radsport-welt.de/wparce/dhlexpil/dhl/index.php
109.237.132.28301 Moved Permanently 303 B URL HTTP/1.1 radsport-welt.de/wparce/dhlexpil/dhl/index.php
IP 109.237.132.28:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d587b4d45c7ab3bf26fab54ceedec22d
f0e554c0c84cd72f4dfa7f60548d701d13953a2a
2b09c8f00ce4255eb83d904764cc037721d481bd632128921404bb1454973121
Analyzer Verdict Alert fortinet Phishing
GET /wparce/dhlexpil/dhl/index.php HTTP/1.1
Host: radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 07:41:27 GMT
Server: Apache
Location: https://www.radsport-welt.de/
Content-Length: 303
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5001
Expires: Sun, 29 Jan 2023 09:04:48 GMT
Date: Sun, 29 Jan 2023 07:41:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Sun, 29 Jan 2023 09:39:42 GMT
Date: Sun, 29 Jan 2023 07:41:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10624
Expires: Sun, 29 Jan 2023 10:38:31 GMT
Date: Sun, 29 Jan 2023 07:41:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 07:35:36 GMT
content-type: application/json
age: 351
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: y+wHS2sp14rfpGABosHgi9hpiDvLZ0OhbUClQsuw2PzzlmT6eLc4kKGWO1y5p+vHWew62a6Mlsc=
x-amz-request-id: SR2FAPK4C3E44X2B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 06:50:13 GMT
age: 3074
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 07:41:27 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4942c5820c720511c429a02a995833d8
6036f57735e2a30f62f2f6f4baf3feadbeca6dfc
64feee07aa380e002730e86b3b4407e38ef156d8bc955d1a07aa2804df192e26
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64FEEE07AA380E002730E86B3B4407E38EF156D8BC955D1A07AA2804DF192E26"
Last-Modified: Sun, 29 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Sun, 29 Jan 2023 13:40:54 GMT
Date: Sun, 29 Jan 2023 07:41:27 GMT
Connection: keep-alive
www.radsport-welt.de/
109.237.132.28200 OK 5.7 kB IP 109.237.132.28:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8307)
Hash d64833ddd605b37ab7bd54a210111dc1
5259dda101a48f32ac0da172485e8f392f6163a2
2e5e834796288b1833f7f703e518561a1f979015b260f7c0b8f03add9063d113
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:27 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:27:19 GMT
ETag: "48eb-5f2724e69140a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556926
Content-Length: 5713
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 06:41:41 GMT
age: 3586
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.radsport-welt.de/css/20visu9643.min.css
109.237.132.28200 OK 14 kB URL HTTP/1.1 www.radsport-welt.de/css/20visu9643.min.css
IP 109.237.132.28:0
File type ASCII text, with very long lines (44495)
Hash 30b966dda3d4d6498597e5150ba62f97
f217bc869a15fd297785e41ea0de5c00bca6761d
cd596a281e3c36599176a1fda87a79d73f55fe94e69c149e05b1f5d30e0a4366
GET /css/20visu9643.min.css HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:13 GMT
ETag: "151a2-5f2724a811a48-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556926
Content-Length: 14060
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb31db9b666afa0b32c731512a484ac1
fb737d4ac84a3c493afb71124a536492add4a8eb
d752f5221584a235f5c2f57569f095ad8f0f8b8a454baad3389211e00d8d93e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D752F5221584A235F5C2F57569F095AD8F0F8B8A454BAAD3389211E00D8D93E3"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11164
Expires: Sun, 29 Jan 2023 10:47:32 GMT
Date: Sun, 29 Jan 2023 07:41:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5907
Expires: Sun, 29 Jan 2023 09:19:55 GMT
Date: Sun, 29 Jan 2023 07:41:28 GMT
Connection: keep-alive
www.radsport-welt.de/ILD_uploadTool/jquery-3.5.1.min.dc5e7f18c8.js
109.237.132.28200 OK 31 kB URL HTTP/1.1 www.radsport-welt.de/ILD_uploadTool/jquery-3.5.1.min.dc5e7f18c8.js
IP 109.237.132.28:0
File type ASCII text, with very long lines (65451)
Hash 888c5fa4504182a0224b264a1fda0e73
65f058a7dead59a8063362241865526eb0148f16
7d757e510b1f0c4d44fd98cc0121da8ca4f44793f8583debdef300fb1dbd3715
Analyzer Verdict Alert fortinet Phishing
GET /ILD_uploadTool/jquery-3.5.1.min.dc5e7f18c8.js HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:36 GMT
ETag: "15d84-5f2724bd5a15a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556926
Content-Length: 30910
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.radsport-welt.de/images/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-poster-00001.jpg
109.237.132.28200 OK 17 kB URL HTTP/1.1 www.radsport-welt.de/images/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-poster-00001.jpg
IP 109.237.132.28:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 1280x720, components 3\012- data
Hash ec36df043a5fd00ddd13c8cfd6038ed9
e48a7fd7de6d9206e6627f29d5bbffd4cb0722ee
579321642a78d6d79e1bca6565f62690208761a376c1d8ad4ba36a4eca2a8f31
GET /images/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-poster-00001.jpg HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:55 GMT
ETag: "424c-5f2724cfb385b"
Accept-Ranges: bytes
Content-Length: 16972
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
c.delivery.consentmanager.net/delivery/cmp.php?id=37694&h=https%3A%2F%2Fwww.radsport-welt.de%2F&&l=en&o=1674978094243
87.230.98.74200 OK 1.9 kB URL HTTP/1.1 c.delivery.consentmanager.net/delivery/cmp.php?id=37694&h=https%3A%2F%2Fwww.radsport-welt.de%2F&&l=en&o=1674978094243
IP 87.230.98.74:0
ASN #61157 PlusServer GmbH
File type ASCII text, with very long lines (2809), with CRLF, LF line terminators
Hash c1f0dcdf56cc97e66cbe4f0bcd2b3a7a
7944f2d021c7eb815ee92db0ff6616360e42d305
f406a162b13b4d9fc35a978d4a4762098e684faba0e27c185fadcd7aa83abe67
GET /delivery/cmp.php?id=37694&h=https%3A%2F%2Fwww.radsport-welt.de%2F&&l=en&o=1674978094243 HTTP/1.1
Host: c.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sun, 29 Jan 2023 07:41:28 GMT
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
www.radsport-welt.de/ILD_uploadTool/fonts/Roboto_normal_400.woff2
109.237.132.28200 OK 51 kB URL HTTP/1.1 www.radsport-welt.de/ILD_uploadTool/fonts/Roboto_normal_400.woff2
IP 109.237.132.28:0
File type Web Open Font Format (Version 2), TrueType, length 51116, version 1.0\012- data
Hash 9549360090baf2eb8b25d3a9708fc19d
3229ae839d33696d39c89dc0d3e193fe985f1da4
a7bf1f115e60e0c8f3b335df66d4d77baaae4eb11d2cea2cf7c5b4693403a46f
Analyzer Verdict Alert fortinet Phishing
GET /ILD_uploadTool/fonts/Roboto_normal_400.woff2 HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.radsport-welt.de/css/20visu9643.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:30 GMT
ETag: "c7ac-5f2724b87615e"
Accept-Ranges: bytes
Content-Length: 51116
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.radsport-welt.de/ILD_uploadTool/fonts/Roboto_normal_700.woff2
109.237.132.28200 OK 51 kB URL HTTP/1.1 www.radsport-welt.de/ILD_uploadTool/fonts/Roboto_normal_700.woff2
IP 109.237.132.28:0
File type Web Open Font Format (Version 2), TrueType, length 51088, version 1.0\012- data
Hash f3501dc6e4b56028379328ddd8f0129f
a7cfa360f084e1ff6396678ef131f249cf7b6f7e
2d7cd8f8f1b3fc7d668b9b06489397203443d93b6fb634433c5db6cd1ab80042
Analyzer Verdict Alert fortinet Phishing
GET /ILD_uploadTool/fonts/Roboto_normal_700.woff2 HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.radsport-welt.de/css/20visu9643.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:31 GMT
ETag: "c790-5f2724b9720c4"
Accept-Ranges: bytes
Content-Length: 51088
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.radsport-welt.de/js/20visu9643.js
109.237.132.28200 OK 140 kB URL HTTP/1.1 www.radsport-welt.de/js/20visu9643.js
IP 109.237.132.28:0
File type Unicode text, UTF-8 text, with very long lines (357)
Size 140 kB (139458 bytes)
Hash a488649ab1c8491d23bc1c56ba915652
312d4d8ffb352b11d8d64ea747a9acb882952f69
ae86a56b5f7b21aad089bf426844c013b61fc054d6ff7277aab2c14a522d0db6
Analyzer Verdict Alert fortinet Phishing
GET /js/20visu9643.js HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:27:19 GMT
ETag: "94808-5f2724e6cdcd3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.radsport-welt.de/ILD_uploadTool/fonts/LibreFranklin_normal_400.woff2
109.237.132.28200 OK 24 kB URL HTTP/1.1 www.radsport-welt.de/ILD_uploadTool/fonts/LibreFranklin_normal_400.woff2
IP 109.237.132.28:0
File type Web Open Font Format (Version 2), TrueType, length 24492, version 1.0\012- data
Hash 6c018b4e4a3329dad8e443f66f7f9a5e
321f4d1b0b2617d142e68e8bfe2a8eaeaf222d4f
929f9fc3836a439453a9ef12ba8f15e01a72acedd756c8fc881eb70d573badd7
Analyzer Verdict Alert fortinet Phishing
GET /ILD_uploadTool/fonts/LibreFranklin_normal_400.woff2 HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.radsport-welt.de/css/20visu9643.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:27 GMT
ETag: "5fac-5f2724b52a4df"
Accept-Ranges: bytes
Content-Length: 24492
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.radsport-welt.de/ILD_uploadTool/fonts/DroidSans_normal_700.woff2
109.237.132.28200 OK 22 kB URL HTTP/1.1 www.radsport-welt.de/ILD_uploadTool/fonts/DroidSans_normal_700.woff2
IP 109.237.132.28:0
File type Web Open Font Format (Version 2), TrueType, length 22340, version 1.0\012- data
Hash c4ed9536fd706ac00c6c708aaf0ba0d2
197892d22cb9b2b3f04d9014d219d67d131af31e
06c572e99c878362d40d1f358efdfe400ae1310f35cf22174dcdd5db022dd810
Analyzer Verdict Alert fortinet Phishing
GET /ILD_uploadTool/fonts/DroidSans_normal_700.woff2 HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.radsport-welt.de/css/20visu9643.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:17 GMT
ETag: "5744-5f2724abf0e3d"
Accept-Ranges: bytes
Content-Length: 22340
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.radsport-welt.de/images/61c08caa46a39967da871f5c_IMG_2260-p-1600.jpeg
109.237.132.28200 OK 111 kB URL HTTP/1.1 www.radsport-welt.de/images/61c08caa46a39967da871f5c_IMG_2260-p-1600.jpeg
IP 109.237.132.28:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1600x1200, components 3\012- data
Size 111 kB (111390 bytes)
Hash 944c269605869348369788727575ee46
c1d4022f77ed6c655f62fdceedc76e6e2d15e039
21dc84e1dd4acafc489fc97dbf94a8bfb40dbc9fd37bde6c750f2ce4488fa5df
Analyzer Verdict Alert fortinet Phishing
GET /images/61c08caa46a39967da871f5c_IMG_2260-p-1600.jpeg HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:57 GMT
ETag: "1b31e-5f2724d1cda0c"
Accept-Ranges: bytes
Content-Length: 111390
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.radsport-welt.de/images/619e5cdf72bd65f6dc70721e_Bild_Kachel.jpg
109.237.132.28200 OK 116 kB URL HTTP/1.1 www.radsport-welt.de/images/619e5cdf72bd65f6dc70721e_Bild_Kachel.jpg
IP 109.237.132.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x640, components 3\012- data
Size 116 kB (116071 bytes)
Hash fd497cb93bcbfb936a1aa98c0119b666
b302a5634985e02f6f357060606faa7060f434e4
54b10d814e3c070570cc6a3334c558bbae25eecf609e78218a74ff8487371037
GET /images/619e5cdf72bd65f6dc70721e_Bild_Kachel.jpg HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:53 GMT
ETag: "1c567-5f2724cd9488a"
Accept-Ranges: bytes
Content-Length: 116071
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.radsport-welt.de/images/60f15bb80325e78227962ff0_b863f915a7-removebg-preview.png
109.237.132.28200 OK 86 kB URL HTTP/1.1 www.radsport-welt.de/images/60f15bb80325e78227962ff0_b863f915a7-removebg-preview.png
IP 109.237.132.28:0
File type PNG image data, 410 x 227, 8-bit/color RGBA, non-interlaced\012- data
Hash 431199fe8276955ea5a21470fd8786fe
2371af59f7b31c659dfbfb1b4d4fb2fcba39be7f
29683a7d8f87630aa2f54f13e8a5bcb94f6caa4f7077b7f7078f7b5043c48e6f
GET /images/60f15bb80325e78227962ff0_b863f915a7-removebg-preview.png HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:38 GMT
ETag: "1505d-5f2724bfc6397"
Accept-Ranges: bytes
Content-Length: 86109
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.radsport-welt.de/images/61b1bf77635771892c3fbab4__TC_2822-p-1600.jpeg
109.237.132.28200 OK 202 kB URL HTTP/1.1 www.radsport-welt.de/images/61b1bf77635771892c3fbab4__TC_2822-p-1600.jpeg
IP 109.237.132.28:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1600x1067, components 3\012- data
Size 202 kB (202120 bytes)
Hash 6848fc061570c7a7048a4f8ea49be523
9aceef261b0d739ca7debcc9bd267a67352e74ec
fa9ce15e2b8138bba37d07f628f801198dade078c909397e0bd19a6227267874
Analyzer Verdict Alert fortinet Phishing
GET /images/61b1bf77635771892c3fbab4__TC_2822-p-1600.jpeg HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:55 GMT
ETag: "31588-5f2724cfec2a4"
Accept-Ranges: bytes
Content-Length: 202120
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.radsport-welt.de/images/619e5e5d59a2987a2cb4e434_jobradler-im-sonnenschein.jpg
109.237.132.28200 OK 693 kB URL HTTP/1.1 www.radsport-welt.de/images/619e5e5d59a2987a2cb4e434_jobradler-im-sonnenschein.jpg
IP 109.237.132.28:0
File type JPEG image data, baseline, precision 8, 1280x850, components 3\012- data
Size 693 kB (693015 bytes)
Hash 455607692201b0752583ea04c934a29d
18e926a8cd138c8c71d0a62abd4342ac5f45c959
603e297f6669be23370b593f6e7fc5cf3a99d2b067307524c162840cd34ca89d
GET /images/619e5e5d59a2987a2cb4e434_jobradler-im-sonnenschein.jpg HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:55 GMT
ETag: "a9317-5f2724cf9c158"
Accept-Ranges: bytes
Content-Length: 693015
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.radsport-welt.de/videos/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-transcode.webm
109.237.132.28206 Partial Content 1.9 MB URL HTTP/1.1 www.radsport-welt.de/videos/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-transcode.webm
IP 109.237.132.28:0
File type WebM\012- EBML file, creator webmB\20\012- data
Size 1.9 MB (1935101 bytes)
Hash 2e0f50f65e5ca16aa0d8a4a683260771
409277b8e9439717fff424a0fca2464dd9de9058
638945379b745e8b98be382e1557a6bde5f87123b5e00106bd486d062f3b9097
Analyzer Verdict Alert fortinet Phishing
GET /videos/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-transcode.webm HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 206 Partial Content
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:27:21 GMT
ETag: "1d86fd-5f2724e8527ce"
Accept-Ranges: bytes
Content-Length: 1935101
Strict-Transport-Security: max-age=31556926
Content-Range: bytes 0-1935100/1935101
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: video/webm
www.radsport-welt.de/images/619e5e48a59fba5143da1b07_E-Pordoi_6-p-1600.jpeg
109.237.132.28200 OK 108 kB URL HTTP/1.1 www.radsport-welt.de/images/619e5e48a59fba5143da1b07_E-Pordoi_6-p-1600.jpeg
IP 109.237.132.28:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1600x1627, components 3\012- data
Size 108 kB (108104 bytes)
Hash 865a8caf3058ae4139210beff2f6f542
f1913523d4c0b359f0d893150df775afa4360263
b05603ea74ceb7d3b54665227dfca903efbc2006ae4de98f96489cfd6a3dc038
Analyzer Verdict Alert fortinet Phishing
GET /images/619e5e48a59fba5143da1b07_E-Pordoi_6-p-1600.jpeg HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:53 GMT
ETag: "1a648-5f2724ce46465"
Accept-Ranges: bytes
Content-Length: 108104
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
52.32.141.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.32.141.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5AmZBp2wYytNKZWPgser1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EDFgGy2FLdexPbNklAyd/J/5C4s=
cdn.consentmanager.net/delivery/js/cmp_en.min.js
185.76.9.25200 OK 97 kB URL HTTP/2 cdn.consentmanager.net/delivery/js/cmp_en.min.js
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
Hash b2ec888ae295b04c1691d5c105c81f15
8def0a6824a3c5869ebe77742e1795227693c219
0c3d8b3a8786a2950d692edb23e489e27e594847cc4cd25a87fbebf4c5136035
GET /delivery/js/cmp_en.min.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 07:41:28 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 10:30:42 GMT
vary: Accept-Encoding
cache-control: max-age=1800, public
etag: W/"63d104d2-7433e"
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1674979563
server: CDN77-Turbo
x-77-nzt: AblMCRRmH8n/RQEAAA
x-77-nzt-ray: af58563068159fdc2823d6634d1e9c0c
x-cache: HIT
x-age: 325
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.radsport-welt.de/videos/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-transcode.mp4
109.237.132.28206 Partial Content 655 kB URL HTTP/1.1 www.radsport-welt.de/videos/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-transcode.mp4
IP 109.237.132.28:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 655 kB (655403 bytes)
Hash 43a816b7043b87e01be4b40b59c94942
79042f4e64bd6094317ec4d3a8a6a86f60e0761c
844bf038191264cb6c8ee38000fe57ec79eb52c44bad5c1963ab9729f4f07ca9
Analyzer Verdict Alert fortinet Phishing
GET /videos/61b1bcb50390ca80ef000176_Launch%20Teaser_MY22_3007_16x9-transcode.mp4 HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 206 Partial Content
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:27:20 GMT
ETag: "16a3a4-5f2724e8110e4"
Accept-Ranges: bytes
Content-Length: 1483684
Strict-Transport-Security: max-age=31556926
Content-Range: bytes 0-1483683/1483684
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: video/mp4
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 27b8e771239bfd325f890c03c1293309
7f1b98526dc75fc7fa139ecc1a827d7480e2a444
159ca994c26440fb6850e54d762ab1605398d5b790513629b54a3ec536e079b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3803
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:28 GMT
Etag: "63d5a667-116"
Last-Modified: Sun, 29 Jan 2023 06:38:05 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.consentmanager.net/delivery/recall/recall_shield.svg
185.76.9.25200 OK 490 B URL HTTP/2 cdn.consentmanager.net/delivery/recall/recall_shield.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
Hash 4cdbfb831c7633ce61383c538a97afc9
1529c8982859cf421b4f023d43b8c1dc6862eba0
652e9ca8a6c0ff522169ced1b5564626c730620aa4d796bfd047b500d8f33ef2
GET /delivery/recall/recall_shield.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 07:41:28 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Tue, 08 Feb 2022 14:38:47 GMT
etag: W/"fd-5d782acc3a098"
vary: Accept-Encoding
cache-control: max-age=86400, public
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1675030657
server: CDN77-Turbo
x-77-nzt: AblMCRSuMd3/J4QAAA
x-77-nzt-ray: af58563068159fdc2823d663c9d4da1b
x-cache: HIT
x-age: 33831
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
static.elfsight.com/platform/platform.js
172.67.72.106200 OK 17 kB URL HTTP/2 static.elfsight.com/platform/platform.js
IP 172.67.72.106:0
File type Unicode text, UTF-8 text, with very long lines (32009), with CRLF, LF line terminators
Hash ea26173efd4f58be90b59f3fc78da9b5
01c65e702e28bd30b0e014f7b0e4dd15b2ba9bb7
f50ae9d97d39a5613ca14e41c740f06e7f2b72a002f65bc0eefb1a51bef48cf3
GET /platform/platform.js HTTP/1.1
Host: static.elfsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.radsport-welt.de/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 07:41:28 GMT
content-type: application/javascript
cache-control: max-age=3600
last-modified: Wed, 25 Jan 2023 06:46:17 GMT
x-rgw-object-type: Normal
etag: W/"4bb6ff4d7372464b09af266b83bbe236"
x-amz-request-id: tx000000000000006023c15-0063d3d2df-498ef478-sfo2a
strict-transport-security: max-age=0
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin, Accept-Encoding
x-hw: 1674826693.dop210.sk1.t,1674826693.cds071.sk1.hn,1674826693.cds243.sk1.c
cf-cache-status: HIT
age: 3985
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4cK6cN6sihqDVrh8xtQjm%2BzSRTa9b2iNAJepUvQ59ceV0a3rbql4gyPCCamjTig%2FFfeNrf4KsdfWXBydQlR6Pe%2FF6qBIZFYpomZpmj4np4r2ZB0HRrL8xa%2BeatFPiry29fF0S3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7910535e4c79b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.radsport-welt.de/apple-touch-icon.png
109.237.132.28200 OK 26 kB URL HTTP/1.1 www.radsport-welt.de/apple-touch-icon.png
IP 109.237.132.28:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash e5b1f6ed7854d45d24ad86d5890fa82c
c370edd992a744ff5cb911c08bda62888b86436b
581e6f6f0c1e8ae152ec76c2d8edb96a1f1683f39a4cba9ee218d4166b048ecc
GET /apple-touch-icon.png HTTP/1.1
Host: www.radsport-welt.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 07:41:28 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 09:26:13 GMT
ETag: "659c-5f2724a7e3be1"
Accept-Ranges: bytes
Content-Length: 26012
Strict-Transport-Security: max-age=31556926
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d10430.027779344928!2d9.2272331!3d49.190942!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0x4c83ce8905898c46!2sRadsport%20Welt%20Neckarsulm!5e0!3m2!1sen!2s!4v1626430325481!5m2!1sen!2s
142.250.74.164200 OK 1.4 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d10430.027779344928!2d9.2272331!3d49.190942!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0x4c83ce8905898c46!2sRadsport%20Welt%20Neckarsulm!5e0!3m2!1sen!2s!4v1626430325481!5m2!1sen!2s
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2889)
Hash a203368945178b906f47a8e3792ebc06
5aa9885d65be65b3dd49dc7715531d736b316376
bb52bcd29341164d720c47f9dbb404116d6bb5920b93a25d1200c269c107ad96
GET /maps/embed?pb=!1m14!1m8!1m3!1d10430.027779344928!2d9.2272331!3d49.190942!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0x4c83ce8905898c46!2sRadsport%20Welt%20Neckarsulm!5e0!3m2!1sen!2s!4v1626430325481!5m2!1sen!2s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-jTsWt2bdufq9FwLLVs1R1A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 29 Jan 2023 07:41:28 GMT
server: scaffolding on HTTPServer2
content-length: 1379
x-xss-protection: 0
x-content-type-options: nosniff
server-timing: gfet4t7; dur=154
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad
172.217.21.170200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad
IP 172.217.21.170:0
File type ASCII text, with very long lines (2440)
Hash e96448ee7037067a702d2fad8ccad563
83c2013f2d9537a731311fd5e96838c097a5b0f7
2012ceaf28e7dbb4237b390b6f4862e70eb3847e2a32bb17b7b3864592bc8fad
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56003
x-xss-protection: 0
x-frame-options: SAMEORIGIN
date: Sun, 29 Jan 2023 07:23:14 GMT
expires: Sun, 29 Jan 2023 07:53:14 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 1094
server-timing: gfet4t7; dur=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
216.58.207.227200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 216.58.207.227:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 03:51:36 GMT
expires: Sun, 28 Jan 2024 03:51:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 100193
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.67200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.radsport-welt.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 174800
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17715
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 07:41:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17715
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 07:41:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17715
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 07:41:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17715
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 07:41:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bff98d2-c029-496d-b1f3-f17f0e92e273.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bff98d2-c029-496d-b1f3-f17f0e92e273.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7da187381befeffa83fbaed380f2932e
7f4750e505e965f129c096ef40bc24c392051025
f47a20d681386b3341f23d286fb2f0a2a789bde75bdbc2d14c4747721e13d7a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bff98d2-c029-496d-b1f3-f17f0e92e273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12124
x-amzn-requestid: 4032a848-72f7-4fbf-a0b2-e9cd7a2d1853
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVMBEGtwIAMF_Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1f3a0-6eec6555074c2fba0be0d90e;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 03:29:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixuvPYw-yLJbABGhAMsaZPkbpCy6H-R-QXKxMlIBRQgBYvnERkOs_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:42:35 GMT
age: 28734
etag: "7f4750e505e965f129c096ef40bc24c392051025"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:12:28 GMT
age: 30541
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 50733
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 8dca6752-c548-4526-ae81-4626843ade3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYbDjGREoAMFxiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d33ee3-1c097c131b91c34b4e7df1be;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i8JJruxoRfordb6WFNf67-GLWrA_Q930x3GCCQoUmDwXrfZtBXvsZg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:34:32 GMT
age: 14817
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d5ed99a9aed6f367efc5c9498ce87ff1
3123eb6f550c51fe17fc62eff943b3739e239a9b
536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GEghrk0LlbdfqVAHey-W84Zk9XHT2PD268Vfxf85HEvil0Ra27YgPA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:43:37 GMT
age: 14272
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:57:16 GMT
age: 60253
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
apps.elfsight.com/p/platform.js
172.67.72.106301 Moved Permanently 18 kB URL HTTP/2 apps.elfsight.com/p/platform.js
IP 172.67.72.106:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 36b57efe135171056eda119391ed3a45
c08b10bf9dcab3a22ebaca3d21fd3fd0b394aa38
31ccb16c0176cb4786497a78892a25db3ba797d9a56224645b727bbeb76ff33c
GET /p/platform.js HTTP/1.1
Host: apps.elfsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 29 Jan 2023 07:41:28 GMT
location: https://static.elfsight.com/platform/platform.js
cache-control: max-age=3600
expires: Sun, 29 Jan 2023 08:41:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yW9zN%2FXDndjjMIpWk1ocuFsGI0997w%2FiaZwZml8ba4zaVTMrsjS4MV22rykV%2BNngaJmdLNcF%2FpmrsaTaRwJ4Y9y2cu30KUv88wwb2uh8q1d%2FJdMTFZq5y7g4juGraHQasn9%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7910535e2c5cb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.67200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 302856
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a/AEdFTp4qnR-t9A_cFxwoAZ_N9lHeKLdcYGdht_UOpsNL=s240-c-c0x00000000-cc-rp-mo-br100
216.58.211.1200 OK 8.1 kB URL HTTP/2 lh3.googleusercontent.com/a/AEdFTp4qnR-t9A_cFxwoAZ_N9lHeKLdcYGdht_UOpsNL=s240-c-c0x00000000-cc-rp-mo-br100
IP 216.58.211.1:0
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash c6cd07047de845eef6f0d79dbfc1d749
58314b7107f5970bb4f2a69a19b50dd464390587
6bd97d4949caefe37cb022b9b3ea809a0ab8d60c49a33668f1f7a69e10d7222f
GET /a/AEdFTp4qnR-t9A_cFxwoAZ_N9lHeKLdcYGdht_UOpsNL=s240-c-c0x00000000-cc-rp-mo-br100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Mon, 30 Jan 2023 07:41:30 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 07:41:30 GMT
server: fife
content-length: 8105
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 07:41:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a-/AD5-WCn4BGNv-cTfMgCHZBCY6bMolp5BsbiAKbfdznE-pQ=s240-c-c0x00000000-cc-rp-mo-br100
216.58.211.1200 OK 80 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WCn4BGNv-cTfMgCHZBCY6bMolp5BsbiAKbfdznE-pQ=s240-c-c0x00000000-cc-rp-mo-br100
IP 216.58.211.1:0
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash 8df1d494473bbdb97926d1e6ae3c309c
a7fb39b9978265989de6331e3bda02a4b34acb22
1be34f3257c29821ec1736a6d344d7a67d50762fe6de1bc64da42a88485144e7
GET /a-/AD5-WCn4BGNv-cTfMgCHZBCY6bMolp5BsbiAKbfdznE-pQ=s240-c-c0x00000000-cc-rp-mo-br100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1a4"
expires: Mon, 30 Jan 2023 07:41:30 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 07:41:30 GMT
server: fife
content-length: 80380
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.consentmanager.net/delivery/customdata/bV8xLndfMzc2OTQuZF8yNjczLnhfNy52LnAudF8yNjczLnh0Xzc.js
185.76.9.25200 OK 0 B URL HTTP/2 cdn.consentmanager.net/delivery/customdata/bV8xLndfMzc2OTQuZF8yNjczLnhfNy52LnAudF8yNjczLnh0Xzc.js
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /delivery/customdata/bV8xLndfMzc2OTQuZF8yNjczLnhfNy52LnAudF8yNjczLnh0Xzc.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.radsport-welt.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 07:41:28 GMT
content-type: application/javascript; charset=utf-8
x-xss-protection: 0
expires: Sun, 29 Jan 2023 08:11:28 GMT
cache-control: public, max-age=1800
last-modified: Sun, 29 Jan 2023 07:41:28 GMT
vary: Accept-Encoding, Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1674979888
server: CDN77-Turbo
x-77-nzt: AblMCRRjc8ih
x-77-nzt-ray: af58563068159fdc2823d663ade04c10
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
service-reviews-ultimate.elfsight.com/data/reviews?uris%5B%5D=ChIJX-__HtAlmEcRRoyJBYnOg0w&with_text_only=1&min_rating=5&page_length=100&order=date
104.26.6.107200 OK 0 B URL HTTP/2 service-reviews-ultimate.elfsight.com/data/reviews?uris%5B%5D=ChIJX-__HtAlmEcRRoyJBYnOg0w&with_text_only=1&min_rating=5&page_length=100&order=date
IP 104.26.6.107:0
GET /data/reviews?uris%5B%5D=ChIJX-__HtAlmEcRRoyJBYnOg0w&with_text_only=1&min_rating=5&page_length=100&order=date HTTP/1.1
Host: service-reviews-ultimate.elfsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.radsport-welt.de/
Origin: https://www.radsport-welt.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 07:41:30 GMT
content-type: application/json
cf-ray: 79105363db45b50f-OSL
access-control-allow-origin: https://www.radsport-welt.de
cache-control: no-cache, private
strict-transport-security: max-age=0
vary: Accept-Encoding, Origin
cf-cache-status: DYNAMIC
cf-apo-via: origin,host
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rI%2B2MdlzqbqkziAKZYvz%2BL9fIia6Q4XkRiE9VC9vpqE2QB%2BTUEf3t%2FpgdaL0UgAEoKDGXhW4Miae5iC7vguR3a%2FkOL9FqCxCID7CXMaplLC2ApTU4PfHL4er5wh1yf2%2By242b0Ee%2F36BAzvVPzs8exPMPxhSFuY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
service-reviews-ultimate.elfsight.com/data/sources?uris%5B%5D=ChIJX-__HtAlmEcRRoyJBYnOg0w
104.26.6.107200 OK 0 B URL HTTP/2 service-reviews-ultimate.elfsight.com/data/sources?uris%5B%5D=ChIJX-__HtAlmEcRRoyJBYnOg0w
IP 104.26.6.107:0
GET /data/sources?uris%5B%5D=ChIJX-__HtAlmEcRRoyJBYnOg0w HTTP/1.1
Host: service-reviews-ultimate.elfsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.radsport-welt.de/
Origin: https://www.radsport-welt.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 07:41:30 GMT
content-type: application/json
cf-ray: 79105363eb4bb50f-OSL
access-control-allow-origin: https://www.radsport-welt.de
cache-control: no-cache, private
strict-transport-security: max-age=0
vary: Accept-Encoding, Origin
cf-cache-status: DYNAMIC
cf-apo-via: origin,host
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BN89p4Byp%2FJsn%2BBZB6N%2BWWWh5T%2FG2VZxq0bWIQayFMvq2wjhKO29w7bRE%2FA3x2xGUO1RrvzmxZv1FlBRbyJ08U2y4%2Fs%2F%2FPAikj%2FHUuAmk6s5NnA08LXjQZecGwBb5SA7V2%2F7HDEDbAqeXDXfvigGBS2s4BYTPC8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2