hexload.com/ds2/img/Hexupload_White_Header_Logo.png?v=1
172.67.136.244200 OK 5.2 kB URL GET HTTP/3 hexload.com/ds2/img/Hexupload_White_Header_Logo.png?v=1
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type PNG image data, 182 x 30, 8-bit/color RGBA, non-interlaced
Hash 16eaccfaae8fe78f3f5ab9cd80fcb24e
3cbeb8de5d1c07b9bc8f5d1bb3b5bf8df4d8cb7b
0f736697729d3e00e3d53bae48f8002f022965f6ab271efb216f1d3dff6cc901
GET /ds2/img/Hexupload_White_Header_Logo.png?v=1 HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: image/png
content-length: 5170
last-modified: Fri, 19 Mar 2021 16:54:14 GMT
etag: "1432-5bde690dbb980"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y4xvpu6%2FCx9QaO2FMDcgjN3UXCH3M17QMHrcr01xGIx5pEIwE9d7VNQJphiyqe6qDbkYAmAejocJleMkmBoOKQN%2FlsTtkiFUDIcWHOwjUfUtXt6rh7j5tVPHJ1O11w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe456ec856ca-OSL
alt-svc: h3=":443"; ma=86400
hexload.com/assets/img/safari.png
172.67.136.244200 OK 14 kB URL GET HTTP/3 hexload.com/assets/img/safari.png
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
Hash d677456ce3246845517e9d7fdfbf5a40
99b6b5f34e2e985beb5dac8da27e25903b8bc324
3afd7ba3d6eb6b7271bf03d6c91b18a5e88990ae1fc2c0bd4147a5f043fccc69
GET /assets/img/safari.png HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: image/png
content-length: 13594
last-modified: Fri, 15 Mar 2024 14:43:36 GMT
etag: "351a-613b408699755"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 1860
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LCiSjkCzoU%2Fgf3DVnVEKF2R93svEcytaWqE%2FLLNMF2kEL0ljgdilCrJBHbhLnNfT7U69fyZVpwexRbDi3ETnyJHaJyLC0LjKUqmbGc%2BRgp1Hz5ZHb1nAoVuoub%2B4Ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe456ed356ca-OSL
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/img/Hexupload_Black_Footer_Logo.png
172.67.136.244200 OK 4.9 kB URL GET HTTP/3 hexload.com/ds2/img/Hexupload_Black_Footer_Logo.png
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type PNG image data, 182 x 30, 8-bit/color RGBA, non-interlaced
Hash 9209c73887c21719956d9ce24ca32a8e
fa14ef3dfdd97dc91478d30f507a05340fe7fc9c
ac1d2aca95a95de73ca5f408cbeb98cb9c6411da2e5f379a0d89a875a115361e
GET /ds2/img/Hexupload_Black_Footer_Logo.png HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: image/png
content-length: 4938
last-modified: Fri, 19 Mar 2021 16:48:52 GMT
etag: "134a-5bde67daa6500"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1io9UM8g%2BPMCeUQ3%2BCbfbuIzC3yM3wja7fqr62x85M%2Bc0w1K4HtnTNAwYq%2FAFM9NqDy8RxGUAF79mQ1xU7bT051o313an9eeIyZeHlyPoHnZig9VC4f3C9zKiyhQQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe457ede56ca-OSL
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
104.17.25.14200 OK 6.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP 104.17.25.14:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20831)
Hash 56456db9d72a4b380ed3cb63095e6022
6dbce88aee15b42f29083df7a07513cf3b486ba0
66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 63259
expires: Tue, 15 Apr 2025 14:23:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pM4HZTYsqelchcgfPIfe6zwYf%2F8XoiNBOum%2BQy7wiveBQElXYPiWVN%2F5o9iMUm4iWMje4KLTjXxTwAzp%2BOS1pHzSuKCHzRIN7tIyIHVyjwEsIg5%2F4peiprgEH%2BakVf5yi7Juo2vY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879efe45a936569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-120931509-1
142.250.74.168200 OK 74 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-120931509-1
IP 142.250.74.168:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (4179)
Hash 68b27c4058aede057c345c036f1fee68
8636d67e58d5c4e95689bbc72d462f1cacc478f2
69238084ca1b8c66307b3b454eb47cc59fc047f0241e04c611ca55c5fbb88548
GET /gtag/js?id=UA-120931509-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:23:50 GMT
expires: Thu, 25 Apr 2024 14:23:50 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-94BPVYM7D3
142.250.74.168200 OK 100 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-94BPVYM7D3
IP 142.250.74.168:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File type JavaScript source, ASCII text, with very long lines (4179)
Hash d6392cedd8a9d52e5a6eada1ac77adfb
f5ed8250bfd268783446f8243e49a2ebdaa70013
33b8582c5741134a76f8cdb3ceb9ba679ffdaee64fa2f7e3b99f54d301dac373
GET /gtag/js?id=G-94BPVYM7D3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:23:50 GMT
expires: Thu, 25 Apr 2024 14:23:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 99750
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.min.js
151.101.194.137200 OK 90 kB URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 151.101.194.137:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hexload.com
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 14:23:50 GMT
age: 101510
x-served-by: cache-lga21931-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 222, 35954
x-timer: S1714055031.754667,VS0,VE0
vary: Accept-Encoding
content-length: 89501
X-Firefox-Spdy: h2
miltlametta.com/gJH7U8B3GccX4VL/54684
23.109.170.150200 OK 26 B URL GET HTTP/1.1 miltlametta.com/gJH7U8B3GccX4VL/54684
IP 23.109.170.150:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjectmiltlametta.com
Fingerprint38:76:76:77:D0:36:EB:93:FA:63:EF:76:A0:0D:D2:B8:BC:8F:E2:A2
ValidityTue, 09 Apr 2024 23:13:04 GMT - Mon, 08 Jul 2024 23:13:03 GMT
File type ASCII text, with no line terminators
Hash 4fc71bf68a1d477bd1523733e34d1e90
15119105cffbe108b6cf290146ab02c9aa8517ba
74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /gJH7U8B3GccX4VL/54684 HTTP/1.1
Host: miltlametta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 14:23:50 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hexload.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 26-Apr-2024 14:23:50 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Fri, 26-Apr-2024 14:23:50 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
hexload.com/ds2/js/main.js
172.67.136.244200 OK 28 kB URL GET HTTP/3 hexload.com/ds2/js/main.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text
Hash 864d81e6710edc4bc34e0036d975a725
53efcc1a076b1ecf6e47ba87d264e830fdc4007a
c1bd88cc54165fd50700598361e7484401e4cc1525866fa5a73e8a463df5c226
GET /ds2/js/main.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Thu, 31 Oct 2019 22:11:55 GMT
etag: W/"1a7-5963c231f20c0-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4D%2BsMDreqHBdmFtobpuzmOE3CkiS7R4bEMS1Ll6Qwp9JAL9owTVccmgPwCnznBuKV%2FmmHN31uv5EwhZADwE0KJXnvf84KFHNo1s3l3T22JeRzFq5IHyHfxVJs7mFxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe457ee456ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/fa/webfonts/fa-duotone-900.woff2
172.67.136.244200 OK 166 kB URL GET HTTP/3 hexload.com/ds2/fa/webfonts/fa-duotone-900.woff2
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 165712, version 330.15859
Size 166 kB (165712 bytes)
Hash 76b9d9788f37e68cc80dbe9349de7c65
6b3ede5185b085cc696be94d6ff7d1a389a225ae
3477023d8b7129eb517abf377492a608f2469ae91405fa62974e6771751e04ae
GET /ds2/fa/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/ds2/css/style.min.css?v=0.04
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:51 GMT
content-length: 165712
last-modified: Sat, 24 Aug 2019 23:45:51 GMT
etag: "28750-590e585d829c0"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UBtgNlMDlr6OQMioZsY2okbId0Tt2aPFfekn88Ffl9CN%2FAQsAGe1Up1HAOEuAmWZxxd1ieGZuOyhY4ApOiz%2FcKfoMzfaUhSjYukWjqRpTAVWKG5P3LLaD%2BgM7D%2FEMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe47f97956ca-OSL
alt-svc: h3=":443"; ma=86400
hexload.com/js/jquery3.6.js
172.67.136.244200 OK 32 kB URL GET HTTP/3 hexload.com/js/jquery3.6.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators
Hash 9c4c522636859b8a7284ccd5cafd73d1
aab820a7c9bb693c5df41f9886179eba2649b028
4cd356041c1765b1b544e524beb52e8872a249b2634f8b62d38f2f837ff4f84a
GET /js/jquery3.6.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Sat, 09 Mar 2024 13:42:33 GMT
etag: W/"15e40-6133a7b06d07b-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 3029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e3GyCM8UjkP%2FSHhUu9IR8b6DmebWYSW6F6asn%2BPTkcc%2Fx9xsRg%2Fo1SpwhfNiW2rF1Oe9O%2Bv1Yku8prZdKABXp9HCAK8%2BcG4sCI4Vj59%2BXcWw3pfqm5Gygy7YKQckSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe455eb356ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/firasans/v10/va9E4kDNxMZdWfMOD5Vvl4jO.ttf
142.250.74.67200 OK 27 kB URL GET HTTP/2 fonts.gstatic.com/s/firasans/v10/va9E4kDNxMZdWfMOD5Vvl4jO.ttf
IP 142.250.74.67:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright 2012-2016, The Mozilla Foundation and Telefonica S.A.Fira SansRegular4.
Hash ff33952a9f8385a840074521efbc8f38
405b5d8f0f43176bb2cd76458e4abf06e2963afb
08d4e6308d4549372380e8a8d6b3de7613d304b43c2e6f50053af0338e5e0f67
GET /s/firasans/v10/va9E4kDNxMZdWfMOD5Vvl4jO.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hexload.com
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26757
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 10:38:01 GMT
expires: Tue, 22 Apr 2025 10:38:01 GMT
cache-control: public, max-age=31536000
age: 272750
last-modified: Mon, 22 Jul 2019 19:21:28 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hexload.com/ds2/js/paging.js
172.67.136.244200 OK 1.1 kB URL GET HTTP/3 hexload.com/ds2/js/paging.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type HTML document, ASCII text
Hash 3686c6282d9c94c620e42508fb5d0e18
97c9a31b1f7946d5f3ba6a5047c95cf38456fa64
e1d4f21db649ec5795e70cb72e59fdec97af300c64b5d8abbc67f00688eb0ecd
GET /ds2/js/paging.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Mon, 04 Sep 2017 22:09:57 GMT
etag: W/"739-558645efa7740-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VdA84y5p992MaZ2XG9O5QeLCasw5lRQXiyZLsI9wQAtAmZ4skqkp%2FpRJEgee2y9HET4GLj5mbWF0YStt5JvtOJOlapX4R%2FpQnRO%2FzdLD6RUtJn31j0ICbqrKWZOrrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe456ec356ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
waisheph.com/tag.min.js
139.45.197.245200 OK 28 kB IP 139.45.197.245:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjectwaisheph.com
FingerprintA9:8B:DF:A0:A2:80:A9:70:4A:F5:46:4A:EB:8E:00:E7:82:98:AC:8E
ValidityTue, 19 Mar 2024 01:27:24 GMT - Mon, 17 Jun 2024 01:27:23 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 0c4aa9ddc8e78306f6c57019adc4d64c
b3254e75244fb4293cb3a61cd9075656cdeca8f1
6fb4e43813700e4d163367d7462653e55b062b673c439baee22a4073e8ea387b
GET /tag.min.js HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:23:51 GMT
content-type: text/javascript; charset=utf-8
content-length: 28087
content-encoding: br
x-trace-id: 4537b44928f24f06c114136dc9c408ac
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 25 Apr 2024 13:46:27 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
172.67.136.244200 OK 0 B URL User Request GET HTTP/2 hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
IP 172.67.136.244:443
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:51 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=0;includeSubDomains;
expires: Wed, 24 Apr 2024 14:23:51 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cf-cache-status: BYPASS
set-cookie: aff=16443; domain=.hexload.com; path=/; expires=Thu, 09-May-2024 14:23:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lkQD2OaP%2BA1w6i17GVZ7SZSs1atPHi7%2BFYKaYWVSp%2FuuRxfB0DMae59%2BPzIlmLGSAhqxLe9KGrbby27Qj%2BsNKptnvcb0jaCr%2BxHXtyYtnjFUPn5pwLEQ2kbya111Yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe48aa1756ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/js/jquery.paging.js
172.67.136.244200 OK 33 kB URL GET HTTP/3 hexload.com/ds2/js/jquery.paging.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text
Hash d7a2c1c7af2a004a6d68e1e55b1cfb46
7fd6daa7076c30381880519ad06ef5639b19ee28
c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6
GET /ds2/js/jquery.paging.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Mon, 04 Sep 2017 22:09:56 GMT
etag: W/"4ba5-558645eeb3500-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=68dvS7KYXCH9SUwd67rGXauDGSHZiYrZFQuRL7cqjXpnJrn6j%2BlFjn0%2Bxfw%2BHhdsV3Y7qdpsNaZ2T5sr9S7%2BlaekNSe2X1eT%2Fe5y35PfBgDr22IkDpeVP2L5VewHVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe455eb856ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
brunchcreatesenses.com/a8/9e/e8/a89ee8499c5793406d08e633580e2da5.js
192.243.59.13200 OK 31 kB URL GET HTTP/1.1 brunchcreatesenses.com/a8/9e/e8/a89ee8499c5793406d08e633580e2da5.js
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjectbrunchcreatesenses.com
Fingerprint54:D0:F6:EC:45:9F:7D:7D:C8:BF:54:65:C0:7F:34:CE:5A:68:88:D9
ValidityTue, 12 Mar 2024 06:13:36 GMT - Mon, 10 Jun 2024 06:13:35 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash ecf306b21092f3ca5243518067015f28
2ec92cb7946d47170d8c3e82685b2c5562688787
8ad1ba9cd0c1a657c954f4324a9b268470bc796e6b91121fd5e1811f28889c9c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /a8/9e/e8/a89ee8499c5793406d08e633580e2da5.js HTTP/1.1
Host: brunchcreatesenses.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 14:23:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_layer=1; expires=Sun, 28 Apr 2024 14:23:51 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c3e0529affcd42343fabf5875d15d83
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
hexload.com/ds2/js/clipboard.min.js
172.67.136.244200 OK 11 kB URL GET HTTP/3 hexload.com/ds2/js/clipboard.min.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ds2/js/clipboard.min.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Mon, 04 Sep 2017 22:09:53 GMT
etag: W/"2aa5-558645ebd6e40-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FsZDIG8IrdHqaf7vSdspFLSXWH%2BrD9w2MA%2BMJ4yssKU%2FX7BeOUrKplmyshnfSs3E50%2FEOR%2Bqdou8eZYexL6j%2B1aB%2F%2FI%2BDvvqn6Jl2GCOBUxYCH6uHC8WJ%2FsyzAUQtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe457ee156ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/css/style.min.css?v=0.04
172.67.136.244200 OK 184 kB URL GET HTTP/3 hexload.com/ds2/css/style.min.css?v=0.04
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type ASCII text, with very long lines (62584)
Size 184 kB (184492 bytes)
Hash 70d4750298a55bad71ae341f56dae095
b8d48e45c7c4492075fd260a46dd32c0215b573f
039e7c0d4a97fd38c67a9ecb3bff0d9ab097f9556f9aba5c4574e0bf57d74bdf
GET /ds2/css/style.min.css?v=0.04 HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: text/css
last-modified: Mon, 29 May 2023 16:06:40 GMT
etag: W/"2d0ac-5fcd745af50f3-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a9vMSSoXhqWKOsvlULk6PKHz5X8lEcQ23I659BACfUqfycw755%2FSgFxnJiY8qdrHEzVD4r2pU6btdbcg2E%2BuhMUD7mWU2W0KHBcQnnqZWKC2D9NsW65inWIWy%2FavsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe456ec656ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/doup1/assets/styles/bootstrap.min.css
172.67.136.244200 OK 141 kB URL GET HTTP/3 hexload.com/doup1/assets/styles/bootstrap.min.css
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type ASCII text, with very long lines (65324)
Size 141 kB (140936 bytes)
Hash 04aca1f4cd3ec3c05a75a879f3be75a3
675fcf28f9fbf37139d3b2c0b676f96f601a4203
7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11
GET /doup1/assets/styles/bootstrap.min.css HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: text/css
last-modified: Fri, 25 Jun 2021 09:14:46 GMT
etag: W/"22688-5c59392202d80-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q2HYGAq6fLKZqlBIFP8AUsIpNHG%2FId5hD1h7dN70jUbSFi82pGNyZ7jLCgyCpGo%2F9d2xbgP9Otonx3PAYZrjbhr2SHpwa%2FON32JERF%2B2pz%2B8Z81trqYdnaVSGU1mZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe456ec556ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/js/bootstrap.min.js
172.67.136.244200 OK 58 kB URL GET HTTP/3 hexload.com/ds2/js/bootstrap.min.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text, with very long lines (57791)
Hash e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
GET /ds2/js/bootstrap.min.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Sat, 24 Aug 2019 22:42:17 GMT
etag: W/"e2d8-590e4a2832440-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ivDvM27rEUABbh%2BpRExyDJCsjnZbvbbzyCF05N0UBNieID0uq6xEh41%2Bza%2BcRme45aElOML%2FEXephCWBDGOQgwPVa%2FGbF3hZCcxCrmiUk3EurA%2BniW8daBfzFyKsoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe457edf56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/css/bootstrap.min.css
172.67.136.244200 OK 156 kB URL GET HTTP/3 hexload.com/ds2/css/bootstrap.min.css
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type ASCII text, with very long lines (65324)
Size 156 kB (155758 bytes)
Hash a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
GET /ds2/css/bootstrap.min.css HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/ds2/css/style.min.css?v=0.04
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: text/css
last-modified: Sat, 24 Aug 2019 22:42:18 GMT
etag: W/"2606e-590e4a2926680-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AISkUl%2FzsnXuF7YnkAd5Orh%2BpxOjaIQGH4kkdu3ddBbPH%2BeooWZNKMsNoBzVRp6g%2BkD2zC9Yd5m40n%2FkUWbizndhq3aBq5dzib%2BSmUyAuBgZjaZ2O93RAz%2B7Lt99qQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe4768d656ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/fonts/brandon_bld-webfont.woff2
172.67.136.244200 OK 28 kB URL GET HTTP/3 hexload.com/ds2/fonts/brandon_bld-webfont.woff2
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 27472, version 1.0
Hash 1ab7e604f30f32e4e9b8249bd6978229
58fce3d2ff03bba9d1e458eeda5f785e948325f6
c56fd6b910ca93a3fb1875e35074b8ce8501c319ebaa0e8b7252f7e4a7023fe6
GET /ds2/fonts/brandon_bld-webfont.woff2 HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/ds2/css/style.min.css?v=0.04
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:51 GMT
content-length: 27472
last-modified: Sat, 07 Sep 2019 21:56:34 GMT
etag: "6b50-591fda0cb8880"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TP2KW8jEVDaol0LrNA23noFO9TX0bQwh6oQ0lgB7sj%2FmdhON3kWCu7QNYs2rP80QzlRWf1gDnfTxIaEHBSKVQ77wWcxAoDULVARMbkPJVZYPIF%2BE6AWWRwaFafqEtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe47d93d56ca-OSL
alt-svc: h3=":443"; ma=86400
waisheph.com/5/4785761/?oo=1&aab=1
139.45.197.245200 OK 3.0 kB URL GET HTTP/2 waisheph.com/5/4785761/?oo=1&aab=1
IP 139.45.197.245:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjectwaisheph.com
FingerprintA9:8B:DF:A0:A2:80:A9:70:4A:F5:46:4A:EB:8E:00:E7:82:98:AC:8E
ValidityTue, 19 Mar 2024 01:27:24 GMT - Mon, 17 Jun 2024 01:27:23 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3214), with no line terminators
Hash 953a592b75e8aa2955c907b737fba78f
3f913d398adf9a19e3200380afc378c161bc070e
4406b86a4e976be0cf7a96aaf794de828728a404c93b3a0a69cefd2e19f29e95
GET /5/4785761/?oo=1&aab=1 HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hexload.com
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:23:51 GMT
content-type: application/json
x-trace-id: 3557b06ef67a9d98d179e4a257ccbfd3
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://hexload.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0080491cf3044b6df910200588b7e918; expires=Fri, 25 Apr 2025 14:23:51 GMT; path=/; secure; SameSite=None
oaidts=1714055031; expires=Fri, 25 Apr 2025 14:23:51 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
hexload.com/main.min.js
172.67.136.244200 OK 83 kB IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text, with very long lines (65294), with CRLF line terminators
Hash 0f346598a681be469288c396e611c256
d76ba61be7a0f383ac0327c94eab357649544940
154a4989329051467b3efaf1090defd6724914255f6de0a61fdac6e34122b1b5
GET /main.min.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 13:34:36 GMT
etag: W/"145b6-5fbe3bfb53168-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TCxHNkArrtv1xxZ3YdMNIkxee%2B7K%2FXPlaB56Ii%2BYFdJALKZPRSqGoErxQQPOZHlzznPnWK7u4UYKnCeGomUenuidAnQR3RQS1vBbqJV63%2FxZq27LjrYJ5pJoOi9sjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe455eb556ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/js/jquery.cookie.js
172.67.136.244200 OK 3.1 kB URL GET HTTP/3 hexload.com/ds2/js/jquery.cookie.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text, with very long lines (3441), with no line terminators
Hash 7e208f9bc7ca201678c76d96e899349c
afa52ce81c7656bf1a8605bd2cbd38c2be00cd9b
0f0e74eaa31ad2d6c07d9ceb16efefc78aae0f45328759eb163800d261e53d29
GET /ds2/js/jquery.cookie.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Mon, 04 Sep 2017 22:09:56 GMT
etag: W/"c31-558645eeb3500-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I%2FBzu3MJH6Nf6cHpN9x4%2Bqz1K%2FT879XAFKs05nv%2FBU5Nm5XnR1bAnlAWkYwSNKpfhDW95SQwMfEPD9QNjbV83pNS%2BBc%2F15Ck%2B9b04SH9BrwSYmMvxROpDyoI9HekeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe456ebc56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/js/jqdl.js?0
172.67.136.244200 OK 6.8 kB IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text, with very long lines (7317), with no line terminators
Hash 3696055de290380ccd68888ae1acf6dc
6df80f0ba3984bcb43400cf00cd1866e7e7d4d9b
6ef27d3b30db8108fa6e631d4b435a2f5205b38d2a951393077fea5581fc3c69
GET /js/jqdl.js?0 HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Sat, 09 Mar 2024 14:49:50 GMT
etag: W/"1a83-6133b6bad7ed8-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 1860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rx%2FnsccsattU6aH%2BG6Ss4CrUZpAgzyzqwGdAwZMhAItPHur%2BEgovnTcO2pdo8eKAVVSypVaLuh8jWzGxfXPKmKtTuo0NRlUgQlXqPQRngjaxx7U126BGyXncAfphRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe456ed056ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/myji8zwgqq1m/favicon.ico
172.67.136.244200 OK 16 kB URL GET HTTP/3 hexload.com/myji8zwgqq1m/favicon.ico
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /myji8zwgqq1m/favicon.ico HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:52 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 24 Apr 2024 14:23:52 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: MISS
last-modified: Thu, 25 Apr 2024 14:23:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IdX9TVHG%2FYOdHuo5Qux%2FnOyRkNwVjNkIHlHFP7jSM%2Bi0CGJfZgsRfwUzn6hku%2BKae8qb2nobZp%2FIMXtpfxLwzP8Nu2O%2BK1OuRSYc6wdwFWPMxeztllquTXjnOmEdNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879efe4f8b2956ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hexload.com/ds2/js/jquery-1.9.1.min.js
172.67.136.244200 OK 93 kB URL GET HTTP/3 hexload.com/ds2/js/jquery-1.9.1.min.js
IP 172.67.136.244:443
Requested by https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Certificate IssuerLet's Encrypt
Subjecthexload.com
Fingerprint8F:62:80:E2:45:C5:ED:B0:B7:59:7F:89:C7:4B:DF:71:7D:DA:68:97
ValidityMon, 25 Mar 2024 19:23:09 GMT - Sun, 23 Jun 2024 19:23:08 GMT
File type JavaScript source, ASCII text, with very long lines (32089)
Hash 397754ba49e9e0cf4e7c190da78dda05
ae49e56999d82802727455f0ba83b63acd90a22b
c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
GET /ds2/js/jquery-1.9.1.min.js HTTP/1.1
Host: hexload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hexload.com/myji8zwgqq1m/WISO_Steuer_2024_v31.03_Build_3510_Deutsch_Portable.rar
Cookie: lang=english; aff=16443
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 14:23:50 GMT
content-type: application/javascript
last-modified: Mon, 04 Sep 2017 22:09:54 GMT
etag: W/"169d5-558645eccb080-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
cache-control: max-age=28800
cf-cache-status: HIT
age: 2422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mYngFuE0vFi%2BGBbWLRISkzB7y4BAAtZlfjxEp%2Fjw5Q4rKORRkm2%2F5I16F4x%2F99LGYeitG78ZamGo6rRqkWjWUPjLw0T2QG7bAmyKnywwWuYARZNcZfQYfK8%2FZgCA4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879efe455eb256ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400