Overview

URL erichbonn.net/
IP62.116.130.8
ASNInterNetX GmbH
Location Germany
Report completed2022-07-07 01:15:32 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-07 2 erichbonn.net/ Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (16)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-06 04:55:23 UTC 54.230.111.14
[Mnemonic Passive DNS] www.gmx.net (1) 49214 2013-05-29 19:23:30 UTC 2022-07-06 18:25:05 UTC 82.165.229.85
[Mnemonic Passive DNS] ocsp.serverpass.telesec.de (4) 29467 No data No data 217.170.186.111
[Mnemonic Passive DNS] dl.gmx.net (3) 41286 2012-05-24 07:58:27 UTC 2022-07-06 18:25:07 UTC 23.38.200.165
[Mnemonic Passive DNS] wa.gmx.net (1) 68545 No data No data 82.165.229.16
[Mnemonic Passive DNS] erichbonn.net (2) 0 No data No data 62.116.130.8 Unknown ranking
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-06 17:02:11 UTC 34.120.237.76
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-07-06 04:41:34 UTC 23.36.77.32
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] js.ui-portal.de (6) 25004 2012-07-10 19:45:10 UTC 2022-07-06 18:25:06 UTC 23.38.200.165
[Mnemonic Passive DNS] epimetheus.navigator.gmx.net (3) 48439 2020-12-09 07:23:40 UTC 2022-07-06 18:25:07 UTC 217.72.199.61
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] img.ui-portal.de (8) 21604 2012-07-10 19:45:09 UTC 2022-07-06 18:25:06 UTC 23.38.200.165
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-06 19:05:02 UTC 93.184.220.29
[Mnemonic Passive DNS] s.uicdn.com (3) 25781 2012-07-03 12:15:21 UTC 2022-07-06 18:25:06 UTC 23.38.200.165
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-06 04:47:23 UTC 34.215.40.77


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 62.116.130.8

Date UQ / IDS / BL URL IP
2022-08-16 07:57:00 +0000
0 - 0 - 1 wiepoejjskeope.xyz/ 62.116.130.8
2022-08-16 07:53:32 +0000
0 - 0 - 1 giselahall777.info/ 62.116.130.8
2022-08-16 07:23:11 +0000
0 - 0 - 1 plastiksalat.net/ 62.116.130.8
2022-08-15 08:02:27 +0000
0 - 0 - 1 hubertbarth12.com/ 62.116.130.8
2022-08-14 20:18:24 +0000
0 - 0 - 1 vbucks-generator.com/ 62.116.130.8
2022-08-14 07:55:43 +0000
0 - 0 - 1 manuaktiv.com/ 62.116.130.8
2022-08-14 07:50:17 +0000
0 - 0 - 1 bagelonline.company/ 62.116.130.8
2022-08-14 07:46:35 +0000
0 - 0 - 1 hugorieger383.org/ 62.116.130.8
2022-08-14 07:16:59 +0000
0 - 0 - 1 info-philipps-bau.com/ 62.116.130.8
2022-08-14 01:39:43 +0000
0 - 0 - 1 flaschenpost.nrw/ 62.116.130.8

Last 10 reports on ASN: InterNetX GmbH

Date UQ / IDS / BL URL IP
2022-08-16 07:57:00 +0000
0 - 0 - 1 wiepoejjskeope.xyz/ 62.116.130.8
2022-08-16 07:53:32 +0000
0 - 0 - 1 giselahall777.info/ 62.116.130.8
2022-08-16 07:23:11 +0000
0 - 0 - 1 plastiksalat.net/ 62.116.130.8
2022-08-15 08:02:27 +0000
0 - 0 - 1 hubertbarth12.com/ 62.116.130.8
2022-08-14 20:18:24 +0000
0 - 0 - 1 vbucks-generator.com/ 62.116.130.8
2022-08-14 07:55:43 +0000
0 - 0 - 1 manuaktiv.com/ 62.116.130.8
2022-08-14 07:50:17 +0000
0 - 0 - 1 bagelonline.company/ 62.116.130.8
2022-08-14 07:46:35 +0000
0 - 0 - 1 hugorieger383.org/ 62.116.130.8
2022-08-14 07:16:59 +0000
0 - 0 - 1 info-philipps-bau.com/ 62.116.130.8
2022-08-14 01:39:43 +0000
0 - 0 - 1 flaschenpost.nrw/ 62.116.130.8

No other reports on domain: erichbonn.net



JavaScript

Executed Scripts (15)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (49)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: erichbonn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         62.116.130.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 07 Jul 2022 01:15:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirector-ID: 1e462835a53d8e1899a434e26213c5698126fbc001c8e2405224e0889c80e08c
IX-Cache-Status: EXPIRED


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   160
Md5:    b05186f54f5e5273331991fbc8039ac8
Sha1:   fe161236212da31c9a0e7f4d1b88383bd5290737
Sha256: 6bf66f1a3c56c981fecb8c9d1b030112235f81c1e0869d102056f601221490ef

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 07 Jul 2022 00:56:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g3XPTKQRDk6K9v9FRhzluzLSrw0QA7fZNOY49opw48ymqzHfFIpyZg==
Age: 1134


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "78A5DCFAF2D93D9C87CFB6DBC56100E9F22965D4500554BA65F71CB7D84DD666"
Last-Modified: Wed, 06 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Thu, 07 Jul 2022 03:45:30 GMT
Date: Thu, 07 Jul 2022 01:15:19 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.14
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NRRj25mP7_SY3fds0unoX4snLPFz75I1_4rVQuy-y9ST8oFBpRxqig==
age: 78514
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: erichbonn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://erichbonn.net/

                                         
                                         62.116.130.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 07 Jul 2022 01:15:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirector-ID: aab38bed4a121ad60940d6e74f1595e33279e7dbd929e34aa39625a2114f7905
IX-Cache-Status: MISS


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   160
Md5:    b05186f54f5e5273331991fbc8039ac8
Sha1:   fe161236212da31c9a0e7f4d1b88383bd5290737
Sha256: 6bf66f1a3c56c981fecb8c9d1b030112235f81c1e0869d102056f601221490ef
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 07 Jul 2022 01:15:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /produkte/homepage-mail/homepage-parken HTTP/1.1 
Host: www.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://erichbonn.net/
Upgrade-Insecure-Requests: 1

                                         
                                         82.165.229.85
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 01:15:20 GMT
Server: Apache
Location: https://www.gmx.net/produkte/homepage-mail/homepage-parken
Content-Length: 266
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   266
Md5:    08fefeadf73ddb80967bc7ea0e147567
Sha1:   b12ac95e1f1777489bc8ecf086f8e5917689e480
Sha256: a358963d10b812b7bc4ed024afd93408d083bdca8644b87bb8fe4f70a7069cf2
                                        
                                            POST /ocspr HTTP/1.1 
Host: ocsp.serverpass.telesec.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         217.170.186.111
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 01:15:20 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Length: 1583
Connection: close


--- Additional Info ---
Magic:  data
Size:   1583
Md5:    f0a6382f612e94b37ceea352393634df
Sha1:   eda0c49501cf38710f378d15b0e5151d65b6c06c
Sha256: b4b4cca1e420e21d2bbf406f993002a3823746a925120f491591cbacf325edf6
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 07 Jul 2022 00:34:56 GMT
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 01:11:40 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OhlppzOyfWoHxFZEnrNBtacug_7Wv3Wdl4GmkHkCUO58XFaEROyGIQ==
Age: 2424


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /cat/components/5.8/components.js HTTP/1.1 
Host: js.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Wed, 17 Nov 2021 09:17:34 GMT
etag: "44ac4-5d0f883293d9d"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 78593
cache-control: public, max-age=210
date: Thu, 07 Jul 2022 01:15:20 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (356), with CRLF line terminators
Size:   78593
Md5:    bb94dc3ae0636ae14adeae1fe3c37dc2
Sha1:   f682411ed62cdf8c6a4fbff39973678ef180e992
Sha256: d42738f0f39c35145b19d4a5dca82e5d94c2f3f78a7568b504f09402239c58ce
                                        
                                            GET /cat/product/partner-products/2.1.0/product.js HTTP/1.1 
Host: js.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Tue, 19 Apr 2022 12:53:17 GMT
etag: "ce4-5dd015c4fe940"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 1246
content-type: application/javascript
cache-control: public, max-age=660
date: Thu, 07 Jul 2022 01:15:20 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3300), with no line terminators
Size:   1246
Md5:    d1dac21f87b82b4972a6276acf082b73
Sha1:   7e85bf22206be94aeb3e6ebc3417ef7218afe559
Sha256: fcfb2aa9a51635af3596a64a7b330a60d0743057c47b22b51ff59d8912e3de82
                                        
                                            GET /cat/components/5.8/brand/gmx.net/components.css HTTP/1.1 
Host: js.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
etag: "6f1a2-5da3e8f1ea46e"
last-modified: Tue, 15 Mar 2022 09:38:27 GMT
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 58908
content-type: text/css
cache-control: public, max-age=1755
date: Thu, 07 Jul 2022 01:15:20 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   58908
Md5:    3d2a6d926e1793bc4a7e8c7038ab8251
Sha1:   94113843bac95d5666e6ace981ff62ea0d345ceb
Sha256: f2ca9eb78552eb200aba489cd72363f530b2355abbd1d2fa88618e1746e6bd2a
                                        
                                            GET /cat/product/partner-products/2.1.0/product.css HTTP/1.1 
Host: js.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
etag: "4f9-5dd39c87c0a80"
last-modified: Fri, 22 Apr 2022 08:12:10 GMT
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 415
content-type: text/css
cache-control: public, max-age=1754
date: Thu, 07 Jul 2022 01:15:20 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   415
Md5:    160ba77368675111eb6fab0b401b0780
Sha1:   a5dd59b7843ad101f9aa40a9b8d142e1b052f2b0
Sha256: 4c1bb2bbe511a86d5c63df82ed6ff90a08e3c0fa4da55b8d5478d38f9ab65aaa
                                        
                                            GET /cat/mdh/gmx/Domain%20parken/td_3900_gmx_mdh_parken_image_screen_01_sschlag_03.png HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
etag: "1ac5-5903b991c9c5a"
last-modified: Fri, 16 Aug 2019 13:02:09 GMT
accept-ranges: bytes
content-length: 6853
x-robots-tag: noindex
content-type: image/png
cache-control: public, max-age=1800
date: Thu, 07 Jul 2022 01:15:20 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size:   6853
Md5:    7b744728bb4e38cf7cf8ad9e551b812d
Sha1:   b9fa0469b3823eb3b92cfe00b45b597b2d06a40b
Sha256: ec38aa67222d76cb4910ade6f967c31913894d2487d8967b39c608701768468d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4321
Cache-Control: max-age=115466
Date: Thu, 07 Jul 2022 01:15:20 GMT
Etag: "62c542d1-1d7"
Expires: Fri, 08 Jul 2022 09:19:46 GMT
Last-Modified: Wed, 06 Jul 2022 08:07:45 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Tue, 18 Jul 2017 09:59:36 GMT
etag: "49c0-5549492a91200-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1341916
date: Thu, 07 Jul 2022 01:15:21 GMT
content-length: 18880
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 18880, version 2.137\012- data
Size:   18880
Md5:    65ef01dd5f041403d0b7357619a1f447
Sha1:   ed6c6ebbe03deb3cb59891cf28b57cca1f720b53
Sha256: 4cde34c1e366e3d7625d453914da07e72c137c195ec9191db06f41775e65a01b
                                        
                                            GET /ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Thu, 27 Feb 2014 04:45:46 GMT
etag: "61bc-4f35bfe9b3280"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1967530
date: Thu, 07 Jul 2022 01:15:21 GMT
content-length: 25020
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 25020, version 1.0\012- data
Size:   25020
Md5:    3e5675c89f974f7811eeaf07e2dd5ba3
Sha1:   99d93e1e3636f86c85b0c7c4da2077b4f1ee010c
Sha256: a1e5b0dd9cd90fe3ef3e24aea202819ee74693d62c00bac8e3fb7c837d8adbfe
                                        
                                            GET /ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
etag: "62b4-4f35bfeb9b700"
last-modified: Thu, 27 Feb 2014 04:45:48 GMT
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1507262
date: Thu, 07 Jul 2022 01:15:21 GMT
content-length: 25268
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 25268, version 1.0\012- data
Size:   25268
Md5:    87dc856a4038eba42eb5bcf49ff85712
Sha1:   6a2aac951a11fc3523ca98e5df98b28de21c90d8
Sha256: 7ec51beb961db2999fe41a96a3212edc51d9aeeec5c9d374e39c7313d183d8a6
                                        
                                            GET /ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
etag: "61d8-4f35bfe9b3280"
last-modified: Thu, 27 Feb 2014 04:45:46 GMT
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1074739
date: Thu, 07 Jul 2022 01:15:21 GMT
content-length: 25048
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 25048, version 1.0\012- data
Size:   25048
Md5:    b9d01ac1742192a7c9d30f3fe346a9f4
Sha1:   7936f9a6690c04cec20cdd3b270bda83a613582b
Sha256: 8ca845a97256742debfc82004246fe03d97da1aae5b41b691b23d90b70df3910
                                        
                                            GET /cd/ci/gmx.net/brand-logo.svg HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Thu, 18 Jan 2018 13:10:53 GMT
etag: "2ab-5630cb19a6ac9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 453
content-type: image/svg+xml
cache-control: public, max-age=1716
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (681), with CRLF line terminators
Size:   453
Md5:    bbfe4a327f71e619c251f3b2583c6ab3
Sha1:   0075738a9d349020e3e8e18e9eab773733348c98
Sha256: 25fdabdb964d0e86f42b7c91125dfba131c1fd99970a8f2bae437fb2b8bb127e
                                        
                                            GET /cd/ci/gmx.net/brand-410.svg HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Wed, 18 Dec 2019 14:40:24 GMT
etag: "2133-599fb6cc897f4"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 3123
content-type: image/svg+xml
cache-control: public, max-age=373
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (745)
Size:   3123
Md5:    a39f3f400b50dcab24915f52a5219dd8
Sha1:   80c6be5fa8a88ad47a8b1b21bde6cd61fb290a94
Sha256: 96b943ef67a4c2ce4d37c81b77df3fd92e65e7b3f5d78a118dea78bb911f1f10
                                        
                                            GET /cd/ci/gmx.net/service-410.svg HTTP/1.1 
Host: img.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Wed, 18 Dec 2019 14:40:24 GMT
etag: "61c-599fb6cc943d5"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 687
content-type: image/svg+xml
cache-control: public, max-age=435
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1034)
Size:   687
Md5:    2c8088c832eaf122fbbbf19aff7fd118
Sha1:   ee0867d77e6a11ec0c554d92c94efa4b81f6300a
Sha256: 1af4a28013eb4bee8a963437a68a17cfda973684790db4a12f65b46341dca2d9
                                        
                                            GET /c/eic/eic.js HTTP/1.1 
Host: js.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Tue, 26 Sep 2017 08:18:07 GMT
etag: "2380-55a13509fe826"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2825
content-type: application/javascript
cache-control: public, max-age=16385
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1112), with CRLF line terminators
Size:   2825
Md5:    aee00c21a7d54b0f487e8109cc76baf2
Sha1:   89ec6675e4f72178cbd22d83e08281581309689e
Sha256: 75fb8f3c45c0a9c8c600bfb61ebf993e83d02e5914d0e3b6e10156987e6270f0
                                        
                                            GET /t/prod/iq/mam/scarlet/daq.js HTTP/1.1 
Host: s.uicdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
last-modified: Wed, 06 Jul 2022 09:16:37 GMT
etag: "9bbf-5e31f6d1ccb92-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 11164
content-type: application/javascript
cache-control: max-age=600
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (13691)
Size:   11164
Md5:    3da1a9cce693c11100a1b40a47329da4
Sha1:   9380cec5d5f6516a7650438931a8cbda6228525d
Sha256: f18efce565821d5fc736985e89e24c9ddb89a39eeb5088e149b989da310e1b8a
                                        
                                            GET /tamago/1.3.1/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live HTTP/1.1 
Host: js.ui-portal.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Mon, 29 Nov 2021 09:35:25 GMT
etag: "29846-5d1ea2917cdec"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 55643
cache-control: public, max-age=1648
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Size:   55643
Md5:    48adbce9f0a52a71d2a9b0e4ce3f7442
Sha1:   93e909a58788048a6e4813de974fbb3e761c0b29
Sha256: bd5a8edd708a1a2562749d21fd9fea9b657adc657fdbaea0535ceee3f86f6e03
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: T+bkykfP1Tb+RG5nzjxwRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.215.40.77
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /S8s3P1zcFanWmHuXFEJQq7nxHE=

                                        
                                            GET /permission/live/buso/v1/ppp/js/permission-client.js HTTP/1.1 
Host: dl.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Mon, 20 Jun 2022 07:09:06 GMT
etag: "265ee-5e1dbc79a86c4"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 47493
content-type: application/javascript
cache-control: public, max-age=15767
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (59887)
Size:   47493
Md5:    5b31893f9312b24b8e3fd549f990536e
Sha1:   45343e85bf31780fb09ad7f18844eaa267f23c2f
Sha256: 0f9ce403b105ce54ac2a9accb1f554d047aeb9b2f83c0afd9d3274fc78d86cdb
                                        
                                            GET /permission/live/buso/v1/ppp/js/permission-client-compat.js HTTP/1.1 
Host: dl.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Mon, 20 Jun 2022 07:09:06 GMT
etag: "1cfb0-5e1dbc79a9664"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 37398
content-type: application/javascript
cache-control: public, max-age=16038
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62624)
Size:   37398
Md5:    738121df82487dab7d26eb01c6136b01
Sha1:   5f2fe396bdd0114c7b98116298f03347d2c88064
Sha256: c47b81273e4efec69981cbf579246da7e4b60f3732fbb7170e0355d7edbb9b52
                                        
                                            GET /tcf/live/v1/js/tcf-api.js HTTP/1.1 
Host: dl.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
last-modified: Wed, 16 Mar 2022 12:47:35 GMT
etag: "228cd-5da5551541464"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 43517
content-type: application/javascript
cache-control: public, max-age=10306
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65473), with no line terminators
Size:   43517
Md5:    09b8579a7d34750cfaeb9fb918a154eb
Sha1:   ebbe4e90ceec6adfebbd0e894a0fbe2e7aebd185
Sha256: 8fff3706aedcdf3d58b53f46a2750a68576a5afb81d18b92ba355ca0531c1f0e
                                        
                                            GET /t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202207041206 HTTP/1.1 
Host: s.uicdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
last-modified: Wed, 06 Jul 2022 09:16:37 GMT
etag: "10a9-5e31f6d1ccb92-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1819
content-type: application/javascript
cache-control: max-age=589
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1159)
Size:   1819
Md5:    3a28b6fc8d8720916c826d3cb6c53b0c
Sha1:   a20e1a968ab5568bf522b9c491586fc60e38160c
Sha256: 28ede205996b5763fb0a94ba64764a8b19b23371d7985871dd4e90af28032add
                                        
                                            GET /t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202207041206 HTTP/1.1 
Host: s.uicdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.165
HTTP/2 200 OK
                                        
server: Apache
last-modified: Wed, 06 Jul 2022 09:16:37 GMT
etag: "10f8-5e31f6d1ccb92-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1843
content-type: application/javascript
cache-control: max-age=582
date: Thu, 07 Jul 2022 01:15:21 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1119)
Size:   1843
Md5:    854340e7c148197635b16d2795edbf3e
Sha1:   8d6d3b8a75a5f3b1779cf279ffeb234d1dd0e82c
Sha256: 434d4d554b939c4c3b830bf49b34eb5aae191de79905b6dc79bde97db58222e3
                                        
                                            POST /ocspr HTTP/1.1 
Host: ocsp.serverpass.telesec.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 82
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         217.170.186.111
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 01:15:21 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Length: 1582
Connection: close


--- Additional Info ---
Magic:  data
Size:   1582
Md5:    2d1b398289c3b81b9b707d6862311657
Sha1:   afd4ee11cdb22c01aef383aae5ae1c9c5a535040
Sha256: 87511d00375687ae0e5579faf4712e25ea6831a6ac1265a68e269f9652c3ade9
                                        
                                            POST /ocspr HTTP/1.1 
Host: ocsp.serverpass.telesec.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 82
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         217.170.186.111
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 01:15:21 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Length: 1582
Connection: close


--- Additional Info ---
Magic:  data
Size:   1582
Md5:    2d1b398289c3b81b9b707d6862311657
Sha1:   afd4ee11cdb22c01aef383aae5ae1c9c5a535040
Sha256: 87511d00375687ae0e5579faf4712e25ea6831a6ac1265a68e269f9652c3ade9
                                        
                                            POST /ocspr HTTP/1.1 
Host: ocsp.serverpass.telesec.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 82
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         217.170.186.111
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 01:15:21 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Length: 1582
Connection: close


--- Additional Info ---
Magic:  data
Size:   1582
Md5:    2d1b398289c3b81b9b707d6862311657
Sha1:   afd4ee11cdb22c01aef383aae5ae1c9c5a535040
Sha256: 87511d00375687ae0e5579faf4712e25ea6831a6ac1265a68e269f9652c3ade9
                                        
                                            GET /gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken.landing&brand=gmx&portal=gmx&referrer=http%3A%2F%2Ferichbonn.net%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1657156520893&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken.landing&pageType=landing&op_id=none&product=homepage-mail&type=view HTTP/1.1 
Host: wa.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         82.165.229.16
HTTP/2 200 OK
                                        
date: Thu, 07 Jul 2022 01:15:21 GMT
server: Apache
set-cookie: wa=opt-out; path=/; domain=.gmx.net; expires=Fri, 07-Jul-2023 01:15:21 GMT; secure; HttpOnly
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
vary: X-Forwarded-For
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6d22e4f2d2057c6e8d6fab098e76e80f
Sha1:   b80b11203d97fe01c5597ca3be70406ea48f5709
Sha256: afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
                                        
                                            POST /monitoring/compat HTTP/1.1 
Host: epimetheus.navigator.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 61
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         217.72.199.61
HTTP/1.1 204 No Content
                                        
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Thu, 07 Jul 2022 01:15:21 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-587cff676c-q4sk4
X-App-Version: 1.1.1
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

                                        
                                            POST /monitoring/compat HTTP/1.1 
Host: epimetheus.navigator.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 62
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         217.72.199.61
HTTP/1.1 204 No Content
                                        
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Thu, 07 Jul 2022 01:15:21 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-587cff676c-fl52h
X-App-Version: 1.1.1
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

                                        
                                            POST /monitoring/ppp HTTP/1.1 
Host: epimetheus.navigator.gmx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 103
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         217.72.199.61
HTTP/1.1 202 Accepted
Content-Type: application/json
                                        
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Length: 2
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Thu, 07 Jul 2022 01:15:21 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-587cff676c-ngdtm
X-App-Version: 1.1.1
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4748
Expires: Thu, 07 Jul 2022 02:34:30 GMT
Date: Thu, 07 Jul 2022 01:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4748
Expires: Thu, 07 Jul 2022 02:34:30 GMT
Date: Thu, 07 Jul 2022 01:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4748
Expires: Thu, 07 Jul 2022 02:34:30 GMT
Date: Thu, 07 Jul 2022 01:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4748
Expires: Thu, 07 Jul 2022 02:34:30 GMT
Date: Thu, 07 Jul 2022 01:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4748
Expires: Thu, 07 Jul 2022 02:34:30 GMT
Date: Thu, 07 Jul 2022 01:15:22 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1f48beb-da86-42f3-b5da-39fa82b568cb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7249
x-amzn-requestid: 74cbc653-182e-4ef0-9fe5-901ddaa4edaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UoBIEGKqIAMFp8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bfe233-383f73a750696511624ff453;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 06:14:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BVo4WA3x-2hGSrOBQTIcT5yjiYcdzQby4NDOrnrWpREFtHG5x52Jzg==
via: 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 09:18:45 GMT
age: 57397
etag: "2f79d1e28bb827f7fa60b6675dba8022c28a1a3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7249
Md5:    5c958b0c904620aff5f5f8a74f80d9f9
Sha1:   2f79d1e28bb827f7fa60b6675dba8022c28a1a3d
Sha256: 8bba608d028bbb678f021eaca3364856f930069f44b647346e649eca4c383955
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2fc71a-842c-433d-8506-e191aa0edcd6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4243
x-amzn-requestid: 7529aa91-0ea7-442d-a0b7-c3c74f0d5d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UthU8HNdoAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c215b9-527e994b56eb0630557d6dd5;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 22:18:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DQPLClNEQSPyiJJEq83p-1_lCk1cLIqpXQuPUQA2EzYd4kc0D9ILaw==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 04:44:24 GMT
age: 73858
etag: "5f4a7a2dcc9ffbb5bb61859a6337ec9c8f11f1f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4243
Md5:    4dadb5bd9157f2899ea250117bf6655e
Sha1:   5f4a7a2dcc9ffbb5bb61859a6337ec9c8f11f1f3
Sha256: 236f94db1ce5926743b6f0692509ab20c17fca595b5c062133a9d24fc80d6f0d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf054370-6b80-40cd-a42e-91d4d8e3c37e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7271
x-amzn-requestid: 3fa97801-72ce-40f1-9609-10406e6d70ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UoS0BFjuoAMFw8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bffe7f-103b3e9a2928a3ed39c62b1b;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 08:14:55 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TrgAb-pYFci7r56srzmwDp_mnZ6ApHI6KRaOyrHTYgJHmLcx6iNr1g==
via: 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:50:30 GMT
age: 12292
etag: "949707b56fd4aa6464f5f4a5d52b18ab72d307ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7271
Md5:    1d4f4e3ad0f3ca501b797538d0f3aaac
Sha1:   949707b56fd4aa6464f5f4a5d52b18ab72d307ff
Sha256: 66cf72056531f6151e2e72d48f07f1ba063753316160fe165cb00e125efbca90
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0584e039-a479-41c4-ad51-d842dbd32f7c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5198
x-amzn-requestid: f56b5dea-3209-4e32-985e-fbcb45c70e71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0xnWFKCIAMFe2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4fc95-159a1632285a681d7478353a;Sampled=0
x-amzn-remapped-date: Wed, 06 Jul 2022 03:08:05 GMT
x-amz-cf-pop: SFO20-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jh8Cn-5251TNBafhSRsz0jUA8md-ZKQpjj_N1YYcUaVnJAYIdFAQ2A==
via: 1.1 21e2c668bb54ebb4456425e394c3356a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 03:19:59 GMT
age: 78923
etag: "76b2ac44ab4590c5345063d314975f483a61cb1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5198
Md5:    cd4e7dda9491e473d4b36a87915a82df
Sha1:   76b2ac44ab4590c5345063d314975f483a61cb1f
Sha256: f1e7681478f46029c90d707def4755f3d91a9f0b1d3509008bfca84d84a9634a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13136825-0301-44c6-8c81-faf21628fe4c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6737
x-amzn-requestid: 9a9c33df-daa2-49fb-ba8e-fd5a3149828e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UeP9ZG93oAMFX6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbf9ef-248528170cf451be2662dbef;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:06:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GZWZ5vCdHbLeGN4FdZbd8ysfjqcGd-7MsBW_steUpJ38jyLd16JNtw==
via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 03:53:29 GMT
age: 76913
etag: "5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6737
Md5:    44f59062cacc44be268845c493de29de
Sha1:   5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f
Sha256: c37305dfa7a241e526c7246a6eb71360dbfa2fe5d7f369f37ef7ddbfe1b97749
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94470e3-8873-4e4e-909a-df8539096335.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 12294
x-amzn-requestid: e6b35bb1-bc6b-4b98-aa16-cff64cf3e4b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ua_AwHdPIAMFSzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62baab9e-4659e88772f9e8551e06800a;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 07:19:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EWsndyPnvdV629tcpvI0HUzSA6Ocbb0acwQ6v5i0VWoEeGIKaF7fcw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:59:49 GMT
age: 11733
etag: "7bb8eb688c64b18a63cd78ec3c59079a65e6f9b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12294
Md5:    8b57e1aba0bce88ae13af9ccf60089bd
Sha1:   7bb8eb688c64b18a63cd78ec3c59079a65e6f9b7
Sha256: 84a48013d8c91a7ae77719feb3d5996409197bdafe93a9e6deb02dbeffe0cb4b