Report - bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com/

Report Overview

Submitted URL
bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com/
IP
104.17.64.14
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 04:52:10
Access
public
Website Title
WEB.DE - E-Mail-Adresse kostenlos, FreeMail, De-Mail & Nachrichten
Final URL
web.de/consent-management/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com	unknown	unknown	No data	No data	531 B	15 kB	104.17.96.13
web.de	6512	unknown	2012-05-21	2023-11-15	620 B	82 kB	82.165.229.83
i0.web.de	83305	unknown	2012-07-18	2023-11-15	666 B	47 kB	23.38.200.165
tgw.web.de	unknown	unknown	2022-05-09	2024-03-03	1.2 kB	1.5 kB	217.72.199.35
dl.web.de	41933	unknown	2012-05-30	2024-03-03	4.2 kB	112 kB	23.38.200.165
s.uicdn.com	25781	2011-12-08	2012-07-03	2024-04-02	3.0 kB	78 kB	23.38.200.165
einwilligungsspeicher.netid.de	59968	unknown	2020-08-27	2024-04-15	555 B	664 B	195.20.250.8
wa.web.de	72766	unknown	2019-06-04	2024-03-03	1.2 kB	376 B	82.165.229.39
img.ui-portal.de	21604	unknown	2012-07-10	2024-04-15	3.4 kB	73 kB	23.38.200.165
plus.web.de	47481	unknown	2019-09-25	2023-11-07	1.2 kB	18 kB	195.20.251.18
status.geotrust.com	3662	1999-04-04	2017-12-01	2024-04-15	331 B	735 B	192.229.221.95
nct.ui-portal.de	51256	unknown	2016-08-12	2024-03-03	604 B	376 B	82.165.229.39
js.ui-portal.de	25004	unknown	2012-07-10	2024-04-12	3.3 kB	230 kB	23.38.200.165
permission-proxy.web.de	unknown	unknown	No data	No data	776 B	656 B	217.72.199.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-15	medium	bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com/	Web.de

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	unknown	12 B	2023-05-26	2024-04-25
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-05-26 09:29:05 Last Seen2024-04-25 07:37:57 Times Seen18 Hash 5e840f53b74a2fdc80f55cc4f434aa62 0a889d11578e55d053c7782be4b8a542ca8c0919 3a072fc9040ddb7f1f6aea2d42199b4ab7ff70270ca5e590fa4ba2da8f1aa32a Loading...

	s.uicdn.com/shared/sentry/5.5.0/bundle.min.js	52 kB	2023-03-07	2024-04-25
Pretty URL s.uicdn.com/shared/sentry/5.5.0/bundle.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2024-04-25 16:34:33 Times Seen261 Hash b1dcc6195d84cf50c3e882d3d515f848 06562c193663a31a3cabeaa18cffeb882084fcb6 8c04755395b8f232c57d062a7669c3c414658299d29c6b6f83f1f30185d94ecb Loading...

	s.uicdn.com/t/prod/iq/mam/purple/daq.js	49 kB	2024-04-15	2024-04-25
Pretty URL s.uicdn.com/t/prod/iq/mam/purple/daq.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:55 Last Seen2024-04-25 07:37:58 Times Seen7 Hash fe9dd0cb97c1a0d4554f135fa386f38e a52a638aa465949b7ec86cb1ae90b29aac352730 9ae8e42c89942c294922e13a669f6f1df5fa87f418719558ad50bd39e0e5830a Loading...

	s.uicdn.com/t/prod/iq/mam/purple/utag.81.js?utv=ut4.51.202404100646	8.2 kB	2024-04-15	2024-04-25
Pretty URL s.uicdn.com/t/prod/iq/mam/purple/utag.81.js?utv=ut4.51.202404100646 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:54 Last Seen2024-04-25 07:37:58 Times Seen6 Hash c35458f31b7a4c9a23f6623b0ec49000 37c7a11790b509807df1bdc38f22e4c26bffa597 becea152931a3be9f8957aed583e2b1727380c890e7cba19348bdae85a00cb01 Loading...

	js.ui-portal.de/tamago/1.4.13/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp&userEventLoad=partitialPageLoadDone	179 kB	2024-04-05	2024-04-28
Pretty URL js.ui-portal.de/tamago/1.4.13/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp&userEventLoad=partitialPageLoadDone IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-05 21:26:09 Last Seen2024-04-28 10:08:06 Times Seen19 Hash ac754e8ccfe1a9b58a391e02fd570bea 52ce24536b1b143a8c291245ace475b6a29e398b 6e380bc1ed6ce3c10424fc1d2effd127ea6a1b48bba9a3ee57e849bf1d5349ff Loading...

	dl.web.de/permission/live/portal/v1/ppp/js/permission-core.min.js	72 kB	2024-04-15	2024-04-25
Pretty URL dl.web.de/permission/live/portal/v1/ppp/js/permission-core.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:54 Last Seen2024-04-25 07:37:58 Times Seen6 Hash 6d0aa22569a752a3d9313a9a1296b08d 8ab3afa5c11790cd9840211df9ac207bd9cfe578 a23857333efcca8734eaaf7eef5187ade58093d19b1f6f310ef8bbefb02fe943 Loading...

	web.de/consent-management/	880 B	2023-03-12	2024-04-25
Pretty URL web.de/consent-management/ IP 82.165.229.83 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 18:08:37 Last Seen2024-04-25 07:37:57 Times Seen3 Hash db5bc3474880af51629a89b96283fcca 83dcc1675836c7ec435ad14330c6d176990ce1b7 2500788d23462d5b4c8a8cb5bf5b3e4c5a1b12b0e1129b49bf7ac258d76c7595 Loading...

	dl.web.de/tcf/live/v1/js/tcf-api.js	61 kB	2024-04-03	2024-04-25
Pretty URL dl.web.de/tcf/live/v1/js/tcf-api.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 18:35:36 Last Seen2024-04-25 07:37:58 Times Seen28 Hash 112d724b474c7c4aa44631a0f1e4430a acf7cfd204b41d8735ce9d3f556d77fc34c4c111 1e129f2a06340ae76a09698d6e24d69d642bedc5b748d960351758beb5a47177 Loading...

	dl.web.de/uim/permission/_auth/authlib.js	21 kB	2023-03-12	2024-04-25
Pretty URL dl.web.de/uim/permission/_auth/authlib.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:08:37 Last Seen2024-04-25 07:37:58 Times Seen15 Hash 9862d943c3d14860d87287f3c59ae2de 545b8e202522162c42431938ba7d2b958a342c8a c2f47972fc035e806d874fb3cc76aefa5ecca32d6a95653a4f2a2fb3138eed54 Loading...

	dl.web.de/permission/live/portal/v1/ppp/core.html	0 B	2023-03-07	2024-04-29
Pretty URL dl.web.de/permission/live/portal/v1/ppp/core.html IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 19:27:29 Times Seen37187145 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583	262 B	2023-03-12	2024-04-25
Pretty URL plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583 IP 195.20.251.18 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 18:08:37 Last Seen2024-04-25 07:37:57 Times Seen3 Hash 8436eb4539f1ffa43e60143b8bc37700 5c9add460614c095e743831ba883695528f25aff d65d6665ca5678eab141a256fba19da82fd05dae3ae35b95fa107479237fa60f Loading...

	js.ui-portal.de/netid/cmp/release/v1/webde/app.js	236 kB	2024-04-16	2024-04-16
Pretty URL js.ui-portal.de/netid/cmp/release/v1/webde/app.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:52:18 Last Seen2024-04-16 06:52:18 Times Seen2 Hash b1f1a5940dc165c3282772456d2a2863 8ea4086ee9d675ae1232c909f71633d81b88bf39 1face4567e32d01783adbebfc88cc2791e364edfeca8bbdb4ce10e9895440b58 Loading...

	dl.web.de/permission/live/portal/v1/ppp/js/permission-client.js	45 kB	2024-04-03	2024-04-28
Pretty URL dl.web.de/permission/live/portal/v1/ppp/js/permission-client.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 18:35:36 Last Seen2024-04-28 10:08:06 Times Seen20 Hash 09667216cb06d3c520be689dab019e01 8bf7de1237965a79dd7789eb4407e3412eef06a8 046b086de8bb3d6f25dfa7f95888ebe1de74e456649a5e37a60ceaad64191848 Loading...

	dl.web.de/permission/live/portal/v1/ppp/core.html	0 B	2023-03-07	2024-04-29
Pretty URL dl.web.de/permission/live/portal/v1/ppp/core.html IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 19:27:29 Times Seen37187145 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	s.uicdn.com/fd/sentry/v7/bundle.tracing.min.js	106 kB	2024-04-15	2024-04-25
Pretty URL s.uicdn.com/fd/sentry/v7/bundle.tracing.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:55 Last Seen2024-04-25 07:37:58 Times Seen6 Hash 6f6775dbbba9e08e4bbad6d29210c10d 90d40d0ba50bfbe578a4b78d5bc6af38cdf568d6 7f8da5e44c4ff5f86531f9cbc1180baf63e5da69af4ae477abaf05511e992d33 Loading...

	web.de/consent-management/	480 B	2024-04-16	2024-04-25
Pretty URL web.de/consent-management/ IP 82.165.229.83 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 06:52:18 Last Seen2024-04-25 07:37:57 Times Seen2 Hash 27d17aba70c8ff319f808897a7152710 b194c185b924bab2ab4003ad46b43d8b8fc66f94 936caa42a1c0ad3bf6556ac45598080b789cbe3bcc25010199fccc631e1f8be3 Loading...

	dl.web.de/permission/live/portal/v1/ppp/js/permission-client-compat.js	5.4 kB	2024-04-03	2024-04-28
Pretty URL dl.web.de/permission/live/portal/v1/ppp/js/permission-client-compat.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 18:35:36 Last Seen2024-04-28 10:08:06 Times Seen20 Hash 0f2feb849638e17ef45fe02c57277672 f256b02e086e2fa7913da9301ee274b1abedb569 3a4e49bb83f3d0c741575e749d7d896ac6e4cc9a7717ff1b0937979d00b7a7f0 Loading...

	web.de/consent-management/	2.9 kB	2023-09-25	2024-04-25
Pretty URL web.de/consent-management/ IP 82.165.229.83 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-25 07:02:26 Last Seen2024-04-25 07:37:57 Times Seen5 Hash b531b9f7429bc4b104c5f0edeac99ab4 eb75926447acae2085831009a8f58c6636a45550 7ba509d85c18d6c4700c4e14e87fd02e12c58986957a833a5db4db3189455197 Loading...

	s.uicdn.com/t/prod/iq/mam/purple/utag.80.js?utv=ut4.51.202404100646	8.1 kB	2024-04-15	2024-04-25
Pretty URL s.uicdn.com/t/prod/iq/mam/purple/utag.80.js?utv=ut4.51.202404100646 IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:55 Last Seen2024-04-25 07:37:58 Times Seen6 Hash bc5ca1ca49356cf89585ba9e8038e4ba 57c7e06809758c738f370e887f0f9429732d131d fb0a9ae8fd79482400ec67bd2e64f88ab9a55d251d5c1ada931bc198b18eb468 Loading...

	s.uicdn.com/tcf/live/v1/js/tcf-stub.js	1.7 kB	2024-04-15	2024-04-25
Pretty URL s.uicdn.com/tcf/live/v1/js/tcf-stub.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:55 Last Seen2024-04-25 07:37:58 Times Seen6 Hash 8c2a683190e95bb8e77e373d6418d4ce c66484bd2473336b6f27241bdfe7df2630fe3784 1dc899626122da30fa57ee8a6c84d6797b071cca68e0a643a6fb48947dc1e210 Loading...

	img.ui-portal.de/pos-cdn/tracklib/4.3.0/tracklib.min.js	35 kB	2023-03-07	2024-04-25
Pretty URL img.ui-portal.de/pos-cdn/tracklib/4.3.0/tracklib.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:01 Last Seen2024-04-25 07:37:58 Times Seen27 Hash 467d64d03cfc78e8871157e56581e037 be8c7eb037128204999ff8d42477e27f7a23e598 40a6f6526afea19db42dcf345249915ccacc710ee6c97091d5d6285b5f90ead3 Loading...

	plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583	4.1 kB	2024-04-16	2024-04-25
Pretty URL plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583 IP 195.20.251.18 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 06:52:18 Last Seen2024-04-25 07:37:57 Times Seen2 Hash 437e1b58bbd8427f6e49ea5143963ecc 62b29d7719a10a01fa30a22e1092d27c046a393a 1334868804a74986aad249dae934b50f859fcae69bb00af20e619e1d4b3c868f Loading...

	s.uicdn.com/permission/live/v1/ppp/js/permission-layer.min.js	16 kB	2024-04-15	2024-04-25
Pretty URL s.uicdn.com/permission/live/v1/ppp/js/permission-layer.min.js IP 23.38.200.165 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 11:01:54 Last Seen2024-04-25 07:37:58 Times Seen6 Hash e8c5822c765017fbd712db9606658046 24d6ceb2c5891095b4923b0c2905bf985130178a ebab7b8079958bee9e899b2c34cb7eb4fa8b69eda8f35e9d581a159458967634 Loading...

	plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583	12 kB	2024-04-16	2024-04-25
Pretty URL plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583 IP 195.20.251.18 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 06:52:18 Last Seen2024-04-25 07:37:57 Times Seen2 Hash b35031b80e7923cdd2a49f455cae3380 7eefa7b183dd885129670220abb3ad5c4871435d 07fca0ba50fa1d66025da6bcb13dabc1787a9bc331249e94a6068e8cb8d25766 Loading...

		Size	First Seen	Last Seen
	#1 Write - ad83144be800cecbd203dd92c1d950e8	105 B	2024-04-16	2024-04-25
Pretty Observations First Seen2024-04-16 06:52:18 Last Seen2024-04-25 07:37:57 Times Seen2 Hash ad83144be800cecbd203dd92c1d950e8 fbb2a5cf95e705a8eb5881dd189eab147c9a660c 501f34cdb0cb5c2eeade19cce2eddc7137b09140c8ad7b78b40361ea042042d7 Loading...

	#2 Write - 56a2fbbabac1060033745a925ba38e23	73 B	2023-03-12	2024-04-25
Pretty Observations First Seen2023-03-12 18:08:37 Last Seen2024-04-25 07:37:57 Times Seen3 Hash 56a2fbbabac1060033745a925ba38e23 ccdc0cafc9b91baadd213a9f0ef0c154a1afe821 67fdd33e431e447c5b9b5ba41e3291adad0089162694ffc0ee84a4b1505a7136 Loading...

	#3 Write - 1c372c18aa05718e3d13d8d2d00042a3	93 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 13:14:01 Last Seen2024-04-25 07:37:57 Times Seen14 Hash 1c372c18aa05718e3d13d8d2d00042a3 4bf63f9f7f7b4e72e0f12685b5ff194a813aff32 a4f24c1b6a61f5fe670095f8c5963b066df8a1a5b9f31cb40cd3ee49912a3a93 Loading...

	#4 Write - 7dc21bc2e10640f051cb64a70527562a	90 B	2024-04-16	2024-04-25
Pretty Observations First Seen2024-04-16 06:52:18 Last Seen2024-04-25 07:37:57 Times Seen2 Hash 7dc21bc2e10640f051cb64a70527562a 0dc883d4745539f5199d0179e79bbf50a0542872 7ad7e89a5af8f732f14152ab146e0d49b66324740c818690242dddefd5b170f3 Loading...

HTTP Transactions (39)

URL IP Response Size

dl.web.de/tcf/live/v1/js/tcf-api.js

23.38.200.165

200 OK

17 kB

URL GET HTTP/2
dl.web.de/tcf/live/v1/js/tcf-api.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (57686)
Size
17 kB (17365 bytes)
Hash
112d724b474c7c4aa44631a0f1e4430a
acf7cfd204b41d8735ce9d3f556d77fc34c4c111
1e129f2a06340ae76a09698d6e24d69d642bedc5b748d960351758beb5a47177

HTTP Headers

GET /tcf/live/v1/js/tcf-api.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 13 Mar 2024 08:51:51 GMT
etag: "edee-61386e2cbf528-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 17365
content-type: application/javascript
cache-control: public, max-age=4951
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/homepage/tcf/webde/spinner.gif

23.38.200.165

200 OK

3.2 kB

URL GET HTTP/2
img.ui-portal.de/homepage/tcf/webde/spinner.gif
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
GIF image data, version 89a, 32 x 32
Size
3.2 kB (3208 bytes)
Hash
491b0ce13e31283f87e4eed48faaa081
2a58dc7e0507638918724f579b4f58e1851a5805
6fcdcff9cfbc6fc67e0d115452dbb692261022775885cafb71b22f4d523fe00e

HTTP Headers

GET /homepage/tcf/webde/spinner.gif HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 27 Jul 2020 12:03:31 GMT
etag: "c88-5ab6b1c778ac0"
server: Apache
accept-ranges: bytes
content-length: 3208
x-robots-tag: noindex
content-type: image/gif
cache-control: public, max-age=601
date: Tue, 16 Apr 2024 04:51:45 GMT
X-Firefox-Spdy: h2

bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com/

104.17.96.13

14 kB

URL
bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
14 kB (13921 bytes)
Hash
0510966721ad24a01776f122951a74e6
fdd340596e397337fb1b69828f9b514cbad688e1
1a591b4a414c11838a078744a0765590efd5d7e16d9b7d307ab6e9f9859fb332

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Web.de

HTTP Headers

GET / HTTP/1.1
Host: bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 04:51:43 GMT
content-type: text/html
cf-ray: 87518fd26e065687-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4/
x-ipfs-roots: bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4
set-cookie: __cf_bm=EFvAl1Vpw92QeObOF.l4dQVPC3IYRyN9YgwZXbl.Ohg-1713243103-1.0.1.1-ihMZt0lsPk0.MAAMeS12u6PhtMcm1C5mt2VQAPSgXgQvSbidVLb6rfYlA9Q2aWAbKshhTXiyrWhwdOWQKdkziQ; path=/; expires=Tue, 16-Apr-24 05:21:43 GMT; domain=.bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dl.web.de/permission/live/portal/v1/ppp/js/permission-client-compat.js

23.38.200.165

200 OK

2.0 kB

URL GET HTTP/2
dl.web.de/permission/live/portal/v1/ppp/js/permission-client-compat.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3810)
Size
2.0 kB (1987 bytes)
Hash
0f2feb849638e17ef45fe02c57277672
f256b02e086e2fa7913da9301ee274b1abedb569
3a4e49bb83f3d0c741575e749d7d896ac6e4cc9a7717ff1b0937979d00b7a7f0

HTTP Headers

GET /permission/live/portal/v1/ppp/js/permission-client-compat.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 25 Mar 2024 15:00:14 GMT
etag: "1540-6147d6e4f60c1-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 1987
content-type: application/javascript
cache-control: public, max-age=6268
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/purple/daq.js

23.38.200.165

200 OK

13 kB

URL GET HTTP/2
s.uicdn.com/t/prod/iq/mam/purple/daq.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20506)
Size
13 kB (12806 bytes)
Hash
fe9dd0cb97c1a0d4554f135fa386f38e
a52a638aa465949b7ec86cb1ae90b29aac352730
9ae8e42c89942c294922e13a669f6f1df5fa87f418719558ad50bd39e0e5830a

HTTP Headers

GET /t/prod/iq/mam/purple/daq.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Apr 2024 13:15:16 GMT
etag: "be7d-61622699790d3-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 12806
content-type: application/javascript
cache-control: max-age=480
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/purple/utag.81.js?utv=ut4.51.202404100646

23.38.200.165

200 OK

2.5 kB

URL GET HTTP/2
s.uicdn.com/t/prod/iq/mam/purple/utag.81.js?utv=ut4.51.202404100646
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (5509)
Size
2.5 kB (2468 bytes)
Hash
c35458f31b7a4c9a23f6623b0ec49000
37c7a11790b509807df1bdc38f22e4c26bffa597
becea152931a3be9f8957aed583e2b1727380c890e7cba19348bdae85a00cb01

HTTP Headers

GET /t/prod/iq/mam/purple/utag.81.js?utv=ut4.51.202404100646 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Apr 2024 13:15:16 GMT
etag: "2033-61622699790d3-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 2468
content-type: application/javascript
cache-control: max-age=395
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

web.de/consent-management/

82.165.229.83

200 OK

80 kB

URL User Request GET HTTP/2
web.de/consent-management/
IP
82.165.229.83:443
ASN
#8560 IONOS SE

Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.web.de
FingerprintA2:2A:B8:6E:C8:FA:31:2D:5F:D4:EF:C5:03:27:9D:08:22:C8:B8:E7
ValidityTue, 20 Jun 2023 10:02:36 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type
gzip compressed data
Size
80 kB (80528 bytes)
Hash
4a8557cd754db0dd4f8e79374295c66b
34e46c82b996237971fe90a57ec19b436b3e0263
5c36d6a1d96fdd7aa8f1b1e317103e9bb7eeed7d86d945e9eef44c771ed62d1d

HTTP Headers

GET /consent-management/ HTTP/1.1
Host: web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkxf6fkjcncbep7csu3vjz4auohlon4bh3eqrx4b5fhag6zuwbq4.ipfs.cf-ipfs.com/
Cookie: consentLevel=1; euconsent-bypass=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 04:51:44 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self' www.united-internet-media.de adimg.uimserv.net advideo.uimserv.net
content-type: text/html;charset=UTF-8
expires: 0
feature-policy: microphone 'none'; camera 'none'; geolocation 'none'; usb 'none'
permissions-policy: microphone 'none'; camera 'none'; geolocation 'none'; usb 'none'
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 0
set-cookie: clktype=; Max-Age=0; Expires=Thu, 01 Jan 1970 00:00:10 GMT; Path=/; Secure; HttpOnly
euconsent-bypass=1713243104; Max-Age=120; Expires=Tue, 16 Apr 2024 04:53:44 GMT; Domain=web.de; Path=/; Secure
ui_cid=OPTOUT; Max-Age=31536000; Expires=Wed, 16 Apr 2025 04:51:44 GMT; Path=/; Secure; HttpOnly
SSLB=.0; domain=.web.de ;path=/
X-Firefox-Spdy: h2

s.uicdn.com/t/prod/iq/mam/purple/utag.80.js?utv=ut4.51.202404100646

23.38.200.165

200 OK

2.4 kB

URL GET HTTP/2
s.uicdn.com/t/prod/iq/mam/purple/utag.80.js?utv=ut4.51.202404100646
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (5542)
Size
2.4 kB (2367 bytes)
Hash
bc5ca1ca49356cf89585ba9e8038e4ba
57c7e06809758c738f370e887f0f9429732d131d
fb0a9ae8fd79482400ec67bd2e64f88ab9a55d251d5c1ada931bc198b18eb468

HTTP Headers

GET /t/prod/iq/mam/purple/utag.80.js?utv=ut4.51.202404100646 HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Apr 2024 13:15:16 GMT
etag: "1fca-61622699790d3-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 2367
content-type: application/javascript
cache-control: max-age=305
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/tamago/1.4.13/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp&userEventLoad=partitialPageLoadDone

23.38.200.165

200 OK

57 kB

URL GET HTTP/2
js.ui-portal.de/tamago/1.4.13/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp&userEventLoad=partitialPageLoadDone
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
57 kB (57444 bytes)
Hash
ac754e8ccfe1a9b58a391e02fd570bea
52ce24536b1b143a8c291245ace475b6a29e398b
6e380bc1ed6ce3c10424fc1d2effd127ea6a1b48bba9a3ee57e849bf1d5349ff

HTTP Headers

GET /tamago/1.4.13/tamago.js?loglevel=error&view=automatic&tm=teal&stage=live&exclude=ppp&userEventLoad=partitialPageLoadDone HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 05 Oct 2023 11:31:24 GMT
etag: "2ba54-606f676c6968d-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-type: application/javascript
content-length: 57444
cache-control: public, max-age=13447
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/webde/favicon.ico

23.38.200.165

1.2 kB

URL GET
img.ui-portal.de/webde/favicon.ico
IP
23.38.200.165:0
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
1.2 kB (1219 bytes)
Hash
e28e217fe7cc6e04619d224fe0864660
259ea5c86f9153d0980b3872fc3432be6c0a7884
fc68b906543280a143ec95215f32825db7a580b38955886d101fc1ba1dd0b6fd

HTTP Headers

GET /webde/favicon.ico HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 01 Feb 2019 13:03:59 GMT
etag: "3aee-580d4c6bc67d9"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 1219
content-type: image/vnd.microsoft.icon
cache-control: public, max-age=1244
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/tcf/live/v1/js/tcf-api.js

23.38.200.165

200 OK

17 kB

URL GET HTTP/2
dl.web.de/tcf/live/v1/js/tcf-api.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (57686)
Size
17 kB (17365 bytes)
Hash
112d724b474c7c4aa44631a0f1e4430a
acf7cfd204b41d8735ce9d3f556d77fc34c4c111
1e129f2a06340ae76a09698d6e24d69d642bedc5b748d960351758beb5a47177

HTTP Headers

GET /tcf/live/v1/js/tcf-api.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Mar 2024 08:51:51 GMT
etag: "edee-61386e2cbf528-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
content-length: 17365
content-type: application/javascript
cache-control: public, max-age=4951
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/permission/live/portal/v1/ppp/core.html

23.38.200.165

200 OK

589 B

URL GET HTTP/2
dl.web.de/permission/live/portal/v1/ppp/core.html
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
589 B (589 bytes)
Hash
00e0d000ce97cd0a3e9e3435e993bb4f
f7cf969c522947dd171a5e63047ad0f0b1e5e08b
4954fd5f3b854a38fe5f6403aa80f444d978343d32cd78aa0a0b65ed69562a15

HTTP Headers

GET /permission/live/portal/v1/ppp/core.html HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 25 Mar 2024 15:00:14 GMT
etag: "515-6147d6e4f5120-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 589
content-type: text/html
cache-control: public, max-age=4086
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

i0.web.de/image/450/38549450,pd=3,h=1820,w=1020/homepage.webp

23.38.200.165

200 OK

47 kB

URL GET HTTP/2
i0.web.de/image/450/38549450,pd=3,h=1820,w=1020/homepage.webp
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1020x1820, Scaling: [none]x[none], YUV color, decoders should clamp
Size
47 kB (46608 bytes)
Hash
6abbebe55f3be5dce404ff41058693bd
b29517dedc36c8b1c54384efb47b428e5ca79e87
75d67c8e565528b5c2244e70039e3cd3aa0ad17cfa0e079654870b52b4b63c58

HTTP Headers

GET /image/450/38549450,pd=3,h=1820,w=1020/homepage.webp HTTP/1.1
Host: i0.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Aug 2023 13:23:48 GMT
etag: "20A720FC864F25975F85FE003590B9D8"
server: Apache
access-control-allow-origin: *
content-length: 46608
content-type: image/webp
cache-control: max-age=1519150
date: Tue, 16 Apr 2024 04:51:45 GMT
X-Firefox-Spdy: h2

s.uicdn.com/fd/sentry/v7/bundle.tracing.min.js

23.38.200.165

200 OK

35 kB

URL GET HTTP/2
s.uicdn.com/fd/sentry/v7/bundle.tracing.min.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://dl.web.de/permission/live/portal/v1/ppp/core.html
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65428)
Size
35 kB (35022 bytes)
Hash
6f6775dbbba9e08e4bbad6d29210c10d
90d40d0ba50bfbe578a4b78d5bc6af38cdf568d6
7f8da5e44c4ff5f86531f9cbc1180baf63e5da69af4ae477abaf05511e992d33

HTTP Headers

GET /fd/sentry/v7/bundle.tracing.min.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dl.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Thu, 29 Feb 2024 09:03:01 GMT
etag: "19ed9-6128186c6f894-gzip"
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 35022
content-type: application/javascript
cache-control: max-age=234
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/tcf/live/v1/js/tcf-stub.js

23.38.200.165

200 OK

956 B

URL GET HTTP/2
s.uicdn.com/tcf/live/v1/js/tcf-stub.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://dl.web.de/permission/live/portal/v1/ppp/core.html
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1165)
Size
956 B (956 bytes)
Hash
8c2a683190e95bb8e77e373d6418d4ce
c66484bd2473336b6f27241bdfe7df2630fe3784
1dc899626122da30fa57ee8a6c84d6797b071cca68e0a643a6fb48947dc1e210

HTTP Headers

GET /tcf/live/v1/js/tcf-stub.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dl.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 13 Mar 2024 08:51:51 GMT
etag: "6c4-61386e2cbf528-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 956
content-type: application/javascript
cache-control: public, max-age=5743
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/pos-cdn/tracklib/4.3.0/tracklib.min.js

23.38.200.165

200 OK

10 kB

URL GET HTTP/2
img.ui-portal.de/pos-cdn/tracklib/4.3.0/tracklib.min.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://dl.web.de/permission/live/portal/v1/ppp/core.html
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (35153)
Size
10 kB (10013 bytes)
Hash
467d64d03cfc78e8871157e56581e037
be8c7eb037128204999ff8d42477e27f7a23e598
40a6f6526afea19db42dcf345249915ccacc710ee6c97091d5d6285b5f90ead3

HTTP Headers

GET /pos-cdn/tracklib/4.3.0/tracklib.min.js HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dl.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
access-control-allow-origin: *
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "8977-1c5fc537f6900-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 10013
content-type: application/javascript
cache-control: max-age=508
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/permission/live/portal/v1/ppp/js/permission-core.min.js

23.38.200.165

200 OK

20 kB

URL GET HTTP/2
dl.web.de/permission/live/portal/v1/ppp/js/permission-core.min.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://dl.web.de/permission/live/portal/v1/ppp/core.html
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (64084)
Size
20 kB (20093 bytes)
Hash
6d0aa22569a752a3d9313a9a1296b08d
8ab3afa5c11790cd9840211df9ac207bd9cfe578
a23857333efcca8734eaaf7eef5187ade58093d19b1f6f310ef8bbefb02fe943

HTTP Headers

GET /permission/live/portal/v1/ppp/js/permission-core.min.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dl.web.de/permission/live/portal/v1/ppp/core.html
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 25 Mar 2024 15:00:14 GMT
etag: "11a2e-6147d6e4f5120-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 20093
content-type: application/javascript
cache-control: public, max-age=9827
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

tgw.web.de/events

217.72.199.35

200 OK

0 B

URL OPTIONS HTTP/1.1
tgw.web.de/events
IP
217.72.199.35:443
ASN
#8560 IONOS SE

Requested by
https://web.de/consent-management/
Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.web.de
FingerprintA2:2A:B8:6E:C8:FA:31:2D:5F:D4:EF:C5:03:27:9D:08:22:C8:B8:E7
ValidityTue, 20 Jun 2023 10:02:36 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events HTTP/1.1
Host: tgw.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://web.de/
Origin: https://web.de
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: https://web.de
Access-Control-Max-Age: 86400
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Date: Tue, 16 Apr 2024 04:51:45 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 0

tgw.web.de/events

217.72.199.35

200 OK

0 B

URL OPTIONS HTTP/1.1
tgw.web.de/events
IP
217.72.199.35:443
ASN
#8560 IONOS SE

Requested by
https://web.de/consent-management/
Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.web.de
FingerprintA2:2A:B8:6E:C8:FA:31:2D:5F:D4:EF:C5:03:27:9D:08:22:C8:B8:E7
ValidityTue, 20 Jun 2023 10:02:36 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: tgw.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
Content-Type: application/vnd.PageViewEvent-v3+json
Content-Length: 1126
Origin: https://web.de
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 202 Accepted
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://web.de
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Length: 0
Content-Md5: 1B2M2Y8AsgTpgAmY7PhCfg==
Date: Tue, 16 Apr 2024 04:51:45 GMT
Expires: 0
Pragma: no-cache
Set-Cookie: ua_id=5548889d-a734-4a20-b286-b3945cf7cba1; Path=/; Domain=.web.de; Max-Age=31536000; Expires=Wed, 16 Apr 2025 04:51:45 GMT; Secure; SameSite=None
wa=opt-out; Path=/; Domain=.web.de; Max-Age=31536000; Expires=Wed, 16 Apr 2025 04:51:45 GMT; Secure; HttpOnly; SameSite=None
NGUserID=TGP-OPT-OUT; Path=/; Domain=.web.de; Max-Age=31536000; Expires=Wed, 16 Apr 2025 04:51:45 GMT; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 0

plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583

195.20.251.18

200 OK

17 kB

URL GET HTTP/1.1
plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
IP
195.20.251.18:443
ASN
#8560 IONOS SE

Requested by
https://dl.web.de/permission/live/portal/v1/ppp/core.html
Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.web.de
FingerprintA2:2A:B8:6E:C8:FA:31:2D:5F:D4:EF:C5:03:27:9D:08:22:C8:B8:E7
ValidityTue, 20 Jun 2023 10:02:36 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
17 kB (17253 bytes)
Hash
587fb0231ad1fe4987857d32a11dafc7
0f2f0c3bdc1bdad76e3df4953459b3b497eed5cc
bd384bb9429b4514431808fa4db973b4cc02969a8d3e7df210ce3a36c89aa4be

HTTP Headers

GET /lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583 HTTP/1.1
Host: plus.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dl.web.de/
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 06:51:46 GMT
Server: ADITIONSERVER v1.0
Content-Type: text/html
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: 
Access-Control-Expose-Headers: set-cookie
Cache-Control: no-cache
ETag: 7358323110378669485
Expires: Sat, 01 Jan 2000 00:00:00 GMT
P3P: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Pragma: no-cache
Via: 1.1 plus.web.de
Vary: Accept-Encoding
X-Cnection: close
Transfer-Encoding: chunked

s.uicdn.com/shared/sentry/5.5.0/bundle.min.js

23.38.200.165

200 OK

16 kB

URL GET HTTP/2
s.uicdn.com/shared/sentry/5.5.0/bundle.min.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (51441)
Size
16 kB (16369 bytes)
Hash
b1dcc6195d84cf50c3e882d3d515f848
06562c193663a31a3cabeaa18cffeb882084fcb6
8c04755395b8f232c57d062a7669c3c414658299d29c6b6f83f1f30185d94ecb

HTTP Headers

GET /shared/sentry/5.5.0/bundle.min.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 24 Nov 2020 11:08:05 GMT
etag: "c972-5b4d8533c698b-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 16369
content-type: application/javascript
cache-control: public, max-age=4436
date: Tue, 16 Apr 2024 04:51:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

dl.web.de/uim/permission/_auth/authlib.js

23.38.200.165

200 OK

6.5 kB

URL GET HTTP/2
dl.web.de/uim/permission/_auth/authlib.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (21434)
Size
6.5 kB (6481 bytes)
Hash
9862d943c3d14860d87287f3c59ae2de
545b8e202522162c42431938ba7d2b958a342c8a
c2f47972fc035e806d874fb3cc76aefa5ecca32d6a95653a4f2a2fb3138eed54

HTTP Headers

GET /uim/permission/_auth/authlib.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session; ua_id=5548889d-a734-4a20-b286-b3945cf7cba1; wa=opt-out; NGUserID=TGP-OPT-OUT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "53bb-1c5fc537f6900-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 6481
content-type: application/javascript
cache-control: public, max-age=3306
date: Tue, 16 Apr 2024 04:51:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s.uicdn.com/permission/live/v1/ppp/js/permission-layer.min.js

23.38.200.165

200 OK

5.2 kB

URL GET HTTP/2
s.uicdn.com/permission/live/v1/ppp/js/permission-layer.min.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (8660)
Size
5.2 kB (5230 bytes)
Hash
e8c5822c765017fbd712db9606658046
24d6ceb2c5891095b4923b0c2905bf985130178a
ebab7b8079958bee9e899b2c34cb7eb4fa8b69eda8f35e9d581a159458967634

HTTP Headers

GET /permission/live/v1/ppp/js/permission-layer.min.js HTTP/1.1
Host: s.uicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 25 Mar 2024 15:00:14 GMT
etag: "3f32-6147d6e4f60c1"
server: Apache
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 5230
content-type: application/javascript
cache-control: public, max-age=22196
date: Tue, 16 Apr 2024 04:51:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/netid/cmp/release/v1/webde/app.css

23.38.200.165

200 OK

12 kB

URL GET HTTP/2
js.ui-portal.de/netid/cmp/release/v1/webde/app.css
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
12 kB (12447 bytes)
Hash
3911b20ec5e4079c229c343754e85fc7
211d0a8c56fd70679d317249fc42368032df1ea4
b7b636cb810625a4a09a231cafd3ae8903cb3792c5899f25678c020e2a58c1e2

HTTP Headers

GET /netid/cmp/release/v1/webde/app.css HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
etag: "25af1-613eec46d3972"
last-modified: Mon, 18 Mar 2024 12:47:58 GMT
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 12447
content-type: text/css
cache-control: public, max-age=7125
date: Tue, 16 Apr 2024 04:51:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/netid/cmp/release/v1/webde/app.js

23.38.200.165

200 OK

69 kB

URL GET HTTP/2
js.ui-portal.de/netid/cmp/release/v1/webde/app.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
69 kB (68947 bytes)
Hash
b1f1a5940dc165c3282772456d2a2863
8ea4086ee9d675ae1232c909f71633d81b88bf39
1face4567e32d01783adbebfc88cc2791e364edfeca8bbdb4ce10e9895440b58

HTTP Headers

GET /netid/cmp/release/v1/webde/app.js HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 18 Mar 2024 12:47:58 GMT
etag: "39a40-613eec46d3972-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-type: application/javascript
content-length: 68947
cache-control: public, max-age=4324
date: Tue, 16 Apr 2024 04:51:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/netid/cmp/config/webde/config.json?p=94601979515

23.38.200.165

200 OK

864 B

URL GET HTTP/2
js.ui-portal.de/netid/cmp/config/webde/config.json?p=94601979515
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JSON text data
Size
864 B (864 bytes)
Hash
2cd07f624d8006f759b4be72b451e3fa
fcc629ba0f62f9b67f3a23d13e3e7fa86edfc7a5
e06183499972e377892561d9fa8c726cffa4de575cd23e4fbfd77fd2010ce587

HTTP Headers

GET /netid/cmp/config/webde/config.json?p=94601979515 HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plus.web.de/
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Mon, 18 Mar 2024 15:35:21 GMT
etag: "77d-613f11b041bb5-gzip"
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 864
content-type: application/json
cache-control: public, max-age=325
date: Tue, 16 Apr 2024 04:51:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

permission-proxy.web.de/psstpidbrand

217.72.199.35

400 Bad Request

101 B

URL GET HTTP/1.1
permission-proxy.web.de/psstpidbrand
IP
217.72.199.35:443
ASN
#8560 IONOS SE

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.web.de
FingerprintA2:2A:B8:6E:C8:FA:31:2D:5F:D4:EF:C5:03:27:9D:08:22:C8:B8:E7
ValidityTue, 20 Jun 2023 10:02:36 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
101 B (101 bytes)
Hash
5d3c15380de34a07fde9b0bed380a851
3819e8bd16849300ed989f56b91fb1b2d1792994
b658021600150845685518b8016cbd55e3ee882a832c9f0c2c058f762d36dc05

HTTP Headers

GET /psstpidbrand HTTP/1.1
Host: permission-proxy.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/vnd.netid.permission-center.netid-user-status-v1+json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plus.web.de/
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session; ua_id=5548889d-a734-4a20-b286-b3945cf7cba1; wa=opt-out; NGUserID=TGP-OPT-OUT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 400 Bad Request
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://plus.web.de
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Language: en
Content-Type: application/problem+json
Date: Tue, 16 Apr 2024 04:51:46 GMT
Expires: 0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 0
Transfer-Encoding: chunked

einwilligungsspeicher.netid.de/netid-user-status?q.tapp_id.eq=ef48100e-ab6f-41e8-9dbb-2c3c35b9c7f9

195.20.250.8

400

101 B

URL GET HTTP/1.1
einwilligungsspeicher.netid.de/netid-user-status?q.tapp_id.eq=ef48100e-ab6f-41e8-9dbb-2c3c35b9c7f9
IP
195.20.250.8:443
ASN
#8560 IONOS SE

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.netid.de
FingerprintD7:8B:5D:53:1A:23:2C:53:E6:58:2D:77:FF:9E:D3:A1:97:2A:2C:4E
ValidityMon, 08 Jan 2024 08:57:58 GMT - Sun, 12 Jan 2025 23:59:59 GMT

File type
JSON text data
Size
101 B (101 bytes)
Hash
5d3c15380de34a07fde9b0bed380a851
3819e8bd16849300ed989f56b91fb1b2d1792994
b658021600150845685518b8016cbd55e3ee882a832c9f0c2c058f762d36dc05

HTTP Headers

GET /netid-user-status?q.tapp_id.eq=ef48100e-ab6f-41e8-9dbb-2c3c35b9c7f9 HTTP/1.1
Host: einwilligungsspeicher.netid.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/vnd.netid.permission-center.netid-user-status-v1+json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plus.web.de/
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 400 
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://plus.web.de
Access-Control-Allow-Credentials: true
Content-Language: en
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
X-Frame-Options: DENY
Content-Type: application/problem+json
Transfer-Encoding: chunked
Date: Tue, 16 Apr 2024 04:51:47 GMT
Connection: close

js.ui-portal.de/netid/consensu/v3/latest/vendor-list.json

23.38.200.165

200 OK

75 kB

URL GET HTTP/2
js.ui-portal.de/netid/consensu/v3/latest/vendor-list.json
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JSON text data
Size
75 kB (74596 bytes)
Hash
96aeb08ad70fd943f6d62672be7ec63a
ebd487dbdfd9ea37133348a2cfd221675d2e18aa
60d250a9b850b976e86cd99d8d92351423758af6daefc2e39a8c4397dfddd7b9

HTTP Headers

GET /netid/consensu/v3/latest/vendor-list.json HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Fri, 12 Apr 2024 08:05:49 GMT
etag: "93d6f-615e1bd664170-gzip"
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-type: application/json
content-length: 74596
cache-control: public, max-age=512
date: Tue, 16 Apr 2024 04:51:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/netid/consensu/v3/latest/purposes-de.json

23.38.200.165

200 OK

9.4 kB

URL GET HTTP/2
js.ui-portal.de/netid/consensu/v3/latest/purposes-de.json
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JSON text data
Size
9.4 kB (9428 bytes)
Hash
48065e1faf9c88bf3244a9f8cf1f3377
c7f8e5a052842e079e34200acc931afd970d7048
c0c623c9d6a08a6b46b004fe2f0d22b8ec03908b493b0773448ec770b4960a44

HTTP Headers

GET /netid/consensu/v3/latest/purposes-de.json HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Fri, 12 Apr 2024 08:05:49 GMT
etag: "be0f-615e1bd659d77-gzip"
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 9428
content-type: application/json
cache-control: public, max-age=415
date: Tue, 16 Apr 2024 04:51:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

js.ui-portal.de/netid/cmp/assets/img/spinner.gif

23.38.200.165

200 OK

3.2 kB

URL GET HTTP/2
js.ui-portal.de/netid/cmp/assets/img/spinner.gif
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
GIF image data, version 89a, 32 x 32
Size
3.2 kB (3208 bytes)
Hash
491b0ce13e31283f87e4eed48faaa081
2a58dc7e0507638918724f579b4f58e1851a5805
6fcdcff9cfbc6fc67e0d115452dbb692261022775885cafb71b22f4d523fe00e

HTTP Headers

GET /netid/cmp/assets/img/spinner.gif HTTP/1.1
Host: js.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Wed, 22 Sep 2021 12:23:19 GMT
etag: "c88-5cc9494558823"
accept-ranges: bytes
content-length: 3208
x-robots-tag: noindex
access-control-allow-origin: *
content-type: image/gif
cache-control: public, max-age=361
date: Tue, 16 Apr 2024 04:51:47 GMT
X-Firefox-Spdy: h2

img.ui-portal.de/cd/ci/web.de/brand-logo.svg

23.38.200.165

200 OK

2.0 kB

URL GET HTTP/2
img.ui-portal.de/cd/ci/web.de/brand-logo.svg
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
2.0 kB (1976 bytes)
Hash
542d250227263ef6966c2981900af0ec
a6167754c908c4468ebdbd01cdfe8321989ab3c7
f1d6bd08c102b1b9f3669971352215a3797da113af21c47b7959a96f8f9d1de4

HTTP Headers

GET /cd/ci/web.de/brand-logo.svg HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Jan 2019 17:14:58 GMT
etag: "fa0-57f1db7d410ba"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
content-length: 1976
content-type: image/svg+xml
cache-control: public, max-age=675
date: Tue, 16 Apr 2024 04:51:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-light.woff

23.38.200.165

200 OK

18 kB

URL GET HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-light.woff
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 18080, version 1.0
Size
18 kB (18080 bytes)
Hash
7d3616c7d04a9ae474875e42c4bc0496
4d0137dd6f1e5325eb3ba3e7bc4d577e68c75d46
7676e0d97793004054c4ec3e7cbd2d98c52fabc90479b7e3d5cfbb62f4e7a5af

HTTP Headers

GET /ci/webde/global/fonts/web.de-sans/web.de-sans-light.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Tue, 30 Jun 2015 08:59:54 GMT
etag: "46a0-519b86e043680-gzip"
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=707057
date: Tue, 16 Apr 2024 04:51:47 GMT
content-length: 18080
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-regular.woff

23.38.200.165

200 OK

18 kB

URL GET HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-regular.woff
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 18136, version 1.0
Size
18 kB (18136 bytes)
Hash
9123d7ffc3f36c6f662f4a03e730cc75
f84e2f0805bf1f671a8832f8ac7493b685cc7b69
5cfd71639613393b9b416598890d8a9812382b78b2e1aa839d21ecd2005b1ccd

HTTP Headers

GET /ci/webde/global/fonts/web.de-sans/web.de-sans-regular.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Tue, 30 Jun 2015 08:59:54 GMT
etag: "46d8-519b86e043680-gzip"
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=715975
date: Tue, 16 Apr 2024 04:51:47 GMT
content-length: 18136
X-Firefox-Spdy: h2

img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-medium.woff

23.38.200.165

200 OK

18 kB

URL GET HTTP/2
img.ui-portal.de/ci/webde/global/fonts/web.de-sans/web.de-sans-medium.woff
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 18052, version 1.0
Size
18 kB (18052 bytes)
Hash
99eafbdc5f638d2fec6e869e5005f8f9
9f8f73605e41dc0eef8b5f5a46d3906716a7b3a5
01e773facc13e915276219573795dcf3f2a0fe00fca0841af95b21769872ff48

HTTP Headers

GET /ci/webde/global/fonts/web.de-sans/web.de-sans-medium.woff HTTP/1.1
Host: img.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Referer: https://js.ui-portal.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Apache
last-modified: Tue, 30 Jun 2015 08:59:54 GMT
etag: "4684-519b86e043680-gzip"
x-robots-tag: noindex
access-control-allow-origin: *
content-type: font/woff
vary: Accept-Encoding
cache-control: public, max-age=2162684
date: Tue, 16 Apr 2024 04:51:48 GMT
content-length: 18052
X-Firefox-Spdy: h2

status.geotrust.com/

192.229.221.95

471 B

URL
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
641d904b6915cea7f9948915f987fc77
06c7c565629c4d3983fd5acc51abc4a717a2c3d9
8af1153c8e817d2cfaf706877c5eb83e2449118a69a589a178889594e7171529

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4622
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Tue, 16 Apr 2024 04:51:48 GMT
Last-Modified: Tue, 16 Apr 2024 03:34:46 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471

nct.ui-portal.de/webde/webde/s?name=permission.trackfree.pi.abostartview&country=de&context=homepage&version=4.2.0&var=default&layertype=trackfree&dclass=landingpage&campaign=5498581&netid=0&clickname=&ts=1713243107985&rand=45791

82.165.229.39

200 OK

43 B

URL POST HTTP/2
nct.ui-portal.de/webde/webde/s?name=permission.trackfree.pi.abostartview&country=de&context=homepage&version=4.2.0&var=default&layertype=trackfree&dclass=landingpage&campaign=5498581&netid=0&clickname=&ts=1713243107985&rand=45791
IP
82.165.229.39:443
ASN
#8560 IONOS SE

Requested by
https://plus.web.de/lt?wpt=x&nw=42&lt=portal%28webde%29category%28homepage%29section%28landingpage%29tagid%28permission%29layoutclass%28b%29&ref=https%253A%252F%252Fweb.de&prf%5Bportal%5D=webde&prf%5Bstage%5D=live&prf%5Bcategory%5D=homepage&prf%5Bsection%5D=landingpage&prf%5Btagid%5D=permission&prf%5Blayoutclass%5D=b&prf%5Bversion%5D=1.89.1&external_uid=null&uid_stable=0&prf%5Bexternal_uid%5D=&prf%5Bpermission_layer%5D=tcf_v2&prf%5Bhist_items_displayed%5D=&prf%5Bhist_items_count%5D=0&wi=353530583
Certificate
IssuerDigiCert Inc
Subject*.ui-portal.de
FingerprintC9:75:BF:AC:77:FE:E7:E1:4C:D8:CE:7D:98:CD:D4:36:21:C3:1E:8F
ValidityMon, 15 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

POST /webde/webde/s?name=permission.trackfree.pi.abostartview&country=de&context=homepage&version=4.2.0&var=default&layertype=trackfree&dclass=landingpage&campaign=5498581&netid=0&clickname=&ts=1713243107985&rand=45791 HTTP/1.1
Host: nct.ui-portal.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://plus.web.de
DNT: 1
Connection: keep-alive
Referer: https://plus.web.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
date: Tue, 16 Apr 2024 04:51:48 GMT
server: Apache
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2

wa.web.de/wa/t.gif?timestamp=1713243108028&soft_name=pppcore&soft_version=1.89.1&brand=webde&section=permission.layer.ready&trackingtype=ev&pageurl=https%3A%2F%2Fdl.web.de%2Fpermission%2Flive%2Fportal%2Fv1%2Fppp%2Fcore.html&referrer=https%3A%2F%2Fweb.de&lib_name=%40poseidon%2Ftracklib&lib_version=4.3.0&attributeset=2&cont_requested_perm=tcf_v2&cont_campaign_banner=5498581_16639498&cont_layer_name=tcf.trackfree&cont_variant=default&coun_loop=1&time_layer_playout=2178&sett_sample=1&profileblocked=1&signature=13382

82.165.229.39

200 OK

43 B

URL GET HTTP/2
wa.web.de/wa/t.gif?timestamp=1713243108028&soft_name=pppcore&soft_version=1.89.1&brand=webde&section=permission.layer.ready&trackingtype=ev&pageurl=https%3A%2F%2Fdl.web.de%2Fpermission%2Flive%2Fportal%2Fv1%2Fppp%2Fcore.html&referrer=https%3A%2F%2Fweb.de&lib_name=%40poseidon%2Ftracklib&lib_version=4.3.0&attributeset=2&cont_requested_perm=tcf_v2&cont_campaign_banner=5498581_16639498&cont_layer_name=tcf.trackfree&cont_variant=default&coun_loop=1&time_layer_playout=2178&sett_sample=1&profileblocked=1&signature=13382
IP
82.165.229.39:443
ASN
#8560 IONOS SE

Requested by
https://dl.web.de/permission/live/portal/v1/ppp/core.html
Certificate
IssuerDeutsche Telekom Security GmbH
Subject*.web.de
FingerprintA2:2A:B8:6E:C8:FA:31:2D:5F:D4:EF:C5:03:27:9D:08:22:C8:B8:E7
ValidityTue, 20 Jun 2023 10:02:36 GMT - Mon, 24 Jun 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

GET /wa/t.gif?timestamp=1713243108028&soft_name=pppcore&soft_version=1.89.1&brand=webde&section=permission.layer.ready&trackingtype=ev&pageurl=https%3A%2F%2Fdl.web.de%2Fpermission%2Flive%2Fportal%2Fv1%2Fppp%2Fcore.html&referrer=https%3A%2F%2Fweb.de&lib_name=%40poseidon%2Ftracklib&lib_version=4.3.0&attributeset=2&cont_requested_perm=tcf_v2&cont_campaign_banner=5498581_16639498&cont_layer_name=tcf.trackfree&cont_variant=default&coun_loop=1&time_layer_playout=2178&sett_sample=1&profileblocked=1&signature=13382 HTTP/1.1
Host: wa.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dl.web.de/
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0; utag_main=_sn:1$_se:1%3Bexp-session$_ss:1%3Bexp-session$_st:1713244905497%3Bexp-session$ses_id:1713243105497%3Bexp-session$_pn:1%3Bexp-session; ua_id=5548889d-a734-4a20-b286-b3945cf7cba1; wa=opt-out; NGUserID=TGP-OPT-OUT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 04:51:48 GMT
server: Apache
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
p3p: CP="this is not a p3p policy"
access-control-allow-origin: *
accept-ranges: bytes
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2

dl.web.de/permission/live/portal/v1/ppp/js/permission-client.js

23.38.200.165

200 OK

45 kB

URL GET HTTP/2
dl.web.de/permission/live/portal/v1/ppp/js/permission-client.js
IP
23.38.200.165:443
ASN
#16625 AKAMAI-AS

Requested by
https://web.de/consent-management/
Certificate
IssuerDigiCert Inc
Subjectimg.ui-portal.de
Fingerprint08:99:FE:75:41:6F:09:D0:44:0F:99:57:49:77:38:72:97:18:8C:03
ValidityMon, 08 Apr 2024 00:00:00 GMT - Mon, 07 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (40598)
Size
45 kB (45147 bytes)
Hash
09667216cb06d3c520be689dab019e01
8bf7de1237965a79dd7789eb4407e3412eef06a8
046b086de8bb3d6f25dfa7f95888ebe1de74e456649a5e37a60ceaad64191848

HTTP Headers

GET /permission/live/portal/v1/ppp/js/permission-client.js HTTP/1.1
Host: dl.web.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.de/
DNT: 1
Connection: keep-alive
Cookie: consentLevel=1; euconsent-bypass=1713243104; SSLB=.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 25 Mar 2024 15:00:14 GMT
etag: "b05b-6147d6e4f5120-gzip"
server: Apache
accept-ranges: bytes
content-encoding: gzip
x-robots-tag: noindex
access-control-allow-origin: *
access-control-allow-methods: GET
content-length: 12894
content-type: application/javascript
cache-control: public, max-age=27199
date: Tue, 16 Apr 2024 04:51:45 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (28)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL