GET /rsrc.php/v3/y0/r/ksSG7BCGzVy.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: uyn8DKg02tdFYyt7qV6IBg==
expires: Thu, 02 Nov 2023 18:54:52 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: TemzLJzkGaUpFZk83CScK+F9NcWnR3I0AUVS0EVEWQkhVi8dmmyrgv5Z+/hjoNpRo0AbdbXEruu8xTQ2AcFo0w==
content-length: 12111
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:31 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 253546
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.allgaeuhit.de
access-control-allow-credentials: true
date: Thu, 10 Nov 2022 04:52:30 GMT
X-Firefox-Spdy: h2
www.allgaeuhit.de/aktsong_new.php?_=1668055948066
85.214.242.31200 OK 337 B URL HTTP/2 www.allgaeuhit.de/aktsong_new.php?_=1668055948066
IP 85.214.242.31:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 12e7f1ebc513ba56fe17bb2395516634
2449a8c243a2ef04eac754425d1475f83fa130c8
08721d969de49faa76875bf5db2051727fe4aa869061ad436ebe53b3f1989519
GET /aktsong_new.php?_=1668055948066 HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1; _clck=w7s51b|1|f6g|0; _clsk=11r548r|1668055946898|1|1|b.clarity.ms/collect
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:31 GMT
content-type: text/html
content-length: 337
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7475
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.allgaeuhit.de
access-control-allow-credentials: true
date: Thu, 10 Nov 2022 04:52:32 GMT
X-Firefox-Spdy: h2
www.allgaeuhit.de/aktsong_new.php?_=1668055951066
85.214.242.31200 OK 337 B URL HTTP/2 www.allgaeuhit.de/aktsong_new.php?_=1668055951066
IP 85.214.242.31:0
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 12e7f1ebc513ba56fe17bb2395516634
2449a8c243a2ef04eac754425d1475f83fa130c8
08721d969de49faa76875bf5db2051727fe4aa869061ad436ebe53b3f1989519
GET /aktsong_new.php?_=1668055951066 HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2; cc_advertising=yes; _ga=GA1.2.1638881987.1668055946; _gid=GA1.2.1052731124.1668055946; _gat_UA-24117994-1=1; _clck=w7s51b|1|f6g|0; _clsk=11r548r|1668055946898|1|1|b.clarity.ms/collect
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:34 GMT
content-type: text/html
content-length: 337
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/5.3.29, PleskLin
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F277aa861-ae6e-4751-9600-94ebbba9ce15.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F277aa861-ae6e-4751-9600-94ebbba9ce15.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb75e812f53dc321df03786e8abed258
23017e1582756a012eeb41292d341e34229e1361
d369a3e8edb93852fecad6ed018c56391e237fcaf339133e2ecc65344ee6e3bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F277aa861-ae6e-4751-9600-94ebbba9ce15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7258
x-amzn-requestid: f3444b55-7477-45b3-b0e4-d1257cc976b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUKZ6EJSoAMFUIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b243f-4e51d0b967a3440326b82e6f;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 03:53:35 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: va-umdzr21XzZ40RkQ_BxFVNy-fVpiI-OfefquikDyWK5veIhFZklA==
via: 1.1 b04d82bf2bc15ab146955a862be263f0.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 16:05:40 GMT
age: 46015
etag: "23017e1582756a012eeb41292d341e34229e1361"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/google-atp-list.json
54.230.111.122200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/google-atp-list.json
IP 54.230.111.122:0
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Thu, 10 Nov 2022 03:01:29 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 10 Nov 2022 03:01:26 GMT
etag: W/"5e5c32e11030f411462907ffac99a722"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LAj1VemOaT6Sirt6901p0fz8SQw7KCKrjJFE8aYEMYCHZSb2HbpT3A==
age: 6662
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.2.146:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 423787
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
allgaeuhit.cleverpush.com/iframe?origin=https%3A%2F%2Fwww.allgaeuhit.de
159.69.45.25200 OK 0 B URL HTTP/2 allgaeuhit.cleverpush.com/iframe?origin=https%3A%2F%2Fwww.allgaeuhit.de
IP 159.69.45.25:0
ASN #24940 Hetzner Online GmbH
GET /iframe?origin=https%3A%2F%2Fwww.allgaeuhit.de HTTP/1.1
Host: allgaeuhit.cleverpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:29 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: origin, x-requested-with, content-type, accept
cache-control: public, max-age=1800
x-robots-tag: noindex
strict-transport-security: max-age=15724800; includeSubDomains
x-cache-status: HIT
x-backend-server: cleverpush-worker-1
content-encoding: gzip
X-Firefox-Spdy: h2
www.allgaeuhit.de/jquery.form.js
85.214.242.31200 OK 0 B URL HTTP/2 www.allgaeuhit.de/jquery.form.js
IP 85.214.242.31:0
GET /jquery.form.js HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: application/javascript
content-length: 41108
last-modified: Thu, 24 Mar 2016 16:53:00 GMT
etag: "56f41b6c-a094"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.allgaeuhit.de/SryAssets/SpryTabbedPanels.css
85.214.242.31404 Not Found 0 B URL HTTP/2 www.allgaeuhit.de/SryAssets/SpryTabbedPanels.css
IP 85.214.242.31:0
GET /SryAssets/SpryTabbedPanels.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: text/html
x-powered-by: PHP/5.3.29
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
54.230.111.122200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP 54.230.111.122:0
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
cache-control: max-age=172800
date: Thu, 10 Nov 2022 04:52:30 GMT
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k8WST92DKZ9qj-obvuThL_7M-qoEzkUGEAAo6wa4QpAOYLUO7NGX4g==
X-Firefox-Spdy: h2
www.allgaeuhit.de/webbilder/thumbs/fc457e0acac04b5b9554a19a845e4772.jpg
85.214.242.31200 OK 0 B URL HTTP/2 www.allgaeuhit.de/webbilder/thumbs/fc457e0acac04b5b9554a19a845e4772.jpg
IP 85.214.242.31:0
GET /webbilder/thumbs/fc457e0acac04b5b9554a19a845e4772.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: image/jpeg
content-length: 7428
last-modified: Mon, 31 Oct 2022 07:57:26 GMT
etag: "635f7fe6-1d04"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&subset=latin,latin-ext,cyrillic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&subset=latin,latin-ext,cyrillic
IP 142.250.74.10:0
GET /css?family=Open+Sans&subset=latin,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Nov 2022 04:52:28 GMT
date: Thu, 10 Nov 2022 04:52:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2ui-en.js
54.230.111.122200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2ui-en.js
IP 54.230.111.122:0
GET /tcfv2/42/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
cache-control: max-age=172800
date: Wed, 09 Nov 2022 14:37:49 GMT
last-modified: Tue, 05 Jul 2022 18:40:26 GMT
etag: W/"24932b3e61742029985961c24d35dbb7"
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gw7WwSqcBqt-jGe4W6QegIIAcn4brJGvWPLEdq8YaAP1QgWb5hh3LA==
age: 51282
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
54.230.111.122200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
IP 54.230.111.122:0
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allgaeuhit.de
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Thu, 10 Nov 2022 03:00:40 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 10 Nov 2022 03:00:32 GMT
etag: W/"b0704acb374845886d528927d524f486"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p2gPpKZeOASbHgJ1q_csfp9kMJdY3yxOG1-7k_ShDIsqH2leSLKcYw==
age: 6711
X-Firefox-Spdy: h2
static.cleverpush.com/channel/loader/mKGoKg5fB4fdAmoPy.js
104.26.15.31200 OK 0 B URL HTTP/2 static.cleverpush.com/channel/loader/mKGoKg5fB4fdAmoPy.js
IP 104.26.15.31:0
GET /channel/loader/mKGoKg5fB4fdAmoPy.js HTTP/1.1
Host: static.cleverpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: application/javascript
x-amz-id-2: FOwYHQ61RiQGAP0kSvw3Rkz+3OD/bseEuH+liojKuhkU/pWAHOqSjv6C+qNo5GcWal8xgSwk5QA=
x-amz-request-id: 35VBYQ0YG6AN5YA8
last-modified: Thu, 10 Nov 2022 00:23:49 GMT
etag: W/"2eb3078c67ab85f7e9592a3dd333a3bb"
cache-control: public, max-age=21600
cf-cache-status: HIT
age: 13813
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FWFC7jQFww5coiZ4Rn%2FnSGbXwlHypLKEhdnjhmmoJBga2JGK9XognE2XRGAVRxvhV5adLYi8NH%2F1oNa1ThntOoXqPMQespuBzjzcJcl9hrieVF8O8sgwXeh96Qrk5ugH9Wu3thu4ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 767c2dcaf8880b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.cleverpush.com/channel/optin-visitor
104.26.14.31200 OK 0 B URL HTTP/2 api.cleverpush.com/channel/optin-visitor
IP 104.26.14.31:0
POST /channel/optin-visitor HTTP/1.1
Host: api.cleverpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allgaeuhit.de/
Content-Type: application/json
Origin: https://www.allgaeuhit.de
Content-Length: 54
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 04:52:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type, accept, accept-language
access-control-allow-methods: OPTIONS, GET, POST, PATCH, PUT
strict-transport-security: max-age=15724800; includeSubDomains
x-backend-server: cleverpush-worker-15
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5QtEFveMU0N9GxFZfgOV%2FZvmRhSJOVdgRogAvAbkoYCr22JGiRhnnmM%2Bum7QrsJigecJAJQmaqG9U6ci7U9YpsOdQNzbftjwO2w83qJuyvd%2FAg%2Fv%2F5uCmyGc%2FKQF95aWjFAzkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 767c2dd98e32b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.allgaeuhit.de/audio8_html5.css
85.214.242.31404 Not Found 0 B URL HTTP/2 www.allgaeuhit.de/audio8_html5.css
IP 85.214.242.31:0
GET /audio8_html5.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/html
x-powered-by: PHP/5.3.29
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 08 Nov 2023 14:58:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: D5GS3x6wx04rycniYZY/0Xz+ksXYSSm92jqaYBfwJdNE2gVWZsHNSKS1Na1e4Jf9SQ8Wn6qjKZVunFivJgncuw==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 04:52:30 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 0 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80D4B8AC4D96D04776F79CF5927F45F5EEA2E89C95BCD6D8815B9B1703FBA7D1"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2025
Expires: Thu, 10 Nov 2022 05:26:13 GMT
Date: Thu, 10 Nov 2022 04:52:28 GMT
Connection: keep-alive
www.allgaeuhit.de/SryAssets/SpryTabbedPanels.css
85.214.242.31404 Not Found 0 B URL HTTP/2 www.allgaeuhit.de/SryAssets/SpryTabbedPanels.css
IP 85.214.242.31:0
GET /SryAssets/SpryTabbedPanels.css HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/Allgaeu-AllgaeuHIT-Pistenspass-am-17-Dezember-2022-Jetzt-buchen-article10055785.html
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 10 Nov 2022 04:52:27 GMT
content-type: text/html
x-powered-by: PHP/5.3.29
X-Firefox-Spdy: h2
www.allgaeuhit.de/gfx/header_herbst_20222.jpg
85.214.242.31200 OK 0 B URL HTTP/2 www.allgaeuhit.de/gfx/header_herbst_20222.jpg
IP 85.214.242.31:0
GET /gfx/header_herbst_20222.jpg HTTP/1.1
Host: www.allgaeuhit.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/allgaeuhit.css?ver=5.5.2.2
Cookie: PHPSESSID=94ntfjjrkfc70k38njrhma84p2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 04:52:28 GMT
content-type: image/jpeg
content-length: 250928
last-modified: Fri, 16 Sep 2022 23:40:44 GMT
etag: "6325097c-3d430"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fundingchoicesmessages.google.com/i/ca-pub-1091040767725837?ers=2
142.250.74.46200 OK 0 B URL HTTP/2 fundingchoicesmessages.google.com/i/ca-pub-1091040767725837?ers=2
IP 142.250.74.46:0
GET /i/ca-pub-1091040767725837?ers=2 HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allgaeuhit.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 10 Nov 2022 04:52:29 GMT
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport, script-src 'nonce-9MWtQ9445XR1WJihlWkhpQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist
report-to: {"group":"ContributorServingWebSwitchboardHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ContributorServingWebSwitchboardHttp/external"}]}
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin; report-to="ContributorServingWebSwitchboardHttp"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2