Report - erhansezen.de/

Report Overview

Submitted URL
erhansezen.de/
IP
217.160.0.155
ASN
#8560 IONOS SE
Submitted
2022-11-26 03:23:13
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
img.ui-portal.de	21604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	101 kB	23.38.200.165
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
s.uicdn.com	25781	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	18 kB	23.38.200.165
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	49 kB	34.120.237.76
ocsp.serverpass.telesec.de	29467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	7.1 kB	80.158.50.254
www.gmx.net	49214	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	78 kB	82.165.229.46
wa.gmx.net	68545	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	904 B	82.165.229.16
epimetheus.navigator.gmx.net	48439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.0 kB	217.72.199.22
erhansezen.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	966 B	217.160.0.155
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
tgw.gmx.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	2.2 kB	217.72.199.35
js.ui-portal.de	25004	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	163 kB	23.38.200.165
dl.gmx.net	41286	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	131 kB	23.38.200.165

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	erhansezen.de/	Phishing
2022-11-26	medium	erhansezen.de/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.gmx.net/produkte/homepage-mail/homepage-parken/	715 B	2023-03-11	2023-03-11
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 82.165.229.46 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:25:50 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 94482f1457f5ab4e47710b025988487f 5c77a6691d2ea0c62f7af056117e9acc847d9673 993024504b958b150f077a80a97051f937e4776cf99f1cc5a2329aebe6ce95ef Loading...

	dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js	120 kB	2023-03-08	2023-03-11
Pretty URL dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash f30b68e8d906717b1944c54fa30640f9 b04e9f956cdc7c28505b83b7438d8db8241c8c95 6ad7598fd8a23b09375efc03d514bb2750b70491a0fedc93100d63e251bbe4af Loading...

	dl.gmx.net/permission/live/v1/ppp/js/permission-client.js	159 kB	2023-03-08	2023-03-11
Pretty URL dl.gmx.net/permission/live/v1/ppp/js/permission-client.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 8ae81e53cbb84dd7c7373f8242eeca44 f52c0c9e4c384f90ddc3c5405bdca9d10da582b9 dac0b2e4fe9494bd12852e5c3d837699bd365e6cfb2a6fdd3656e228ed2ac7e1 Loading...

	js.ui-portal.de/prompt/permission/latest/tracking.min.js	7.4 kB	2023-03-07	2024-04-25
Pretty URL js.ui-portal.de/prompt/permission/latest/tracking.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-25 15:48:51 Times Seen234 Hash 6f4daca24d71edd532e27eef87ef36d9 d7223b400fb9f896ac8ec4cadb765f22ceb1e4bb 10a4ffe3d65b0629d9d6340837de38ed0884538c7f168400fe367d65e67ea8f8 Loading...

	js.ui-portal.de/cat/product/partner-products/2.2.0/product.js	5.2 kB	2023-03-08	2024-04-25
Pretty URL js.ui-portal.de/cat/product/partner-products/2.2.0/product.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2024-04-25 15:48:51 Times Seen105 Hash fcaa8f918259255aec1848dbc993fffb 9a8901ab4390451168e1277d8a736dc28c28b398 e76838889d0a2660c7129aac22cae9dd3e045994f764b0990476ac3d6db6b398 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	388 B	2023-03-07	2024-04-25
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 82.165.229.46 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-25 15:48:51 Times Seen122 Hash 285efdcf951a565d743b69e7ff7585e1 dbc954407866af5e066e3ff6458eac964b29a0c7 a69be6c1f509d8e76b0946f0af8fdb70cddc3b67f9c2e6ec9eddd94f918f8e9a Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	698 B	2023-03-07	2023-04-20
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 82.165.229.46 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2023-04-20 15:53:09 Times Seen31 Hash 4a0e9fd635432ceab9a6d8dbeee072d6 42539c699d99339cc0e445b4a4ab8bb48b6e92d0 152e7b1fba33f8cb4139a84249d65be5dc2a901ec8d739b94e32fa0e8cc14b92 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	371 B	2023-03-07	2024-04-25
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 82.165.229.46 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-25 15:48:51 Times Seen126 Hash cc3583521a71685b5c770356623684f6 13479ff61c012bbb29c7c70cdf78866a3d711571 9a6392a1e7536307a9b046005a9a0b67fba9b2b03d7cd00001657b6c9f5911e5 Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/daq.js	42 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/daq.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 2891048c63fb5bbe11bdaeeb0a8c13ad ec9a9852c5addc01ee07d8607bb3904678078c03 a2c6523166cc9bb7bb38c974b4f4b21b4ac06258e99962fac619b83dc550d37c Loading...

	js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp	174 kB	2023-03-08	2023-03-13
Pretty URL js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-13 07:56:45 Times Seen1 Hash 6a9f32a705c8f61e080e90408cdc1a32 a9ba5f948e5204095895360cba74e8b1cc7b9306 e02532fdd969f80556f5e9342001c7d0ff6e904a4f2471f5c94d5b6a17200cdb Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826	4.3 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 753f5d3348b30fc57aa8b6b45fe512c5 6c2f5ab8437c38c0666ebd38de1a8a5edb79c00f c792c5434dd11447ef7fb4408dc1999c75056757b2899d6839b54f422f41e798 Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826	4.4 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash 6fac2c4c3dc1b56c9b91c90d188c1350 8b2983c1ffaf7015f93ac46cbce5dc39a37aecce fe031dd149fd2272dd6d693b394d2529af98de0bf8c2c12f727d6f2e3cf5f226 Loading...

	js.ui-portal.de/prompt/permission/latest/connector.min.js?	6.7 kB	2023-03-08	2023-03-12
Pretty URL js.ui-portal.de/prompt/permission/latest/connector.min.js? IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-12 18:42:46 Times Seen1 Hash ec7ea47f4ddee73768e64af53da4eaec 06f4eeab8477950bed3a181b353bcbbf159b2149 6cf96008f7efbe709478519e738a9c29d941f80f3b257d3e2afd67e75e2bea64 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 21:58:42 Times Seen37102230 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gmx.net/produkte/homepage-mail/homepage-parken/	662 B	2023-03-07	2023-05-07
Pretty URL www.gmx.net/produkte/homepage-mail/homepage-parken/ IP 82.165.229.46 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2023-05-07 20:25:48 Times Seen35 Hash c5a09490037b804f1301a362524ebeb2 881919a6b27316352d06ce31038da6b207710a1f 1deb23052487878243176460890f75c5d008e5daa36e0859fba90e2cf4b3c090 Loading...

	js.ui-portal.de/c/eic/eic.js	9.1 kB	2023-03-07	2024-04-25
Pretty URL js.ui-portal.de/c/eic/eic.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:30 Last Seen2024-04-25 15:48:51 Times Seen363 Hash 09e0e16ca0343dcf589d1401ee0affb3 19e457ca522d59aa83e1de313781972654b25326 037d2f3dde88d30af81cc355ef86a1a192a0ce781da44b9c89419092c66fdc7f Loading...

	dl.gmx.net/tcf/live/v1/js/tcf-api.js	142 kB	2023-03-08	2023-11-06
Pretty URL dl.gmx.net/tcf/live/v1/js/tcf-api.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-11-06 11:27:56 Times Seen8 Hash 495f086eb6a6c749d16165453e7746a7 a6b9a0656ef8f535a675a5390f57c0dd766f0b61 37bb1694574121cdda4920206aab79fc9ac43a331c266a6759a441207d5cb2d4 Loading...

	s.uicdn.com/t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545	5.5 kB	2023-03-08	2023-03-11
Pretty URL s.uicdn.com/t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:42:32 Last Seen2023-03-11 20:25:50 Times Seen1 Hash a096a0c12c9bf017d7da3c3f61386df8 3ad0656fc1bb56bdd163a665a81d0edb030c5ac8 73143c7f9225040a3a98945decc138d0eeb343e40ebd3de7fa86e7eb3e8583e0 Loading...

HTTP Transactions (57)

URL IP Response Size

erhansezen.de/

217.160.0.155

302 Moved Temporarily

138 B

URL HTTP/1.1
erhansezen.de/
IP
217.160.0.155:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
138 B (138 bytes)
Hash
aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: erhansezen.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 26 Nov 2022 03:23:01 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://erhansezen.de/
Expires: Sat, 26 Nov 2022 03:43:01 GMT
Cache-Control: max-age=1200

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7108
Expires: Sat, 26 Nov 2022 05:21:29 GMT
Date: Sat, 26 Nov 2022 03:23:01 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2236
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:23:01 GMT
Last-Modified: Sat, 26 Nov 2022 02:45:46 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 03:19:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 230
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9487
Expires: Sat, 26 Nov 2022 06:01:09 GMT
Date: Sat, 26 Nov 2022 03:23:02 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: lydBzdTYQRxbSHpDw1uQBntJJ4bXqLngrUBl9wUkq1PWLrX2qSFD3bNE/hYGC7yIHs0oBU9vmbI=
x-amz-request-id: 82HMY578VK0QZNSJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 02:41:02 GMT
age: 2520
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 03:23:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 03:11:11 GMT
cache-control: public,max-age=3600
age: 711
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
7a52144e8dcbbaa43f0829479b4fbe7a
b462471f0ab86db89234278deecaeabcac9f44af
7dc3a5886033f1241b175cb65ce5f6b9b240408dccbe98c462c67d6a715f95a7

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:23:02 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2664
Cache-Control: max-age=109693
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:23:02 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:51:15 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

js.ui-portal.de/cat/product/partner-products/2.2.0/product.css

23.38.200.165

200 OK

241 B

URL HTTP/2
js.ui-portal.de/cat/product/partner-products/2.2.0/product.css
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
241 B (241 bytes)
Hash
223a64437fbf799dc6b58559a6794c73
567ebae5035f31df63f094645a5a224a0bd369f4
5822831674e0a9f6bb20c3a87623a2d599651a5ba3276a2c67c4cba17beae707

HTTP Headers

GET /cat/product/partner-products/2.2.0/product.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 06:14:16 GMT
etag: "31e-5eb5d1e557414"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 241
content-type: text/css
cache-control: public, max-age=959
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/prompt/permission/latest/connector.min.js?

23.38.200.165

200 OK

2.4 kB

URL HTTP/2
js.ui-portal.de/prompt/permission/latest/connector.min.js?
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (6653)
Size
2.4 kB (2364 bytes)
Hash
1f5367d866293b8dda44f76d02962198
351ab490848e0db947eed72a7ad17f60755362bd
d51600ca1879967e94f45a05c5cd6569db794e3a92407e147fdace92aa53d57d

HTTP Headers

GET /prompt/permission/latest/connector.min.js? HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 12:25:33 GMT
etag: "1a27-5eaad41936ef6"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2364
content-type: application/javascript
cache-control: public, max-age=258
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/product/partner-products/2.2.0/product.js

23.38.200.165

200 OK

2.1 kB

URL HTTP/2
js.ui-portal.de/cat/product/partner-products/2.2.0/product.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (5132)
Size
2.1 kB (2146 bytes)
Hash
1b593f02aa66b3c7f0d0ad096e54daed
bb6eb55c379328355753f9e669f7245909629ded
1b9eb849af851a6a959976de509ae7d75ba46b26a73f87bd742913da2a2109cd

HTTP Headers

GET /cat/product/partner-products/2.2.0/product.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 19 Oct 2022 13:01:46 GMT
etag: "1430-5eb62cf9dbcf9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2146
content-type: application/javascript
cache-control: public, max-age=712
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/cat/components/5.10/components.js

23.38.200.165

200 OK

94 kB

URL HTTP/2
js.ui-portal.de/cat/components/5.10/components.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (356), with CRLF line terminators
Size
94 kB (93707 bytes)
Hash
bea02e9cf5bff5090ce6da2b7bf7fbf7
8bdcddb810e6f86c44f709c466ac9ccc69166e11
d0fa4e917277b45e093d0a35cb330921f61306a017019435d062c088df447bdf

HTTP Headers

GET /cat/components/5.10/components.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 05 Oct 2022 09:06:14 GMT
etag: "50b6c-5ea45e388769e"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 93707
cache-control: public, max-age=330
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.gmx.net/produkte/homepage-mail/homepage-parken/

82.165.229.46

200 OK

70 kB

URL HTTP/2
www.gmx.net/produkte/homepage-mail/homepage-parken/
IP
82.165.229.46:0
ASN
#8560 IONOS SE

File type
data
Size
70 kB (69930 bytes)
Hash
1841c7c1c433231249fe1136862364ad
bfe653ac99a6282029721bfa338cd3d23e61fac2
0868b513f0e26b64b60c8b687b42a92c7ca812bc300202a23bd9d8728c5fe154

HTTP Headers

GET /produkte/homepage-mail/homepage-parken/ HTTP/1.1
Host: www.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://erhansezen.de/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:23:02 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-type: text/html;charset=UTF-8
rtss: 1-*-2
vary: Origin,Accept-Encoding
cache-control: private
set-cookie: BSSLB=.1; path=/; domain=.gmx.net
JSESSIONID=3DE3CBAF30618E2502E9DD0FA2978BA6; Path=/; Secure; HttpOnly
route_mamcms=pXv3o5U3fh4JhPjPbNWJzhAVikkC9KefuS2hZuH7xf; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2

www.gmx.net/produkte/homepage-mail/homepage-parken

82.165.229.46

301 Moved Permanently

7.0 kB

URL HTTP/2
www.gmx.net/produkte/homepage-mail/homepage-parken
IP
82.165.229.46:0
ASN
#8560 IONOS SE

File type
data
Size
7.0 kB (7015 bytes)
Hash
3b06d8ecc81f1b34fc29e8128a64fa00
a3d98c5de2f8838880595deca7c7964e022b03f6
e7dbebb4f2624530d11b7b86891764afd1c1522653644539cf24c37ded55998c

HTTP Headers

GET /produkte/homepage-mail/homepage-parken HTTP/1.1
Host: www.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://erhansezen.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sat, 26 Nov 2022 03:23:02 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-type: text/html
location: https://www.gmx.net/produkte/homepage-mail/homepage-parken/
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff

23.38.200.165

200 OK

19 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 18880, version 2.137\012- data
Size
19 kB (18880 bytes)
Hash
65ef01dd5f041403d0b7357619a1f447
ed6c6ebbe03deb3cb59891cf28b57cca1f720b53
4cde34c1e366e3d7625d453914da07e72c137c195ec9191db06f41775e65a01b

HTTP Headers

GET /ci/gmx/global/fonts/roboto/RobotoCondensed-Light-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Jul 2017 09:59:36 GMT
etag: "49c0-5549492a91200-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1478293
date: Sat, 26 Nov 2022 03:23:02 GMT
content-length: 18880
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff

23.38.200.165

200 OK

25 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 25268, version 1.0\012- data
Size
25 kB (25268 bytes)
Hash
87dc856a4038eba42eb5bcf49ff85712
6a2aac951a11fc3523ca98e5df98b28de21c90d8
7ec51beb961db2999fe41a96a3212edc51d9aeeec5c9d374e39c7313d183d8a6

HTTP Headers

GET /ci/gmx/global/fonts/roboto/RobotoCondensed-Regular-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 27 Feb 2014 04:45:48 GMT
etag: "62b4-4f35bfeb9b700-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1441079
date: Sat, 26 Nov 2022 03:23:02 GMT
content-length: 25268
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff

23.38.200.165

200 OK

25 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 25048, version 1.0\012- data
Size
25 kB (25048 bytes)
Hash
b9d01ac1742192a7c9d30f3fe346a9f4
7936f9a6690c04cec20cdd3b270bda83a613582b
8ca845a97256742debfc82004246fe03d97da1aae5b41b691b23d90b70df3910

HTTP Headers

GET /ci/gmx/global/fonts/roboto/Roboto-Medium-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 27 Feb 2014 04:45:46 GMT
etag: "61d8-4f35bfe9b3280-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1441108
date: Sat, 26 Nov 2022 03:23:02 GMT
content-length: 25048
X-Firefox-Spdy: h2

img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff

23.38.200.165

200 OK

25 kB

URL HTTP/2
img.ui-portal.de/ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 25020, version 1.0\012- data
Size
25 kB (25020 bytes)
Hash
3e5675c89f974f7811eeaf07e2dd5ba3
99d93e1e3636f86c85b0c7c4da2077b4f1ee010c
a1e5b0dd9cd90fe3ef3e24aea202819ee74693d62c00bac8e3fb7c837d8adbfe

HTTP Headers

GET /ci/gmx/global/fonts/roboto/Roboto-Regular-webfont.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 27 Feb 2014 04:45:46 GMT
etag: "61bc-4f35bfe9b3280-gzip"
server: Apache
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=1441147
date: Sat, 26 Nov 2022 03:23:02 GMT
content-length: 25020
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/gmx.net/brand-logo.svg

23.38.200.165

200 OK

453 B

URL HTTP/2
img.ui-portal.de/cd/ci/gmx.net/brand-logo.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (681), with CRLF line terminators
Size
453 B (453 bytes)
Hash
bbfe4a327f71e619c251f3b2583c6ab3
0075738a9d349020e3e8e18e9eab773733348c98
25fdabdb964d0e86f42b7c91125dfba131c1fd99970a8f2bae437fb2b8bb127e

HTTP Headers

GET /cd/ci/gmx.net/brand-logo.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 18 Jan 2018 13:10:53 GMT
etag: "2ab-5630cb19a6ac9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 453
content-type: image/svg+xml
cache-control: public, max-age=1322
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/gmx.net/brand-410.svg

23.38.200.165

200 OK

3.1 kB

URL HTTP/2
img.ui-portal.de/cd/ci/gmx.net/brand-410.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (745)
Size
3.1 kB (3123 bytes)
Hash
a39f3f400b50dcab24915f52a5219dd8
80c6be5fa8a88ad47a8b1b21bde6cd61fb290a94
96b943ef67a4c2ce4d37c81b77df3fd92e65e7b3f5d78a118dea78bb911f1f10

HTTP Headers

GET /cd/ci/gmx.net/brand-410.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Dec 2019 14:40:24 GMT
etag: "2133-599fb6cc897f4"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 3123
content-type: image/svg+xml
cache-control: public, max-age=1186
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/gmx.net/service-410.svg

23.38.200.165

200 OK

687 B

URL HTTP/2
img.ui-portal.de/cd/ci/gmx.net/service-410.svg
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1034)
Size
687 B (687 bytes)
Hash
2c8088c832eaf122fbbbf19aff7fd118
ee0867d77e6a11ec0c554d92c94efa4b81f6300a
1af4a28013eb4bee8a963437a68a17cfda973684790db4a12f65b46341dca2d9

HTTP Headers

GET /cd/ci/gmx.net/service-410.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Dec 2019 14:40:24 GMT
etag: "61c-599fb6cc943d5"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 687
content-type: image/svg+xml
cache-control: public, max-age=564
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/daq.js

23.38.200.165

200 OK

12 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/daq.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
HTML document, ASCII text, with very long lines (14989)
Size
12 kB (11516 bytes)
Hash
d3783ec8d701585e6ca82fcfb997866a
c9eb8eb93d9b2d037055fe14ae92a396b3404bfb
c6e38ee7ea70c7ae710f563fc88d683f4ff7e9610bacec6818169e39e0969912

HTTP Headers

GET /t/prod/iq/mam/scarlet/daq.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 24 Nov 2022 13:09:07 GMT
etag: "a261-5ee371c3c2500-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 11516
content-type: application/javascript
cache-control: max-age=382
date: Sat, 26 Nov 2022 03:23:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/c/eic/eic.js

23.38.200.165

200 OK

2.8 kB

URL HTTP/2
js.ui-portal.de/c/eic/eic.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1112), with CRLF line terminators
Size
2.8 kB (2825 bytes)
Hash
aee00c21a7d54b0f487e8109cc76baf2
89ec6675e4f72178cbd22d83e08281581309689e
75fb8f3c45c0a9c8c600bfb61ebf993e83d02e5914d0e3b6e10156987e6270f0

HTTP Headers

GET /c/eic/eic.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 26 Sep 2017 08:18:07 GMT
etag: "2380-55a13509fe826"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2825
content-type: application/javascript
cache-control: public, max-age=55478
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp

23.38.200.165

200 OK

56 kB

URL HTTP/2
js.ui-portal.de/tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
C source, Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Size
56 kB (56260 bytes)
Hash
9ecf39c18be789499b773264bbe5af74
f32e239b0842f54e9de78dcb85cfe7856b1aaa41
9ad1ae4798476de2af38fe2c82e5ae0885443e780df4940acbc8d1f2cf2160cd

HTTP Headers

GET /tamago/1.4.7/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 13:39:04 GMT
etag: "2a7bd-5e907d5cf0ec4"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 56260
cache-control: public, max-age=950
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.gmx.net/tcf/live/v1/js/tcf-api.js

23.38.200.165

200 OK

44 kB

URL HTTP/2
dl.gmx.net/tcf/live/v1/js/tcf-api.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65473), with no line terminators
Size
44 kB (43629 bytes)
Hash
f42b209ca8dd5579f5c659cc9a42cc72
61c7c35ead88d38b9fd1fab25db229aeead2c834
bc23198257dfec4f2b9588cf56a483405db49864e4176197a0737534ccfd3101

HTTP Headers

GET /tcf/live/v1/js/tcf-api.js HTTP/1.1
Host: dl.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 10:20:10 GMT
etag: "22a2f-5ecf2e28944db-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 43629
content-type: application/javascript
cache-control: public, max-age=26985
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545

23.38.200.165

200 OK

1.9 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (2891)
Size
1.9 kB (1852 bytes)
Hash
a17c63d9aa67731426e1189c57f6d599
66b9c5b307d172d0e11d772bd0fb51c942b5b80f
d401fefdfd6d29cd502457e4c6f21cced71dcb71056c52145c79495907d61bcc

HTTP Headers

GET /t/prod/iq/mam/scarlet/utag.90.js?utv=ut4.48.202210170545 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 24 Nov 2022 13:09:07 GMT
etag: "1570-5ee371c3c2500-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1852
content-type: application/javascript
cache-control: max-age=393
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

erhansezen.de/favicon.ico

217.160.0.155

404 Not Found

172 B

URL HTTP/2
erhansezen.de/favicon.ico
IP
217.160.0.155:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
172 B (172 bytes)
Hash
e796f37d7bd470e2eabc2644b62b73af
2c7fa79ac161e6bfbc0b1b55a21ec2ad27c14fee
a82d2ea26e678d94a5b295b0243f250a9be994357d60633feff72d1e90a2b788

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: erhansezen.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://erhansezen.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Sat, 26 Nov 2022 03:23:02 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2

dl.gmx.net/permission/live/v1/ppp/js/permission-client.js

23.38.200.165

200 OK

48 kB

URL HTTP/2
dl.gmx.net/permission/live/v1/ppp/js/permission-client.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (60894)
Size
48 kB (48064 bytes)
Hash
72a3c59d81939d188b2858746bff44e8
cbd5385369dd8a135ec7817e49af19a905cbc13c
00d9bc31b826904bf9602facc0ccb72b41413db29e76ca458a329c58847e927e

HTTP Headers

GET /permission/live/v1/ppp/js/permission-client.js HTTP/1.1
Host: dl.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 08:35:18 GMT
etag: "26bc7-5ebc3abdbd9de"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 48064
content-type: application/javascript
cache-control: public, max-age=24878
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js

23.38.200.165

200 OK

38 kB

URL HTTP/2
dl.gmx.net/permission/live/v1/ppp/js/permission-client-compat.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (64654)
Size
38 kB (37948 bytes)
Hash
de21a830e3da788d687806a470510fed
100023b6b63da7807e382ea4982eb711f728174a
e2d8f3dc36715fcb4257f80cedd263a131f5ac8b5ad731dfdf8e76859934f21c

HTTP Headers

GET /permission/live/v1/ppp/js/permission-client-compat.js HTTP/1.1
Host: dl.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 08:35:18 GMT
etag: "1d65f-5ebc3abdbe97e"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 37948
content-type: application/javascript
cache-control: public, max-age=5059
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/prompt/permission/latest/tracking.min.js

23.38.200.165

200 OK

3.0 kB

URL HTTP/2
js.ui-portal.de/prompt/permission/latest/tracking.min.js
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (7391)
Size
3.0 kB (2963 bytes)
Hash
1b696a42b6df4ab8815419948f9e1bcb
df4ebc0a4fd4c37b6abe6a29bdfce28318f830ed
8326a643207d26d16d5a4419a0df2695a8cd54c35d583fc196da1fda7a01483b

HTTP Headers

GET /prompt/permission/latest/tracking.min.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 13:51:05 GMT
etag: "1d08-5c4f67fa0c14d"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 2963
content-type: application/javascript
cache-control: public, max-age=285
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826

23.38.200.165

200 OK

1.8 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1159)
Size
1.8 kB (1819 bytes)
Hash
6d37f3cba04f5f3519de55bf6331484c
b4b9c78c1d0b27b7dfa9f614353b22de75c6407b
398e7ae148da69c2f0b46fcb2ef0d1100618f0c526b8484cf80e2910d216fa69

HTTP Headers

GET /t/prod/iq/mam/scarlet/utag.18.js?utv=ut4.48.202210270826 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 24 Nov 2022 13:09:07 GMT
etag: "10a9-5ee371c3c2500-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1819
content-type: application/javascript
cache-control: max-age=86
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826

23.38.200.165

200 OK

1.9 kB

URL HTTP/2
s.uicdn.com/t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1128)
Size
1.9 kB (1851 bytes)
Hash
c90c0941490f924fba47f73a5f7cd4eb
8331f6208c5290a9c42037e8ed026c9a2791ed55
8ddaae7ef130195149ecef9ae85c545c28aebb8fc555fbc1c558787563a8adac

HTTP Headers

GET /t/prod/iq/mam/scarlet/utag.29.js?utv=ut4.48.202210270826 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 24 Nov 2022 13:09:07 GMT
etag: "1101-5ee371c3c2500-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1851
content-type: application/javascript
cache-control: max-age=45
date: Sat, 26 Nov 2022 03:23:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.expose.homepage-parken.page.1.footer.3&brand=gmx&portal=gmx&country=de&ts=1669432982436&eventType=expose&componentPath=page.1.footer.3&componentLabel=Sitemap%2520Impressum%2520AGB%2520Vertr%25E4ge%2520hier%2520k%25FCndigen%2520Datenschutz%2520E-Mail%2520N%25FCtzlich%2520Aktuell&domTagName=footer&referrer=https%3A%2F%2Ferhansezen.de%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&type=hidden

82.165.229.16

200 OK

43 B

URL HTTP/2
wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.expose.homepage-parken.page.1.footer.3&brand=gmx&portal=gmx&country=de&ts=1669432982436&eventType=expose&componentPath=page.1.footer.3&componentLabel=Sitemap%2520Impressum%2520AGB%2520Vertr%25E4ge%2520hier%2520k%25FCndigen%2520Datenschutz%2520E-Mail%2520N%25FCtzlich%2520Aktuell&domTagName=footer&referrer=https%3A%2F%2Ferhansezen.de%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&type=hidden
IP
82.165.229.16:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

POST /gmx/gmx/s?name=produkte.homepage-mail.expose.homepage-parken.page.1.footer.3&brand=gmx&portal=gmx&country=de&ts=1669432982436&eventType=expose&componentPath=page.1.footer.3&componentLabel=Sitemap%2520Impressum%2520AGB%2520Vertr%25E4ge%2520hier%2520k%25FCndigen%2520Datenschutz%2520E-Mail%2520N%25FCtzlich%2520Aktuell&domTagName=footer&referrer=https%3A%2F%2Ferhansezen.de%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&type=hidden HTTP/1.1
Host: wa.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Content-Length: 0

HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:23:03 GMT
server: Apache
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
vary: X-Forwarded-For
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2

wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken&brand=gmx&portal=gmx&referrer=https%3A%2F%2Ferhansezen.de%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1669432982408&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&op_id=none&product=homepage-mail&type=view

82.165.229.16

200 OK

43 B

URL HTTP/2
wa.gmx.net/gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken&brand=gmx&portal=gmx&referrer=https%3A%2F%2Ferhansezen.de%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1669432982408&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&op_id=none&product=homepage-mail&type=view
IP
82.165.229.16:0
ASN
#8560 IONOS SE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

GET /gmx/gmx/s?name=produkte.homepage-mail.pi.homepage-parken&brand=gmx&portal=gmx&referrer=https%3A%2F%2Ferhansezen.de%2F&pageurl=https%3A%2F%2Fwww.gmx.net%2Fprodukte%2Fhomepage-mail%2Fhomepage-parken%2F&title=Homepage%20parken&country=de&ts=1669432982408&login=0&category=landing&applicationArea=homepage-mail&contentName=homepage-parken&pageType=landing&op_id=none&product=homepage-mail&type=view HTTP/1.1
Host: wa.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:23:03 GMT
server: Apache
set-cookie: wa=opt-out; path=/; domain=.gmx.net; expires=Sun, 26-Nov-2023 03:23:03 GMT; secure; HttpOnly
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
vary: X-Forwarded-For
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2

tgw.gmx.net/events

217.72.199.35

200 OK

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.gmx.net/
Origin: https://www.gmx.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Date: Sat, 26 Nov 2022 03:23:03 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

tgw.gmx.net/events

217.72.199.35

200 OK

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.gmx.net/
Origin: https://www.gmx.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Date: Sat, 26 Nov 2022 03:23:03 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

tgw.gmx.net/events

217.72.199.35

202 Accepted

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/vnd.PageViewEvent-v3+json
Content-Length: 1041
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Content-Md5: 1B2M2Y8AsgTpgAmY7PhCfg==
Date: Sat, 26 Nov 2022 03:23:03 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

tgw.gmx.net/events

217.72.199.35

202 Accepted

0 B

URL HTTP/1.1
tgw.gmx.net/events
IP
217.72.199.35:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: tgw.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/vnd.userevent-v3+json
Content-Length: 1120
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.gmx.net
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Content-Md5: 1B2M2Y8AsgTpgAmY7PhCfg==
Date: Sat, 26 Nov 2022 03:23:03 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
4bd24a34158976831a4fc4d9f5003f41
65f3b39cc2be677c88680230238acdf9280149c2
a69f7b69db2c82128191c339f9bcc5a68d2a41040689145b4a23172351f53755

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:23:03 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
4bd24a34158976831a4fc4d9f5003f41
65f3b39cc2be677c88680230238acdf9280149c2
a69f7b69db2c82128191c339f9bcc5a68d2a41040689145b4a23172351f53755

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:23:03 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

ocsp.serverpass.telesec.de/ocspr

80.158.50.254

200 OK

1.6 kB

URL HTTP/1.1
ocsp.serverpass.telesec.de/ocspr
IP
80.158.50.254:0
ASN
#6878 T-Systems International GmbH

File type
data
Size
1.6 kB (1583 bytes)
Hash
4bd24a34158976831a4fc4d9f5003f41
65f3b39cc2be677c88680230238acdf9280149c2
a69f7b69db2c82128191c339f9bcc5a68d2a41040689145b4a23172351f53755

HTTP Headers

POST /ocspr HTTP/1.1
Host: ocsp.serverpass.telesec.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:23:03 GMT
Server: Apache
Cache-Control: must-revalidate,no-cache,no-store
Content-Type: application/ocsp-response
Content-Length: 1583
Connection: close

epimetheus.navigator.gmx.net/monitoring/compat

217.72.199.22

204 No Content

0 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring/compat
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /monitoring/compat HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 61
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Sat, 26 Nov 2022 03:23:03 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-679c56bcff-j42rq
X-App-Version: 1.9.0
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

epimetheus.navigator.gmx.net/monitoring/compat

217.72.199.22

204 No Content

0 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring/compat
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /monitoring/compat HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 62
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Date: Sat, 26 Nov 2022 03:23:03 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-679c56bcff-t2mjm
X-App-Version: 1.9.0
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block

epimetheus.navigator.gmx.net/monitoring

217.72.199.22

202 Accepted

2 B

URL HTTP/1.1
epimetheus.navigator.gmx.net/monitoring
IP
217.72.199.22:0
ASN
#8560 IONOS SE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /monitoring HTTP/1.1
Host: epimetheus.navigator.gmx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 185
Origin: https://www.gmx.net
Connection: keep-alive
Referer: https://www.gmx.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 202 Accepted
Access-Control-Allow-Origin: https://www.gmx.net
Access-Control-Expose-Headers: link
Cache-Control: no-cache, private
Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
Content-Type: application/json
Date: Sat, 26 Nov 2022 03:23:03 GMT
Referrer-Policy: no-referrer, strict-origin-when-cross-origin, no-referrer, strict-origin-when-cross-origin
Server: Apache
X-App-Dc: bap
X-App-Host: epimetheus-gmx-live-679c56bcff-fgqzt
X-App-Version: 1.9.0
X-Content-Security-Policy: frame-ancestors 'self'; script-src 'self'; style-src 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Transfer-Encoding: chunked

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19191
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:23:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19191
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:23:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19191
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:23:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19191
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:23:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:38:44 GMT
age: 81860
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bfe2d23-9843-4fb7-b46a-fd8ffd7bce9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9011 bytes)
Hash
d30923b7d20eeb37527255c3ee1da34f
bed54bd4f659fbf29834b262e9179df7e7bc56a6
3110f22342b17a7b1d30bd53350e6a11fd6032d97bccf4206e4a27d6e332c79b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bfe2d23-9843-4fb7-b46a-fd8ffd7bce9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9011
x-amzn-requestid: f0e83373-0f65-4358-a902-45f2e9c24c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUfPHzAoAMF4ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813461-19e037da49c44e4363bbe8f0;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N2zsqycYk04GXPSMhxJKCrX84Asqzq8UNIFTYg2hJllP4fTGXzwEuA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:16:10 GMT
age: 18414
etag: "bed54bd4f659fbf29834b262e9179df7e7bc56a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8913 bytes)
Hash
5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whO__FB0B2ywDP_p63eQ044RXbT207sX1i87I6nPAFUB85nSYc0Cuw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 20218
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 18262
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 06:35:07 GMT
age: 74877
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6789 bytes)
Hash
926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yM8EHyxy6pUHVZhGUOHuFOU-Z4eTyL2N3Ooa6QMrPlIfp6X5I_JBRw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 20218
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

erhansezen.de/

217.160.0.155

200 OK

0 B

URL HTTP/2
erhansezen.de/
IP
217.160.0.155:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: erhansezen.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html
date: Sat, 26 Nov 2022 03:23:02 GMT
server: Apache
last-modified: Fri, 25 Nov 2022 09:15:20 GMT
etag: W/"a2-5ee47f5f33a00"
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations