Report - sylvaintchale.com/

Report Overview

Submitted URL
sylvaintchale.com/
IP
62.116.130.8
ASN
#15456 InterNetX GmbH
Submitted
2022-12-08 19:28:20
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img.ui-portal.de	21604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	108 kB	23.38.200.165
s.uicdn.com	25781	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	16 kB	23.38.200.165
tgw.gmx.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	2.2 kB	217.72.199.35
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76
wa.gmx.net	68545	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	904 B	82.165.229.16
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
js.ui-portal.de	25004	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	164 kB	23.38.200.165
www.gmx.net	49214	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	915 B	71 kB	82.165.229.85
dl.gmx.net	41286	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	131 kB	23.38.200.165
sylvaintchale.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	655 B	857 B	62.116.130.8
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.34.4.233
epimetheus.navigator.gmx.net	48439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.0 kB	217.72.199.22

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-08	medium	sylvaintchale.com/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	js.ui-portal.de/prompt/permission/latest/connector.min.js?	6.7 kB	2023-03-08	2023-03-12
Pretty URL js.ui-portal.de/prompt/permission/latest/connector.min.js? IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-12 18:42:46 Times Seen1 Hash ec7ea47f4ddee73768e64af53da4eaec 06f4eeab8477950bed3a181b353bcbbf159b2149 6cf96008f7efbe709478519e738a9c29d941f80f3b257d3e2afd67e75e2bea64 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	698 B	2023-03-07	2023-04-20
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2023-04-20 15:53:09 Times Seen31 Hash 4a0e9fd635432ceab9a6d8dbeee072d6 42539c699d99339cc0e445b4a4ab8bb48b6e92d0 152e7b1fba33f8cb4139a84249d65be5dc2a901ec8d739b94e32fa0e8cc14b92 Loading...

	dl.gmx.net/tcf/live/v1/js/tcf-api.js	142 kB	2023-03-08	2023-11-06
Pretty URL dl.gmx.net/tcf/live/v1/js/tcf-api.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-11-06 11:27:56 Times Seen8 Hash 495f086eb6a6c749d16165453e7746a7 a6b9a0656ef8f535a675a5390f57c0dd766f0b61 37bb1694574121cdda4920206aab79fc9ac43a331c266a6759a441207d5cb2d4 Loading...

	js.ui-portal.de/c/eic/eic.js	9.1 kB	2023-03-07	2024-05-09
Pretty URL js.ui-portal.de/c/eic/eic.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-05-09 01:53:33 Times Seen369 Hash 09e0e16ca0343dcf589d1401ee0affb3 19e457ca522d59aa83e1de313781972654b25326 037d2f3dde88d30af81cc355ef86a1a192a0ce781da44b9c89419092c66fdc7f Loading...

	dl.gmx.net/permission/live/v1/ppp/js/permission-client.js	160 kB	2023-03-08	2023-03-14
Pretty URL dl.gmx.net/permission/live/v1/ppp/js/permission-client.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:39:01 Last Seen2023-03-14 03:49:22 Times Seen1 Hash ca4102685c1c82d87c36823a9b11e9fb 10dea9e4ab7aad88b60d046e465111b4b8f8c9f7 91e7b44a196d2011ae7df82c51ad77c86954a3199daba2a559f93956e5a98917 Loading...

	js.ui-portal.de/prompt/permission/latest/tracking.min.js	7.4 kB	2023-03-07	2024-05-09
Pretty URL js.ui-portal.de/prompt/permission/latest/tracking.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-05-09 01:53:33 Times Seen240 Hash 6f4daca24d71edd532e27eef87ef36d9 d7223b400fb9f896ac8ec4cadb765f22ceb1e4bb 10a4ffe3d65b0629d9d6340837de38ed0884538c7f168400fe367d65e67ea8f8 Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 15:43:23 Times Seen37510165 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	js.ui-portal.de/cat/product/partner-products/2.2.0/product.js	5.2 kB	2023-03-08	2024-05-09
Pretty URL js.ui-portal.de/cat/product/partner-products/2.2.0/product.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2024-05-09 01:53:33 Times Seen111 Hash fcaa8f918259255aec1848dbc993fffb 9a8901ab4390451168e1277d8a736dc28c28b398 e76838889d0a2660c7129aac22cae9dd3e045994f764b0990476ac3d6db6b398 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	388 B	2023-03-07	2024-05-09
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-05-09 01:53:32 Times Seen125 Hash 285efdcf951a565d743b69e7ff7585e1 dbc954407866af5e066e3ff6458eac964b29a0c7 a69be6c1f509d8e76b0946f0af8fdb70cddc3b67f9c2e6ec9eddd94f918f8e9a Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/daq.js	42 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/daq.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 2891048c63fb5bbe11bdaeeb0a8c13ad ec9a9852c5addc01ee07d8607bb3904678078c03 a2c6523166cc9bb7bb38c974b4f4b21b4ac06258e99962fac619b83dc550d37c Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	662 B	2023-03-07	2023-05-07
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2023-05-07 20:25:48 Times Seen35 Hash c5a09490037b804f1301a362524ebeb2 881919a6b27316352d06ce31038da6b207710a1f 1deb23052487878243176460890f75c5d008e5daa36e0859fba90e2cf4b3c090 Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545	5.5 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash a096a0c12c9bf017d7da3c3f61386df8 3ad0656fc1bb56bdd163a665a81d0edb030c5ac8 73143c7f9225040a3a98945decc138d0eeb343e40ebd3de7fa86e7eb3e8583e0 Loading...

	dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js	121 kB	2023-03-08	2023-03-14
Pretty URL dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:39:01 Last Seen2023-03-14 08:20:57 Times Seen1 Hash 936c73dcbae6467f2ad6b33a4f5e2caf 3acd968a0f3b42b6be98e12db27dfcbf863efab5 00b1bd18821bb376f21f377b41f6022de8f51262d57bd7cc8cfcf6acd3921f8a Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826	4.4 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 6fac2c4c3dc1b56c9b91c90d188c1350 8b2983c1ffaf7015f93ac46cbce5dc39a37aecce fe031dd149fd2272dd6d693b394d2529af98de0bf8c2c12f727d6f2e3cf5f226 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	715 B	2023-03-08	2023-03-08
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-08 22:39:01 Times Seen1 Hash de7cfe6346d9fc90a87170d786baeab7 3223d740bf0a36d6bdb0fbf449f1457a68f56991 d13610ef1cf699b64d9cb290176802b6957ee1adc7f58584153c11d44a7f8d97 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	371 B	2023-03-07	2024-05-09
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-05-09 01:53:33 Times Seen129 Hash cc3583521a71685b5c770356623684f6 13479ff61c012bbb29c7c70cdf78866a3d711571 9a6392a1e7536307a9b046005a9a0b67fba9b2b03d7cd00001657b6c9f5911e5 Loading...

	js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp	174 kB	2023-03-08	2023-03-13
Pretty URL js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-13 07:56:45 Times Seen1 Hash 6a9f32a705c8f61e080e90408cdc1a32 a9ba5f948e5204095895360cba74e8b1cc7b9306 e02532fdd969f80556f5e9342001c7d0ff6e904a4f2471f5c94d5b6a17200cdb Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826	4.3 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 753f5d3348b30fc57aa8b6b45fe512c5 6c2f5ab8437c38c0666ebd38de1a8a5edb79c00f c792c5434dd11447ef7fb4408dc1999c75056757b2899d6839b54f422f41e798 Loading...

HTTP Transactions (55)

URL IP Response Size

sylvaintchale.com/

62.116.130.8

200 OK

160 B

URL HTTP/1.1
sylvaintchale.com/
IP
62.116.130.8:0
ASN
#15456 InterNetX GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
160 B (160 bytes)
Hash
b05186f54f5e5273331991fbc8039ac8
fe161236212da31c9a0e7f4d1b88383bd5290737
6bf66f1a3c56c981fecb8c9d1b030112235f81c1e0869d102056f601221490ef

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: sylvaintchale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 17:27:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirector-ID: 39d6065ef04d65fb0d29249aa1854f1a36fa44c5437d5f81863e720835cfcdd6
IX-Cache-Status: EXPIRED

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6481
Expires: Thu, 08 Dec 2022 21:16:10 GMT
Date: Thu, 08 Dec 2022 19:28:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21415
Expires: Fri, 09 Dec 2022 01:25:04 GMT
Date: Thu, 08 Dec 2022 19:28:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5943
Expires: Thu, 08 Dec 2022 21:07:12 GMT
Date: Thu, 08 Dec 2022 19:28:09 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 19:08:13 GMT
content-type: application/json
age: 1196
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: MTqY5uiWB9eBhdizuymohoGPrHR3U21NiB9K0BniFJD/MLcjEwKbzJmtWY5GHoxlGRnNUo+TQMQ=
x-amz-request-id: NH548DS3CXQJPTV0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 18:49:55 GMT
age: 2294
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

sylvaintchale.com/favicon.ico

62.116.130.8

200 OK

160 B

URL HTTP/1.1
sylvaintchale.com/favicon.ico
IP
62.116.130.8:0
ASN
#15456 InterNetX GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
160 B (160 bytes)
Hash
b05186f54f5e5273331991fbc8039ac8
fe161236212da31c9a0e7f4d1b88383bd5290737
6bf66f1a3c56c981fecb8c9d1b030112235f81c1e0869d102056f601221490ef

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sylvaintchale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sylvaintchale.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 17:27:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirector-ID: e0616f66531e6755ecfe739fa98b95d1d4c7f6965c17fadb37639a3f8c36d559
IX-Cache-Status: MISS

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 19:28:09 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.gmx.net/produkte/homepage-mail/homepage-parken

82.165.229.85

301 Moved Permanently

266 B

URL HTTP/1.1
www.gmx.net/produkte/homepage-mail/homepage-parken
IP
82.165.229.85:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
266 B (266 bytes)
Hash
08fefeadf73ddb80967bc7ea0e147567
b12ac95e1f1777489bc8ecf086f8e5917689e480
a358963d10b812b7bc4ed024afd93408d083bdca8644b87bb8fe4f70a7069cf2

HTTP Headers

GET /produkte/homepage-mail/homepage-parken HTTP/1.1
Host: www.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sylvaintchale.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Dec 2022 19:28:09 GMT
Server: Apache
Location: https://www.gmx.net/produkte/homepage-mail/homepage-parken
Content-Length: 266
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 19:07:58 GMT
age: 1212
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6352
Cache-Control: max-age=141874
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:28:10 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:52:44 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.34.4.233

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.34.4.233:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2IiQnrGQIGeGFHjGuOnD8A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HbpCGDohMAT5auDHAr/iQWoo8vE=

js.ui-portal.de/cat/events/advent/2022/advent.css

23.38.200.165

200 OK

300 B

URL HTTP/2
js.ui-portal.de/cat/events/advent/2022/advent.css
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with CRLF line terminators
Size
300 B (300 bytes)
Hash
ffa490e877d39ab4dccca1758271e793
b7a02deaf8b4046911fa6f7f67e3e2f45ebdecf2
2164ea2c6bdea2f8f576a8cfd39c11cbc577366698ffa94d7d1312c1a7f32f97

HTTP Headers

GET /cat/events/advent/2022/advent.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
etag: "214-5eb61bfef4358"
last-modified: Wed, 19 Oct 2022 11:45:48 GMT
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 300
content-type: text/css
cache-control: public, max-age=458
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/components/5.10/components.js

23.38.200.165

200 OK

94 kB

URL HTTP/2
js.ui-portal.de/cat/components/5.10/components.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (356), with CRLF line terminators
Size
94 kB (93707 bytes)
Hash
bea02e9cf5bff5090ce6da2b7bf7fbf7
8bdcddb810e6f86c44f709c466ac9ccc69166e11
d0fa4e917277b45e093d0a35cb330921f61306a017019435d062c088df447bdf

HTTP Headers

GET /cat/components/5.10/components.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 05 Oct 2022 09:06:14 GMT
etag: "50b6c-5ea45e388769e"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 93707
cache-control: public, max-age=312
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/product/partner-products/2.2.0/product.css

23.38.200.165

200 OK

241 B

URL HTTP/2
js.ui-portal.de/cat/product/partner-products/2.2.0/product.css
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
241 B (241 bytes)
Hash
223a64437fbf799dc6b58559a6794c73
567ebae5035f31df63f094645a5a224a0bd369f4
5822831674e0a9f6bb20c3a87623a2d599651a5ba3276a2c67c4cba17beae707

HTTP Headers

GET /cat/product/partner-products/2.2.0/product.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
etag: "31e-5eb5d1e557414"
last-modified: Wed, 19 Oct 2022 06:14:16 GMT
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 241
content-type: text/css
cache-control: public, max-age=385
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/product/partner-products/2.2.0/product.js

23.38.200.165

200 OK

2.1 kB

URL HTTP/2
js.ui-portal.de/cat/product/partner-products/2.2.0/product.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (5132)
Size
2.1 kB (2146 bytes)
Hash
1b593f02aa66b3c7f0d0ad096e54daed
bb6eb55c379328355753f9e669f7245909629ded
1b9eb849af851a6a959976de509ae7d75ba46b26a73f87bd742913da2a2109cd

HTTP Headers

GET /cat/product/partner-products/2.2.0/product.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 13:01:46 GMT
etag: "1430-5eb62cf9dbcf9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2146
content-type: application/javascript
cache-control: public, max-age=359
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.gmx.net/produkte/homepage-mail/homepage-parken

82.165.229.85

301 Moved Permanently

70 kB

URL HTTP/2
www.gmx.net/produkte/homepage-mail/homepage-parken
IP
82.165.229.85:0
ASN
#8560 IONOS SE

File type
data
Size
70 kB (70089 bytes)
Hash
b90687ff2e00204d68242646ee05a97c
b6dd39bc9a7e7072ac00b878af0e6979195364c5
da42a809791ea75f8392973ba43e59de0a977ed6d7e4af91ba63a1df51cf8b09

HTTP Headers

GET /produkte/homepage-mail/homepage-parken HTTP/1.1
Host: www.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sylvaintchale.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Thu, 08 Dec 2022 19:28:10 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-type: text/html
location: https://www.gmx.net/produkte/homepage-mail/homepage-parken/
p3p: CP="{}"
set-cookie: TS72888fff027=08105a8158ab2000f1f7459d08861507f1fc161e03aaa73354eeb199777f3cc10c185dfeabad20bb08a715263a113000f64a4d9e06ff97c4b6ea44263c1b142cfce2d3afdeabdc7cef6ea67f6e9db143b1f421e6f6e0c290269e6ca2589778b0;Path=/
X-Firefox-Spdy: h2

img.ui-portal.de/cat/mdh/gmx/Domain%20parken/td_3900_gmx_mdh_parken_image_screen_01_sschlag_03.png

23.38.200.165

200 OK

6.9 kB

URL HTTP/2
img.ui-portal.de/cat/mdh/gmx/Domain%20parken/td_3900_gmx_mdh_parken_image_screen_01_sschlag_03.png
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
6.9 kB (6853 bytes)
Hash
7b744728bb4e38cf7cf8ad9e551b812d
b9fa0469b3823eb3b92cfe00b45b597b2d06a40b
ec38aa67222d76cb4910ade6f967c31913894d2487d8967b39c608701768468d

HTTP Headers

GET /cat/mdh/gmx/Domain%20parken/td_3900_gmx_mdh_parken_image_screen_01_sschlag_03.png HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 16 Aug 2019 13:02:09 GMT
etag: "1ac5-5903b991c9c5a"
server: Apache
accept-ranges: bytes
content-length: 6853
x-robots-tag: noindex
content-type: image/png
cache-control: public, max-age=44
date: Thu, 08 Dec 2022 19:28:11 GMT
X-Firefox-Spdy: h2

js.ui-portal.de/prompt/permission/latest/connector.min.js?

23.38.200.165

200 OK

2.4 kB

URL HTTP/2
js.ui-portal.de/prompt/permission/latest/connector.min.js?
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (6653)
Size
2.4 kB (2364 bytes)
Hash
1f5367d866293b8dda44f76d02962198
351ab490848e0db947eed72a7ad17f60755362bd
d51600ca1879967e94f45a05c5cd6569db794e3a92407e147fdace92aa53d57d

HTTP Headers

GET /prompt/permission/latest/connector.min.js? HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 12:25:33 GMT
etag: "1a27-5eaad41936ef6"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2364
content-type: application/javascript
cache-control: public, max-age=412
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff

23.38.200.165

200 OK

19 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 18880, version 2.137\012- data
Size
19 kB (18880 bytes)
Hash
65ef01dd5f041403d0b7357619a1f447
ed6c6ebbe03deb3cb59891cf28b57cca1f720b53
4cde34c1e366e3d7625d453914da07e72c137c195ec9191db06f41775e65a01b

HTTP Headers

GET /ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Jul 2017 09:59:36 GMT
etag: "49c0-5549492a91200-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=383584
date: Thu, 08 Dec 2022 19:28:11 GMT
content-length: 18880
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff

23.38.200.165

200 OK

25 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 25268, version 1.0\012- data
Size
25 kB (25268 bytes)
Hash
87dc856a4038eba42eb5bcf49ff85712
6a2aac951a11fc3523ca98e5df98b28de21c90d8
7ec51beb961db2999fe41a96a3212edc51d9aeeec5c9d374e39c7313d183d8a6

HTTP Headers

GET /ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 27 Feb 2014 04:45:48 GMT
etag: "62b4-4f35bfeb9b700-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=346370
date: Thu, 08 Dec 2022 19:28:11 GMT
content-length: 25268
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff

23.38.200.165

200 OK

25 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 25048, version 1.0\012- data
Size
25 kB (25048 bytes)
Hash
b9d01ac1742192a7c9d30f3fe346a9f4
7936f9a6690c04cec20cdd3b270bda83a613582b
8ca845a97256742debfc82004246fe03d97da1aae5b41b691b23d90b70df3910

HTTP Headers

GET /ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 27 Feb 2014 04:45:46 GMT
etag: "61d8-4f35bfe9b3280-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=346399
date: Thu, 08 Dec 2022 19:28:11 GMT
content-length: 25048
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff

23.38.200.165

200 OK

25 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 25020, version 1.0\012- data
Size
25 kB (25020 bytes)
Hash
3e5675c89f974f7811eeaf07e2dd5ba3
99d93e1e3636f86c85b0c7c4da2077b4f1ee010c
a1e5b0dd9cd90fe3ef3e24aea202819ee74693d62c00bac8e3fb7c837d8adbfe

HTTP Headers

GET /ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 27 Feb 2014 04:45:46 GMT
etag: "61bc-4f35bfe9b3280-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=346438
date: Thu, 08 Dec 2022 19:28:11 GMT
content-length: 25020
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/gmx.net/brand-410.svg

23.38.200.165

200 OK

3.1 kB

URL HTTP/2
img.ui-portal.de/cd/ci/gmx.net/brand-410.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (745)
Size
3.1 kB (3123 bytes)
Hash
a39f3f400b50dcab24915f52a5219dd8
80c6be5fa8a88ad47a8b1b21bde6cd61fb290a94
96b943ef67a4c2ce4d37c81b77df3fd92e65e7b3f5d78a118dea78bb911f1f10

HTTP Headers

GET /cd/ci/gmx.net/brand-410.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Dec 2019 14:40:24 GMT
etag: "2133-599fb6cc897f4"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 3123
content-type: image/svg+xml
cache-control: public, max-age=856
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/gmx.net/service-410.svg

23.38.200.165

200 OK

687 B

URL HTTP/2
img.ui-portal.de/cd/ci/gmx.net/service-410.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1034)
Size
687 B (687 bytes)
Hash
2c8088c832eaf122fbbbf19aff7fd118
ee0867d77e6a11ec0c554d92c94efa4b81f6300a
1af4a28013eb4bee8a963437a68a17cfda973684790db4a12f65b46341dca2d9

HTTP Headers

GET /cd/ci/gmx.net/service-410.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Dec 2019 14:40:24 GMT
etag: "61c-599fb6cc943d5"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 687
content-type: image/svg+xml
cache-control: public, max-age=1252
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/daq.js

23.38.200.165

200 OK

12 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/daq.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
HTML document, ASCII text, with very long lines (14989)
Size
12 kB (11516 bytes)
Hash
d3783ec8d701585e6ca82fcfb997866a
c9eb8eb93d9b2d037055fe14ae92a396b3404bfb
c6e38ee7ea70c7ae710f563fc88d683f4ff7e9610bacec6818169e39e0969912

HTTP Headers

GET /t/prod/iq/mam/scarlet/daq.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 08 Dec 2022 15:38:31 GMT
etag: "a261-5ef52d449db06-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 11516
content-type: application/javascript
cache-control: max-age=230
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/c/eic/eic.js

23.38.200.165

200 OK

2.8 kB

URL HTTP/2
js.ui-portal.de/c/eic/eic.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1112), with CRLF line terminators
Size
2.8 kB (2825 bytes)
Hash
aee00c21a7d54b0f487e8109cc76baf2
89ec6675e4f72178cbd22d83e08281581309689e
75fb8f3c45c0a9c8c600bfb61ebf993e83d02e5914d0e3b6e10156987e6270f0

HTTP Headers

GET /c/eic/eic.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Sep 2017 08:18:07 GMT
etag: "2380-55a13509fe826"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2825
content-type: application/javascript
cache-control: public, max-age=50236
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/gmx.net/brand-logo.svg

23.38.200.165

200 OK

453 B

URL HTTP/2
img.ui-portal.de/cd/ci/gmx.net/brand-logo.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (681), with CRLF line terminators
Size
453 B (453 bytes)
Hash
bbfe4a327f71e619c251f3b2583c6ab3
0075738a9d349020e3e8e18e9eab773733348c98
25fdabdb964d0e86f42b7c91125dfba131c1fd99970a8f2bae437fb2b8bb127e

HTTP Headers

GET /cd/ci/gmx.net/brand-logo.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 18 Jan 2018 13:10:53 GMT
etag: "2ab-5630cb19a6ac9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 453
content-type: image/svg+xml
cache-control: public, max-age=286
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp

23.38.200.165

200 OK

56 kB

URL HTTP/2
js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
C source, Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Size
56 kB (56260 bytes)
Hash
9ecf39c18be789499b773264bbe5af74
f32e239b0842f54e9de78dcb85cfe7856b1aaa41
9ad1ae4798476de2af38fe2c82e5ae0885443e780df4940acbc8d1f2cf2160cd

HTTP Headers

GET /tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 13:39:04 GMT
etag: "2a7bd-5e907d5cf0ec4"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 56260
cache-control: public, max-age=1155
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.gmx.net/tcf/live/v1/js/tcf-api.js

23.38.200.165

200 OK

44 kB

URL HTTP/2
dl.gmx.net/tcf/live/v1/js/tcf-api.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65473), with no line terminators
Size
44 kB (43629 bytes)
Hash
f42b209ca8dd5579f5c659cc9a42cc72
61c7c35ead88d38b9fd1fab25db229aeead2c834
bc23198257dfec4f2b9588cf56a483405db49864e4176197a0737534ccfd3101

HTTP Headers

GET /tcf/live/v1/js/tcf-api.js HTTP/1.1
Host: dl.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 10:20:10 GMT
etag: "22a2f-5ecf2e28944db"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 43629
content-type: application/javascript
cache-control: public, max-age=4190
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.gmx.net/permission/live/v1/ppp/js/permission-client.js

23.38.200.165

200 OK

48 kB

URL HTTP/2
dl.gmx.net/permission/live/v1/ppp/js/permission-client.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (60894)
Size
48 kB (48343 bytes)
Hash
603cdb3513183c82354275107d062ec9
ff0f031c6cc1f3ee6ca4928a0a7a2f444e8ab551
d31876a139cfbe55c04daab3aa6522aa9d1150d368f0b0cdd22acd7527b6cb6d

HTTP Headers

GET /permission/live/v1/ppp/js/permission-client.js HTTP/1.1
Host: dl.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 08 Dec 2022 13:12:27 GMT
etag: "270bb-5ef50c9e24454-gzip"
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 48343
content-type: application/javascript
cache-control: public, max-age=6836
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js

23.38.200.165

200 OK

38 kB

URL HTTP/2
dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (64654)
Size
38 kB (38022 bytes)
Hash
4b1f20e41b90aecd9f0e01f9bb2dcef2
7b0490d87cff1fe6566276781967d9f5f1651929
9decec17ef9097fb1603c091ffcdb557921d9590a7282ef5af904a43588646d4

HTTP Headers

GET /permission/live/v1/ppp/js/permission-client-compat.js HTTP/1.1
Host: dl.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: Apache
etag: "1d925-5ef50c9e253f4"
last-modified: Thu, 08 Dec 2022 13:12:27 GMT
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 38022
content-type: application/javascript
cache-control: public, max-age=6892
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/prompt/permission/latest/tracking.min.js

23.38.200.165

200 OK

3.0 kB

URL HTTP/2
js.ui-portal.de/prompt/permission/latest/tracking.min.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (7391)
Size
3.0 kB (2963 bytes)
Hash
1b696a42b6df4ab8815419948f9e1bcb
df4ebc0a4fd4c37b6abe6a29bdfce28318f830ed
8326a643207d26d16d5a4419a0df2695a8cd54c35d583fc196da1fda7a01483b

HTTP Headers

GET /prompt/permission/latest/tracking.min.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 13:51:05 GMT
etag: "1d08-5c4f67fa0c14d"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2963
content-type: application/javascript
cache-control: public, max-age=364
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826

23.38.200.165

200 OK

1.8 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1159)
Size
1.8 kB (1819 bytes)
Hash
6d37f3cba04f5f3519de55bf6331484c
b4b9c78c1d0b27b7dfa9f614353b22de75c6407b
398e7ae148da69c2f0b46fcb2ef0d1100618f0c526b8484cf80e2910d216fa69

HTTP Headers

GET /t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 08 Dec 2022 15:38:31 GMT
etag: "10a9-5ef52d449db06-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1819
content-type: application/javascript
cache-control: max-age=369
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826

23.38.200.165

200 OK

1.9 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1128)
Size
1.9 kB (1851 bytes)
Hash
c90c0941490f924fba47f73a5f7cd4eb
8331f6208c5290a9c42037e8ed026c9a2791ed55
8ddaae7ef130195149ecef9ae85c545c28aebb8fc555fbc1c558787563a8adac

HTTP Headers

GET /t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 08 Dec 2022 15:38:31 GMT
etag: "1101-5ef52d449db06-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1851
content-type: application/javascript
cache-control: max-age=273
date: Thu, 08 Dec 2022 19:28:11 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

tgw.gmx.net/events

217.72.199.35

200 OK

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.gmx.net/
Origin: https://www.gmx.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Date: Thu, 08 Dec 2022 19:28:11 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

tgw.gmx.net/events

217.72.199.35

200 OK

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.gmx.net/
Origin: https://www.gmx.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Date: Thu, 08 Dec 2022 19:28:11 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2237
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 19:28:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2237
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 19:28:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2237
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 19:28:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2237
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 19:28:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2237
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 19:28:11 GMT
Connection: keep-alive

tgw.gmx.net/events

217.72.199.35

202 Accepted

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/vnd.PageViewEvent-v3+json
Content-Length: 1044
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Content-Md5: 1B2M2Y8AsgTpgAmY7PhCfg==
Date: Thu, 08 Dec 2022 19:28:11 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12534 bytes)
Hash
57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 73453
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6557 bytes)
Hash
210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: etWGqF-8tXSwaeZVTPK4g9CV5ZbdYv5ZDjF5Yx2PSNnTsreewpbhdA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:48:08 GMT
age: 38403
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tgw.gmx.net/events

217.72.199.35

202 Accepted

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/vnd.userevent-v3+json
Content-Length: 1120
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Content-Md5: 1B2M2Y8AsgTpgAmY7PhCfg==
Date: Thu, 08 Dec 2022 19:28:11 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7801 bytes)
Hash
8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 72696
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8659 bytes)
Hash
b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 71692
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7268 bytes)
Hash
24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 72926
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9596 bytes)
Hash
c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 76009
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.expose.homepage-parken.page.1.footer.3&brand=gmx&portal=gmx&country=de&ts=1670527690868&eventType=expose&componentPath=page.1.footer.3&componentLabel=Sitemap%2520Impressum%2520AGB%2520Vertr%25E4ge%2520hier%2520k%25FCndigen%2520Datenschutz%2520E-Mail%2520N%25FCtzlich%2520Aktuell&domTagName=footer&referrer=http%3A%2F%2Fsylvaintchale.com%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&type=hidden

82.165.229.16

200 OK

43 B

URL HTTP/2
wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.expose.homepage-parken.page.1.footer.3&brand=gmx&portal=gmx&country=de&ts=1670527690868&eventType=expose&componentPath=page.1.footer.3&componentLabel=Sitemap%2520Impressum%2520AGB%2520Vertr%25E4ge%2520hier%2520k%25FCndigen%2520Datenschutz%2520E-Mail%2520N%25FCtzlich%2520Aktuell&domTagName=footer&referrer=http%3A%2F%2Fsylvaintchale.com%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&type=hidden
IP
82.165.229.16:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

POST /gmx/gmx/s?name=produkte.homepage-mail.expose.homepage-parken.page.1.footer.3&brand=gmx&portal=gmx&country=de&ts=1670527690868&eventType=expose&componentPath=page.1.footer.3&componentLabel=Sitemap%2520Impressum%2520AGB%2520Vertr%25E4ge%2520hier%2520k%25FCndigen%2520Datenschutz%2520E-Mail%2520N%25FCtzlich%2520Aktuell&domTagName=footer&referrer=http%3A%2F%2Fsylvaintchale.com%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&type=hidden HTTP/1.1
Host: wa.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Content-Length: 0

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:28:11 GMT
server: Apache
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
vary: X-Forwarded-For
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2

wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken&brand=gmx&portal=gmx&referrer=http%3A%2F%2Fsylvaintchale.com%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1670527690859&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&op_id=none&product=homepage-mail&type=view

82.165.229.16

200 OK

43 B

URL HTTP/2
wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken&brand=gmx&portal=gmx&referrer=http%3A%2F%2Fsylvaintchale.com%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1670527690859&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&op_id=none&product=homepage-mail&type=view
IP
82.165.229.16:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

GET /gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken&brand=gmx&portal=gmx&referrer=http%3A%2F%2Fsylvaintchale.com%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1670527690859&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&op_id=none&product=homepage-mail&type=view HTTP/1.1
Host: wa.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:28:11 GMT
server: Apache
set-cookie: wa=opt-out; path=/; domain=.gmx.net; expires=Fri, 08-Dec-2023 19:28:11 GMT; secure; HttpOnly
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
vary: X-Forwarded-For
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2

epimetheus.navigator.gmx.net/monitoring

217.72.199.22

202 Accepted

2 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /monitoring HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 185
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Content-Type: application/json
Date: Thu, 08 Dec 2022 19:28:13 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-5c8f89644c-lzvsx
X-App-Version: 1.9.2
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Transfer-Encoding: chunked

epimetheus.navigator.gmx.net/monitoring/compat

217.72.199.22

204 No Content

0 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring/compat
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /monitoring/compat HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 62
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Thu, 08 Dec 2022 19:28:13 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-5c8f89644c-nsf7s
X-App-Version: 1.9.2
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

epimetheus.navigator.gmx.net/monitoring/compat

217.72.199.22

204 No Content

0 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring/compat
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /monitoring/compat HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 61
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Thu, 08 Dec 2022 19:28:13 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-5c8f89644c-qqjg8
X-App-Version: 1.9.2
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP