sylt-blog.de/
301 Moved Permanently 4 B IP
ASN #21499 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 0cf31b2c283ce3431794586df7b0996d
65aea98c57dcd2a1ffb0d35ca20603caaf7d9f03
1a0f564ddc6039457b2fb26b3d6a316c15eba20a886449847c3210c35821a693
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 16 Nov 2022 03:52:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.sylt-blog.de/
X-Cache-Status: MISS
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6351
Expires: Wed, 16 Nov 2022 05:38:50 GMT
Date: Wed, 16 Nov 2022 03:52:59 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 4fe5a11c3ca8a150aad830b739f24b58
898b730b1a66dd49c6f018333ba828410f63f347
2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6270
Cache-Control: max-age=116558
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 03:52:59 GMT
Etag: "63736a6b-1d7"
Expires: Thu, 17 Nov 2022 12:15:37 GMT
Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 03:44:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 507
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17681
Expires: Wed, 16 Nov 2022 08:47:40 GMT
Date: Wed, 16 Nov 2022 03:52:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gOFYFHqqHj8Gn45+2uhLp9TM42rMXfx2As++0Aly2MAS65kbENT3ppcn+BlriGGAFmwDlvp33/c=
x-amz-request-id: 7D5DPS8Y479BP3SP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 03:51:53 GMT
age: 66
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 03:52:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.sylt-blog.de/
200 OK 9.2 kB IP
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5251), with CRLF, LF line terminators
Hash 300e8139b8e7904ae965dc87809fa026
66dfd7ab37e61d23c6fb43578d1548d1140d9902
688aaa57eeb39b95b9ab6c6f0611a1e67bd7ddcab36157f13d74153f5ebfb6b9
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Cache-Status: EXPIRED
Content-Encoding: gzip
fonts.googleapis.com/css?family=Open%20Sans:400,700
200 OK 639 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open%20Sans:400,700
IP
Hash 6dc4baedd3a6a34b4800ab2056734f87
0085daa1e87ec503a28a7aeb03d74ab24b1004fe
87925a851551ae6e978f673ee9169022699d71ec3011e4a4a84d809e573d0416
GET /css?family=Open%20Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 16 Nov 2022 03:52:59 GMT
Date: Wed, 16 Nov 2022 03:52:59 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.sylt-blog.de/wp-content/themes/glamour/style.css
200 OK 11 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/style.css
IP
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (492)
Hash c8ca221ba364bfb8b0110e476a4a0fa8
7e63420bd0f3500ef15f61f3e904e9048c666d18
7a689bdc8077c5dd0cd6713d0bf3328280356d60b499bb7a3c43389fca6316e5
GET /wp-content/themes/glamour/style.css HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Mar 2013 12:56:16 GMT
ETag: W/"f7d8-4d7553b6c7c00"
X-Cache-Status: MISS
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js?ver=1.7.1
200 OK 34 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js?ver=1.7.1
IP
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js?ver=1.7.1 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33593
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 10 Nov 2022 05:58:47 GMT
Expires: Fri, 10 Nov 2023 05:58:47 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 510852
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js?ver=1.8.16
200 OK 63 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js?ver=1.8.16
IP
File type ASCII text, with very long lines (64562)
Hash 468446a7240461af44b59ebb2047c231
47b7c525dc91bece99df0c414960b9490b986ba8
ae1a0126552472d1e1347ceb8027ed725db3b93fcbc0b39745a92412cc1641a6
GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js?ver=1.8.16 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 62563
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 12 Nov 2022 03:01:24 GMT
Expires: Sun, 12 Nov 2023 03:01:24 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 348695
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
www.sylt-blog.de/wp-content/plugins/ft-calendar/includes/css/single-post-page-shorts.css?ver=4.3.30
200 OK 1.6 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/plugins/ft-calendar/includes/css/single-post-page-shorts.css?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
Hash 8d93848ff704d37b8a8c2a102fe3c6ec
eed7d408ccbb60b2db8c72250c53c04cc30fdddb
5a00d89526b666ee610a712232d9579ba55900915930640decf3de4c3d2245a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ft-calendar/includes/css/single-post-page-shorts.css?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 21 Feb 2013 06:04:29 GMT
ETag: W/"1b9d-4d635d8fe5540"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/themes/glamour/css/flexslider.css?ver=4.3.30
200 OK 1.6 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/css/flexslider.css?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (301)
Hash 72ef7294373a4989efb03e5b5a0dc79a
676299e07938c013a253b5c918d764192af320f5
309101afcbd566bf7067de461a089c901a51f85baf8f17fa0b5e7559202d70a6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/glamour/css/flexslider.css?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Feb 2013 18:10:06 GMT
ETag: W/"115b-4d617c0517b80"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/themes/glamour/css/prettyPhoto.css?ver=4.3.30
200 OK 2.8 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/css/prettyPhoto.css?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (402)
Hash 4f21ec76906e28e1c2194ea84546ed6b
85eacc0202364a6682bd58ee3f6680efc1420c7f
86534570cd150f56233dd6fb56369c299e76d93a751dc233c66d35d512a37179
GET /wp-content/themes/glamour/css/prettyPhoto.css?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Feb 2013 18:10:09 GMT
ETag: W/"4db0-4d617c07f4240"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/plugins/ft-calendar/includes/js/single-post-page-shorts.js?ver=4.3.30
200 OK 638 B URL HTTP/1.1 www.sylt-blog.de/wp-content/plugins/ft-calendar/includes/js/single-post-page-shorts.js?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
Hash 0928e67fa78ea1a87587e5e034eae71d
dee5eb0c2e3ab6b357e53a0e171ec8ee39173f2a
5214fce7d57db154aed0db98c03e1aac76b96a0f19ccbccb4cbb1b914fe68d62
GET /wp-content/plugins/ft-calendar/includes/js/single-post-page-shorts.js?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 21 Feb 2013 06:04:29 GMT
ETag: W/"9a0-4d635d8fe5540"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/themes/glamour/js/modernizr.min.js?ver=4.3.30
200 OK 5.9 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/js/modernizr.min.js?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (13875)
Hash a1868006a9f177487ccc8f60eb2bf9d1
99c143e3a6cc387f5ebc24f4e09f40422271fd07
68cf58cea86f8df5bfcbbcd6c0094684c79d22d755254de472dc62d6889f6006
GET /wp-content/themes/glamour/js/modernizr.min.js?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Feb 2013 18:11:30 GMT
ETag: W/"3682-4d617c5533880"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/themes/glamour/js/customscript.js?ver=4.3.30
200 OK 3.4 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/js/customscript.js?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (2773)
Hash 4dfdfae8330ef7cf268299876088497e
6d57aac83f55453964fdbe2d9a9d98995bbe95c6
b380b76094d8f5c194a48f2dc82b6d64816fe37b35b4f97811a10b03c978836b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/glamour/js/customscript.js?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Feb 2013 18:11:27 GMT
ETag: W/"2268-4d617c52571c0"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/themes/glamour/js/jquery.flexslider-min.js?ver=4.3.30
200 OK 5.1 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/js/jquery.flexslider-min.js?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (527)
Hash 6c91e031abe9ecff85b545c10615b556
2158fb5a212f5bb514470021fa3cc6d96b7c8dcf
41d8e1acf22ed59a2a58d3e47000b6e07f134cfe99d9e39f8f72fcf66f2eeb30
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/glamour/js/jquery.flexslider-min.js?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Feb 2013 18:11:29 GMT
ETag: W/"3ff9-4d617c543f640"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/themes/glamour/js/jquery.prettyPhoto.js?ver=4.3.30
200 OK 6.5 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/js/jquery.prettyPhoto.js?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document, ASCII text, with very long lines (3572)
Hash f7af9c06cd64640243dfc8365273b01a
40e2400074b142f8a4239ad6e70a8f68b7d79dc6
65d6f4e5a673adc80465dff1a0841040d5dbe79002ebeeb67789f30fb72f996b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/glamour/js/jquery.prettyPhoto.js?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Feb 2013 18:11:30 GMT
ETag: W/"6280-4d617c5533880"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/plugins/wp-seo-images/assets/js/admin.js?ver=4.3.30
200 OK 360 B URL HTTP/1.1 www.sylt-blog.de/wp-content/plugins/wp-seo-images/assets/js/admin.js?ver=4.3.30
IP
ASN #21499 Host Europe GmbH
Hash ac27c38590a63be03f4a6b7d2afb2f0e
0f9a0b087d4674bd2065c3c7f335c89a70b9af38
086ef6c325755f1fa35d22203f7cfd56f157a7d2cd95e3afd2cbcb45aafbed03
GET /wp-content/plugins/wp-seo-images/assets/js/admin.js?ver=4.3.30 HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 08 Mar 2013 16:26:07 GMT
ETag: W/"339-4d76c47bf45c0"
X-Cache-Status: MISS
Content-Encoding: gzip
www.sylt-blog.de/wp-content/uploads/sylt-art-festival-2013-145x100.jpg
200 OK 7.5 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/sylt-art-festival-2013-145x100.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 145x100, components 3\012- data
Hash ce3c8f4b5251e004ff01bbd879c08461
630cedfe97a784a4dd665f46a9a78dbbdd5cc8fd
0a5d93935cf94ca27168ea13df75b6506715f6c021bfdbea0a358e1d7b6a1b3f
GET /wp-content/uploads/sylt-art-festival-2013-145x100.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 7531
Connection: keep-alive
Last-Modified: Tue, 05 Mar 2013 10:07:06 GMT
ETag: "1d6b-4d72aa2c10680"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/hotel-wittenbrink-sylt-keitum-82x57.jpg
200 OK 2.6 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/hotel-wittenbrink-sylt-keitum-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash b7ade2d02fb6bc32e04a2f21df44070a
b91b51459c9f6af9a96cb9c70ce576f0409c725f
0f0e8ce50293d12d7644800a23f5c9f5c1e4fc7786d17a428312623eeec1d295
GET /wp-content/uploads/hotel-wittenbrink-sylt-keitum-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 2568
Connection: keep-alive
Last-Modified: Fri, 01 Mar 2013 14:35:51 GMT
ETag: "a08-4d6ddec837fc0"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/sylter-kunstfreunde-einladung-145x100.jpg
200 OK 12 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/sylter-kunstfreunde-einladung-145x100.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 145x100, components 3\012- data
Hash 50d06fa7b2a51252527a1f3263bd8297
07a4e92b22d9483f8d2b721f5044e0181e0d07df
ebb01fa701eb9e626d1aecd2b103b027d6f02beae648447ce30ae1ca5da5cb38
GET /wp-content/uploads/sylter-kunstfreunde-einladung-145x100.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 12159
Connection: keep-alive
Last-Modified: Fri, 01 Mar 2013 06:53:42 GMT
ETag: "2f7f-4d6d777bc8980"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/tui-dorf-hotel-kuechenchef-82x57.jpg
200 OK 3.0 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/tui-dorf-hotel-kuechenchef-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash 1b44f5471946262922b0e00ba12f3e54
bc9d036af154c10c6b50ed93fbdd41856640d9d6
494f33b17a5a881f363940f714a1de79093aa33e242b589781e34f211765e314
GET /wp-content/uploads/tui-dorf-hotel-kuechenchef-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 2976
Connection: keep-alive
Last-Modified: Sun, 10 Mar 2013 18:20:20 GMT
ETag: "ba0-4d7961be68100"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/2008/02/tuihotelrantum-82x57.jpg
200 OK 3.2 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/2008/02/tuihotelrantum-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash ae496b3aa4e5f18bedaca458343096b1
1df7fb09ef9af8a3337716c5a57d30e72b8ae475
8097876e45284bc03a0babfa3bb2de9f2a529d5e22d39614e95685e90c0f4aa9
GET /wp-content/uploads/2008/02/tuihotelrantum-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 3167
Connection: keep-alive
Last-Modified: Tue, 26 Feb 2013 15:40:18 GMT
ETag: "c5f-4d6a2797b1c80"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/p3-club-sylt-eroeffnung-145x100.jpg
200 OK 5.0 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/p3-club-sylt-eroeffnung-145x100.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 145x100, components 3\012- data
Hash 3d6d9ca572e7e3d92a12a256debf9af7
9fc2bd512a3ba0d619847a925fe3e4cfd955f402
adc1d7f1ff58ede6c45e3d5ec6ced6c22e883b2e75a594686634cb8e227a58e7
GET /wp-content/uploads/p3-club-sylt-eroeffnung-145x100.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 4970
Connection: keep-alive
Last-Modified: Sat, 09 Mar 2013 10:36:01 GMT
ETag: "136a-4d77b81888640"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/2007/04/stricker-82x57.jpg
200 OK 2.9 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/2007/04/stricker-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash 7124a352115383e4d2beb9a35d8c1aea
9f1b0d5ec632420525f06abab0cfc3d8e95c244a
d3002bd424521ecb64fe0a04473c3e84aa59f63e21d1c4a54380d2579f1f515e
GET /wp-content/uploads/2007/04/stricker-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 2868
Connection: keep-alive
Last-Modified: Tue, 26 Feb 2013 15:41:42 GMT
ETag: "b34-4d6a27e7cd980"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/lenkdrachen-verbot-sylt-82x57.jpg
200 OK 3.1 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/lenkdrachen-verbot-sylt-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash b3140720e5cae38fae963f1f06b2a28c
971ec0f4c98e1968961af903102d830922346e5f
c6fc9c00c4c37613b5da7d3346c7a91efb956eed5d7f2ec79fa21f35498a6ef2
GET /wp-content/uploads/lenkdrachen-verbot-sylt-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 3138
Connection: keep-alive
Last-Modified: Tue, 13 Aug 2013 09:02:50 GMT
ETag: "c42-4e3d0815e8280"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/PublicChill-82x57.jpg
200 OK 3.1 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/PublicChill-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash be4a5984e0158c6896e19fc791847bed
f549ca8f6ec922fcf7cf4840bfde8cd7552b2618
693c70618aa5c6a9f4c3cfff1f41dcb7224bb79c361ccf031a4328cd5bffd38d
GET /wp-content/uploads/PublicChill-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 3107
Connection: keep-alive
Last-Modified: Mon, 08 Jul 2013 17:42:55 GMT
ETag: "c23-4e103930b85c0"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/p3-sylt-bottle-night-82x57.jpg
200 OK 2.9 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/p3-sylt-bottle-night-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash 2044183167e35e19f459af1c0edc91b4
40258a415f00f5fa5d4334d948c775b32bd4fd04
d94a84160b1587004fc35895ed001a6251ac28a861be7f4448850f47f947b557
GET /wp-content/uploads/p3-sylt-bottle-night-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 2878
Connection: keep-alive
Last-Modified: Wed, 03 Apr 2013 12:30:00 GMT
ETag: "b3e-4d9740333c200"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/ostereiersuche-naturgewalten-82x57.jpg
200 OK 3.2 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/ostereiersuche-naturgewalten-82x57.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 82x57, components 3\012- data
Hash 9bdb5bddb0a895dbab43459528253e5b
d354558ec324c37a328014ab012d47d6cb1b72d9
1f077037759baced182caa78c4aef2a27102d3aa757d3cb4fc8098429ca7f200
GET /wp-content/uploads/ostereiersuche-naturgewalten-82x57.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 3181
Connection: keep-alive
Last-Modified: Fri, 29 Mar 2013 07:07:48 GMT
ETag: "c6d-4d90aedb7f900"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/themes/glamour/images/smallthumb.png
200 OK 3.9 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/images/smallthumb.png
IP
ASN #21499 Host Europe GmbH
File type PNG image data, 82 x 57, 8-bit/color RGB, non-interlaced\012- data
Hash eec95b8ae1eec0d160cf814b00a0cb74
e1691b8771ba80a2166984381abf1a2af9e47d55
1f42debffc4768f637ea937ba6b7a22da83a3a21caf9e1091fdf4f1f69e3a2e8
GET /wp-content/themes/glamour/images/smallthumb.png HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/png
Content-Length: 3935
Connection: keep-alive
Last-Modified: Tue, 19 Feb 2013 18:11:10 GMT
ETag: "f5f-4d617c4220b80"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260
301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260
Content-Type: text/plain
Server: proxygen-bolt
Date: Wed, 16 Nov 2022 03:52:59 GMT
Connection: keep-alive
Content-Length: 0
www.sylt-blog.de/wp-content/uploads/PublicChill-570x310.jpg
200 OK 44 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/PublicChill-570x310.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 570x310, components 3\012- data
Hash d08c79d0b6609df4966c6812fca6baa3
cf5a7537666921982691ee2c92581fb615beb62d
7abff685ce54e37ae6fa798e5863451a21e01f70fb1ab67a3f9b1a710768a8ea
GET /wp-content/uploads/PublicChill-570x310.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 44134
Connection: keep-alive
Last-Modified: Mon, 08 Jul 2013 17:42:55 GMT
ETag: "ac66-4e103930b85c0"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/IMG_4044-570x310.jpg
200 OK 68 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/IMG_4044-570x310.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 570x310, components 3\012- data
Hash 1cf3db17f31546e0e619e8b5854f12f4
fd4ffb1efcaa8339ed93ff60981f527433e99e91
2315f16fc28d8e12431f33c56841c0da26de37b872f440ad6e221e8cf9c31981
GET /wp-content/uploads/IMG_4044-570x310.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 67502
Connection: keep-alive
Last-Modified: Wed, 27 Mar 2013 15:12:37 GMT
ETag: "107ae-4d8e977e02340"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/lenkdrachen-verbot-sylt.jpg
200 OK 101 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/lenkdrachen-verbot-sylt.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 565x189, components 3\012- data
Size 101 kB (101151 bytes)
Hash 88424183be2a0aad9a40b6a31f249560
4ce14a32692118297bd585062019a89f1d9dbb20
d5ca2ff83f78977825f090940dd1b222933fbd90764f483d8377fb9044e5e058
GET /wp-content/uploads/lenkdrachen-verbot-sylt.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 101151
Connection: keep-alive
Last-Modified: Tue, 13 Aug 2013 09:02:50 GMT
ETag: "18b1f-4e3d0815e8280"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/themes/glamour/images/nobg.png
200 OK 2.8 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/images/nobg.png
IP
ASN #21499 Host Europe GmbH
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 69d0497e5e4883debdb9ac9e83dbcaaf
9f10907f6b70777f6c5a1ebeb63bade92c770e50
5fe68d46ebe475ae311d080bdd17e29596eaae63215d8b1da1d92e6ea4ea7a1d
GET /wp-content/themes/glamour/images/nobg.png HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/png
Content-Length: 2792
Connection: keep-alive
Last-Modified: Tue, 19 Feb 2013 18:10:29 GMT
ETag: "ae8-4d617c1b06f40"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/themes/glamour/images/greyline.png
200 OK 1.2 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/images/greyline.png
IP
ASN #21499 Host Europe GmbH
File type PNG image data, 13 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b88879e6b67adbc62522c9203a0163bc
fdaa7da0feeaf8e2eeb78376994f69641672a221
a66f7549882ef737790f862539a07104083f8b8517ada3d34dcaff85828c4ae0
GET /wp-content/themes/glamour/images/greyline.png HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/wp-content/themes/glamour/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/png
Content-Length: 1183
Connection: keep-alive
Last-Modified: Tue, 19 Feb 2013 18:10:28 GMT
ETag: "49f-4d617c1a12d00"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/themes/glamour/images/greylinespan.png
200 OK 994 B URL HTTP/1.1 www.sylt-blog.de/wp-content/themes/glamour/images/greylinespan.png
IP
ASN #21499 Host Europe GmbH
File type PNG image data, 1 x 5, 8-bit/color RGB, non-interlaced\012- data
Hash b30f5e0d770880147171ee417935b91a
7a7a321549e665bc3715ef92a35a8e8b2f073b71
870c14afa6de48bb6716151d9e03307bfe46629b47d20c084c13201f8a589e24
GET /wp-content/themes/glamour/images/greylinespan.png HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/wp-content/themes/glamour/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/png
Content-Length: 994
Connection: keep-alive
Last-Modified: Tue, 19 Feb 2013 18:10:29 GMT
ETag: "3e2-4d617c1b06f40"
X-Cache-Status: MISS
Accept-Ranges: bytes
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.sylt-blog.de
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 14 Nov 2022 21:39:56 GMT
Expires: Tue, 14 Nov 2023 21:39:56 GMT
Cache-Control: public, max-age=31536000
Age: 108783
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
www.sylt-blog.de/wp-content/uploads/syltlauf-ergebnisse-2013-570x310.jpg
200 OK 67 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/syltlauf-ergebnisse-2013-570x310.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 570x310, components 3\012- data
Hash 1e2f9db7a092f5e7b40f72ad7e69d673
7350d3177d7f94ebcda4f53998366c890fe10245
43f790e63fc2390300b40cb36ebdbe2f118e2b12195ce36ff47ceea49ad9ceec
GET /wp-content/uploads/syltlauf-ergebnisse-2013-570x310.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/jpeg
Content-Length: 67064
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2013 06:48:19 GMT
ETag: "105f8-4d82d5fc952c0"
X-Cache-Status: MISS
Accept-Ranges: bytes
platform.twitter.com/widgets.js
200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1478
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 16 Nov 2022 03:52:59 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
ocsp.digicert.com/
200 OK 471 B IP
Hash 1fa19aff1e1cd1bcb23807998ef85c43
a4c43d274ab7c17894153b771d5fe096e2142e96
e254f31055336f837930d3dbe663ff8b96129f069d67d4d8511f13f5620b5641
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2958
Cache-Control: max-age=120789
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 03:52:59 GMT
Etag: "637387e2-1d7"
Expires: Thu, 17 Nov 2022 13:26:08 GMT
Last-Modified: Tue, 15 Nov 2022 12:36:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP
File type ASCII text, with very long lines (1957)
Hash 72cb3abc6f371c69b50faa9eb6b17a45
426453fcb8a11aa62bca593a7aa81e146d3014cb
7bf4ef666c158bc409998251c0f85774ef2c501d0f630f15d0b31f94e99d74de
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 700014e1f0aec996257d55aa5c1973f5
ETag: "f28c99cd6de12e8690f04a799bfce2c6"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Wed, 16 Nov 2022 03:55:00 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: css6vG83HGm1D6qetrF6RQ==
X-FB-Debug: W2Wlu97yuJq+yiOFPEmNviNqLoQv+4ZHKYY1tx+R+hz559LU1dyU55C6Hp4dBtuND0ks1+CRG2q2Ksda5wsa6A==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Wed, 16 Nov 2022 03:52:59 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1689
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 03:44:49 GMT
cache-control: public,max-age=3600
age: 490
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.sylt-blog.de/apple-touch-icon.png
404 Not Found 27 B URL HTTP/1.1 www.sylt-blog.de/apple-touch-icon.png
IP
ASN #21499 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 8fad2e971b6b9fc49efcffadc5eefed4
b13f5258ed00144cd7e374152fa3d7cc49366216
4f2717118d68981ca019aa528932c835d983850d1380bc1268b6810a58ef4ecd
GET /apple-touch-icon.png HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Encoding: gzip
www.sylt-blog.de/favicon.ico
200 OK 0 B URL HTTP/1.1 www.sylt-blog.de/favicon.ico
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:52:59 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Connection: keep-alive
X-Cache-Status: MISS
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4a6920ac0858a3a4f000b7aefff679e1
9a1309f6ea9ca9666c36dac47e8592d7f15ff88a
b4e8c437766b33669a5673234212f518f1bf3c7da4db55ef1de8224cd7d3f2c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 03:52:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP
File type ASCII text, with very long lines (1279)
Hash 557a84e1a4b4a45f586fb72599df1ad0
78eec98dcefee53f24a6684e407c81676e7952b4
a488b14f67aa02c62eb30b758d1eb76155478e3af0b2fd78dc52de4e28ed4014
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sylt-blog.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20987
date: Wed, 16 Nov 2022 03:52:59 GMT
expires: Wed, 16 Nov 2022 03:52:59 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "c1b020d722de3a38"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=72863c33994688686201315087e6b830
200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=72863c33994688686201315087e6b830
IP
File type ASCII text, with very long lines (18605)
Hash 52219624511ef9a733d0240d40642acd
bd5cfc5e0037d9cc603fe6c07eb7d5a371cb5a86
3a72d2f2b978fa6be3bca47f4da5c401c89da12263d40c649dbe8e2f2bb7591f
GET /en_US/all.js?hash=72863c33994688686201315087e6b830 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.sylt-blog.de
Connection: keep-alive
Referer: http://www.sylt-blog.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9df449e2f0c4936b4cd8a7b19c5295df
etag: "b86886701d8726e8806bbe4b2ba028b0"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 16 Nov 2023 02:32:11 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: UiGWJFEe+acz0CQNQGQqzQ==
x-fb-debug: wBjGdfiGwOBZLlPN0b3nDBUbGKrRjYu555DMfiAFFIlX84elBfBCnpVivSndLSjDXcTZdJZJPEGGzRDOSJjoAg==
content-length: 88225
x-fb-trip-id: 2050670934
date: Wed, 16 Nov 2022 03:52:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs
200 OK 51 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs
IP
File type ASCII text, with very long lines (580)
Hash cf7ba1923d457322375044e5b1042100
25339ead949bb7b8c30b3e7eb638fc3200c8f2d6
6de820e802afec0caaf44492eb818c6eac1b2463e29bd467afa3a0d396718cd2
GET /_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sylt-blog.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 51265
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:59:14 GMT
expires: Thu, 09 Nov 2023 18:59:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 15:24:13 GMT
content-type: text/javascript; charset=UTF-8
age: 550425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1fa19aff1e1cd1bcb23807998ef85c43
a4c43d274ab7c17894153b771d5fe096e2142e96
e254f31055336f837930d3dbe663ff8b96129f069d67d4d8511f13f5620b5641
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2958
Cache-Control: max-age=120789
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 03:52:59 GMT
Etag: "637387e2-1d7"
Expires: Thu, 17 Nov 2022 13:26:08 GMT
Last-Modified: Tue, 15 Nov 2022 12:36:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9d9493125a22b98bd2ac3a1b11cc0a12
8334175b79551b1e0592f63eb606543c915983a2
a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 03:52:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.sylt-blog.de
200 OK 471 B URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.sylt-blog.de
IP
Hash de57a2d376db743a3987c454889f1f21
0defab699bdb1b158026f93c2dd105bcd65f6764
b1c47a81ac45af6f756a8eca8ef14a82f0113ea8f09dae7a285a4491963ae2ff
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.sylt-blog.de HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sylt-blog.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1143126
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 16 Nov 2022 03:52:59 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
www.facebook.com/x/oauth/status?client_id=136911316406581&input_token&origin=1&redirect_uri=http%3A%2F%2Fwww.sylt-blog.de%2F&sdk=joey&wants_cookie_data=false
200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=136911316406581&input_token&origin=1&redirect_uri=http%3A%2F%2Fwww.sylt-blog.de%2F&sdk=joey&wants_cookie_data=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=136911316406581&input_token&origin=1&redirect_uri=http%3A%2F%2Fwww.sylt-blog.de%2F&sdk=joey&wants_cookie_data=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.sylt-blog.de/
Origin: http://www.sylt-blog.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: http://www.sylt-blog.de
fb-s: unknown
fb-error-description: "This endpoint may only be called from an HTTPS Origin."
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: nTc1NuyImhbtoKKoD4L05BXeoG9qphbdIxURKEgBlMCBR+BlKgJsY72Sjk+sQaXQL7Hdj4wB6V07yTD03fosAw==
content-length: 0
date: Wed, 16 Nov 2022 03:53:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash ad56f8bc566abe5bd25efc7f2de9c6cc
66eda2ad81f756c2ca0ab6670dde6413e604069f
893b74206629f77fd6d9450bece9a71f97d4da90a31ab662be2a65a84764c154
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3330
Cache-Control: max-age=94136
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 03:53:00 GMT
Etag: "63731e52-139"
Expires: Thu, 17 Nov 2022 06:01:56 GMT
Last-Modified: Tue, 15 Nov 2022 05:06:26 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 03 Nov 2023 20:06:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: U8RJgKUtHGLUiQk9HHpA+IRcULT5qX+DuwPkFrA1TVl4/mz6+76fzZ9YDejeZlR7UxuiL1amRZ0p3hU19KekzQ==
priority: u=3,i
content-length: 827
x-fb-trip-id: 2050670934
date: Wed, 16 Nov 2022 03:53:00 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yC/l/0,cross/igAefX29xSo.css?_nc_x=Ij3Wp8lg5Kz
200 OK 4.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yC/l/0,cross/igAefX29xSo.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4431)
Hash fe41c46d6f55b8120005babec214aba7
de9efe2c23fe4571ec4e4d79715540910f1ee68c
189dd21fd4f97e754fc62a0232f135963aeee9af7728c5f916b2c1ed7c7ff031
GET /rsrc.php/v3/yC/l/0,cross/igAefX29xSo.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:45:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: /kHEbW9VuBIABbq+whSrpw==
x-fb-debug: zuqXj3/p055t8O4zG0CY8sDA8ScNMCmX1UbbwmwZxAgry2RelcxGQprjPuBTEZgOQ6bjyAsx3rc4oWXHRoJZpw==
content-length: 4792
x-fb-trip-id: 2050670934
date: Wed, 16 Nov 2022 03:53:00 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yS/r/DEaHQMKxWBP.js?_nc_x=Ij3Wp8lg5Kz
200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yS/r/DEaHQMKxWBP.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (18622)
Hash e939eadda5d7c9dd60450eb6fd816eb0
fd1b642357823cb1b21ae46e5c61a7488e203c1c
4c96ac797fe700732ccba8775a5a630eaafa1f03d81b2a2d48700fb29c3083a6
GET /rsrc.php/v3/yS/r/DEaHQMKxWBP.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:37:43 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 6Tnq3aXXyd1gRQ62/YFusA==
x-fb-debug: 7TdI8jhhqQoVsxciNzMu80GSUmNc/uvyt9Jz+UPwyzqFdzFE9DtXJYN/i0lg53jxBZaciWxa5a64NOC1wB03jQ==
content-length: 91128
x-fb-trip-id: 2050670934
date: Wed, 16 Nov 2022 03:53:00 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=3b647336e2db0abd387cd54d16715ba91e131a12
200 OK 374 B URL HTTP/2 syndication.twitter.com/settings?session_id=3b647336e2db0abd387cd54d16715ba91e131a12
IP
File type JSON data\012- , ASCII text, with very long lines (913), with no line terminators
Hash 925c2a7587f39436ea29513221652474
695b7f2f3d99f407bcdfd0b372db0e28193cc60c
62e36e14e5c219119cb51c3cdf43a2005512a1bd6ebf2d68d0c610a2e6e3ef0f
GET /settings?session_id=3b647336e2db0abd387cd54d16715ba91e131a12 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 03:52:59 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 16 Nov 2022 03:53:00 GMT
content-length: 374
content-encoding: gzip
x-transaction-id: 34e783c15a0a366b
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 109
x-connection-hash: 7203851ceb4bc7f8f17f9e04bf068596e83946c7eaed811ad55b1100dfb1154b
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (5542)
Hash 0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 02:03:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: 0xPHDYvZge8swk7JhsZ5ELIEYcud4qPBQV2E2zQxSjSHT+wOY2wY+EXO4Me6uhdgl3HPef3XHIK9yshvgmDJ/Q==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 2050670934
date: Wed, 16 Nov 2022 03:53:00 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260
200 OK 29 kB URL HTTP/2 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18423)
Hash e06323d363e1efbc94fd61489c577aba
1e8c9b051f892179bfc9b5630db144e51ee53b4d
e003a65dee6a5e12bd553c9d3007e97b14a582e8fbb6219eb1722d73e5014b3e
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fpages%2FSylt-Blog%2F341547619289054&width=292&colorscheme=light&show_faces=true&stream=false&header=false&height=260 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.sylt-blog.de/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 5AL0Mqx4OW8OUWGtERvruKJiWO5NajxOCJEEk3Lfx2F9xUPyUl8PRgOnPl1bs+F6mR0opxPxKL3US4v+70VHig==
date: Wed, 16 Nov 2022 03:53:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (42048)
Hash 3051900d03a657ddbbc9afa8ac11cdbd
557f26734897e137a6678f6d2a81672fc6a34ad2
038035ce01be57324c7e251c8834229b4910f27e3a042912fd7276947e5750df
GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:19:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: /0Pz55NIiUn/cvYU+yfhqdIUstVvGBjhB3o6xBCg6YLbu5z3E4bj/phElq/tOEXBC1yT2SO31t4LXKWfL41W7A==
content-length: 23455
x-fb-trip-id: 2050670934
date: Wed, 16 Nov 2022 03:53:00 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NZJqRXleYufB+XbkxumPCw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NepupwsecIeeq9hVrFKOVx4qibM=
www.sylt-blog.de/wp-content/uploads/lenkdrachen-verbot-sylt-120x72.jpg
200 OK 4.8 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/lenkdrachen-verbot-sylt-120x72.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x72, components 3\012- data
Hash 174d2e4f138d92b9c51f348e704c623b
96c15ba35513383c7bb3a08ced84d9a4706029a7
9da1a387a49dd3257e20e262bcce441bdbf70644f47e574b09445191f84ff9c7
GET /wp-content/uploads/lenkdrachen-verbot-sylt-120x72.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:53:00 GMT
Content-Type: image/jpeg
Content-Length: 4829
Connection: keep-alive
Last-Modified: Tue, 13 Aug 2013 09:02:50 GMT
ETag: "12dd-4e3d0815e8280"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/PublicChill-120x72.jpg
200 OK 4.5 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/PublicChill-120x72.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x72, components 3\012- data
Hash 8d2fbe6b75dd624ab628555521dcfcb0
833dc128b4489fb09dd7438d37a37d07fb5fa2f1
1ce0e1fff87d280b06cfb1a8b70e7fa2bc24bb6620529d00e2ceeae850bd6cdf
GET /wp-content/uploads/PublicChill-120x72.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:53:00 GMT
Content-Type: image/jpeg
Content-Length: 4530
Connection: keep-alive
Last-Modified: Mon, 08 Jul 2013 17:42:55 GMT
ETag: "11b2-4e103930b85c0"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/IMG_4044-120x72.jpg
200 OK 5.0 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/IMG_4044-120x72.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x72, components 3\012- data
Hash e309e43d310a4b1faaa3740c34da8d18
3f02b7bc3cda1e8ed5d90e2b637dcd0a384bb3d2
f27e61c6ff7374086376a64b267cc0f5c4e6c32da8032ffc6b3fcc46179167d4
GET /wp-content/uploads/IMG_4044-120x72.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:53:00 GMT
Content-Type: image/jpeg
Content-Length: 5045
Connection: keep-alive
Last-Modified: Wed, 27 Mar 2013 15:12:37 GMT
ETag: "13b5-4d8e977e02340"
X-Cache-Status: MISS
Accept-Ranges: bytes
www.sylt-blog.de/wp-content/uploads/syltlauf-ergebnisse-2013-120x72.jpg
200 OK 5.7 kB URL HTTP/1.1 www.sylt-blog.de/wp-content/uploads/syltlauf-ergebnisse-2013-120x72.jpg
IP
ASN #21499 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 120x72, components 3\012- data
Hash 1b9187bff4d4ab0c1b1ffe187ecddd98
8cf8fdfb58fbbcd990d3733a38e13ebb93cb64c0
068dcea1eceb44fd99d105fa9b6bcd56ac0b35688cde41013c7473d5a21e3e70
GET /wp-content/uploads/syltlauf-ergebnisse-2013-120x72.jpg HTTP/1.1
Host: www.sylt-blog.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sylt-blog.de/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Nov 2022 03:53:00 GMT
Content-Type: image/jpeg
Content-Length: 5737
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2013 06:48:19 GMT
ETag: "1669-4d82d5fc952c0"
X-Cache-Status: MISS
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11465
Expires: Wed, 16 Nov 2022 07:04:06 GMT
Date: Wed, 16 Nov 2022 03:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11465
Expires: Wed, 16 Nov 2022 07:04:06 GMT
Date: Wed, 16 Nov 2022 03:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11465
Expires: Wed, 16 Nov 2022 07:04:06 GMT
Date: Wed, 16 Nov 2022 03:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11465
Expires: Wed, 16 Nov 2022 07:04:06 GMT
Date: Wed, 16 Nov 2022 03:53:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 96b4478c098865b0d19738098db61d64
0e18a8c51596c8a4d84a142a57ffe376294833cc
9c9e433cf8f2167e4cfc3cff247eee85ebb9977e338e6e144acaea830db17c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5749
x-amzn-requestid: ee63924c-be5c-4f48-9fe0-cc2ba3f93ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bX5qxHgWoAMFiZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ca311-32c6916d41247a9b563c952f;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 07:06:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5hBm4pVThVud5Nr3ReI8uRgqhR3MVsqS4qGEcE5Wrs3pqzyMgH2CRg==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 07:47:19 GMT
age: 72342
etag: "0e18a8c51596c8a4d84a142a57ffe376294833cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fb99a77-d99a-486f-b11a-d0f855262383.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fb99a77-d99a-486f-b11a-d0f855262383.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed2eb8cd1cffa83445bfc822fff3cd95
5d6f0e9bec236755d70ac6779e86684795e5c798
6b3e294fc0977cd09c1565d5a6396a63b2ad5f7005b9f1e136c33cedae49f436
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fb99a77-d99a-486f-b11a-d0f855262383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8236
x-amzn-requestid: 74104064-6d6f-44ef-ad9f-6550971f17f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEBET6oAMF_cQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-269579cf1723940b16588c76;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vy-8T_ncnJ9GcoWYpY3JStTpjIw0BWjuagrkuoThABdT9FSq3lfVlA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:51 GMT
etag: "5d6f0e9bec236755d70ac6779e86684795e5c798"
content-type: image/jpeg
age: 21490
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc50c38bf-fe3d-4eec-be11-1e782b0f0bbc.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc50c38bf-fe3d-4eec-be11-1e782b0f0bbc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edd6a84f848a83f4d1990f92b4807def
bc2bb7815b062941d51fde65574851db55be37dc
4d015538adfa6c61a5dfca3cbb224ae91ccbe1d82212e997e22f895a77387bed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc50c38bf-fe3d-4eec-be11-1e782b0f0bbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6629
x-amzn-requestid: ff03ae40-8d00-41ec-875f-b49b1b86151c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY6CG9IoAMF8rA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740840-7fdaa40f3ca9246045270665;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Wn2txfVMcQZgjTT0ny5o_j87O-eidXenBmzitM6zJec0i40Bs1zgGQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1949caaabae48a894fcd770a3e1384f6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:05:26 GMT
age: 20855
etag: "bc2bb7815b062941d51fde65574851db55be37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b31091803f98744f4da3b311467300a7
d829c5d23a494bc901d925dd02b84c470a0de479
c1cb88b82d8b5a82019da970f812cd31e13086c2da8498a21a57e7238aa34fe8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8971
x-amzn-requestid: b5dd68c5-7146-4d31-a7fd-4ac4c474119a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnb6bGeyoAMFV9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372d9dc-2ca4003e65d69039389bc676;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 00:14:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8TqIvhJUq_yG_iMFds_btqtYsrNzoaZeIQgOP0-Kc60yuQFOPYEXRA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 09:09:33 GMT
age: 67408
etag: "d829c5d23a494bc901d925dd02b84c470a0de479"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLWa-RphwZqiAmeqffmEE8Mmfsfs9ZYz0bmANBEc5Ru1--VKDL4Fsw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:17:19 GMT
age: 20142
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98802857df59f8eacd9211811cc59ae6
87e277a627c1085cad5c6e38bdd5100aa0a9ecee
102e73f690a972da6d3ab609ffab5f29884185d85c4230a19ec74d74c7320cf1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8235
x-amzn-requestid: e8a91ec0-fa93-45b6-8dc8-a405c00242fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY4_HANoAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740839-3ebbd38b0e3e774923ad019e;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QoxGYkibw1jcAuQl98jD4TlKooUlL6ojdOVzQ7khiF0pMwY4_0IO9Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 21864
etag: "87e277a627c1085cad5c6e38bdd5100aa0a9ecee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
92.205.53.9
31.13.72.12
34.102.187.140
93.184.220.66
23.36.76.226
0.0.0.0