Report - www.ista-ing.net/u6s1/

Report Overview

Submitted URL
www.ista-ing.net/u6s1/
IP
62.116.130.8
ASN
#15456 InterNetX GmbH
Submitted
2022-11-22 14:46:39
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
produkte.web.de	622968	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	913 B	6.4 kB	217.72.200.229
js.ui-portal.de	25004	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	167 kB	23.38.200.165
img.ui-portal.de	21604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	89 kB	23.38.200.165
www.ista-ing.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	662 B	853 B	62.116.130.8
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
epimetheus.navigator.web.de	48617	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	944 B	1.3 kB	217.72.199.21
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
dl.web.de	41933	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	131 kB	23.38.200.165
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	52 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
ocsp.serverpass.telesec.de	29467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	7.1 kB	80.158.50.254
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.162.52.254
epimetheus.navigator.gmx.net	48439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	468 B	722 B	217.72.199.22

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-22	medium	ista-ing.net	Sinkholed
2022-11-22	medium	ista-ing.net	Sinkholed

JavaScript (9)

	URL	Size	First Seen	Last Seen
	js.ui-portal.de/prompt/permission/latest/tracking.min.js	7.4 kB	2023-03-07	2024-04-18
Pretty URL js.ui-portal.de/prompt/permission/latest/tracking.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-18 14:54:42 Times Seen230 Hash 6f4daca24d71edd532e27eef87ef36d9 d7223b400fb9f896ac8ec4cadb765f22ceb1e4bb 10a4ffe3d65b0629d9d6340837de38ed0884538c7f168400fe367d65e67ea8f8 Loading...

	js.ui-portal.de/prompt/permission/latest/connector.min.js?	6.7 kB	2023-03-08	2023-03-12
Pretty URL js.ui-portal.de/prompt/permission/latest/connector.min.js? IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-12 18:42:46 Times Seen1 Hash ec7ea47f4ddee73768e64af53da4eaec 06f4eeab8477950bed3a181b353bcbbf159b2149 6cf96008f7efbe709478519e738a9c29d941f80f3b257d3e2afd67e75e2bea64 Loading...

	js.ui-portal.de/cat/product/partner-products/2.2.0/product.js	5.2 kB	2023-03-08	2024-04-18
Pretty URL js.ui-portal.de/cat/product/partner-products/2.2.0/product.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2024-04-18 14:54:42 Times Seen101 Hash fcaa8f918259255aec1848dbc993fffb 9a8901ab4390451168e1277d8a736dc28c28b398 e76838889d0a2660c7129aac22cae9dd3e045994f764b0990476ac3d6db6b398 Loading...

	produkte.web.de/homepage-und-mail/homepage-parken/	662 B	2023-03-07	2023-05-07
Pretty URL produkte.web.de/homepage-und-mail/homepage-parken/ IP 217.72.200.229 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2023-05-07 20:25:48 Times Seen35 Hash c5a09490037b804f1301a362524ebeb2 881919a6b27316352d06ce31038da6b207710a1f 1deb23052487878243176460890f75c5d008e5daa36e0859fba90e2cf4b3c090 Loading...

	produkte.web.de/homepage-und-mail/homepage-parken/	371 B	2023-03-07	2024-04-18
Pretty URL produkte.web.de/homepage-und-mail/homepage-parken/ IP 217.72.200.229 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-18 14:54:41 Times Seen124 Hash cc3583521a71685b5c770356623684f6 13479ff61c012bbb29c7c70cdf78866a3d711571 9a6392a1e7536307a9b046005a9a0b67fba9b2b03d7cd00001657b6c9f5911e5 Loading...

	js.ui-portal.de/c/eic/eic.js	9.1 kB	2023-03-07	2024-04-18
Pretty URL js.ui-portal.de/c/eic/eic.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-18 14:54:42 Times Seen359 Hash 09e0e16ca0343dcf589d1401ee0affb3 19e457ca522d59aa83e1de313781972654b25326 037d2f3dde88d30af81cc355ef86a1a192a0ce781da44b9c89419092c66fdc7f Loading...

	dl.web.de/tcf/live/v1/js/tcf-api.js	142 kB	2023-03-08	2023-11-06
Pretty URL dl.web.de/tcf/live/v1/js/tcf-api.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-11-06 11:27:56 Times Seen8 Hash 495f086eb6a6c749d16165453e7746a7 a6b9a0656ef8f535a675a5390f57c0dd766f0b61 37bb1694574121cdda4920206aab79fc9ac43a331c266a6759a441207d5cb2d4 Loading...

	dl.web.de/permission/live/v1/ppp/js/permission-client.js	159 kB	2023-03-08	2023-03-11
Pretty URL dl.web.de/permission/live/v1/ppp/js/permission-client.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 8ae81e53cbb84dd7c7373f8242eeca44 f52c0c9e4c384f90ddc3c5405bdca9d10da582b9 dac0b2e4fe9494bd12852e5c3d837699bd365e6cfb2a6fdd3656e228ed2ac7e1 Loading...

	dl.web.de/permission/live/v1/ppp/js/permission-client-compat.js	120 kB	2023-03-08	2023-03-11
Pretty URL dl.web.de/permission/live/v1/ppp/js/permission-client-compat.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash f30b68e8d906717b1944c54fa30640f9 b04e9f956cdc7c28505b83b7438d8db8241c8c95 6ad7598fd8a23b09375efc03d514bb2750b70491a0fedc93100d63e251bbe4af Loading...

HTTP Transactions (48)

URL IP Response Size

www.ista-ing.net/u6s1/

62.116.130.8

200 OK

160 B

URL HTTP/1.1
www.ista-ing.net/u6s1/
IP
62.116.130.8:0
ASN
#15456 InterNetX GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
160 B (160 bytes)
Hash
3ec6a689e13de90354deaf27fe8d6d51
2b4cae00a1277c2e13a3072edb87d1ec11d763ca
2f1d021429a0c84f30c435fb20f6e8a6185b72d6d28a56df406fe2b61ca126fd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /u6s1/ HTTP/1.1
Host: www.ista-ing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 12:45:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirector-ID: 5d307cd5a4afa21ae9be909d65b5fbe1d0b3856d0d557b151da1924c8af9ea16
IX-Cache-Status: HIT

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9501
Expires: Tue, 22 Nov 2022 17:24:49 GMT
Date: Tue, 22 Nov 2022 14:46:28 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5893
Cache-Control: max-age=163380
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:46:28 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:09:28 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6639
Expires: Tue, 22 Nov 2022 16:37:07 GMT
Date: Tue, 22 Nov 2022 14:46:28 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 14:09:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2225
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: YsgSoQIJqrtVv3mr0Z4N1Z2sBo5aq+1OJbfRjXN5p4ZKJ3Fos3vFN2OJBjy64RsUo0W2jjae5w0=
x-amz-request-id: KWSRNJ7G93Z8D6Z1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 14:42:36 GMT
age: 232
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

www.ista-ing.net/favicon.ico

62.116.130.8

200 OK

160 B

URL HTTP/1.1
www.ista-ing.net/favicon.ico
IP
62.116.130.8:0
ASN
#15456 InterNetX GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
160 B (160 bytes)
Hash
3ec6a689e13de90354deaf27fe8d6d51
2b4cae00a1277c2e13a3072edb87d1ec11d763ca
2f1d021429a0c84f30c435fb20f6e8a6185b72d6d28a56df406fe2b61ca126fd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.ista-ing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ista-ing.net/u6s1/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 12:45:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirector-ID: 20d6c6d38fddd8e4eb0d06412f910b5063f51b080266781b8a79eb02b8ea1c1f
IX-Cache-Status: MISS

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 14:46:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

produkte.web.de/homepage-und-mail/homepage-parken/

217.72.200.229

301 Moved Permanently

162 B

URL HTTP/1.1
produkte.web.de/homepage-und-mail/homepage-parken/
IP
217.72.200.229:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /homepage-und-mail/homepage-parken/ HTTP/1.1
Host: produkte.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ista-ing.net/
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 22 Nov 2022 14:46:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://produkte.web.de/homepage-und-mail/homepage-parken/

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
767633ba2862adc0bf6c389490d064fe
324d9030409236b0ff4d084f509cd139998e7902
369d338e79fea32bc3b127ef1b578560cca2d68dbb3cf575edde7d3e907fe4bd

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 14:46:29 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

produkte.web.de/homepage-und-mail/homepage-parken/

217.72.200.229

404

5.7 kB

URL HTTP/1.1
produkte.web.de/homepage-und-mail/homepage-parken/
IP
217.72.200.229:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
5.7 kB (5661 bytes)
Hash
aac0a9b36a9eda6ce752805c95adb2b9
9d6639d5942e15fc1041fc08c99de7dffcc8d1f2
2f5b95740bc15b923b2693c25ba1e8d248e5223ce837d4b82c7d70297e3902ff

HTTP Headers

GET /homepage-und-mail/homepage-parken/ HTTP/1.1
Host: produkte.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ista-ing.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 404 
Date: Tue, 22 Nov 2022 14:46:29 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
vary: Origin
set-cookie: JSESSIONID=6D4E021240D202D51877201D5C597C0B; Path=/; HttpOnly
route_mamcms=kXwcjXem79F2Rk9d3vsWCdMDNn7UUVnpArFjazuwPm; path=/; HttpOnly; Secure
cache-control: private

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 14:11:10 GMT
cache-control: public,max-age=3600
age: 2119
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

js.ui-portal.de/prompt/permission/latest/connector.min.js?

23.38.200.165

200 OK

2.4 kB

URL HTTP/2
js.ui-portal.de/prompt/permission/latest/connector.min.js?
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (6653)
Size
2.4 kB (2364 bytes)
Hash
1f5367d866293b8dda44f76d02962198
351ab490848e0db947eed72a7ad17f60755362bd
d51600ca1879967e94f45a05c5cd6569db794e3a92407e147fdace92aa53d57d

HTTP Headers

GET /prompt/permission/latest/connector.min.js? HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 12:25:33 GMT
etag: "1a27-5eaad41936ef6"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2364
content-type: application/javascript
cache-control: public, max-age=289
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/components/5.10/brand/web.de/components.css

23.38.200.165

200 OK

60 kB

URL HTTP/2
js.ui-portal.de/cat/components/5.10/brand/web.de/components.css
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
60 kB (60054 bytes)
Hash
279a9b4613907380687ba79d5f05aa5f
248b227c8c55c26f51bb98313bf3b908d40b5be4
2435a3e8b6de01ce9f01dc4a79399033c9051ecb36fa18fb257e5d06a1e09797

HTTP Headers

GET /cat/components/5.10/brand/web.de/components.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 05 Oct 2022 08:24:05 GMT
etag: "70e51-5ea454ccc73e7"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 60054
content-type: text/css
cache-control: public, max-age=99
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/events/advent/2022/advent.css

23.38.200.165

200 OK

300 B

URL HTTP/2
js.ui-portal.de/cat/events/advent/2022/advent.css
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with CRLF line terminators
Size
300 B (300 bytes)
Hash
ffa490e877d39ab4dccca1758271e793
b7a02deaf8b4046911fa6f7f67e3e2f45ebdecf2
2164ea2c6bdea2f8f576a8cfd39c11cbc577366698ffa94d7d1312c1a7f32f97

HTTP Headers

GET /cat/events/advent/2022/advent.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 11:45:48 GMT
etag: "214-5eb61bfef4358"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 300
content-type: text/css
cache-control: public, max-age=1240
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/product/partner-products/2.2.0/product.js

23.38.200.165

200 OK

2.1 kB

URL HTTP/2
js.ui-portal.de/cat/product/partner-products/2.2.0/product.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (5132)
Size
2.1 kB (2146 bytes)
Hash
1b593f02aa66b3c7f0d0ad096e54daed
bb6eb55c379328355753f9e669f7245909629ded
1b9eb849af851a6a959976de509ae7d75ba46b26a73f87bd742913da2a2109cd

HTTP Headers

GET /cat/product/partner-products/2.2.0/product.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 13:01:46 GMT
etag: "1430-5eb62cf9dbcf9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2146
content-type: application/javascript
cache-control: public, max-age=1168
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/product/partner-products/2.2.0/product.css

23.38.200.165

200 OK

241 B

URL HTTP/2
js.ui-portal.de/cat/product/partner-products/2.2.0/product.css
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
241 B (241 bytes)
Hash
223a64437fbf799dc6b58559a6794c73
567ebae5035f31df63f094645a5a224a0bd369f4
5822831674e0a9f6bb20c3a87623a2d599651a5ba3276a2c67c4cba17beae707

HTTP Headers

GET /cat/product/partner-products/2.2.0/product.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 06:14:16 GMT
etag: "31e-5eb5d1e557414"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 241
content-type: text/css
cache-control: public, max-age=1226
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/components/5.10/components.js

23.38.200.165

200 OK

94 kB

URL HTTP/2
js.ui-portal.de/cat/components/5.10/components.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (356), with CRLF line terminators
Size
94 kB (93707 bytes)
Hash
bea02e9cf5bff5090ce6da2b7bf7fbf7
8bdcddb810e6f86c44f709c466ac9ccc69166e11
d0fa4e917277b45e093d0a35cb330921f61306a017019435d062c088df447bdf

HTTP Headers

GET /cat/components/5.10/components.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 05 Oct 2022 09:06:14 GMT
etag: "50b6c-5ea45e388769e"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 93707
cache-control: public, max-age=964
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/cat/webde/produkte/404%20Seite/404-hero.svg

23.38.200.165

200 OK

1.9 kB

URL HTTP/2
img.ui-portal.de/cat/webde/produkte/404%20Seite/404-hero.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (727), with CRLF line terminators
Size
1.9 kB (1888 bytes)
Hash
8f371d5db8ea49b3db936742e884a5df
736ae3da1b8d2946a9006d52dfd99c3e8cfea57b
f4b711b27322ccc9eee0e5bdafee26d78b108995342c40069145726227e783f7

HTTP Headers

GET /cat/webde/produkte/404%20Seite/404-hero.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jun 2022 09:56:21 GMT
etag: "1221-5e0d899cbe741"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 1888
content-type: image/svg+xml
cache-control: public, max-age=711
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/web.de/brand-logo.svg

23.38.200.165

200 OK

2.0 kB

URL HTTP/2
img.ui-portal.de/cd/ci/web.de/brand-logo.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4000), with no line terminators
Size
2.0 kB (1976 bytes)
Hash
b5c26275af293245453d3e5bd136f8ac
5518a6537b7ebd49de5d8d078a1a82e63b65f7d4
6c64af4b483bbbbeee07ce34985f7cc95e85238628bbd326012161a555bd61da

HTTP Headers

GET /cd/ci/web.de/brand-logo.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Jan 2019 17:14:58 GMT
etag: "fa0-57f1db7d410ba"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 1976
content-type: image/svg+xml
cache-control: public, max-age=1294
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-light.woff

23.38.200.165

200 OK

18 kB

URL HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-light.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 18080, version 1.0\012- data
Size
18 kB (18080 bytes)
Hash
7d3616c7d04a9ae474875e42c4bc0496
4d0137dd6f1e5325eb3ba3e7bc4d577e68c75d46
7676e0d97793004054c4ec3e7cbd2d98c52fabc90479b7e3d5cfbb62f4e7a5af

HTTP Headers

GET /ci/webde/global/fonts/web.de-sans/web.de-sans-light.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 30 Jun 2015 08:59:54 GMT
etag: "46a0-519b86e043680"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=2090417
date: Tue, 22 Nov 2022 14:46:29 GMT
content-length: 18080
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-medium.woff

23.38.200.165

200 OK

18 kB

URL HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-medium.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 18052, version 1.0\012- data
Size
18 kB (18052 bytes)
Hash
99eafbdc5f638d2fec6e869e5005f8f9
9f8f73605e41dc0eef8b5f5a46d3906716a7b3a5
01e773facc13e915276219573795dcf3f2a0fe00fca0841af95b21769872ff48

HTTP Headers

GET /ci/webde/global/fonts/web.de-sans/web.de-sans-medium.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 30 Jun 2015 08:59:54 GMT
etag: "4684-519b86e043680-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=620098
date: Tue, 22 Nov 2022 14:46:29 GMT
content-length: 18052
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-script/web.de-script-regular.woff

23.38.200.165

200 OK

28 kB

URL HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-script/web.de-script-regular.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 28512, version 1.0\012- data
Size
28 kB (28512 bytes)
Hash
750a7217c82e85db386f6ba3afd9ec7a
eab0f16d5435c3d110f6a5c901182e354f3dd8b7
6854466d83898bdf1b296dc7467d40e3f54ef8365adbbd96c08fe2b15ec660aa

HTTP Headers

GET /ci/webde/global/fonts/web.de-script/web.de-script-regular.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 May 2015 03:09:36 GMT
etag: "6f60-515d9d3059c00-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=2350189
date: Tue, 22 Nov 2022 14:46:29 GMT
content-length: 28512
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-regular.woff

23.38.200.165

200 OK

18 kB

URL HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-regular.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 18136, version 1.0\012- data
Size
18 kB (18136 bytes)
Hash
9123d7ffc3f36c6f662f4a03e730cc75
f84e2f0805bf1f671a8832f8ac7493b685cc7b69
5cfd71639613393b9b416598890d8a9812382b78b2e1aa839d21ecd2005b1ccd

HTTP Headers

GET /ci/webde/global/fonts/web.de-sans/web.de-sans-regular.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 30 Jun 2015 08:59:54 GMT
etag: "46d8-519b86e043680-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=2216088
date: Tue, 22 Nov 2022 14:46:29 GMT
content-length: 18136
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1241
Cache-Control: max-age=153667
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 14:46:29 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 09:27:36 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

js.ui-portal.de/c/eic/eic.js

23.38.200.165

200 OK

2.8 kB

URL HTTP/2
js.ui-portal.de/c/eic/eic.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1112), with CRLF line terminators
Size
2.8 kB (2825 bytes)
Hash
aee00c21a7d54b0f487e8109cc76baf2
89ec6675e4f72178cbd22d83e08281581309689e
75fb8f3c45c0a9c8c600bfb61ebf993e83d02e5914d0e3b6e10156987e6270f0

HTTP Headers

GET /c/eic/eic.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Sep 2017 08:18:07 GMT
etag: "2380-55a13509fe826"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2825
content-type: application/javascript
cache-control: public, max-age=49043
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/tcf/live/v1/js/tcf-api.js

23.38.200.165

200 OK

44 kB

URL HTTP/2
dl.web.de/tcf/live/v1/js/tcf-api.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65473), with no line terminators
Size
44 kB (43629 bytes)
Hash
f42b209ca8dd5579f5c659cc9a42cc72
61c7c35ead88d38b9fd1fab25db229aeead2c834
bc23198257dfec4f2b9588cf56a483405db49864e4176197a0737534ccfd3101

HTTP Headers

GET /tcf/live/v1/js/tcf-api.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 10:20:10 GMT
etag: "22a2f-5ecf2e28944db-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 43629
content-type: application/javascript
cache-control: public, max-age=26726
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/permission/live/v1/ppp/js/permission-client.js

23.38.200.165

200 OK

48 kB

URL HTTP/2
dl.web.de/permission/live/v1/ppp/js/permission-client.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (60894)
Size
48 kB (48064 bytes)
Hash
72a3c59d81939d188b2858746bff44e8
cbd5385369dd8a135ec7817e49af19a905cbc13c
00d9bc31b826904bf9602facc0ccb72b41413db29e76ca458a329c58847e927e

HTTP Headers

GET /permission/live/v1/ppp/js/permission-client.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 08:35:18 GMT
etag: "26bc7-5ebc3abdbd9de"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 48064
content-type: application/javascript
cache-control: public, max-age=18154
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/permission/live/v1/ppp/js/permission-client-compat.js

23.38.200.165

200 OK

38 kB

URL HTTP/2
dl.web.de/permission/live/v1/ppp/js/permission-client-compat.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (64654)
Size
38 kB (37948 bytes)
Hash
de21a830e3da788d687806a470510fed
100023b6b63da7807e382ea4982eb711f728174a
e2d8f3dc36715fcb4257f80cedd263a131f5ac8b5ad731dfdf8e76859934f21c

HTTP Headers

GET /permission/live/v1/ppp/js/permission-client-compat.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 08:35:18 GMT
etag: "1d65f-5ebc3abdbe97e"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 37948
content-type: application/javascript
cache-control: public, max-age=19619
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/prompt/permission/latest/tracking.min.js

23.38.200.165

200 OK

3.0 kB

URL HTTP/2
js.ui-portal.de/prompt/permission/latest/tracking.min.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (7391)
Size
3.0 kB (2963 bytes)
Hash
1b696a42b6df4ab8815419948f9e1bcb
df4ebc0a4fd4c37b6abe6a29bdfce28318f830ed
8326a643207d26d16d5a4419a0df2695a8cd54c35d583fc196da1fda7a01483b

HTTP Headers

GET /prompt/permission/latest/tracking.min.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 13:51:05 GMT
etag: "1d08-5c4f67fa0c14d"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2963
content-type: application/javascript
cache-control: public, max-age=331
date: Tue, 22 Nov 2022 14:46:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.162.52.254

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.52.254:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fwV2GME6aL5RjH9iy+FK2w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TRnOMAeGOdMSpL8qWB/RFcoJ5Ec=

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
34e2a12326087812f5f2d5800dc83516
8e4a3ab2658ee5d631b6cbef966b415901edcb0a
40c1700a695516054ca67b3070167d1bd18ac213475cb1f756b8007c959ccc06

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 14:46:29 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
933e6c41fb43e733afdca742b4615e26
a762ec064b5edaefa2d57071ef4612d21f72f42b
d03f8263ac0e1d2933d7f88b8db58d1a41dad8d2d6c1a7b297dff8f85c80dd36

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 14:46:29 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
34e2a12326087812f5f2d5800dc83516
8e4a3ab2658ee5d631b6cbef966b415901edcb0a
40c1700a695516054ca67b3070167d1bd18ac213475cb1f756b8007c959ccc06

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 14:46:29 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

epimetheus.navigator.web.de/monitoring/compat

217.72.199.21

204 No Content

0 B

URL HTTP/1.1
epimetheus.navigator.web.de/monitoring/compat
IP
217.72.199.21:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /monitoring/compat HTTP/1.1
Host: epimetheus.navigator.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 75
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://produkte.web.de
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Tue, 22 Nov 2022 14:46:29 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bs
X-App-Host: epimetheus-webde-live-6d67867655-klc6w
X-App-Version: 1.9.0
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

epimetheus.navigator.gmx.net/monitoring

217.72.199.22

202 Accepted

2 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /monitoring HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 185
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Origin: https://produkte.web.de
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Content-Type: application/json
Date: Tue, 22 Nov 2022 14:46:30 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-679c56bcff-7fjwm
X-App-Version: 1.9.0
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Transfer-Encoding: chunked

epimetheus.navigator.web.de/monitoring/compat

217.72.199.21

204 No Content

0 B

URL HTTP/1.1
epimetheus.navigator.web.de/monitoring/compat
IP
217.72.199.21:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /monitoring/compat HTTP/1.1
Host: epimetheus.navigator.web.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 74
Origin: https://produkte.web.de
Connection: keep-alive
Referer: https://produkte.web.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://produkte.web.de
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Tue, 22 Nov 2022 14:46:30 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bs
X-App-Host: epimetheus-webde-live-6d67867655-s66tp
X-App-Version: 1.9.0
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:46:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:46:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:46:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:46:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Tue, 22 Nov 2022 16:55:15 GMT
Date: Tue, 22 Nov 2022 14:46:30 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8685 bytes)
Hash
2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:46 GMT
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
age: 60224
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10556 bytes)
Hash
0ab62c5a7c3296600de924eb0b283bc1
bc4a2dc43898e3fb78ba7301d8b09b280991d221
f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eHLf2DFK-3yN5dEG22XItPxRzmODRdThIYJI2oZqDJpgTGQGSQnGzQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:46:07 GMT
age: 61223
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7751 bytes)
Hash
472ceca597feefba355fbd65998977b7
f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a
e201f706ba38f04ef07d74a67eec187ad8b882027b96b0e4e700162f96da422f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7751
x-amzn-requestid: 577947ab-4fbe-4b07-944a-2b65cf5ed6d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b4UE9GJ9IAMFVtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63799a1f-1a26961e20c88cd54a613ddb;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 03:08:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QB2RJo7NR7FMDRC7fC9eLMW99KR7andopIeu4qi0yp_tihE0vtpkXw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 03:41:51 GMT
age: 39879
etag: "f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4639 bytes)
Hash
dafd9e17dc0023e71ae513c6025e4b80
12e2654db1f384bb04f5c5042848b25dda86b710
e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z_LKFsiB_s81UenxBOVg9_qX_7vBHUZix7XF8YguDCytRn5opLkLRA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:01:10 GMT
age: 60320
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7589 bytes)
Hash
06c6e720bc9900b38e88cd72f739603e
22884cbc78622d6f78c1c3397c9b440946144a99
8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZtjzvMh_vqVaOqm8xPfZ2EWGGl0X7Iv8GK40Z32EbKM4wk6tGPnlYA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:26:05 GMT
age: 58825
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6031 bytes)
Hash
4f3fad7453f45dfa617243c8beac64e1
56414a905340e1b1478a0a40a52b25365a724524
7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: StZ9dxgY8W0WwUUqsxyeISFnbm_WGGcm_AMuo9dzfhF9Yp7wM0TMMg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 08:17:57 GMT
age: 23313
etag: "56414a905340e1b1478a0a40a52b25365a724524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations