Report - saudiwildlife.com/wp.zip

Report Overview

Submitted URL
saudiwildlife.com/wp.zip
IP
95.216.13.243
ASN
#24940 Hetzner Online GmbH
Submitted
2023-03-20 00:56:07
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
saudiwildlife.com	unknown	2017-08-17T16:14:57Z	2023-02-24T21:06:45Z	808 B	942 B	95.216.13.243
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-26T05:09:33Z	1.4 kB	4.0 kB	54.230.80.227
transactional-api.hu-manity.co	176299	2021-03-25T13:25:13Z	2023-03-25T23:06:20Z	1.1 kB	672 B	54.155.123.247
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	52.35.90.146
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	57 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.0 kB	8.0 kB	23.33.119.27
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	2.4 kB	4.9 kB	216.58.211.3
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-26T06:22:54Z	546 B	630 B	142.250.74.74
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
www.hoellennetz.de	unknown	2014-12-10T13:24:24Z	2023-02-07T14:55:32Z	10 kB	174 kB	87.238.192.59
designer-api.hu-manity.co	167731	2021-03-25T13:25:13Z	2023-03-25T23:06:20Z	1.1 kB	54 kB	54.220.121.100
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T22:19:37Z	2.0 kB	80 kB	142.250.74.35
cdn.hu-manity.co	158732	2021-01-13T15:05:14Z	2023-03-25T23:06:13Z	371 B	625 B	82.102.27.18

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-20	medium	www.hoellennetz.de/blogs/media/office.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.hoellennetz.de/wp-content/themes/twentyfifteen/js/functions.js?ver=20221101	4.5 kB	2023-03-07	2024-01-21
Pretty URL www.hoellennetz.de/wp-content/themes/twentyfifteen/js/functions.js?ver=20221101 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2024-01-21 21:30:37 Times Seen95 Hash 494de26c2b6fd084b937f94bd829e851 a68f0a8fab82e7099b9616457feb74a88331fb1c 5f544443b752e28d7440247806d119f960d4d35acb6661e7384375119844ef94 Loading...

	www.hoellennetz.de/	102 B	2023-03-07	2024-04-18
Pretty URL www.hoellennetz.de/ IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-18 08:08:37 Times Seen6709 Hash 336b4b067dcb50351d5e2d7c92cf1631 9709109f27eaad0c5a1e50facc142f8f197a11b6 ef2f7f28db32250196ae2c8242611a7f7159c2a539dabd40b82071b1c07561c6 Loading...

	www.hoellennetz.de/	2.2 kB	2023-03-13	2023-03-26
Pretty URL www.hoellennetz.de/ IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:05:26 Last Seen2023-03-26 11:01:45 Times Seen2 Hash c69808de095892aa044a989c2864ca4a 7ed646799c9ab94bee6fef4dfc21ddb1fa493830 e94651e8cd6d219adcfbec5f44b81330b8aca6d53c516cc4dafd118734cb2db2 Loading...

	www.hoellennetz.de/wp-content/plugins/cforms2/js/cforms.js?ver=15.0.5	19 kB	2023-03-07	2024-01-25
Pretty URL www.hoellennetz.de/wp-content/plugins/cforms2/js/cforms.js?ver=15.0.5 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2024-01-25 10:49:08 Times Seen83 Hash f3c0d79c9ef719fca6542435e36b0720 d30ba551609262091a999b2f7acacc28e228cb88 6cd50024c4e2691e28016787c81b43668a9cf5214988070a4e83b9c888e87d5e Loading...

	www.hoellennetz.de/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-18
Pretty URL www.hoellennetz.de/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 13:32:29 Times Seen37992 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.hoellennetz.de/	186 B	2023-03-07	2023-04-15
Pretty URL www.hoellennetz.de/ IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2023-04-15 02:48:50 Times Seen5 Hash 68979b6a602ed6fc47b38717d4d269dd b86d2431c7519ae5bea4256dbf00b1c62978c274 386f9d8a73ec3fce12fd4c17555ef775a9f077bf03d98f9b46857d010756cff9 Loading...

	cdn.hu-manity.co/hu-banner.min.js	222 kB	2023-03-26	2023-03-26
Pretty URL cdn.hu-manity.co/hu-banner.min.js IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:01:45 Last Seen2023-03-26 11:01:45 Times Seen1 Hash b928d21dabbc7e9541a4887ea08ede6a c43b3959e3412d94bdd3fa596b4fccc19cde783e 628204522a2b2250c7eb7164e7e5f11c1382e2b365cc1e46c60ca5a7f14b5aed Loading...

	www.hoellennetz.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-18
Pretty URL www.hoellennetz.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 13:32:29 Times Seen68479 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.hoellennetz.de/wp-content/plugins/simple-mail-address-encoder/smae.js?ver=1.0.0	1.0 kB	2023-03-07	2023-06-18
Pretty URL www.hoellennetz.de/wp-content/plugins/simple-mail-address-encoder/smae.js?ver=1.0.0 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2023-06-18 09:55:35 Times Seen5 Hash bead4a6713fbc5bfcf8b3e6a9bd66fa3 06a33b9958fa02e1464ad5ac6a49be63e6e8a4f1 e6c06c20b050d59ed8339eeb7148fa9de0f0ff20313701aafec4063dec36435d Loading...

	www.hoellennetz.de/	1.4 kB	2023-03-07	2023-03-26
Pretty URL www.hoellennetz.de/ IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2023-03-26 11:01:45 Times Seen2 Hash 7b6a4223459b757c7a00aeabef8ac487 9647ab898f8d06efb60d4bdc974b8009e8abd000 62e15b75ec8a1f5903daa9b0619fee02b418f37f3c6ca2c7b773506ab3ca1414 Loading...

	www.hoellennetz.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-18
Pretty URL www.hoellennetz.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-18 12:49:19 Times Seen31776 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.hoellennetz.de/	124 B	2023-03-26	2023-03-26
Pretty URL www.hoellennetz.de/ IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:01:45 Last Seen2023-03-26 11:01:45 Times Seen1 Hash 8e138c343e2a2b31e2026934625e486c d69be64de40aa1a218000511095b4534f5592e4e b7bac47e13dc49ee340de9aff92615b467de0924d828b574cc3e5d838551a109 Loading...

	www.hoellennetz.de/	161 B	2023-03-13	2023-03-26
Pretty URL www.hoellennetz.de/ IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:05:26 Last Seen2023-03-26 11:01:45 Times Seen2 Hash 7239ed89744eaaf8411244e38789d742 61edb08adb4d5ac3dfa9e9b6922f15928c76c741 7670002d820fc1f58dfb016c13b220f700c8d9c4cab77469a26770edf74b9bab Loading...

	www.hoellennetz.de/wp-content/plugins/wp-lightbox-2/js/dist/wp-lightbox-2.min.js?ver=1.3.4.1	18 kB	2023-03-07	2024-04-15
Pretty URL www.hoellennetz.de/wp-content/plugins/wp-lightbox-2/js/dist/wp-lightbox-2.min.js?ver=1.3.4.1 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-04-15 07:08:20 Times Seen151 Hash ada6fecd1487ba4b187e662bd20fbbfe 76536585f974b30a410ba0e4e8758c74ffa32c23 7f75a55e6f2695d98f207f6634289242d8a1afe9d51b68cee2559cf16a6d96e8 Loading...

	www.hoellennetz.de/wp-content/themes/twentyfifteen/js/skip-link-focus-fix.js?ver=20141028	727 B	2023-03-07	2024-02-27
Pretty URL www.hoellennetz.de/wp-content/themes/twentyfifteen/js/skip-link-focus-fix.js?ver=20141028 IP 87.238.192.59 ASN #42730 EVANZO e-commerce GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2024-02-27 19:16:10 Times Seen389 Hash d774bf15e2e23e3a7bbb9afa92f4f0b6 9a82aa3fa1c6f0c921311b7fffe7626ffdd6bbfe c99b9b0e6f18e2095f1552d926fbb566e5cd18b3867672d84689ca97a69b9479 Loading...

HTTP Transactions (65)

URL IP Response Size

saudiwildlife.com/wp.zip

95.216.13.243

301 Moved Permanently

240 B

URL HTTP/1.1
saudiwildlife.com/wp.zip
IP
95.216.13.243:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
240 B (240 bytes)
Hash
f997f53783f8abe2da307d4ccb219990
9615f793d4f307c2d18b21793be8dc9a0d9bf513
f8d94843dcc15b5412dfbb9467d2bdfcfb0883d7beeecb8121a8eab09bb3acd7

HTTP Headers

GET /wp.zip HTTP/1.1
Host: saudiwildlife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 20 Mar 2023 00:55:56 GMT
Server: Apache
Location: https://saudiwildlife.com/wp.zip
Content-Length: 240
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15345
Expires: Mon, 20 Mar 2023 05:11:41 GMT
Date: Mon, 20 Mar 2023 00:55:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6761
Expires: Mon, 20 Mar 2023 02:48:37 GMT
Date: Mon, 20 Mar 2023 00:55:56 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 00:27:10 GMT
content-type: application/json
age: 1726
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5637
Expires: Mon, 20 Mar 2023 02:29:53 GMT
Date: Mon, 20 Mar 2023 00:55:56 GMT
Connection: keep-alive

saudiwildlife.com/wp.zip

95.216.13.243

302 Found

233 B

URL HTTP/2
saudiwildlife.com/wp.zip
IP
95.216.13.243:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
233 B (233 bytes)
Hash
fa77b8c3d20852be3df80e0668e527e0
a90e2259bbb3862251824db572581f23c2471c61
83f5f490df506f9e549f16c8c7445a1e9a0d417ab9ac76fa61d9d420b4efeadf

HTTP Headers

GET /wp.zip HTTP/1.1
Host: saudiwildlife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
location: https://www.hoellennetz.de/blogs/media/office.php
content-length: 233
content-type: text/html; charset=iso-8859-1
date: Mon, 20 Mar 2023 00:55:56 GMT
server: Apache
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: witDvG1Um80wtKKl+/EFbE353y5Hyn5Coqq1YH+OtbeNf9P/qnnygHWzhbhhWGdZNNoAqpiDa4A=
x-amz-request-id: M1QASV97VFRNJTAM
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 19 Mar 2023 23:58:29 GMT
age: 3447
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 00:55:56 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ea4e6e5c031d2f5da205f7f777e6f05f
0ade40a4663949aa1d368cbd6c43cb3482e4637b
81c47e02a5eeda44bfa8069fdabd5419cb7d5000bc7475e8928fe430fb445104

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81C47E02A5EEDA44BFA8069FDABD5419CB7D5000BC7475E8928FE430FB445104"
Last-Modified: Fri, 17 Mar 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21566
Expires: Mon, 20 Mar 2023 06:55:22 GMT
Date: Mon, 20 Mar 2023 00:55:56 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 00:17:21 GMT
age: 2316
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3462d41d9283fedf24f278089d5d1570
b8bcea77656f775cdc34620322cc616216ed2b95
55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17055
Expires: Mon, 20 Mar 2023 05:40:12 GMT
Date: Mon, 20 Mar 2023 00:55:57 GMT
Connection: keep-alive

push.services.mozilla.com/

52.35.90.146

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.35.90.146:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1rjbt82z/3BlVS76ROBIug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yiQgPlZ6usK/j69Key2t5E8BPOI=

www.hoellennetz.de/

87.238.192.59

200 OK

14 kB

URL HTTP/1.1
www.hoellennetz.de/
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11199), with CRLF, LF line terminators
Size
14 kB (13820 bytes)
Hash
bd4965ddc84ddbffa32fa328d6d0008c
5824add35c8b373b24e76174c69252ff6f0792f3
63b2ed3b3d09256a4ce7763219dc135320ed93dee7ac76ef6c047089ac947cba

HTTP Headers

GET / HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <https://www.hoellennetz.de/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 13820
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.hoellennetz.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

87.238.192.59

200 OK

12 kB

URL HTTP/1.1
www.hoellennetz.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (47826)
Size
12 kB (12518 bytes)
Hash
8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:57 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 17:51:43 GMT
ETag: "172a9-5edae3dff0a54-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12518
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-content/plugins/page-list/css/page-list.css?ver=5.3

87.238.192.59

200 OK

549 B

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/page-list/css/page-list.css?ver=5.3
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text
Size
549 B (549 bytes)
Hash
1e6767203e247baf8fe7a8a86f737446
02e62fd437d8bcf334991574acf51d6bf5810eaa
a6c78955fd064ed56f61520e3b3aaa6520f9ee377c76f24aec1fe15786e7c6f5

HTTP Headers

GET /wp-content/plugins/page-list/css/page-list.css?ver=5.3 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:33:32 GMT
ETag: "60c-5f105c7ced76f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 549
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/blogs/media/office.php

87.238.192.59

301 Moved Permanently

8.0 kB

URL HTTP/1.1
www.hoellennetz.de/blogs/media/office.php
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
data
Size
8.0 kB (7989 bytes)
Hash
db4101a8ac7ad70c0ad01acc4b3e8dda
c706325277e9c2170e71f2c1b3d7bb85a52238ca
c2e72bbe893bf77b919ab943b0cb186a91ef50ec77f26f641bd98765a9b1f50d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /blogs/media/office.php HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Mon, 20 Mar 2023 00:55:56 GMT
Server: Apache
X-Redirect-By: WordPress
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <https://www.hoellennetz.de/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age; path=/
Location: https://www.hoellennetz.de
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.hoellennetz.de/wp-content/plugins/cforms2/styling/cforms2012.css?ver=15.0.5

87.238.192.59

200 OK

1.7 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/cforms2/styling/cforms2012.css?ver=15.0.5
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text
Size
1.7 kB (1749 bytes)
Hash
e38e0b2637a20776792f20a920bc7404
5422bb31972059827edf40bd8cae4f48971be813
c35963da313dcb0ab1994f1cb5490eace353236e2a52fb2f8b59a4aad6ef7816

HTTP Headers

GET /wp-content/plugins/cforms2/styling/cforms2012.css?ver=15.0.5 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 09 Mar 2023 12:54:16 GMT
ETag: "1cab-5f6772477ded6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1749
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-content/themes/twentyfifteen/css/blocks.css?ver=20220914

87.238.192.59

200 OK

2.3 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/themes/twentyfifteen/css/blocks.css?ver=20220914
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text
Size
2.3 kB (2328 bytes)
Hash
df0a3d09604a363eebba18e2a5aca957
c9baf208b69a5c90185ecac5b4cee80fd4d1cbdf
84413115f20d04d973b85180c83f0dc6df0c2823cf08417dc39fdfc8fc802e40

HTTP Headers

GET /wp-content/themes/twentyfifteen/css/blocks.css?ver=20220914 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 14:37:44 GMT
ETag: "356c-5ee88d0825b1d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2328
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-content/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4

87.238.192.59

200 OK

1.2 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1164 bytes)
Hash
8e6b500d0b59be45dc27d14e1c296f6a
8aa028f9a19478f69c95e9558391ec101620847e
4480d270bf3c7e46669b7c746277c00ff7bb958b3b1160497ba4b92c018c67d3

HTTP Headers

GET /wp-content/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Sat, 16 Jan 2021 20:21:05 GMT
ETag: "c2b-5b90a3a7f34e6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1164
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

87.238.192.59

200 OK

4.2 kB

URL HTTP/1.1
www.hoellennetz.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Sat, 12 Dec 2020 20:18:34 GMT
ETag: "2bd8-5b64a1d0fe6ae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7b9696c5a484fe48a260ec0ac6f4c2dc
5fa72a6aae12370de4d88d0aa205f293e5a85c5b
578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.hoellennetz.de/wp-content/plugins/cforms2/js/cforms.js?ver=15.0.5

87.238.192.59

200 OK

4.4 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/cforms2/js/cforms.js?ver=15.0.5
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
HTML document, ASCII text
Size
4.4 kB (4365 bytes)
Hash
51d2469d40f0bb311df73159811fbcee
c951a5b4dab034da170c607b82d0b5d5093be387
9a07d47c7066015175ed13172a2c68422d39774421d6b4d117e402f68ce6702e

HTTP Headers

GET /wp-content/plugins/cforms2/js/cforms.js?ver=15.0.5 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 09 Mar 2023 12:54:16 GMT
ETag: "4af3-5f6772476b5f6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4365
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-content/plugins/simple-mail-address-encoder/smae.js?ver=1.0.0

87.238.192.59

200 OK

503 B

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/simple-mail-address-encoder/smae.js?ver=1.0.0
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
503 B (503 bytes)
Hash
918ca2b36f66fc20ee1d1c00b1411a95
bb4f985085f436816268d5e79fd8d6cb9deb5f27
2cfb8ac3404cd4122f8d8c0d68f4c571f0bf82088554f0c93ad4cd2588357fdc

HTTP Headers

GET /wp-content/plugins/simple-mail-address-encoder/smae.js?ver=1.0.0 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Fri, 25 Oct 2019 16:08:21 GMT
ETag: "415-595be5be7917c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 503
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-content/themes/twentyfifteen/genericons/genericons.css?ver=20201026

87.238.192.59

200 OK

17 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/themes/twentyfifteen/genericons/genericons.css?ver=20201026
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (19226)
Size
17 kB (16581 bytes)
Hash
762263ade49de47ecefe73b7b9f178c0
9e27a38f633fe803b1b19f19d17fb353c95b7a72
c17754c35a65fdd4d8c77a73c4fe5eeea2422b7c330cdeab6bf212b03efbe7f1

HTTP Headers

GET /wp-content/themes/twentyfifteen/genericons/genericons.css?ver=20201026 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 14:37:44 GMT
ETag: "6b80-5ee88d08141dd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 16581
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-content/themes/twentyfifteen/style.css?ver=20221101

87.238.192.59

200 OK

14 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/themes/twentyfifteen/style.css?ver=20221101
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (403)
Size
14 kB (14351 bytes)
Hash
dd01561106910d757d138493c7033c10
7ca095b0c1c1de621a459ff8f3fee96a2ddca9f8
941e68258f179c6965952a60e8354e97bc5dd371063befb99b5147143bca9aa2

HTTP Headers

GET /wp-content/themes/twentyfifteen/style.css?ver=20221101 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 14:37:44 GMT
ETag: "18581-5ee88d08289fd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 14351
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

87.238.192.59

200 OK

31 kB

URL HTTP/1.1
www.hoellennetz.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (65447)
Size
31 kB (30995 bytes)
Hash
1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 17:51:42 GMT
ETag: "15e54-5edae3dee5119-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 30995
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-content/themes/twentyfifteen/js/skip-link-focus-fix.js?ver=20141028

87.238.192.59

200 OK

445 B

URL HTTP/1.1
www.hoellennetz.de/wp-content/themes/twentyfifteen/js/skip-link-focus-fix.js?ver=20141028
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text
Size
445 B (445 bytes)
Hash
e0ba9e2214f9bd5260223ed05a3f7b3e
64fcba18103bb87a27ed50447f675fbc19ebdf08
e364f0ec3f498066567784e4936e5e01a241199b87aaf0ddfef9bbae87ef8cb0

HTTP Headers

GET /wp-content/themes/twentyfifteen/js/skip-link-focus-fix.js?ver=20141028 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 14:37:44 GMT
ETag: "2d7-5ee88d081edbd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 445
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-content/plugins/wp-lightbox-2/js/dist/wp-lightbox-2.min.js?ver=1.3.4.1

87.238.192.59

200 OK

4.9 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/wp-lightbox-2/js/dist/wp-lightbox-2.min.js?ver=1.3.4.1
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (17750)
Size
4.9 kB (4871 bytes)
Hash
73923ebdb45aec8191ba7010ea7cb0c7
1b2790bb9fa13294cf220d13a1852bd9e7b4b553
f106e90e1f82226c29a8c7306d70f47b15a7d73f920cdd4e64d04ccdd3fb9bb2

HTTP Headers

GET /wp-content/plugins/wp-lightbox-2/js/dist/wp-lightbox-2.min.js?ver=1.3.4.1 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Sat, 16 Jan 2021 20:21:05 GMT
ETag: "4557-5b90a3a7ed726-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4871
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-content/themes/twentyfifteen/js/functions.js?ver=20221101

87.238.192.59

200 OK

1.6 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/themes/twentyfifteen/js/functions.js?ver=20221101
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text
Size
1.6 kB (1584 bytes)
Hash
48a4b544c4da663f567bf9982eb24734
3bdf40f10997de6b2a4036e5bccdf3c8c1dc95db
6f01ab6be3b076bfd92c651eb502d70184280269692205894d3590dbacf211a4

HTTP Headers

GET /wp-content/themes/twentyfifteen/js/functions.js?ver=20221101 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 14:37:44 GMT
ETag: "117a-5ee88d081edbd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1584
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

87.238.192.59

200 OK

5.0 kB

URL HTTP/1.1
www.hoellennetz.de/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text, with very long lines (15660)
Size
5.0 kB (5009 bytes)
Hash
e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 16:01:58 GMT
ETag: "48b9-5dfd83166fd26-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.hoellennetz.de/wp-content/plugins/cforms2/cforms-common.css

87.238.192.59

200 OK

320 B

URL HTTP/1.1
www.hoellennetz.de/wp-content/plugins/cforms2/cforms-common.css
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
ASCII text
Size
320 B (320 bytes)
Hash
88e5ff377c1e312e46b0e299dae013c9
04392a0e00599e2ac9c958e016033e03ff9ece36
4d432aeeb9e9532b01a4ccf80305c00a34b8969b244f319e1c4a591c416e8c87

HTTP Headers

GET /wp-content/plugins/cforms2/cforms-common.css HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/wp-content/plugins/cforms2/styling/cforms2012.css?ver=15.0.5
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 09 Mar 2023 12:54:16 GMT
ETag: "31a-5f67724777176-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 320
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.hoellennetz.de/wp-content/uploads/2016/03/cropped-cropped-Hoelle1957-2.jpg

87.238.192.59

200 OK

18 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/uploads/2016/03/cropped-cropped-Hoelle1957-2.jpg
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 248x248, components 3\012- data
Size
18 kB (18421 bytes)
Hash
22504b6a702ed84112233729e8bf65cb
040d1627547b29dd0c07b0aebce14f83da9fff6a
5f85518dd343811980a32c310b6d678e8227f793b8b60996ef1c09487c0a4474

HTTP Headers

GET /wp-content/uploads/2016/03/cropped-cropped-Hoelle1957-2.jpg HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Tue, 28 Feb 2017 20:46:56 GMT
ETag: "47f5-5499d4bebf000"
Accept-Ranges: bytes
Content-Length: 18421
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7b9696c5a484fe48a260ec0ac6f4c2dc
5fa72a6aae12370de4d88d0aa205f293e5a85c5b
578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.hoellennetz.de/wp-content/uploads/2016/03/Kanzelfels1968-3-1.jpg

87.238.192.59

200 OK

6.5 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/uploads/2016/03/Kanzelfels1968-3-1.jpg
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 324x200, components 3\012- data
Size
6.5 kB (6450 bytes)
Hash
0b8d23d9d4db8db3fc757c0f7f670c98
0ed5dbbe913516b684d5051c75fd4f89cd5c10c3
7445f01bcb010b8c274c2f83261153d4047b663d3ec4131c8b9988be258afea5

HTTP Headers

GET /wp-content/uploads/2016/03/Kanzelfels1968-3-1.jpg HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 24 Mar 2016 20:02:12 GMT
ETag: "1932-52ed0ec0e7900"
Accept-Ranges: bytes
Content-Length: 6450
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d0da7b1e6ba6b6f1c8504d507c82cf32
f30cb07a001da38072b711557bfb18b35aade5c4
18c9a3cbf3b84de5d5e903d3d5a2cb2c34393cca05b396bb2a0835a23a6fe8e0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127777
Date: Mon, 20 Mar 2023 00:55:58 GMT
Etag: "6416e740-1d7"
Expires: Tue, 21 Mar 2023 12:25:35 GMT
Last-Modified: Sun, 19 Mar 2023 10:43:12 GMT
Server: ECAcc (nya/1C5E)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BuG1cWTxXHD9CYmLSlyDuy0Bdr_2ZCCFOG0yrSpsJ_BstcRpx5htLA==
Age: 6143

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d0da7b1e6ba6b6f1c8504d507c82cf32
f30cb07a001da38072b711557bfb18b35aade5c4
18c9a3cbf3b84de5d5e903d3d5a2cb2c34393cca05b396bb2a0835a23a6fe8e0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127256
Date: Mon, 20 Mar 2023 00:55:58 GMT
Etag: "6416e740-1d7"
Expires: Tue, 21 Mar 2023 12:16:54 GMT
Last-Modified: Sun, 19 Mar 2023 10:43:12 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3bdHt8jTVTa7ehzGO8K_6auodal_rlw5hkMmDpFxlbN5Kx6QId17CA==
Age: 5623

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e29b118983e32d73a1cf48f321d61975
6ab37268d32c4515d421c8f2d6aac5f01d3ca073
87d25c7aea7e5d01b7b585c72c7f55ebb9755b61da7f38d64a09769059fd5b20

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 20 Mar 2023 00:55:58 GMT
Last-Modified: Sun, 19 Mar 2023 23:41:08 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n_GTr6PlD7oF4UbQP4y0yLvBdkv8AC7Vw-Z8Zq1HF4VuNeVWCTqAzw==
Age: 4490

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e29b118983e32d73a1cf48f321d61975
6ab37268d32c4515d421c8f2d6aac5f01d3ca073
87d25c7aea7e5d01b7b585c72c7f55ebb9755b61da7f38d64a09769059fd5b20

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92242
Date: Mon, 20 Mar 2023 00:55:58 GMT
Etag: "641661b6-1d7"
Expires: Tue, 21 Mar 2023 02:33:20 GMT
Last-Modified: Sun, 19 Mar 2023 01:13:26 GMT
Server: ECAcc (nya/7919)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n7ZVoeZCMJlX-MtbtWdhbsZY_II6leiFJN5WhbRuUJ21WZ7okA6g6w==
Age: 4794

transactional-api.hu-manity.co/api/transactional/session/save

54.155.123.247

204 No Content

0 B

URL HTTP/2
transactional-api.hu-manity.co/api/transactional/session/save
IP
54.155.123.247:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/transactional/session/save HTTP/1.1
Host: transactional-api.hu-manity.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-api-key
Referer: https://www.hoellennetz.de/
Origin: https://www.hoellennetz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 204 No Content
date: Mon, 20 Mar 2023 00:55:58 GMT
server: nginx
x-powered-by: Express
x-request-id: 8ad64d9a-dcca-4eba-98cc-98f12e200be6
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,OPTIONS,PATCH,POST,DELETE
access-control-allow-headers: *
X-Firefox-Spdy: h2

designer-api.hu-manity.co/api/designer/user-design-live?AppID=wwwhoellennetzde-fdc4588

54.220.121.100

204 No Content

0 B

URL HTTP/2
designer-api.hu-manity.co/api/designer/user-design-live?AppID=wwwhoellennetzde-fdc4588
IP
54.220.121.100:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/designer/user-design-live?AppID=wwwhoellennetzde-fdc4588 HTTP/1.1
Host: designer-api.hu-manity.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-api-key
Referer: https://www.hoellennetz.de/
Origin: https://www.hoellennetz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 204 No Content
date: Mon, 20 Mar 2023 00:55:58 GMT
server: nginx/1.22.0
x-powered-by: Express
x-request-id: 4d466128-e413-46a1-ac06-bf1a32aee0c7
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,OPTIONS,PATCH,POST,DELETE
access-control-allow-headers: *
X-Firefox-Spdy: h2

transactional-api.hu-manity.co/api/transactional/session/save

54.155.123.247

200 OK

64 B

URL HTTP/2
transactional-api.hu-manity.co/api/transactional/session/save
IP
54.155.123.247:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
64 B (64 bytes)
Hash
1949508bdcc8ea012a38751b5dcb6753
6a4a24c15d7ae4de765e0e76839a1f7146a5da0d
f37982dbd1ac02d4380903d8d637117a292100ef19402c60d22aa0db5f7dc0f6

HTTP Headers

POST /api/transactional/session/save HTTP/1.1
Host: transactional-api.hu-manity.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hoellennetz.de/
Content-Type: application/json; charset=utf-8
x-api-key: hudft60djisdusdjwek
Origin: https://www.hoellennetz.de
Content-Length: 239
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:55:58 GMT
content-type: application/json; charset=utf-8
content-length: 64
server: nginx
x-powered-by: Express
x-request-id: ff40161e-05c5-4c77-9b23-84eaeef4b9e0
access-control-allow-origin: *
etag: W/"40-akokwV165N52Xg52g5ofcUal2g0"
X-Firefox-Spdy: h2

designer-api.hu-manity.co/api/designer/user-design-live?AppID=wwwhoellennetzde-fdc4588

54.220.121.100

200 OK

53 kB

URL HTTP/2
designer-api.hu-manity.co/api/designer/user-design-live?AppID=wwwhoellennetzde-fdc4588
IP
54.220.121.100:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (52821), with no line terminators
Size
53 kB (52876 bytes)
Hash
1d208bbf1b31ad6f263ec96c17f01bd0
55d798220dc55db52bd602051ba9739ef89cb373
2c9a0e09988911f79e478f7a49beac7c78335834e513a273c30a2d706a685746

HTTP Headers

GET /api/designer/user-design-live?AppID=wwwhoellennetzde-fdc4588 HTTP/1.1
Host: designer-api.hu-manity.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hoellennetz.de/
Content-Type: application/json; charset=utf-8
x-api-key: hudft60djisdusdjwek
Origin: https://www.hoellennetz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:55:58 GMT
content-type: application/json; charset=utf-8
content-length: 52876
server: nginx/1.22.0
x-powered-by: Express
x-request-id: 496a8e6a-0baf-4284-bbbc-f73d7a848c74
access-control-allow-origin: *
etag: W/"ce8c-VdeYIg3FXbUr1gIFG6lznvics3M"
X-Firefox-Spdy: h2

www.hoellennetz.de/wp-content/uploads/2016/03/cropped-Hoelle1957-2-192x192.jpg

87.238.192.59

200 OK

16 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/uploads/2016/03/cropped-Hoelle1957-2-192x192.jpg
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 192x192, components 3\012- data
Size
16 kB (16335 bytes)
Hash
b9e039a21e752b2643d1e13e40910911
f2fb504724eb34b1e86c7f46096f27ee968eee48
fef56100c3644ef746263428bb8e7fa9b2f43830f6810e8b67ac3b0b724ad8a2

HTTP Headers

GET /wp-content/uploads/2016/03/cropped-Hoelle1957-2-192x192.jpg HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2016 19:35:00 GMT
ETag: "3fcf-52e43b9e48100"
Accept-Ranges: bytes
Content-Length: 16335
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.hoellennetz.de/wp-content/uploads/2016/03/cropped-Hoelle1957-2-32x32.jpg

87.238.192.59

200 OK

1.3 kB

URL HTTP/1.1
www.hoellennetz.de/wp-content/uploads/2016/03/cropped-Hoelle1957-2-32x32.jpg
IP
87.238.192.59:0
ASN
#42730 EVANZO e-commerce GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 32x32, components 3\012- data
Size
1.3 kB (1274 bytes)
Hash
5d6ce8bb163a641c2b0f30456ae397ff
facc8f5e872bc151d023b1374a15b8221ade9ef9
e6b24fe796ffbd9affeb43f396861be7bd4c087ade0ef3efce1c4940ffd9d52e

HTTP Headers

GET /wp-content/uploads/2016/03/cropped-Hoelle1957-2-32x32.jpg HTTP/1.1
Host: www.hoellennetz.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Cookie: PHPSESSID=3g72v7d82v7sfe4ei3v8cf0age
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 20 Mar 2023 00:55:58 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2016 19:35:00 GMT
ETag: "4fa-52e43b9e48100"
Accept-Ranges: bytes
Content-Length: 1274
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2

142.250.74.35

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23948, version 1.0\012- data
Size
24 kB (23948 bytes)
Hash
aeb92e524ca62170347fa63974605767
1e10bfbd720481e42035a5469d7ce8fc51d34aab
25475d82cc976fb2c71b15b3e416c22bf636dd247bbb268d312e7c076ec5b6e4

HTTP Headers

GET /s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hoellennetz.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:35:21 GMT
expires: Fri, 15 Mar 2024 17:35:21 GMT
cache-control: public, max-age=31536000
age: 285637
last-modified: Mon, 09 May 2022 19:47:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2

142.250.74.35

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Size
13 kB (12860 bytes)
Hash
ab21c24efd75543e16e34807ebc6cdec
eb2562f9729079333fbcbbe94868695669dd3301
88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265

HTTP Headers

GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hoellennetz.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 21:13:06 GMT
expires: Fri, 15 Mar 2024 21:13:06 GMT
cache-control: public, max-age=31536000
age: 272572
last-modified: Mon, 09 May 2022 18:27:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2

142.250.74.35

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Size
13 kB (12684 bytes)
Hash
0c235386bcf6af06f67e6c89fd19e434
10720574d4609322023984a761f32f9518c07bc4
c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac

HTTP Headers

GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hoellennetz.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 17:33:10 GMT
expires: Thu, 14 Mar 2024 17:33:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:28:04 GMT
content-type: font/woff2
age: 372168
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2

142.250.74.35

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 27456, version 1.0\012- data
Size
28 kB (27456 bytes)
Hash
80becb8b7638756b35eebf31518f8904
ba154f44545a98796887a9b5cfd84d765d3d0c05
a0a9ce1553fa74dad4d8cf55b7df7d012a3acdec01cd39d682fce0e5b52e99f2

HTTP Headers

GET /s/notoserif/v21/ga6Law1J5X9T9RW6j9bNdOwzfReecQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hoellennetz.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 13:04:44 GMT
expires: Fri, 15 Mar 2024 13:04:44 GMT
cache-control: public, max-age=31536000
age: 301874
last-modified: Mon, 09 May 2022 20:10:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4391
Expires: Mon, 20 Mar 2023 02:09:09 GMT
Date: Mon, 20 Mar 2023 00:55:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4391
Expires: Mon, 20 Mar 2023 02:09:09 GMT
Date: Mon, 20 Mar 2023 00:55:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4391
Expires: Mon, 20 Mar 2023 02:09:09 GMT
Date: Mon, 20 Mar 2023 00:55:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4391
Expires: Mon, 20 Mar 2023 02:09:09 GMT
Date: Mon, 20 Mar 2023 00:55:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec950311-4d8e-4168-aaf2-bb3ec1701f40.webp

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec950311-4d8e-4168-aaf2-bb3ec1701f40.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10600 bytes)
Hash
384832933b06f9caf6c2a78c60dd9b36
f23894adaad55d264d8dd12cba30779b204a9c6f
b849d2d24fb5013ec4fe4dfa3431eb7ddf739a02dfbf030a02c82faf1bf33873

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec950311-4d8e-4168-aaf2-bb3ec1701f40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10600
x-amzn-requestid: 2b110ce0-9298-41c8-b33f-25498982aa3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDED_EgJIAMF7Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417807f-0b09e5af57af784d7f396dce;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: F2EDdVgAo42ExUX3RnB29BcuK02K2YCXGBq6BUF_HnaQApld_-hR1g==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 a3b5bb90516201e5ddd137696b7b0f50.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:37:21 GMT
age: 11917
etag: "f23894adaad55d264d8dd12cba30779b204a9c6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38bb12d7-f954-4d00-8df4-529b55100544.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6608 bytes)
Hash
8f5a12c7beb240250d70bf6049cdd80f
7d44ba70f3e2ed0efeb22312550a49f2eb3d8857
077bb80f575533f541b809cc99fab53278c161be6077cceef77d6fd649f274e4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38bb12d7-f954-4d00-8df4-529b55100544.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6608
x-amzn-requestid: c996ce16-31c3-4019-8b10-c10e6bcfd1b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDFZyGKrIAMF-dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641782a4-1f5079bd367eee3967348203;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:46:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: omN7GTv6uStX0wpgVajZZHuQj88ssOT9kRpNpZAFafkDhM8hyCqRcA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:10:18 GMT
age: 9940
etag: "7d44ba70f3e2ed0efeb22312550a49f2eb3d8857"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10338 bytes)
Hash
78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 04:25:44 GMT
age: 73814
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11b9c000-8304-4b46-b5c2-572e5a9ac294.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7627 bytes)
Hash
7b8d564e57c415adf4736684c271dab1
cee94b98882ac041c7863d9f4c7ac8f216288759
803908f441ff44a4925c5ac411399ac61365160880cda2ef10962584103189dd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11b9c000-8304-4b46-b5c2-572e5a9ac294.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7627
x-amzn-requestid: 747a6f33-8cb6-42e5-9b2d-b1d9712131f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDneEqVoAMFaVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177fc9-7ee25a494fdc9d3902fa1dd0;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:34:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oAriFKiFexpvefiqshsNWiAiw6ahPOQmCqFxC2bFxGW5oyof7zH3Yw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:05:41 GMT
age: 10217
etag: "cee94b98882ac041c7863d9f4c7ac8f216288759"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7695 bytes)
Hash
302595cc68fe8cf12121d0f652b3194d
e5532a3fed552246e8a63ea2ba75e174273a7b9f
6ca3599a9af06f51d4dc205d4ebd8f7f8b38c54864b6b478eac8c0d1adbc97c6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7695
x-amzn-requestid: 1009077b-14aa-42e5-86f1-de94b8b2aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDETIHf8oAMFxEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641780e0-07bbb0376f1c1941731e00ba;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: v9Nl9e72FJH0vW19kOEzsw_ibM-64AdrJlcg7sFRiOWKDDZoHJYbjA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:49:05 GMT
age: 11213
etag: "e5532a3fed552246e8a63ea2ba75e174273a7b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0c897fb-8d64-4bea-a5eb-b6e8e9664b8c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7478 bytes)
Hash
39d4beedd22f0421e30ea9c60efa1b90
f48e2d47d9b2db12b608a3483965d1a7f76b3181
a5f0358d06557afcc58d11c5fe3e348c9a53c35c9da6b8b3ac6f4dc00c500013

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0c897fb-8d64-4bea-a5eb-b6e8e9664b8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7478
x-amzn-requestid: 3a3dd7e9-51b4-419f-b3a9-b999edd7fde0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bz5PEH1vIAMF1Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64116f2c-204dcd321175026408202e14;Sampled=0
x-amzn-remapped-date: Wed, 15 Mar 2023 07:09:32 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: VQHINER0Jos78hYPGLT4FVz_JKp27j6Z--eLjgGICJtwxSC95lZwhQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 20:44:55 GMT
age: 15063
etag: "f48e2d47d9b2db12b608a3483965d1a7f76b3181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext&display=fallback

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext&display=fallback
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 20 Mar 2023 00:55:58 GMT
date: Mon, 20 Mar 2023 00:55:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.hu-manity.co/hu-banner.min.js

82.102.27.18

200 OK

0 B

URL HTTP/2
cdn.hu-manity.co/hu-banner.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /hu-banner.min.js HTTP/1.1
Host: cdn.hu-manity.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hoellennetz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: keycdn-engine
date: Mon, 20 Mar 2023 00:55:58 GMT
content-type: application/javascript
x-amz-id-2: z3OcTXRPmPfWGEF/98ef5Mp+l1wR7xPla7tLRBfnPBDTn5sp++BD//x7HF8r1crpKbhAKRu8lLs=
x-amz-request-id: RRDVTDPHGWMKZ55Z
last-modified: Thu, 16 Mar 2023 17:59:49 GMT
etag: W/"b928d21dabbc7e9541a4887ea08ede6a"
expires: Mon, 20 Mar 2023 01:55:58 GMT
cache-control: max-age=3600
content-encoding: gzip
link: <http://ert-banner.s3-website-eu-west-1.amazonaws.com/hu-banner.min.js>; rel="canonical"
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML