Overview

URL reisewelt-klein.de/
IP92.51.134.215
ASNHost Europe GmbH
Location France
Report completed2022-10-05 21:37:46 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-05 2 reisewelt-klein.de/ Phishing
2022-10-05 2 www.reiseweltklein.de/ Phishing
2022-10-05 2 www.reiseweltklein.de/fonts/flaticon/Flaticon.woff2 Phishing
2022-10-05 2 www.reiseweltklein.de/assets/images/partnerlogos/DER_Touristik_Partner_4C.svg Phishing
2022-10-05 2 www.reiseweltklein.de/assets/js/core.min.js Phishing
2022-10-05 2 www.reiseweltklein.de/assets/js/jquery-3.4.1_plusUI.min.js Phishing
2022-10-05 2 www.reiseweltklein.de/assets/js/vendor_bundle.min.js Phishing
2022-10-05 2 www.reiseweltklein.de/assets/fonts/flaticon/Flaticon.woff2 Phishing
2022-10-05 2 www.reiseweltklein.de/assets/js/scripts.min.js?_=1665005856579 Phishing
2022-10-05 2 www.reiseweltklein.de/assets/js/vendor.swiper.min.js Phishing
2022-10-05 2 www.reiseweltklein.de/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.backend.tcautor.de (16) 0 2020-06-28 05:47:24 UTC 2022-09-26 17:44:20 UTC 5.175.22.217 Unknown ranking
mnemonic passive DNS maps.googleapis.com (1) 33876 2014-10-18 20:19:59 UTC 2022-10-05 17:02:39 UTC 142.250.74.138
mnemonic passive DNS reisewelt-klein.de (1) 0 2022-06-02 20:38:08 UTC 2022-10-05 11:37:29 UTC 92.51.134.215 Unknown ranking
mnemonic passive DNS www.reiseweltklein.de (28) 0 2015-10-30 14:39:42 UTC 2022-09-30 07:34:58 UTC 5.175.22.217 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-05 05:01:05 UTC 34.117.237.239
mnemonic passive DNS backend.tcautor.de (1) 0 2020-06-28 05:48:07 UTC 2022-09-26 17:44:20 UTC 5.175.22.217 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-05 09:14:56 UTC 54.148.190.4
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-05 12:33:02 UTC 34.120.237.76
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-10-05 11:30:49 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS r3.o.lencr.org (13) 344 2020-12-02 08:52:13 UTC 2022-10-05 07:13:38 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-05 06:03:19 UTC 54.230.111.99
mnemonic passive DNS app.usercentrics.eu (1) 12624 2018-08-08 09:42:22 UTC 2022-10-05 18:56:45 UTC 35.190.14.188
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-05 14:02:21 UTC 54.230.111.118
mnemonic passive DNS www.tourcontact.eu (1) 0 2019-11-05 00:21:59 UTC 2022-10-03 20:44:08 UTC 92.51.134.215 Unknown ranking
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-05 16:49:33 UTC 142.250.74.164
mnemonic passive DNS kit-pro.fontawesome.com (8) 21124 2019-05-02 12:15:01 UTC 2022-10-05 18:56:52 UTC 104.18.22.52
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-05 16:07:29 UTC 93.184.220.29
mnemonic passive DNS cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-10-05 11:30:49 UTC 104.17.25.14
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-10-05 06:59:18 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 92.51.134.215

Date UQ / IDS / BL URL IP
2022-11-24 20:03:30 +0000
0 - 0 - 14 essostation.de/ 92.51.134.215
2022-11-24 11:33:30 +0000
0 - 0 - 9 gdp.reise/ 92.51.134.215
2022-11-24 00:04:22 +0000
0 - 0 - 16 essostation.de/ 92.51.134.215
2022-11-23 16:10:25 +0000
0 - 0 - 23 schermbecker-reisebuero.de/ 92.51.134.215
2022-11-23 06:09:40 +0000
0 - 0 - 5 sysbos.de/ 92.51.134.215

Last 5 reports on ASN: Host Europe GmbH

Date UQ / IDS / BL URL IP
2022-12-02 10:23:04 +0000
0 - 0 - 2 fileservice.gtainside.com/downloads/ftpl/1656 (...) 85.25.43.36
2022-12-02 04:23:43 +0000
0 - 0 - 1 dns.nags.de/ 85.25.211.107
2022-12-02 03:08:25 +0000
0 - 0 - 2 iths.de/ 5.35.244.101
2022-12-02 02:51:49 +0000
0 - 0 - 1 swosoft.at/(S(htug2m45zfqhugaqajwdrfbs))/down (...) 5.175.26.248
2022-12-02 01:52:03 +0000
0 - 0 - 1 swosoft.at/(S(1dlygd55u0ajjwmhojduqaic))/down (...) 5.175.26.248

Last 5 reports on domain: reisewelt-klein.de

Date UQ / IDS / BL URL IP
2022-11-21 23:38:01 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-11-15 07:39:59 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-11-08 05:41:55 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-11-06 13:40:43 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-10-26 07:39:13 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-26 07:39:13 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-10-24 05:39:58 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-10-22 23:40:05 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215
2022-10-21 17:37:47 +0000
0 - 0 - 9 reisewelt-klein.de/ 92.51.134.215
2022-10-15 21:37:25 +0000
0 - 0 - 11 reisewelt-klein.de/ 92.51.134.215


JavaScript

Executed Scripts (25)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (95)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: reisewelt-klein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         92.51.134.215
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Wed, 05 Oct 2022 21:37:34 GMT
Content-Length: 305
Connection: keep-alive
Location: http://www.reiseweltklein.de/
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   305
Md5:    84ded1aac57607ac32d3b6032d608f0d
Sha1:   7d79e3e73aab1641117406a3da9ed6a239be73aa
Sha256: ff1028616c74785ec9452c123e728ab96c609f81865efa277589fc31ff2f57c2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ARJOKY-3cs2kRY7LlgOuePLAqpy1iZJ89yQzJRS3hR-9afFRf0j26g==
Age: 21016


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8373
Expires: Wed, 05 Oct 2022 23:57:08 GMT
Date: Wed, 05 Oct 2022 21:37:35 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 05 Oct 2022 04:02:33 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xw40P_-5ntu70ficUwJQ9s4XDYjthp5aA6tmeVJ2jpAzFWLMmjSXDw==
age: 63303
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET / HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         5.175.22.217
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 05 Oct 2022 21:37:35 GMT
Server: Apache
Location: https://www.reiseweltklein.de/
Content-Length: 238
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   238
Md5:    d75aa64e403759c411a19e935803f8ff
Sha1:   db95c204b77913637a9cab0c374218a22680bb69
Sha256: f066ef0ad94e8207d08f801cd58e78492a6a52fb46fd794de2b5a508278df7d6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 05 Oct 2022 21:37:35 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "58D525690DEFD4F755A5AE922ADC130E19230C0F257CF28749B4771FC1225085"
Last-Modified: Mon, 03 Oct 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Thu, 06 Oct 2022 03:37:22 GMT
Date: Wed, 05 Oct 2022 21:37:35 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 20:55:50 GMT
Expires: Wed, 05 Oct 2022 21:49:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: y3HoKplOKbx4JO6KTYbsAtcEQ_B7e4V8VTY7w36fHjkqsAYlXX6BUA==
Age: 2505


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5302
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 21:37:35 GMT
Last-Modified: Wed, 05 Oct 2022 20:09:13 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
content-length: 2880
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-580a"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 19944217
expires: Mon, 25 Sep 2023 21:37:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U8%2BZsUG1tsBf1uym2ylYfjpNxs9%2FIJMME%2BWGM%2B%2B0fReSnlmC%2BcW4jaIdGdIVL1S3uhLPprMWH1D7q0pRymi4NYDHkq1sNZgdqimlmC97gWkSckC9kOER2BK37nzDxC5LB37of5F3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75594ca81f7db517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22251)
Size:   2880
Md5:    4dbf1735a5370350943bce0dbad5843d
Sha1:   3a9d68ea18c3aa70887283c3c36b154ddd31ced8
Sha256: b7cd289c437127d58b709dc9999390fe68d378d506a8a31252c74c70597e162e
                                        
                                            GET /ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.reiseweltklein.de
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
content-length: 6422
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-6e3e"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 11090168
expires: Mon, 25 Sep 2023 21:37:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jbywY2Oow2pOdTEHNVPje3zHjnUmACefhFr2lrEcwVcfcgJfFRvLy1XZx0%2BCZJ0WyQKdXTgObj4oRfeiA2gFX62dScDbohAw3VNPFSa3vHr%2BLtCao4QYlUhCEy2jpyU0f8PKzFVP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75594ca82cceb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27931)
Size:   6422
Md5:    beafb90e7e7cb9afd1931dd1ce3d8a6b
Sha1:   ecb8187bf858a727949be0fffbadd1d018e0c169
Sha256: eabdef01e87e471436dfac8d11edcd16c85d433aa854cdd695165399980ca818
                                        
                                            GET /fonts/flaticon/Flaticon.woff2 HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Sat, 09 May 2020 10:20:16 GMT
etag: "8f7c-5a53475c0b800-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 36736
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 36732, version 1.0\012- data
Size:   36736
Md5:    e97e6acd6d5fae4dfb1b353ddf3dcf0f
Sha1:   186f523c36cdd4d80122ea6daf40106e0ce3e20d
Sha256: 0b56c2c2e69c2334a1881c975f0a1223b73447cd57a13f6b435b239a87de961e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/css/colorpalette.min.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Wed, 08 Jul 2020 05:55:56 GMT
etag: "3e89-5a9e7c2ecfd8b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 1898
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (8960), with CRLF line terminators
Size:   1898
Md5:    475de567aa0032280982829dcfc11116
Sha1:   4eceb810b11b830494dc13abff7eb578c42c2f0c
Sha256: e405a2f80f2edb9470ad0a5184108ea934d9e512a8ed7894e60d9d2388ce219b
                                        
                                            GET /assets/css/color_scheme/customcolor.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Sun, 12 Jul 2020 12:43:45 GMT
etag: "4498-5aa3decc0656d-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 3095
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (582), with CRLF line terminators
Size:   3095
Md5:    60d56c255a871ae01312cdbdf6ec1e27
Sha1:   8d986fa1d7258c73f1d6d2a043fc0bea80b88ca7
Sha256: 598057d50bdcc975d1742a5b6e8cc49575cb5394cead95b3a4d34aa94ffa97a5
                                        
                                            GET /www/fonts/montserrat.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
content-length: 196
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            POST /s/gts1d4/tkhg_zkCU7U HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/css/custom.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Wed, 29 Jul 2020 14:42:41 GMT
etag: "3fbb-5ab959162640a-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 2987
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF, LF line terminators
Size:   2987
Md5:    3f3dcde275d75ccd807e2e5e2f616812
Sha1:   e530d19c468592f6d6b2e217ca8b4b62aa6e5688
Sha256: 476ee261ef6f668eadf94cfffb6d64d227d6ccc1ee23659ab6f29835c61d94ac
                                        
                                            GET /assets/css/vendor.swiper.min.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Tue, 07 Jul 2020 09:54:09 GMT
etag: "54b2-5a9d6f907ba36-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 4187
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (21675), with no line terminators
Size:   4187
Md5:    21888b586f9fd75d444d25f8e118f5d7
Sha1:   3f92c9c4fe3cb925d4e4f78f5af3b681b3c8c9e5
Sha256: 4151ce7b54bb179dd95e4b52465aeb2e0396d1868207e9ba98f8490cb1b352c0
                                        
                                            GET /assets/css/vendor_bundle.min.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:43 GMT
etag: "99c6-5a67923a7b3c0-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 3836
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39344)
Size:   3836
Md5:    f95b5a6991b49a2d93a49c25b0507269
Sha1:   7ddba3d5c0fec9763dc37659af52ddc9a5fdb9ca
Sha256: 5c88a4b0439697d533ea190a067005a323d0a9e481b871985ebf30f8b854ed58
                                        
                                            GET /www/reiseweltklein.de/img/logo_WEB.png HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Thu, 27 Jan 2022 14:23:17 GMT
accept-ranges: bytes
content-length: 31311
cache-control: max-age=2592000, public
expires: Thu, 06 Oct 2022 21:37:36 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 250, 8-bit colormap, non-interlaced\012- data
Size:   31311
Md5:    711a7a3f67f566e53ecd8fc1b5595132
Sha1:   25768acf263514a87150855a0c840ae7b0dace32
Sha256: 7af3e62a7f231fe78212f82b0456ef2b5fdb428ee93526e65f7a932ddccd7997
                                        
                                            GET /assets/images/partnerlogos/DER_Touristik_Partner_4C.svg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Wed, 08 Jul 2020 10:57:30 GMT
etag: "11b7-5a9ebf9635a80-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 1874
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1874
Md5:    22419f55c0f2cf167b4a7e3ab34ea26d
Sha1:   167d64d34b221ee6fbc745da7d741da6a687f504
Sha256: b2512ae142a1aea026ab25487c19647bf751141cc2da51529442efbdfb3aac9a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FD80FA4739B1491CCC3362C472621741DA166AB9FC8D3E6F2B83B61C61D3E3C9"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16432
Expires: Thu, 06 Oct 2022 02:11:28 GMT
Date: Wed, 05 Oct 2022 21:37:36 GMT
Connection: keep-alive

                                        
                                            GET /latest/bundle.js HTTP/1.1 
Host: app.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.14.188
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycdvq1agQHWIA6zWns8e0RM9aLe7HNjF8x5QuxtpiNwLtIrSfZ6zbMdo15mxWbN796yFsh1gXezcq2oKXSbvx2YPd3A
x-goog-generation: 1659355771721227
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 230316
x-goog-meta-version: 2.17.0
content-encoding: gzip
x-goog-hash: crc32c=ILZ2ew==, md5=ZS70lV0KH9O1IrTyHPm0Fg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 230316
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Wed, 05 Oct 2022 11:48:17 GMT
expires: Thu, 06 Oct 2022 11:48:17 GMT
cache-control: public, max-age=86400, no-transform
age: 35359
last-modified: Mon, 01 Aug 2022 12:09:31 GMT
etag: "652ef4955d0a1fd3b522b4f21cf9b416"
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65470)
Size:   230316
Md5:    652ef4955d0a1fd3b522b4f21cf9b416
Sha1:   80ef29f0962cba31b5609e11ea2c90826b228916
Sha256: 9e1c3f1f1611295f4a746ee5a4bbd7f0e1726bf1b2d8dbcafe42b8cb2f330aa3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13510
Expires: Thu, 06 Oct 2022 01:22:46 GMT
Date: Wed, 05 Oct 2022 21:37:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13510
Expires: Thu, 06 Oct 2022 01:22:46 GMT
Date: Wed, 05 Oct 2022 21:37:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13510
Expires: Thu, 06 Oct 2022 01:22:46 GMT
Date: Wed, 05 Oct 2022 21:37:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13510
Expires: Thu, 06 Oct 2022 01:22:46 GMT
Date: Wed, 05 Oct 2022 21:37:36 GMT
Connection: keep-alive

                                        
                                            POST /s/gts1d4/tkhg_zkCU7U HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/blue-2705642_1920.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Tue, 19 Oct 2021 14:18:23 GMT
etag: "2c65d-5ceb5558f28e2"
accept-ranges: bytes
content-length: 181853
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   181853
Md5:    9cf84bd65e9f42819059d05b050f4cdb
Sha1:   3a30e6118abbd38ae32bf9dcd2bd4568b745a867
Sha256: 2277b4ab2dbe32ec3d4d4a59363a28d7c6bfb5ea25b8aa82753effd027d2a16b
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XAdxaV/0MKa3N8m8w3z7Jw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.190.4
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4iA9k1KiP5A3jKiRSPALiz5mgXw=

                                        
                                            GET /assets/js/core.min.js HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Thu, 09 Jul 2020 18:02:01 GMT
etag: "4432f-5aa0605764a50-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 64543
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65512)
Size:   64543
Md5:    21485a5c91a6e030255faa364281aa40
Sha1:   69e8f4ae330ece58c4c9dc6fa319187d907bc2bd
Sha256: af79c3c862f29c5011444e6c6a4259961c61f414202b97559225b92339095f84

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/css/core.min.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:44 GMT
etag: "50315-5a67923b6f600-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 41057
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65516)
Size:   41057
Md5:    06249bcfa64e75d0dd5d3e77f960cdd9
Sha1:   078839991c838dd732613ae7a8b4d1201aca8017
Sha256: 99fae1a53fa84932d6a5c938f27b7e776b99c7b27e3709a51f28d84ca65b9306
                                        
                                            GET /assets/js/jquery-3.4.1_plusUI.min.js HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
last-modified: Sat, 04 Jul 2020 16:32:09 GMT
etag: "53745-5a9a02ed31440-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 85178
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65450), with CRLF line terminators
Size:   85178
Md5:    d12f6a571f27f8f789cf30b5b17bfeea
Sha1:   6b61e7dbdb4fe26ca656015704e4e0270f2e3c05
Sha256: 1f278360aad59de34a97aeebd39d19149d60ccacb878ee9ebc3cbb398bd75437

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/florence-1076151_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Fri, 22 Oct 2021 14:32:32 GMT
etag: "a7a2-5cef1e1af15cd"
accept-ranges: bytes
content-length: 42914
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   42914
Md5:    c495cd81f5a6c0705828ea4cb35bd7a4
Sha1:   eb58416f33f4a81c4c63c19f0b5c5f08ed2fa805
Sha256: faba93cd3af2f7af63453df6a1dff0cff4db2497d741b1ba098b08125efcef3e
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/medical-563427_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "a07b-5e9cdac1b9435"
accept-ranges: bytes
content-length: 41083
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   41083
Md5:    1a14e9bc192ef71737e00e2659b943a3
Sha1:   b34da10383fc7cf2f7588d01f7c7f161ecd3de59
Sha256: 609b9a791933979e096a4778fdd0b046a29d58be123a66fe975951a5db751aff
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/Mietwagen_camera-1391324_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Fri, 27 Aug 2021 13:59:43 GMT
etag: "d4e5-5ca8ae5390525"
accept-ranges: bytes
content-length: 54501
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   54501
Md5:    a62681ce6032d22369be9e6edcd304b4
Sha1:   9cc14704c06f89d69474ab17d94ac43ef8f11888
Sha256: 6c425443ec0cbf396b7b07fdcea74c95702cef69f15f7305c3eeebf115afe762
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/people-2596150_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Fri, 22 Oct 2021 14:32:32 GMT
etag: "12719-5cef1e1b1b533"
accept-ranges: bytes
content-length: 75545
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   75545
Md5:    f16f4c84dd85f57da7da2951105553b2
Sha1:   23704a18bd51655be537bfee0ea8522aaf982e50
Sha256: 9a86b5df3cf9ce4152b716826490f44b161e74f46eb12f3f60f285213a70d3e8
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/guinea-pig-1969698_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1335f-5cac1e06418a1"
accept-ranges: bytes
content-length: 78687
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   78687
Md5:    192a66bef59226d6ab6b3a5097bb2d4d
Sha1:   5d4ef05d8529e310115d7ee15724985469343319
Sha256: f014df907df2ab80a94cd71c2267a0896ec6c7831308e92a3c726c8592a81eb1
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/statue-of-liberty-g91a003ec7_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "11de2-5e9cdac1c4b5e"
accept-ranges: bytes
content-length: 73186
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   73186
Md5:    73991d5ed68858c2a662504dc2183e32
Sha1:   1cedc862bb3824ea216db4591c71d5b3a0b49dc2
Sha256: 21127e3e4b00b57465d7dc43dbbb6bf6adbb931c512aa1b76d7096061556fecc
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/adult-1867588_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Fri, 22 Oct 2021 15:13:38 GMT
etag: "1227b-5cef274a65b30"
accept-ranges: bytes
content-length: 74363
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   74363
Md5:    9afa401e03694ab2e6026848686b4c7c
Sha1:   fb05abf2ad235647ff0d1ab7c46f6dd1a6dded2c
Sha256: 523fce8d4212df98896ac7ddde027ff647b0ac1b144fc828ed8f97f489b04695
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/caimari-596180_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Fri, 22 Oct 2021 15:13:38 GMT
etag: "182c2-5cef274a71223"
accept-ranges: bytes
content-length: 99010
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   99010
Md5:    9000e7e47d97463fd307024f1688a9d9
Sha1:   0de350d7c131485b994065e5191ac352b40e2c50
Sha256: ccef35059e473aaaf3129247875536267daf87429e2c27379d552fae14d329df
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/vacations-2490266_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1bd9e-5cac1e0664f6e"
accept-ranges: bytes
content-length: 114078
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   114078
Md5:    7d47e7c0e4644bdb9f6390233fa64b5d
Sha1:   309923c63deee1d97fb8dd2e70a902ee6faf7ac7
Sha256: 653e3553dd08d47e5a964311149365a582a90dfde032adaa54097e17882843f7
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/lake-louise-1761286_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "1c1bf-5e9cdac1c8868"
accept-ranges: bytes
content-length: 115135
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   115135
Md5:    ae636582e580e0d24e4fedbc84af6894
Sha1:   02040d1ef25f7ec7678ef64ba984a2236dfb0153
Sha256: 836653e3204500f3598e1bc344205a816584c96b5393cea8b4af40e74e736f7d
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/passport-6012618_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Thu, 11 Nov 2021 09:39:05 GMT
etag: "21056-5d0801d0be818"
accept-ranges: bytes
content-length: 135254
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   135254
Md5:    6c6cce06a97cb2121796d60972afafaa
Sha1:   3a66e9eb3f93e7a004adbd13405588d7b7cc3ef2
Sha256: 55c47ab26263641d379014113b867e685ab1a3747d8419ad5b07c6834ba25623
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/women-3266211_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1e453-5cac1e06691e6"
accept-ranges: bytes
content-length: 123987
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   123987
Md5:    4d620151c765ed8bdd1ddd6193f9e244
Sha1:   475c4f9ce545458df2a3c53b3f9767508d2b325d
Sha256: 3629b868912b11d754f948b8f297b7ba056e82256ee83c85fc41e401ea0dc1a6
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/agriculture-1807581_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Tue, 19 Oct 2021 14:18:23 GMT
etag: "2664f-5ceb5558eaecf"
accept-ranges: bytes
content-length: 157263
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   157263
Md5:    8c556bb1a34f481967afe8fa4cdec561
Sha1:   54608b265c37922517b49b04be63209ce2d62df5
Sha256: 4576d192a79949e88ad8c4aed21b85b980907769c4dd6e8ae55a38e0141a1c6c
                                        
                                            GET /www/_data/1025/files/BilderPool/Werbebanner-Mailings/tc_aktueller_banner.gif HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 16:09:31 GMT
etag: "775de-5e6eaca279e6a"
accept-ranges: bytes
content-length: 488926
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 2000 x 400\012- data
Size:   488926
Md5:    5d4acf5c3a2b71be434b261b76b7e6a9
Sha1:   d9e2645d08cec0a26fe80d30e973de6a4a0b7455
Sha256: 05655f50624596e80672653afde7d5ff99e5efa933bab177057a92812cb659f5
                                        
                                            GET /assets/js/vendor_bundle.min.js HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:42:21 GMT
etag: "66b1b-5a67925eb8940-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 101220
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65514)
Size:   101220
Md5:    eb1235ec9c4c6300e795fdf0be02224f
Sha1:   d3f8f421bdfc1938f6dbdd41b76b0eb01c3a0bcd
Sha256: 37fe01d6f5a8a0bcf91568940e0202f4728b966b15f2e3141d3729dce8cb2a34

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /www/fonts/montserrat.css HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
content-length: 196
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "749DC3A279168CD10D6BA15699632351007568CF12AE50BF61BF805956349687"
Last-Modified: Mon, 03 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20203
Expires: Thu, 06 Oct 2022 03:14:19 GMT
Date: Wed, 05 Oct 2022 21:37:36 GMT
Connection: keep-alive

                                        
                                            GET /pages/reisebueros/allgemein/Absenden_165281207_2.png HTTP/1.1 
Host: www.tourcontact.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         92.51.134.215
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Wed, 05 Oct 2022 21:37:36 GMT
content-length: 471
x-accel-version: 0.01
last-modified: Wed, 03 Nov 2021 10:59:56 GMT
etag: "1d7-5cfe04f71c5b2"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 30 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size:   471
Md5:    a0a50bed7bc7c699431ff21345890818
Sha1:   71506eec2db7382492f16952f157e35a454aaf47
Sha256: b0854cc18c966410630e7a28713b970e3239cb58437db24b915737d0f4c4e835
                                        
                                            GET /assets/fonts/flaticon/Flaticon.woff2 HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.reiseweltklein.de/assets/css/core.min.css
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Sat, 09 May 2020 10:20:16 GMT
etag: "8f7c-5a53475c0b800"
accept-ranges: bytes
content-length: 36732
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 36732, version 1.0\012- data
Size:   36732
Md5:    ae2dd4b29a7c28b5cc6e9364c7a69983
Sha1:   602976fc50a9aa00adc99bc2d93888db7a81d2fc
Sha256: 0ebd2de93302226f320140f8051d5cff7c3752be9700d0d598e498bbe0dde638

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/BilderPool/Destinationen/Bora-Bora/bora-bora-3023437_1920.jpg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 18 Oct 2021 11:45:32 GMT
etag: "7f1bd-5ce9f151dee32"
accept-ranges: bytes
content-length: 520637
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1281, components 3\012- data
Size:   520637
Md5:    6605ad81ec201b7ea71b338f719495f5
Sha1:   a31e4abefb2eaf7d9857901ca76745b4793d7c57
Sha256: 9df2edbeff75a306661359bb1ccd316e8febf9615315de67b02987573f30d910
                                        
                                            GET /assets/js/scripts.min.js?_=1665005856579 HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Sun, 05 Jul 2020 10:17:52 GMT
etag: "2541-5a9af1222b05b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 3166
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5449), with CRLF line terminators
Size:   3166
Md5:    1d16ebc0b3c66d6a10a2f844da041250
Sha1:   0bfc5df3e06ecc3af5ea0e5e4ec0c277d887c58f
Sha256: 7ddfb4f8b171063568c5f9d506d3777cfc061d6eff3deff43fcb5af2b6e38f11

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/js/hyphenopoly/Hyphenopoly_Loader.js?_=1665005856580 HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Sat, 18 Jul 2020 18:48:04 GMT
etag: "2936-5aabbb6b6819b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 2824
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text
Size:   2824
Md5:    ff02a0dc373adfb3ebe39af4c7eef961
Sha1:   dac0bdc76620735d11975d970215c5d70207334c
Sha256: 7cdb80f8f5dea5cabf2936d0241e5d8a4b07f1cddaa5123a0c83b764c8f2c798
                                        
                                            GET /maps/embed?pb=!1m18!1m12!1m3!1d2560.865209670515!2d7.439790615468064!3d50.070085922579956!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x47be13070beda7af%3A0x129714635a4d18ab!2sReisewelt%20Klein%20-%20Ihr%20Reiseb%C3%BCro%20in%20Kastellaun!5e0!3m2!1sde!2sde!4v1643301328753!5m2!1sde!2sde HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-J2WSLCxqaSGatWPKNOdmaA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1686
x-xss-protection: 0
server-timing: gfet4t7; dur=138
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3465)
Size:   1686
Md5:    cc8ee0f817170f47304cadaf6c385454
Sha1:   31ceb0f13b5e124a18de82fa55868807696d84d1
Sha256: 90682b80eacc3c83c71eeaa8dfef0b09766486c40eacadef4dd859ea4f9d92a1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=de&region=de&callback=onApiLoad HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.138
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56967
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
date: Wed, 05 Oct 2022 21:25:36 GMT
expires: Wed, 05 Oct 2022 21:55:36 GMT
cache-control: public, max-age=1800
age: 720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2447)
Size:   56967
Md5:    0c077379c9292b8810fd94ad890646f1
Sha1:   6a08926a278b9c469a4bab92294413cdb2adc655
Sha256: 10322efb7fd4e3670cbc937d8bbae0faf6e54b4bf092b8a1257d977eaf5706ee
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/js/vendor.swiper.min.js HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:50 GMT
etag: "22538-5a67924128380-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
content-length: 31466
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   31466
Md5:    ed605729945876db2c8be9bb08804fe7
Sha1:   afc15092fc62fe09bbca09167410dac0f69f4b2e
Sha256: a635d2fe17bba098e4d878bb51bd01c7e04655d1ace2b4164b65c9b209b14f2a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /releases/latest/css/pro-v4-font-face.min.css HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
x-amz-id-2: k3KaRweKXIxA0xKCYeCf5UV9P24XY0pZMfPFsB2YWPmVWFC5XJ7aLVDJGJuyc2Jb0mizxtGvkIM=
x-amz-request-id: 0261H8W942Y6P30A
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"1cb05a2f9541200e1fa0a2cd0abc7663"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1132
expires: Wed, 05 Oct 2022 22:07:36 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75594cad88db0b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27860)
Size:   71483
Md5:    d5b81f14b6db777c57db53e3e4c60630
Sha1:   84b9ac2b6e0e30ec6396b9ed8ec578f737a35dbf
Sha256: eccde248a7d7906211f6f064d5b22601066e4918d4b97eb85a86b01dbb3b9c1f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:37:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/android-icon-192x192.png HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
cache-control: max-age=420, private, must-revalidate
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26526), with no line terminators
Size:   8835
Md5:    00f49ad070f4c246ce3da02666df9629
Sha1:   2d5a2a88e7373411708e7dc41024468a0f81673f
Sha256: c7e0a0a9b17415b759ae82637e4de460fc1961f78a560f35ca4ed9a09c8a90fb
                                        
                                            GET /releases/latest/webfonts/pro-fa-brands-400-5.8.2.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.reiseweltklein.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
content-length: 2412
x-amz-id-2: Nu9j7eX2JiZKILmY5x5yTilFgaOvG1t5qM4ThdgPFDyR/vGkBY19U7vvVf7Lmnqkg06RUiMS/XWZPN7fnJHPZg==
x-amz-request-id: 7Z61WQ7XA2PGBMQE
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:37 GMT
etag: "714ee8de820748bab5090d91cd5b7690"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 22:07:37 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75594cae89c00b61-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 2412, version 331.-31196\012- data
Size:   2412
Md5:    714ee8de820748bab5090d91cd5b7690
Sha1:   07f4d4dfe5e3c9045f41996eb1ac8ecbbcc779bf
Sha256: 322c181b1aab5807cd0a7ed9e249ddbd97fa385ca3d338aa59ef1f610ca24601
                                        
                                            GET /releases/latest/webfonts/pro-fa-duotone-900-5.7.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.reiseweltklein.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
content-length: 10884
x-amz-id-2: suQtJBJzqRjwr2XMKnal4/AWDMZim/MxquYIv+ISLrBQ6Hm6hIDCbJk7+9A9qtFpHhCIr6PTgrCvy5G/no+xHA==
x-amz-request-id: 7Z63E8J0FAQR43YT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:39 GMT
etag: "b297f9c677379a25dab795e0546e1e07"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 22:07:37 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75594cae89b90b61-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10884, version 331.-31196\012- data
Size:   10884
Md5:    b297f9c677379a25dab795e0546e1e07
Sha1:   c0eeb3115545926ad1cb5d9b37a2fe573acf4b03
Sha256: 272922821dedf161cdf3bebb80a3353ae53e530698f4f92606e3f76b5415c158
                                        
                                            GET /images/Reisewelt-Klein/Team/Christian_Klein_Slider.jpg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
server: Apache
last-modified: Thu, 27 Jan 2022 14:46:51 GMT
etag: "35048-5d691637ccab0"
accept-ranges: bytes
content-length: 217160
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:37 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3500x1800, components 3\012- data
Size:   217160
Md5:    9810e54eaa1c84b6f920064e4291f89d
Sha1:   90ee3d5fbb147a8da63a407e52a5987aaedc1747
Sha256: cd18f9a6a709743152c1b275dadd98bad1b0d6f310f7c9cf115e7256d8b1019b
                                        
                                            GET /images/BilderPool/Landingpages/Packliste/luggage-933487_1280.jpg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
server: Apache
last-modified: Fri, 21 Jan 2022 08:42:23 GMT
etag: "4a121-5d6139900227f"
accept-ranges: bytes
content-length: 303393
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:37 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x853, components 3\012- data
Size:   303393
Md5:    8bbc34ac597d01dc8b53cf68ade9006c
Sha1:   0e5263b8ad51909d97ca952fd79030f17cd6f754
Sha256: 6770fdb346fcd254cd284af3e3ea21dfcf92429595382d350ca98c8b7a801240
                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.reiseweltklein.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
content-length: 17168
x-amz-id-2: PtjGS3VDrErj0tH87olAMzOBExpTtPoeL0k++sEB9mqkBd3IwRtZtFmtWVKj/9ACcBmMK0fPS/o=
x-amz-request-id: 7Z605RCGC1DVWB1X
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "8a43eb7db323b6a82d87a458c34cbe82"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 22:07:37 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75594cae99ca0b61-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data
Size:   17168
Md5:    8a43eb7db323b6a82d87a458c34cbe82
Sha1:   968367a39a575ffe38f1cfda07eea12eff885831
Sha256: 2bbaabc785383c5d90abc17e6703ac6a057b9644c6ebdfe9e15709c6ffac9c71
                                        
                                            GET /images/BilderPool/Reisethemen/Relax/jetty-1834801_1920.jpg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
server: Apache
last-modified: Thu, 24 Jun 2021 07:47:06 GMT
etag: "48a96-5c57e3ac51ad4"
accept-ranges: bytes
content-length: 297622
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:37 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size:   297622
Md5:    3b79d15ffab5a3bf79230f1267583e04
Sha1:   d52e852edaafb33ae8685188a9e8cdaae25a3a22
Sha256: b1b7249a0435d37be3a8b06e71afafe1f56962a9c3fd167b7b5136efdc25cd8d
                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.11.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.reiseweltklein.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
content-length: 15748
x-amz-id-2: FTcO6XvYowvCEJJHGKEKY+Qc/i2t1h8o629WVQ3ET8jWqMq9Ddh2LqEcYpuIz8cOEuBKBuC+K8Am1TMKZheBhw==
x-amz-request-id: 7Z6AR4HG6NPHK5PR
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "1894bebba876a67d0cb7cd7351ab6ae4"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 22:07:37 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75594cae99c50b61-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15748, version 331.-31196\012- data
Size:   15748
Md5:    1894bebba876a67d0cb7cd7351ab6ae4
Sha1:   0c2e2d2e73311bbd4c429e33e4e4c4036207b4b1
Sha256: ec540bd82697b5fb43f1584f25446b7d58a0cf0a51e1544b0b278a2aaa5f1e77
                                        
                                            GET /images/BilderPool/Reisethemen/Ferienwohnung/caimari-596180_1920.jpg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
server: Apache
last-modified: Fri, 05 Nov 2021 16:10:44 GMT
etag: "daaa5-5d00ce2a49b14"
accept-ranges: bytes
content-length: 895653
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:37 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1436, components 3\012- data
Size:   895653
Md5:    5a442903782bc49f02e705d518e66d74
Sha1:   1c102cf20e60fb8b2ca6ec3f8fda251ba44debc5
Sha256: 61809823524216e6b8c32a8b95e43f83e9219b87d4b7d17eb1e1783d1b59e850
                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.reiseweltklein.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
content-length: 24800
x-amz-id-2: wi0aHwK79vsdhX/7FUZRPIXGvw0Ia4PXvyRKd52U4ZjNv0k2EWxqnOg3TuZvSh3VM5Tsfi0tIlfyZ+1S/xPfTw==
x-amz-request-id: 7Z69YGGF2XCD0Y38
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:40 GMT
etag: "4abe94f1746789f39110d3ebac7ebd96"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 22:07:37 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75594cae99cb0b61-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Size:   24800
Md5:    4abe94f1746789f39110d3ebac7ebd96
Sha1:   bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
Sha256: 299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
                                        
                                            GET /images/BilderPool/Destinationen/Amerika/Karibik/beach-84561_1920.jpg HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:37 GMT
server: Apache
last-modified: Mon, 18 Oct 2021 11:40:58 GMT
etag: "6f88f-5ce9f04bd06fd"
accept-ranges: bytes
content-length: 456847
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 21:37:37 GMT
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size:   456847
Md5:    8fd800a3e7fadbbca35ab6d539913944
Sha1:   2e2203f474c4ac91e0d35233b8dcab8bff276ab1
Sha256: b0dfc834585764b5a56558718ece202683b632d369fd34cad69af47e02d55f66
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 21:37:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 21:37:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 21:37:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 21:37:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 21:37:37 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F1ZWwxLKhRC6oSh6gnUxEm5AnYcY-mezJw9mNJ8GmNWnATAKx1JxSg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:42:26 GMT
age: 82511
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8816
Md5:    100559d746bedd7c3802661c875c35ee
Sha1:   5261a6c2ee6d6cc87e91ee82e32d8be234db393e
Sha256: ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3585
x-amzn-requestid: ccb6f0c8-4d9b-48b8-aaf6-16781dc4c86b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHFlEcFoAMFS3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a5223-5c9276c873efee993ba54667;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: T8m1q2L45TWDVRBa-R2W70yq9BauBK3G4IX54AGIxdRhG736T974kg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:05:29 GMT
age: 63128
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3585
Md5:    5d7d7df8d4c440f9db445c3d99e818d6
Sha1:   612b6dbd4ba895c167964ff7e6d9263013b52b0a
Sha256: bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WWClzLGprno--c75q63i1TFi8oBEdAYW-J4lCk9V8IELQXe6q0A05A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 86103
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5832
Md5:    3257b782efae9b64e6e18a547866ec50
Sha1:   4daf0c001e86af8477fb097e8ca932edb8e5f981
Sha256: 899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 86103
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8926
Md5:    1de7c17a0ba9295135e7f8b490b6a8d3
Sha1:   70e8d1589f3daf71378965dd197934e220fb6aa4
Sha256: ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sd2_YDHr3j7ym7wfFyQh9kg8FP-Et2nJUOo1v_TNbI3PvpzEY5KJ2Q==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:07:19 GMT
age: 84618
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7021
Md5:    229c99cfb655a8c9f1a22de69fdff73c
Sha1:   6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
Sha256: f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 50885
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10158
Md5:    4fc2ddd86450d64d3fb659ab4e78be58
Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f
Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 7409
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 27005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /releases/latest/css/pro.min.css HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
x-amz-id-2: AMRPnx/gGPWzkxpEroVSLO8Pi8J0vSGXWBOtNi24DEDy+QaEMCfu0MKQ1eDa2E4MPiKMDx3QOVg=
x-amz-request-id: Q09J8QG0HPK0XNQC
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"486b13730aafe2a39cdaf1666679fa5b"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1696
expires: Wed, 05 Oct 2022 22:07:36 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75594cad88d90b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /releases/latest/css/pro-v4-shims.min.css HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
x-amz-id-2: iT8ZupnOxWpWMAKwfkDwtp9P1xcr8oXnn2QOTNUaLIoyQ5jAD2cANg1mJrCWG1nyuIiPehlhVh0=
x-amz-request-id: V9KX785VYZEKCMK4
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"715826d7cea0f100c00238e5e5dc92b4"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1122
expires: Wed, 05 Oct 2022 22:07:36 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75594cad88d60b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
date: Wed, 05 Oct 2022 21:37:35 GMT
server: Apache
set-cookie: CFID=36066654; Expires=Thu, 06-Oct-2022 21:37:35 GMT; Path=/; HttpOnly CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; Expires=Thu, 06-Oct-2022 21:37:35 GMT; Path=/; HttpOnly
cache-control: max-age=420, private, must-revalidate
expires: Thu, 06 Oct 2022 21:37:35 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/woman-4373078_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "d7f2-5cac1e06512c1"
accept-ranges: bytes
content-length: 55282
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /img/favicon-16x16.png HTTP/1.1 
Host: www.reiseweltklein.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Cookie: CFID=36066654; CFTOKEN=d353f5dcfcbacc5f-A4CEBE03-FFFE-B7C6-E0D8E8BC31A416BA; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
cache-control: max-age=420, private, must-revalidate
expires: Thu, 06 Oct 2022 21:37:36 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.reiseweltklein.de
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/Versicherungen_lifebuoy-4870836_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.reiseweltklein.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:37:36 GMT
server: Apache
last-modified: Fri, 27 Aug 2021 13:59:43 GMT
etag: "ceb2-5ca8ae539421c"
accept-ranges: bytes
content-length: 52914
X-Firefox-Spdy: h2


--- Additional Info ---