Report - buchung.huettenwirt.com/

Report Overview

Submitted URL
buchung.huettenwirt.com/
IP
135.125.240.140
ASN
#16276 OVH SAS
Submitted
2022-11-30 14:05:50
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
d2jtzd336hs8un.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	1.1 MB	54.230.245.13
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.39.94.191
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	49 kB	34.120.237.76
apm-server.seekda.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	664 B	135.125.240.139
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
res.cloudinary.com	2520	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	39 kB	151.101.1.137
quality.seekda.com	569749	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	50 kB	135.125.240.141
hbe-api.kognitiv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	3.3 kB	135.125.240.149
buchung.huettenwirt.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	808 B	536 B	135.125.240.140
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-30	medium	buchung.huettenwirt.com/	Phishing
2022-11-30	medium	buchung.huettenwirt.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (37)

	URL	Size	First Seen	Last Seen
	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js	72 kB	2023-03-07	2023-03-17
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 735819074c12554182aa6a191be3901e eb0efe89e8939164708f819554e5549cd4a160ad 99482492ebd1dff6c4db8b2fb982195a7770f905519952a5418df871e1f4d78f Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js	312 kB	2023-03-07	2023-11-23
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-11-23 19:59:38 Times Seen111 Hash 20c05803e9be70b8330e9546dae4477b bc2b89e091cd34d89ae6ed55665f3edf0679934e 817819a1854e0f9c39282414af31975125cbd459e94b1fea0ed4f4143608ccd5 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js	274 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:37 Times Seen1 Hash c52e2aee92dbd613eaa0eac98788bfa1 1b2e173adcec11b282e08c0864e7737d94e5ce3f b0d10f6b562a9b9ee10dff7646e0600fdb3a1fe9fa7ca8d3926a25bbb1ddd787 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js	243 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 24678a880cf3bfc261551483f838823d 0fff67fa3ab9192efb28de0451306e492fe0f747 6cd4bddac9880c4e7cbe0954931935788304f6016c531194b678465e6ce16811 Loading...

	cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js	19 kB	2023-03-08	2023-03-12
Pretty URL cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 19:12:44 Times Seen1 Hash 22db3319eb65f407f66a7f4279770598 30e982addc7a2f110d064cd16ee4ac281c78f372 1fa6d6950fee1c170bdc270cedb845638bab483726a52839d0f2279b5b53524d Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js	66 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 16:29:34 Times Seen1 Hash c853b9a1b767ecdd6e547aa3b811ca53 7183849d91ddb766bcfa8c7684fa9e5b6a89b2fc 93b9f5ac1bbb1c4a9eead8fe51a47fbc2842c2cd83ac7a0f4fb89e483e7b0c09 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js	142 kB	2023-03-07	2023-03-17
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 5c50a7ab91d793a8f9c26dda875a9116 92b53d2d2e63b7e62ab7a5be4a28121833523a80 28a37349775c126a9cfe54589e2d4511ab5fb22261456a0c18ac309a74b87c81 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js	8.8 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 6d27f012a9d000e369c0aef4ba9596e1 b2ce065556c2f46e89db03e82d0b0e1ee4fe6836 67ee1a11486dee1f43fae145dccdaa629e4575f4e5019d8a11f4e30790de1ac5 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js	272 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:36 Times Seen1 Hash 110f77484e4a6fa56fd0fd02c313647b 3a2481138159d0c802e5947b621e591e3c6a4a5e 8cdd7a387ade14b669d7e116e1173fda97173ad8e465c19c0ffb3bfa25c773f6 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js	33 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:31 Last Seen2023-03-13 01:26:28 Times Seen1 Hash 47df750212e1d304e7827e5da25d0228 7d5ddc45e2f80b298fc77d61b4163eb5ec434b65 1cd89ea35119ea4b93c793f1908140261c3a82170284b7079feb212ad6332b53 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js	67 kB	2023-03-08	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-13 01:26:28 Times Seen1 Hash 4d7578b2d6bb180c05bc6cec3037e8e9 f3f2882c205c83c4d3e48f4d740989c375f64d12 1db4152f3d7bd381b84957db5f122ae111605697243e5a923054934d22d4ccef Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js	78 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 6353c76b292a54e1c9010e27067742f3 d2551f62bd6d7c68681644c5f193f5b02558ef22 fc0933e4114cdf2ecc7f67966972f6b7c0ed0c89461b0bca0feeddad6b56a953 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js	68 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:36 Times Seen1 Hash bb3b52f885200e978bdca6cacc5cc61a 9652eaa0648bd41156c5b28dea97f989a99830c2 65e71d4d8c19103f25010dd4df68ed09b58d91f22a21e74457cc863b3f4f4e92 Loading...

	buchung.huettenwirt.com/	458 B	2023-03-11	2023-05-28
Pretty URL buchung.huettenwirt.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:04:33 Last Seen2023-05-28 05:28:14 Times Seen2 Hash b7770424a83d3bc8cfb28f39f7b628c2 1a257e579e57ac40607564c9fe618a30061457a0 c9b105fac5d22a65e45be55afc6be11cb8790c6e8e64c9ac6b0242c37cd46039 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js	3.6 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 383f4e550f85910505d5bf72348cb04d e3d31b34905b452d8246994462661b3f32bd5bc8 17ad31f730be94ce449a8c3e247b2ed44dff0da12cf885c63ea46ad36f891b28 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js	206 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 0510f3c0cec814e726e5b26ff39e1416 dbe2a7f5d9e3a69bd21da9d686692533ed9525b2 d334cbfcff9b768a38214b36475d6a5c9bdc20165e1e476d5588b7408864091d Loading...

	d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262	62 kB	2023-03-07	2023-11-23
Pretty URL d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-11-23 19:59:38 Times Seen125 Hash e93c8d4d150530d83ee4ee385157b262 495438c2d303efb3d2339e80da82ee3b96a5aa60 2610f6bab7dcab2b2f2865240c47dc983e2e5785e60ac0f382a0c86e3e62c1c2 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js	2.0 kB	2023-03-07	2024-04-10
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-10 02:00:44 Times Seen25 Hash a1820ca3389cbdd7e75dabdcf95e85a1 699fe0521e91bb2975d021fa5417281970bfb623 d8793e374dab2ae48fafd92ebc35cddfa733d706e51a0afc4d15b406362f0e39 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js	30 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:31 Last Seen2023-03-13 01:26:28 Times Seen1 Hash 71bbf3d5113ea7292eff8f549924719f 4bbc455e6b68efe2809e51fb0eb9c3495350ad9b 0237565bd7444834066a423ec756c1dfe466f5dec3cfb843f604918b7b00b0b2 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js	157 kB	2023-03-07	2023-03-17
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 5f2c27f9f9284a2c803b4ff20e30f3d4 ebfb6d7d25fd05e07ba5860c572c25f04d9a39b6 a62655e682702ec4d1a20b133c88e79b0fecf79187ef24e305b99f4c742d1846 Loading...

	buchung.huettenwirt.com/	614 B	2023-03-07	2023-03-17
Pretty URL buchung.huettenwirt.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-03-17 10:39:35 Times Seen1 Hash 9ccd0569c31e516026cf0d148ed93a10 d2c26425bb55400ac83145ba61b43adf815567f4 565248d98a5255359cf2e14d8bcceabfe813aea78a98c80cdea5782b67e010c4 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js	77 B	2023-03-07	2024-05-07
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-05-07 07:56:44 Times Seen85899 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	ibe.seekda.com/dsr/S001350/attribution?callback=skdtracking1669817140162349&cookie-enabled=true	230 B	2023-03-11	2023-03-11
Pretty URL ibe.seekda.com/dsr/S001350/attribution?callback=skdtracking1669817140162349&cookie-enabled=true IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:04:33 Last Seen2023-03-11 23:04:33 Times Seen1 Hash ab35d4eee4a9aa3df05916e7cbb2ca47 5e153ac28e535890c088d54bb6514674d28ded85 8dd7a0d3334b9eddaf834cec4672cc958f1d0b1b8b302e6347f777621c065900 Loading...

	buchung.huettenwirt.com/	173 B	2023-03-07	2023-10-02
Pretty URL buchung.huettenwirt.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-10-02 00:40:33 Times Seen42 Hash ad7028296a8e5e8d5e691f60e31b665c dd9c9683e422322dbf84a7243c554907617fd4da 7bfcc750c689b59fc21d1a9566494c683bb3ed79b1f3b081653494687a662bee Loading...

	unknown	0 B	2023-03-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-07 08:31:13 Times Seen37397698 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js	65 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:31 Last Seen2023-03-13 01:26:28 Times Seen1 Hash e819733e17717292de4c083f88b7d57f a60bc128dbdda2b78d9de9fb9f61b08403da2c0b f123039ae6e614722874ff0b74ebe1843d0878de8419d1b050aef5d802dca22a Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js	51 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 08:57:37 Times Seen1 Hash 79fd272997f237fa9224bb2637eccf68 553394e4a30064f04f74dd47e3c153092c5549d9 450712778a4166ac88ff6ebe1558f04af20662a43eb8736929a1f90d8cd4509a Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js	29 kB	2023-03-08	2023-03-12
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-12 19:12:44 Times Seen1 Hash 04a646407ee05d9ebf6684a838c42396 45b75bd4e2f5ede2f16a6e0d6ac6b474a51e98bc 48c0bea8359f032bf392dbd22b5cee9f8292d3b0ee368858c792e7d7f4e7cb26 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js	10 kB	2023-03-07	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:42:43 Last Seen2023-03-13 01:26:28 Times Seen1 Hash ca9c4682119675c0ca10f4cb35d62e95 f17bc79079e083a8d23addc9511a5802476baaec a19f16c3fa25d5282585abb229555cbf35af28bc5b3efcd5a9ff900e798f8203 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js	75 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 4cad695255d0e5c35be75f0a7220d25b f337cb2d56380b05c1f6520da3fa72adfc3e1cc8 c0fce4a2af338b0475ec7352e091d79ba9a0afd70e51e72a241a61a53fbddaad Loading...

	buchung.huettenwirt.com/	19 kB	2023-03-07	2024-04-10
Pretty URL buchung.huettenwirt.com/ IP 135.125.240.140 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-10 13:51:05 Times Seen90 Hash 45877a71ad06ad133861a12601587957 84f766f58bec8935e96505636142c6f55a70c47b d6b59bc54940106116d4ee88781066bd91b5c8b65dec58c2ef6b0da2ef68d1bb Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js	146 kB	2023-03-08	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:43:26 Last Seen2023-03-13 19:39:48 Times Seen1 Hash 21c2dffc0e1b2d43506e578f82c4983d 6658afd6b8af8bdd74d787bd5a532bca82dc0d8c fb4ee749d7ae13c5ce18eb75a8614a352eb51e2e9664a5a634b7bd7f022155b2 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js	384 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:27:58 Last Seen2023-03-11 23:52:31 Times Seen1 Hash b5115c0e05a48993d0abd068a1604e03 e4d8afd78bcbbebc75efb41167e397a22fa9b8ca b051f0eb4ecf6b572977c922c1448a6dfd6844e9089dac4eb4e23ab7c84d2f6f Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js	92 B	2023-03-07	2024-05-07
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-05-07 06:49:06 Times Seen7789 Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js	52 kB	2023-03-08	2023-03-13
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:37:49 Last Seen2023-03-13 19:39:48 Times Seen1 Hash 0fa52166e7c8bbd5e5189791358643f2 dc9aa299399f45ea394a03fc95afe1a510745e0e 7469f9011eb8989078a5891b63f052e2ede931ae925b469cf4de6590d471dc01 Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js	381 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash b131b2ae8bb7971d1a87c509856d7e9f 1eef95336021ac65e63806d644db29ca9bc4e308 62b2cc826d0d2b291065584176a9648d451bd572e3f0636d605a349a479853cd Loading...

	d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js	21 kB	2023-03-08	2023-03-11
Pretty URL d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js IP 54.230.245.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:52:14 Last Seen2023-03-11 23:52:31 Times Seen1 Hash 7ca50249caa177ab5cd610f8cd2bf5a0 5af5e540839df637b06d8ae308dd63b59b3dd3c1 44fbeee701628b86e1046bcbdf911c3bdd1718330f59211e0ef183003384e2be Loading...

HTTP Transactions (70)

URL IP Response Size

buchung.huettenwirt.com/

135.125.240.140

302 Found

0 B

URL HTTP/1.1
buchung.huettenwirt.com/
IP
135.125.240.140:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: buchung.huettenwirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
content-length: 0
location: https://buchung.huettenwirt.com/
cache-control: no-cache

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15813
Expires: Wed, 30 Nov 2022 18:29:12 GMT
Date: Wed, 30 Nov 2022 14:05:39 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2037
Cache-Control: max-age=161977
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 14:05:39 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:05:16 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3220
Expires: Wed, 30 Nov 2022 14:59:19 GMT
Date: Wed, 30 Nov 2022 14:05:39 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: UTOrzivMidG53Rl4n1mlkNMvGPCiYO3B2rLENm1tjIGfhYVyp355wBa2+CO0t74WhU7haehNsck=
x-amz-request-id: YK6TPWSD6CDY433B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 13:45:15 GMT
age: 1224
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 13:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2758
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 14:05:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 13:11:14 GMT
cache-control: public,max-age=3600
age: 3266
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js

54.230.245.13

200 OK

72 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-a75792a0129c3b75.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
72 kB (71536 bytes)
Hash
ed0f61bc177ef914fa2fea20e760e261
620b9de37626dbc1a573ff25693e3f678c81773a
a26e4505ecf488832790758f672487b0b7411a6027f94dccc83418d429254ab2

HTTP Headers

GET /_next/static/chunks/659-a75792a0129c3b75.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-42543"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zbZT2QMaaDP1N998LX5HctY_JGXWiOJj9RijaLsBHXfukQs05F_f0g==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons-extended.00ff8422.ttf

54.230.245.13

200 OK

94 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/media/bf-icons-extended.00ff8422.ttf
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
94 kB (93868 bytes)
Hash
439b52438c772a69ba68cddd45b0ba56
acc851fc76bade985719ddd6b688e184f1096121
fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d

HTTP Headers

GET /_next/static/media/bf-icons-extended.00ff8422.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 93868
date: Tue, 15 Nov 2022 13:37:21 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: "62711ef1-16eac"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jG7NCVF05n1vyPEoNDOd94Vwr3sB-X_SkTMzY9Ub9Ft1OvZOzQ-CWA==
age: 1297699
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js

54.230.245.13

200 OK

92 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
92 kB (91482 bytes)
Hash
b0bf5de6539e159aee01e7d72832663b
505ec637be29d974f8b9b99737c07cd9a58f2c06
73983251efa796f2273d3faf4c452267b18a00853d30142f79c86b020600afe9

HTTP Headers

GET /_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-22c77"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uP4u5tm9uVlgh18m071qwB7ZJhAthmw6M-Tsghr4lUYqdGK5c4Kf_A==
age: 1297897
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.39.94.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.94.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: I6/VM6+kh2hUfazH/FXL1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3w3W6USayF9PH/fFE+wN317s8NY=

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js

54.230.245.13

200 OK

258 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/302-7b32094aede33cd2.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
258 kB (257863 bytes)
Hash
2799464b4215da98177d98cd32200f2f
eac1a36fce7bbbb1bb4e03dc1ca1a53632e15c6b
d9bbc68d9092f83169c25ab50a09120926dd9622c061627edfd1a7abeae2fa3a

HTTP Headers

GET /_next/static/chunks/302-7b32094aede33cd2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-52fd"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JkOsaDVsbPSwYm-q9APObR9EZkCR-tI_5vwsXLqdSDwD4OIcc5tH6w==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js

54.230.245.13

200 OK

229 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-b7d007e5ee685d28.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
229 kB (229067 bytes)
Hash
844dae9d13a4be70427b372f7d73ed49
e3f47e2736c387dafe25d2c32ea6002a863cd87b
285ebbab8dc2eb5a95e70ab1ce3acfe72536c3ae8d251e202c1dc4b8db51552b

HTTP Headers

GET /_next/static/chunks/648-b7d007e5ee685d28.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-3b3e0"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iYoFh7xzivRSSspOlUfTtQ5-ynGk8H5crrn-g3mY7xTTz-SUovpMZg==
age: 166675
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js

54.230.245.13

200 OK

151 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
151 kB (150897 bytes)
Hash
b9b6ee0c8e4c01bed96773776119bcf6
a08031a0b9b20249c8728c2af603927602de0b84
39e61b86dcc14e95b9a013e15db453635882d17e455b4fd1992300a0a82c6519

HTTP Headers

GET /_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-4c0a4"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jFybw_KXN-GnS5Z8htnKjP1Yqk-tAR7JlCpSxGWKXFDgU-9DvSrWjA==
age: 1297897
X-Firefox-Spdy: h2

res.cloudinary.com/seekda/image/upload/w_192,h_192,c_fill/v1626087803/production/S001350/Hu%CC%88ttenwirt-favicon.jpg

151.101.1.137

200 OK

3.6 kB

URL HTTP/2
res.cloudinary.com/seekda/image/upload/w_192,h_192,c_fill/v1626087803/production/S001350/Hu%CC%88ttenwirt-favicon.jpg
IP
151.101.1.137:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 192x192, components 3\012- data
Size
3.6 kB (3563 bytes)
Hash
819c5885ab5f9cd63c34b4f35751f57b
0eceb7c3b83eb56e5aca80f7772b79704b88c3ba
4cf392cafa8880fe4a8530be589b403f4a5b3c9131612bd8bb0b94b44a23d5ae

HTTP Headers

GET /seekda/image/upload/w_192,h_192,c_fill/v1626087803/production/S001350/Hu%CC%88ttenwirt-favicon.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
etag: "819c5885ab5f9cd63c34b4f35751f57b"
last-modified: Mon, 12 Jul 2021 11:36:22 GMT
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=169;cpu=0;start=2022-11-30T14:05:41.327Z;desc=miss,rtt;dur=8,cloudinary;dur=76;start=2022-11-30T14:05:41.369Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3563
X-Firefox-Spdy: h2

res.cloudinary.com/seekda/image/upload/w_16,h_16,c_fill/v1626087803/production/S001350/Hu%CC%88ttenwirt-favicon.jpg

151.101.1.137

200 OK

379 B

URL HTTP/2
res.cloudinary.com/seekda/image/upload/w_16,h_16,c_fill/v1626087803/production/S001350/Hu%CC%88ttenwirt-favicon.jpg
IP
151.101.1.137:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 16x16, components 3\012- data
Size
379 B (379 bytes)
Hash
a57b7f9bf9b23fe4f0cc9e3c221e2811
b45c2e368184c2355f0e6ac41d4d10243192d0fc
9a422a507847124b697f90ae98431665d64df60e7bfe1b600ea57853f41e250f

HTTP Headers

GET /seekda/image/upload/w_16,h_16,c_fill/v1626087803/production/S001350/Hu%CC%88ttenwirt-favicon.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
etag: "a57b7f9bf9b23fe4f0cc9e3c221e2811"
last-modified: Mon, 12 Jul 2021 11:36:32 GMT
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=191;cpu=0;start=2022-11-30T14:05:41.329Z;desc=miss,rtt;dur=8,cloudinary;dur=98;start=2022-11-30T14:05:41.376Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 379
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js

54.230.245.13

200 OK

45 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-f51e7b20f7750937.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
45 kB (44986 bytes)
Hash
034c12764fddd889a259dac22180324c
5c05ca3fadcf9d6f79ef83559cd0012ec769dc70
83119bb31505b49015daa7d71fe03ca9486a8cd56e3da50e9bba87486e269d3a

HTTP Headers

GET /_next/static/chunks/333-f51e7b20f7750937.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-324cb"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y2CHuRchui8Syh731O3HLBtASz7H8-zuM_FeH4eKRmq9_cozbaLOJA==
age: 166675
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js

54.230.245.13

200 OK

48 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
48 kB (48431 bytes)
Hash
8557a4259e15b98a88ea89ff9d6f279c
11a5357c4be7688a9069e66cc66d4d194ea02898
d6fad64a0f55521d2674d86e875b4ad6a61ef90cc5fe2de081ad5ba0c1a48fe5

HTTP Headers

GET /_next/static/chunks/framework-4774102d6f75bb1e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-2640a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ueHzKXwsbtPoWQOsrm7YtOOccUjoHE8Cdr3__2ggxXTU2rq6_oA1PQ==
age: 1297897
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageReady?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/pageReady?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://buchung.huettenwirt.com/
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/css/e45bafd752dbfc1b.css

54.230.245.13

200 OK

52 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/css/e45bafd752dbfc1b.css
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
52 kB (51993 bytes)
Hash
331aab9e1b02f18e6217157988c6776f
ba6651f701811345eb6aaa784a2cbadc253594ae
b2dbd861f57581f69267ba33968413b1cadb6a3affc97824ff6a0e56b9c042a1

HTTP Headers

GET /_next/static/css/e45bafd752dbfc1b.css HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-50631"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F-rYdkUrQVnESxh5dwMNxV0R61_QpEMCXrl73kVycz8nHIMNBQ2jbw==
age: 166675
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageLoaded?

135.125.240.141

200 OK

7.4 kB

URL HTTP/2
quality.seekda.com/events/ibe/pageLoaded?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type
JSON data\012- data
Size
7.4 kB (7352 bytes)
Hash
97f5bec0e16d324aa457811c471105a3
2e83d71343843186fa8b7dcd4c7b6e3044271062
e2a11f2a1733187c4d73c92cea3699bb16eba03c00aaa6de4aa433c74f0c2648

HTTP Headers

POST /events/ibe/pageLoaded? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 614
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/banners

135.125.240.149

200 OK

319 B

URL HTTP/2
hbe-api.kognitiv.com/banners
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (537), with no line terminators
Size
319 B (319 bytes)
Hash
1a5c4b5a3b6e3ae6eb5a7710af6f4379
60b0aeddc4dbf30cfbf1deafb2b935097b2ccde0
49feeadfb7a3170e868d0e0a2deb3c105c83ca3acfe8ef2255af843ac5d10b23

HTTP Headers

POST /banners HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 185
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://buchung.huettenwirt.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Wed, 30 Nov 2022 14:05:41 GMT
etag: W/"21a-fbgoJXK95wm2uz2b2G5PF/6Z9Lk"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2

res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S001350/_DSC2129.jpg

151.101.1.137

200 OK

33 kB

URL HTTP/2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S001350/_DSC2129.jpg
IP
151.101.1.137:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
33 kB (32740 bytes)
Hash
f60a7936dd5d680ca1e11846d4f63acb
4429db281809000ce6a9edf6087151b18e472534
f3a37d53a98af33240b200264b4716753b756fc28e4a7ae89b4093cb2a1479db

HTTP Headers

GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/S001350/_DSC2129.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="_DSC2129.webp"
content-type: image/webp
etag: "f60a7936dd5d680ca1e11846d4f63acb"
last-modified: Mon, 11 Oct 2021 11:12:05 GMT
date: Wed, 30 Nov 2022 14:05:41 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-30T14:05:41.939Z;desc=hit,rtt;dur=8
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 32740
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3177
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 14:05:42 GMT
Connection: keep-alive

hbe-api.kognitiv.com/offers

135.125.240.149

200 OK

503 B

URL HTTP/2
hbe-api.kognitiv.com/offers
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

OPTIONS /offers HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://buchung.huettenwirt.com/
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://buchung.huettenwirt.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Wed, 30 Nov 2022 14:05:41 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4

54.230.245.13

200 OK

3.8 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
3.8 kB (3847 bytes)
Hash
cbeffa0fb05209c383edbace97fc1ba2
6cf397f704a608a7a339fbfcaa982fa93bcb9a34
143fccfafb1643fe2fcabb24c70972d9007a7fa1cf62405cb9294fbab7b8d5fb

HTTP Headers

GET /static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 03 May 2022 12:34:48 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: br
date: Wed, 30 Nov 2022 12:28:24 GMT
etag: W/"62712168-4a0a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ei8KubkhCAFvyrg8y-am4UZoiXgo9iNP2Wytv27iYAjnf3ptJ2WPbA==
age: 10649
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3177
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 14:05:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3177
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 14:05:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7298 bytes)
Hash
e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:51 GMT
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
age: 58131
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10958 bytes)
Hash
777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e4GuUolL0WIMXvnF7BZ80j-dMMSILN2gd-1mqFwNns-zCUBsJa8iHQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:43:04 GMT
age: 58958
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9330 bytes)
Hash
bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 57250
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js

54.230.245.13

200 OK

12 kB

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/38-7f41f4a9e2fe47a2.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type
data
Size
12 kB (12426 bytes)
Hash
58b8e7da856f66e15e90ed5cf34412ce
28a7bac74604fa34922e008d3edb9418ae3031ae
8195a204d3f5c0dda95ebd54f098462d06c0d2c8b23920679350d078df621417

HTTP Headers

GET /_next/static/chunks/38-7f41f4a9e2fe47a2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:54 GMT
etag: W/"6332fe92-2832"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r9u60MyzgUfqaXlGypu9NY2gUlGxaRaQ7pUUSwJXTovZiqI1oTFFBQ==
age: 1297897
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5785 bytes)
Hash
59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GydenCzPtpFdVLqN4ssiZ4dKN48WGneS3mwzEdDE81pobtLznfC4VQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:07:59 GMT
age: 57463
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10176 bytes)
Hash
03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7LVxajVjJ1N2W-jxCmKpYHg1rS1MbrRnAVc15QmM0iH94CH1yJnR0w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 04:53:01 GMT
age: 33161
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageReady?

135.125.240.141

200 OK

39 kB

URL HTTP/2
quality.seekda.com/events/ibe/pageReady?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type
JSON data\012- data
Size
39 kB (39057 bytes)
Hash
7f84a0cc43ffdb5374011338946283ef
80bcd2a7b3e0485bd1bf1d643e0243df91baf819
57be79df8bfd2b14074e0f551d8369eb3e6393c17e7d54cefca3ba4f7ddc9bf3

HTTP Headers

POST /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 573
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

apm-server.seekda.com/intake/v2/rum/events

135.125.240.139

200 OK

0 B

URL HTTP/2
apm-server.seekda.com/intake/v2/rum/events
IP
135.125.240.139:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /intake/v2/rum/events HTTP/1.1
Host: apm-server.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://buchung.huettenwirt.com/
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Content-Type, Content-Encoding, Accept
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-expose-headers: Etag
access-control-max-age: 3600
content-length: 0
vary: Origin
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 14:05:42 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

apm-server.seekda.com/intake/v2/rum/events

135.125.240.139

202 Accepted

0 B

URL HTTP/2
apm-server.seekda.com/intake/v2/rum/events
IP
135.125.240.139:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /intake/v2/rum/events HTTP/1.1
Host: apm-server.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 35659
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
access-control-allow-origin: https://buchung.huettenwirt.com
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 14:05:43 GMT
content-length: 0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/pageLeave?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/pageLeave?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events/ibe/pageLeave? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://buchung.huettenwirt.com/
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Wed, 30 Nov 2022 14:05:47 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/804-13fd754e32aa16c3.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-7319"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AXuLvcJOghiQica3rHnyDlKhyynBpEpuDkGeqMH16sU918LmQgcLmg==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/ehIawmgvLPiidfXQEXmP0/_buildManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:50 GMT
etag: W/"6384db6e-e22"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z7u1UVnlFyumeat0pvTp3OHgsc4ORLDVYdxGxyZsIaZKlKuJ3XrYlA==
age: 165811
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-95390337f262d59f.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/373-95390337f262d59f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-c616"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3oIrQzzlmRZsMrqkZB_mlYVMfiLqirKix75Ei5_uvjhZC37jpXo96g==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-4f91dc75cd41d669.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/index-4f91dc75cd41d669.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:42 GMT
etag: W/"6384db66-1326b"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -_gTxQ3uWBMAqJdXxx47oLW7YNNn6ff1frxF13b2fniWBl18GhH2kQ==
age: 165811
X-Firefox-Spdy: h2

buchung.huettenwirt.com/

135.125.240.140

200 OK

0 B

URL HTTP/2
buchung.huettenwirt.com/
IP
135.125.240.140:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: buchung.huettenwirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Wed, 30 Nov 2022 14:05:39 GMT
content-type: text/html; charset=utf-8
status: 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
etag: "3bc41-oQG6Vd2KpF7nbcasRqDF4PQetfg"
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self' *.kognitiv.com
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/d099b070-221cabf5ffd73869.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 27 Jul 2022 15:16:14 GMT
etag: W/"62e156be-11876"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sqcB7k3XuDa4JM2-SLiCa1R7WRrNA3LTtnnHj4gwWG21J-fB-R0FXw==
age: 1297897
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/channels/ibe/properties/S001350/offers-overview

135.125.240.149

200 OK

0 B

URL HTTP/2
hbe-api.kognitiv.com/channels/ibe/properties/S001350/offers-overview
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /channels/ibe/properties/S001350/offers-overview HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://buchung.huettenwirt.com/
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://buchung.huettenwirt.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Wed, 30 Nov 2022 14:05:41 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/818-2d46f7d1223300d3.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/818-2d46f7d1223300d3.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-5d13a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O87TIDQHHybnwJtT40wgoD-FZK284jc6JuOm96FS7d3HmWx6jat31A==
age: 166675
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/364-89bf8dd5b58b10a4.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/364-89bf8dd5b58b10a4.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-2236"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GiHmZ9wK0NABWzhY4niwEcSNF0j49A1dokv13qRbC144xLOK9LFTtA==
age: 166675
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-064f454970a46d93.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-064f454970a46d93.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/_app-064f454970a46d93.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-1b79e9"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HwRhDJQguhtXbThrKWqU-Z3BKQVJZG5DU-Te5DfUDCQuK3UyksN7pw==
age: 166675
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/unavailable-days

135.125.240.149

200 OK

0 B

URL HTTP/2
hbe-api.kognitiv.com/unavailable-days
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 61
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://buchung.huettenwirt.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Wed, 30 Nov 2022 14:05:41 GMT
etag: W/"d3-TbHDMpfmItk2Rga1OxocPOS1wWs"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/979-fc9d9c0ee5b8eeaa.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-7ff8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xKo47OSeUS2fISUwY3RD-SVzD1fbw0JTe4zcWdtgg2v_SPfQ2Q5wYA==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-a2824426e6ccb54e.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/433-a2824426e6ccb54e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:39 GMT
etag: W/"63723927-42f15"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YFskXRLoyYUTTZ-Wz5I8LqzF8BMtUcK7GqwwoQ4eFhLq8xiB8E5yJg==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-7d07b1ef6b622c87.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/914-7d07b1ef6b622c87.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Thu, 27 Oct 2022 11:02:24 GMT
etag: W/"635a6540-107e2"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jkRpdQb6CAm9XrY226_mKA5uvgv5Bfo9Pwntn8GcEM1WsSlOH_6ziw==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-20b3fd6334a5c778.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/928-20b3fd6334a5c778.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:13 GMT
etag: W/"6384d801-12605"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fo0kWQ_b0sUdzT9qvXpSyFHQ4pvaI-PSzRMXGYNUUcjN-GL6AuzmMg==
age: 166675
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-9885616c4f0e27cf.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/956-9885616c4f0e27cf.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-1052d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XFqWvAA4bvCSdbri-yZDFjRyZsevNUtr0sUotYhr7TJ4XtVXEisZMw==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 27 Jul 2022 15:16:14 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
date: Wed, 30 Nov 2022 04:18:00 GMT
etag: W/"62e156be-996ea"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5V0oVGOEnBDiG_e7R-95ZFIic2f5PQ2A8rWEsVyG0m1Yww-QYvp6vw==
age: 35260
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/55ba302e-56c033a647309a77.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/55ba302e-56c033a647309a77.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Mon, 14 Nov 2022 12:48:16 GMT
etag: W/"63723910-100e3"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IQUQMlcD-pemV7IMJ4VRNr8H4iyNoWRZiQ-TPcPVRsaySuy83dswQQ==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/695-5ea418b3362d2010.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-fd62"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iR0CbOjiTzqhCaH-2zvR_teeDx-mbZhcCDR7Fbp-drC5q4X2xsStQQ==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/7e0f675c-7628088f2378fdb4.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/7e0f675c-7628088f2378fdb4.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:30 GMT
etag: W/"6332fe7a-cabd"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZuYdlwI5UnGX84vlyHCXoxO4FSv2u9w0kWQG4MnVRKq_Bee3_nRzug==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 11 May 2022 16:35:36 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
date: Wed, 30 Nov 2022 12:28:24 GMT
etag: W/"627be5d8-f0b3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kxa76wxKpUhNuiKbivR_5M3c9kRne_ugoeLZtQELKGP5FEgNW-PWPA==
age: 6437
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/webpack-af0fc1fb1b57cb39.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: W/"62712156-7ce"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CofCtHocBU5Xt-9GDzV0X1WjGYRlUUXCDfP2lIOirjPexN2FhfUJ2Q==
age: 1297897
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/banners

135.125.240.149

200 OK

0 B

URL HTTP/2
hbe-api.kognitiv.com/banners
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /banners HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://buchung.huettenwirt.com/
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://buchung.huettenwirt.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Wed, 30 Nov 2022 14:05:41 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/searchBoxInit?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/searchBoxInit?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 597
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-1f7489bfb2b58832.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/main-1f7489bfb2b58832.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 13:34:03 GMT
last-modified: Tue, 27 Sep 2022 13:45:30 GMT
etag: W/"6332fe7a-23bda"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rf8r1e46OJiyfHRr1VpPPMvjg5o5OHmcxyrRn_SyYiOGevAidFkfaQ==
age: 1297897
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/99d407f1-740efc49d6ddee4e.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/99d407f1-740efc49d6ddee4e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 15:47:45 GMT
last-modified: Mon, 28 Nov 2022 15:47:03 GMT
etag: W/"6384d7f7-5dc71"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 54BrSKe-IWc5Hr5Qj8ryatKUxuVLWFsmOaQPjhSmIZOM6cHpCAhZVA==
age: 166675
X-Firefox-Spdy: h2

hbe-api.kognitiv.com/offers

135.125.240.149

200 OK

0 B

URL HTTP/2
hbe-api.kognitiv.com/offers
IP
135.125.240.149:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /offers HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 586
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://buchung.huettenwirt.com
vary: Origin, Accept-Encoding
content-encoding: gzip
date: Wed, 30 Nov 2022 14:05:41 GMT
etag: W/"5b09-lFIcMUtVb1C8Y+tRbNUO5Hm7hhk"
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/ehIawmgvLPiidfXQEXmP0/_ssgManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:42 GMT
etag: W/"6384db66-4d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: meuqybDNNHIzzwCe_BhUkklRAzdPtBlWn6G8bas0RdipQGMCxB9HeA==
age: 165811
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/ehIawmgvLPiidfXQEXmP0/_middlewareManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 28 Nov 2022 16:02:09 GMT
last-modified: Mon, 28 Nov 2022 16:01:42 GMT
etag: W/"6384db66-5c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zsyZ2WPXPs7KsvVBqwTGJCqKEv3O2p_8rmOGyBr8CG8lKb5bMJZ3LA==
age: 165811
X-Firefox-Spdy: h2

quality.seekda.com/events/ibe/viewOffers?

135.125.240.141

200 OK

0 B

URL HTTP/2
quality.seekda.com/events/ibe/viewOffers?
IP
135.125.240.141:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /events/ibe/viewOffers? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 1166
Origin: https://buchung.huettenwirt.com
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://buchung.huettenwirt.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Wed, 30 Nov 2022 14:05:41 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2

d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js

54.230.245.13

200 OK

0 B

URL HTTP/2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-5f3fb97a1b4a275f.js
IP
54.230.245.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/234-5f3fb97a1b4a275f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://buchung.huettenwirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Nov 2022 14:08:22 GMT
last-modified: Tue, 15 Nov 2022 14:07:29 GMT
etag: W/"63739d21-70cc"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PUqFTsvxrWBQ_nOy7lr4fZ2Jt7zNz1C6CcTLMZjOu9KKDiHV2MFrDw==
age: 1295838
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (37)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations