hxxps://www[.]callmobile[.]de/

Analysis

max time kernel
40s
max time network
45s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
21/08/2023, 07:56 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.callmobile.de/

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
5072	msedge.exe
5072	msedge.exe
2052	msedge.exe
2052	msedge.exe
2872	identity_helper.exe
2872	identity_helper.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 11 IoCs

pid	Process
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe
5072	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 5072 wrote to memory of 2724	5072	msedge.exe	53
PID 5072 wrote to memory of 2724	5072	msedge.exe	53
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 1512	5072	msedge.exe	82
PID 5072 wrote to memory of 2052	5072	msedge.exe	83
PID 5072 wrote to memory of 2052	5072	msedge.exe	83
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84
PID 5072 wrote to memory of 4500	5072	msedge.exe	84

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.callmobile.de/
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:5072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffbfb4146f8,0x7ffbfb414708,0x7ffbfb414718
  2⤵
  PID:2724
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2148 /prefetch:2
  2⤵
  PID:1512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2704 /prefetch:8
  2⤵
  PID:4500
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3372 /prefetch:1
  2⤵
  PID:3700
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3352 /prefetch:1
  2⤵
  PID:3876
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4624 /prefetch:1
  2⤵
  PID:4356
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5188 /prefetch:1
  2⤵
  PID:652
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3988 /prefetch:8
  2⤵
  PID:3924
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3988 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2872
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5440 /prefetch:1
  2⤵
  PID:4564
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
  2⤵
  PID:3736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3512 /prefetch:1
  2⤵
  PID:3372
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5188 /prefetch:1
  2⤵
  PID:4124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5076 /prefetch:1
  2⤵
  PID:2868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5448 /prefetch:1
  2⤵
  PID:1168
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5444 /prefetch:1
  2⤵
  PID:2588
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2128,7405697291883798895,10671555433754594174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4800 /prefetch:1
  2⤵
  PID:1244

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4736

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3316

Network

DNS

www.callmobile.de

msedge.exe

Remote address:

8.8.8.8:53

Request

www.callmobile.de

IN A

Response

www.callmobile.de

IN A

104.18.36.84

www.callmobile.de

IN A

172.64.151.172
DNS

59.128.231.4.in-addr.arpa

Remote address:

8.8.8.8:53

Request

59.128.231.4.in-addr.arpa

IN PTR

Response
DNS

254.7.248.8.in-addr.arpa

Remote address:

8.8.8.8:53

Request

254.7.248.8.in-addr.arpa

IN PTR

Response
GET

https://www.callmobile.de/

msedge.exe

Remote address:

104.18.36.84:443

Request

GET / HTTP/2.0
host: www.callmobile.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 301

date: Mon, 21 Aug 2023 07:56:48 GMT
location: https://www.klarmobil.de
cache-control: max-age=3600
expires: Mon, 21 Aug 2023 08:56:48 GMT
set-cookie: __cf_bm=86EU_QEfrjGppGvgd0cCkTz2xfu06VI2bDJsZJZrLPs-1692604608-0-AVbPcJXOTTuQkFZGt2V+CejuoGdQ06FX1qb+E9TE59e85oZ9SQ8qEDtTx94P/5zruvig9Bda5SdBmUN8hMSr3AI=; path=/; expires=Mon, 21-Aug-23 08:26:48 GMT; domain=.callmobile.de; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fa152559a64b78a-AMS
DNS

www.klarmobil.de

msedge.exe

Remote address:

8.8.8.8:53

Request

www.klarmobil.de

IN A

Response

www.klarmobil.de

IN A

172.64.155.78

www.klarmobil.de

IN A

104.18.32.178
GET

https://www.klarmobil.de/

msedge.exe

Remote address:

172.64.155.78:443

Request

GET / HTTP/2.0
host: www.klarmobil.de
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: text/html; charset=utf-8
cf-ray: 7fa15256fb6ab725-AMS
cf-cache-status: DYNAMIC
cache-control: public, max-age=300
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
apigw-requestid: KADN_jCSFiAEM8A=
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.kameleoon.eu https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://dynamic.criteo.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://tm.dp.klarmobil.de https://cdn.privacy-mgmt.com https://www.googletagmanager.com https://www.google-analytics.com https://widgets.trustedshops.com https://www.klarmobil.de https://embed.binkies3d.com https://az589851.vo.msecnd.net https://bat.bing.com https://connect.facebook.net https://amplify.outbrain.com https://cdn.taboola.com https://content.zeotap.com https://trc.taboola.com https://googleads.g.doubleclick.net https://tr.outbrain.com https://s3-eu-west-1.amazonaws.com https://*.id.opendns.com https://www.googleadservices.com https://dynamic.criteo.com https://sslwidget.criteo.com https://bt.fraud0.com https://wave.outbrain.com; style-src 'self' 'unsafe-inline' https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com; font-src 'self' https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://fonts.gstatic.com data:; img-src 'self' https://downloads.ctfassets.net https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://images.ctfassets.net https://media.mdm.klarmobil.de https://www.klarmobil.de https://tm.dp.klarmobil.de https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com https://az589851.vo.msecnd.net https://tr.outbrain.com https://www.google.be https://bat.bing.com https://trc.taboola.com https://www.google.com https://www.google.de https://www.facebook.com https://www.googletagmanager.com https://cm.g.doubleclick.net https://match.adsrvr.org https://mwzeom.zeotap.com https://googleads.g.doubleclick.net https://x.bidswitch.net https://ib.adnxs.com https://secure.adnxs.com https://contextual.media.net https://pixel.rubiconproject.com https://match.sharethrough.com https://rtb-csync.smartadserver.com https://sync-t1.taboola.com https://criteo-sync.teads.tv https://eb2.3lift.com https://ups.analytics.yahoo.com https://cm.adform.net https://visitor.omnitagjs.com https://r.casalemedia.com https://gum.criteo.com https://id5-sync.com https://ad.360yield.com https://matching.ivitrack.com https://exchange.mediavine.com https://sync.outbrain.com https://simage2.pubmatic.com https://criteo-partners.tremorhub.com https://ad.yieldlab.net https://sync-criteo.ads.yieldmo.com https://dis.criteo.com https://a.twiago.com https://dpm.demdex.net https://beacon.krxd.net https://s.thebrighttag.com blob: data:; connect-src 'self' https://data.kameleoon.io https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://graphql.contentful.com https://cdn.privacy-mgmt.com https://tm.dp.klarmobil.de https://stats.g.doubleclick.net https://www.klarmobil.de https://www-git.klarmobil.de https://www-preview.klarmobil.de https://o571954.ingest.sentry.io https://o1173614.ingest.sentry.io https://binkiesproductionweu.servicebus.windows.net https://embed.binkies3d.com https://az589851.vo.msecnd.net https://bat.bing.com https://spl.zeotap.com https://trc.taboola.com https://www.google.be https://www.facebook.com https://trc-events.taboola.com https://www.google.com https://www.google.de https://googleads.g.doubleclick.net https://static.adfarm1.adition.com https://measurement-api.criteo.com https://ad.doubleclick.net https://pagead2.googlesyndication.com https://api.fraud0.com https://api.klarmobil.de https://graphql.klarmobil.services; object-src 'none'; child-src 'self'; frame-src 'self' https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://cdn.privacy-mgmt.com https://8508168.fls.doubleclick.net https://s3-eu-west-1.amazonaws.com https://*.id.opendns.com https://gum.criteo.com https://td.doubleclick.net https://fledge.eu.criteo.com; frame-ancestors 'none'; upgrade-insecure-requests; block-all-mixed-content
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
permissions-policy: camera=(), microphone=(), autoplay=(), display-capture=(), document-domain=(), geolocation=()
referrer-policy: strict-origin-when-cross-origin
x-amz-cf-id: IY4tVu4U6QM3EcK_r8pBL3YFWxPBICj0Qs6N5p0xw9JaQLs8_alc2w==
x-amz-cf-pop: AMS1-C1
x-cache: Hit from cloudfront
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=; path=/; expires=Mon, 21-Aug-23 08:26:49 GMT; domain=.klarmobil.de; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/kmr-assets/fonts/fago/fago-std-black.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/fonts/fago/fago-std-black.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: binary/octet-stream
content-length: 35412
cf-ray: 7fa15258cce3b725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "fc9220726122ac55c5e0dfb2fcea5038"
last-modified: Wed, 16 Aug 2023 08:20:42 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 21a3da42c823b5a4a2d9c4c63248bbd6.cloudfront.net (CloudFront)
x-amz-cf-id: Odtj37KvwRvCaIbhCVV9524oUHvJiKAipMYIyigE-pshtHsGVOB_4A==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/fonts/fago/fago-cond-black.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/fonts/fago/fago-cond-black.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: binary/octet-stream
content-length: 34444
cf-ray: 7fa15258dcebb725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "9106ae7ca8cea839ae05055d243258d9"
last-modified: Wed, 16 Aug 2023 08:20:42 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 e56e6732f380db727425bac2d6158760.cloudfront.net (CloudFront)
x-amz-cf-id: 7qtqr-3mOb1peu4d_beYG6urKmyu-po5vaNojcXmkPvbp3zHXBQXbg==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/fonts/fago/fago-cond-black-italic.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/fonts/fago/fago-cond-black-italic.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: binary/octet-stream
content-length: 33228
cf-ray: 7fa15258dceab725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "b35ca6d0642c30db32c07945daa6f528"
last-modified: Wed, 16 Aug 2023 08:20:42 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 ec9e3bc729d9c6d55ed32446408ad62e.cloudfront.net (CloudFront)
x-amz-cf-id: XfqqEJDZ9gMCI0KX1fkAzh4hIynDsIU-Lt8afSY30DRhj6aUzVzMVQ==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/fonts/nunito-sans/nunitosans-regular.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/fonts/nunito-sans/nunitosans-regular.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: binary/octet-stream
content-length: 16396
cf-ray: 7fa15258dcecb725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "949763e168e4204060328fe9211c796f"
last-modified: Wed, 16 Aug 2023 08:20:43 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 ff2bcb2d3b4a3d9e0615ddd1033c38c4.cloudfront.net (CloudFront)
x-amz-cf-id: Hx3K9AeTOuXUo_K0nUoAjdlv3jGWQzxFY-87eTPvn-BXxESFgB0I5A==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/fonts/nunito-sans/nunitosans-bold.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/fonts/nunito-sans/nunitosans-bold.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: text/css
cf-ray: 7fa15258dcf2b725-AMS
cf-cache-status: HIT
age: 235674
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"f097b47daeff5da335943d478194265d"
last-modified: Wed, 16 Aug 2023 08:20:45 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 8e4700eb43d0f5579f360cfc02e71fac.cloudfront.net (CloudFront)
x-amz-cf-id: UYyYH8dwtE49IZqgei1GoSDEDABspplkyMa3ubbGOkHHPhgWaeYa0Q==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/fonts/nunito-sans/nunitosans-black.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/fonts/nunito-sans/nunitosans-black.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: binary/octet-stream
content-length: 16852
cf-ray: 7fa15258dcf1b725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "28d62a0235a2f50ba0d7ebaebc2b55c2"
last-modified: Wed, 16 Aug 2023 08:20:44 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 56fad5a50ef67bd961b9722ed0931838.cloudfront.net (CloudFront)
x-amz-cf-id: VfFK0pxgdDVipVch7QF4v2hMw9i7c59kdBC7ViIbUsvEM1vB9RvsGw==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/kmr-global.97d54824638ba8a7.css

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/kmr-global.97d54824638ba8a7.css HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: binary/octet-stream
content-length: 16600
cf-ray: 7fa15258dcf0b725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "2466286ea4ab0ce510352c5e929ea4cb"
last-modified: Wed, 16 Aug 2023 08:20:43 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 999a435eb37a050d3de26fe63534c416.cloudfront.net (CloudFront)
x-amz-cf-id: 36uXwbWa3svzBJcXMOvIw_1SeRzbxZr7vfDMWc6I-Ty2aZEK3sCppA==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/icons/sprite-458dd343.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/icons/sprite-458dd343.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: image/svg+xml
cf-ray: 7fa15258ecfcb725-AMS
cf-cache-status: HIT
age: 235674
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"458dd34336eb07d545f2fc33e16d125a"
last-modified: Wed, 16 Aug 2023 08:20:44 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 f32f19f2f9b3c0c60a4ff31c809ed008.cloudfront.net (CloudFront)
x-amz-cf-id: ScfAbB2wz_WhZeg0rQz5Cg7F30Bz9cAiIXffT5wA7xshGZ3v-k5zog==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/runtime.bb398e5e8190fd41.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/runtime.bb398e5e8190fd41.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: application/javascript
cf-ray: 7fa152590d3db725-AMS
cf-cache-status: HIT
age: 234919
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"49c1f7d85cb3beafe017c99ddcf98549"
last-modified: Wed, 16 Aug 2023 08:20:45 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 f08c3d80534791befc52907744135424.cloudfront.net (CloudFront)
x-amz-cf-id: uFmvdLaJkck_rqoPJhpzfEHA-lWivL71YFVgxki8MkNhc96R1QCWVQ==
x-amz-cf-pop: BRU50-C1
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/polyfills.a989803d8c4a95eb.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/polyfills.a989803d8c4a95eb.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: application/javascript
cf-ray: 7fa152591d41b725-AMS
cf-cache-status: HIT
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"64c8b6903e2cc04b4f2ce44a402848fb"
last-modified: Wed, 16 Aug 2023 08:20:45 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 ff2bcb2d3b4a3d9e0615ddd1033c38c4.cloudfront.net (CloudFront)
x-amz-cf-id: M3LnFs2HHFVZWLioksRrEy59XMSUglWvcwnQq9j3g5ya6B-4NYpJAg==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/main.8c52842723b38b99.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/main.8c52842723b38b99.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: application/javascript
cf-ray: 7fa152591d42b725-AMS
cf-cache-status: HIT
age: 234974
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"6c766fde0d9e44ba66b92e4d9e639a7e"
last-modified: Wed, 16 Aug 2023 08:20:45 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 e1e056e45a0f8d6bc22b223900511170.cloudfront.net (CloudFront)
x-amz-cf-id: hqfaJPK6Wv6K509O8LFNPi1uEhmCqbTiTHwA2De5ILvPisT0-UVw4Q==
x-amz-cf-pop: FRA2-C2
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/icons/colored-cff0f2bb.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/icons/colored-cff0f2bb.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KmrABTest=new
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: image/svg+xml
cf-ray: 7fa152591d4bb725-AMS
cf-cache-status: HIT
age: 235674
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"cff0f2bb71aae6fd33d115226d589ec0"
last-modified: Wed, 16 Aug 2023 08:20:44 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 10c6c3dafd71d2880db1f56a9baf3a70.cloudfront.net (CloudFront)
x-amz-cf-id: hPu-fpkr5hKpqt7BrnwgmIHzKG9C4SO8i45bI-vSeh3S7buMDx5D4g==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/svgs/default/chevron-left.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/svgs/default/chevron-left.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: image/svg+xml
cf-ray: 7fa1525a1e08b725-AMS
cf-cache-status: HIT
age: 236292
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: W/"f25bfec859b02fe8337454b616807f84"
last-modified: Wed, 16 Aug 2023 08:20:49 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 b75b06741e5146585057681bd60737b2.cloudfront.net (CloudFront)
x-amz-cf-id: KLjxC-OQQGVUm6n5gCBJnm4GsZ3EXkQ1go01AfRZePSzO9JAhe6tNg==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/kmr-assets/svgs/default/chevron-right.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/svgs/default/chevron-right.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:49 GMT
content-type: image/svg+xml
cf-ray: 7fa1525a5e46b725-AMS
cf-cache-status: HIT
age: 236292
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: W/"e0af4a976c19b4c5797a69b5da458cd3"
last-modified: Wed, 16 Aug 2023 08:20:49 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 0f65f9aac16e53eeb77d85b7c23a21c2.cloudfront.net (CloudFront)
x-amz-cf-id: YlQi2Vay2CGC3ug1_4TtNwlsvdfX0-C1NE4_8CSA-xlFZq1vin-kug==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/cdn-cgi/challenge-platform/scripts/invisible.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 302

date: Mon, 21 Aug 2023 07:56:51 GMT
content-encoding: gzip
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/313d8a27/invisible.js
vary: accept-encoding
server: cloudflare
cf-ray: 7fa152657fd0b725-AMS
GET

https://www.klarmobil.de/cdn-cgi/challenge-platform/h/g/scripts/jsd/313d8a27/invisible.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/313d8a27/invisible.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:53 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
cache-control: max-age=14400, public
vary: accept-encoding
server: cloudflare
cf-ray: 7fa152734d9eb725-AMS
POST

https://www.klarmobil.de/cdn-cgi/challenge-platform/h/g/cv/result/7fa15256fb6ab725

msedge.exe

Remote address:

172.64.155.78:443

Request

POST /cdn-cgi/challenge-platform/h/g/cv/result/7fa15256fb6ab725 HTTP/2.0
host: www.klarmobil.de
content-length: 14062
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:54 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614; path=/; expires=Tue, 20-Aug-24 07:56:54 GMT; domain=.klarmobil.de; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7fa15279ebd7b725-AMS
content-encoding: gzip
GET

https://www.klarmobil.de/kmr-assets/kmr-manifest.webmanifest

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/kmr-manifest.webmanifest HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:54 GMT
content-type: image/vnd.microsoft.icon
cf-ray: 7fa1527abc94b725-AMS
cf-cache-status: HIT
age: 234920
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: W/"18053c0090110634b91a6d9212bf7b31"
last-modified: Wed, 16 Aug 2023 08:20:41 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 0e3d5915b30e289999d244786c9a2560.cloudfront.net (CloudFront)
x-amz-cf-id: h2LfUkTGlWbF_OlUcWe_mwKjcSHDnvJYy7jAcH7m2hjS3CNh4feRgw==
x-amz-cf-pop: BRU50-C1
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/kmr-assets/favicons/favicon.ico

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/favicons/favicon.ico HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:54 GMT
content-type: application/manifest+json
cf-ray: 7fa1527abc93b725-AMS
cf-cache-status: DYNAMIC
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: W/"4dae9a7b130889c0c80486a05c4f662b"
last-modified: Wed, 16 Aug 2023 08:20:44 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 4ce5e5162c2d4fc9022ceb290f794ffe.cloudfront.net (CloudFront)
x-amz-cf-id: JxvdxrKmtzWiJjfWvrPYE4ewnLCe7rJHMaTGg4igkuWE9yswdF0DNw==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/kmr-assets/favicons/android-icon-144x144.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/favicons/android-icon-144x144.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:55 GMT
content-type: image/png
content-length: 10761
cf-ray: 7fa1527bbd6ab725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234921
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "b98164c250fec459d449971eaad3e86e"
last-modified: Wed, 16 Aug 2023 08:20:40 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 c0c888b299b9797c37778648bae22064.cloudfront.net (CloudFront)
x-amz-cf-id: 8N7d2vwmaM4OEnIZLot42rm1pj4Gs1vV9C19A9nfxhsRfba-CTV_2w==
x-amz-cf-pop: BRU50-C1
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/favicons/favicon-32x32.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/favicons/favicon-32x32.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:55 GMT
content-type: image/png
content-length: 2274
cf-ray: 7fa1527bbd6eb725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 234339
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: "1f501fd4047a5f73319ff922037b09c9"
last-modified: Wed, 16 Aug 2023 08:20:41 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 e13e8f228afcbd0862f27c6ebd714878.cloudfront.net (CloudFront)
x-amz-cf-id: 4TnmD5ngjtw_uxZpa02kEv7zBMKy4DiVkn40qtj4i9tatWOd2Hq-Xg==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/theme/images/klarmobil.de-logo@2x.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/klarmobil.de-logo@2x.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn.privacy-mgmt.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:55 GMT
content-type: image/webp
content-length: 8614
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "21a6-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 236345
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa1527def25b725-AMS
GET

https://www.klarmobil.de/kameleoonplatform.html

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kameleoonplatform.html HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false

Response

HTTP/2.0 404

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: text/html; charset=UTF-8
x-forwarded-proto: https
cf-ray: 7fa15284ed40b725-AMS
cf-cache-status: DYNAMIC
set-cookie: abtesting=testing-b; expires=Mon, 28-Aug-2023 07:56:56 GMT; Max-Age=604800; path=/; secure; HttpOnly
strict-transport-security: max-age=31536001; includeSubDomains; preload;
vary: Accept, Accept-Encoding
set-cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660;path=/;secure;httponly
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/theme/fonts/FagoWeb-Bold.woff

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/FagoWeb-Bold.woff HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff2
content-length: 137992
access-control-allow-origin: *
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "21b08-1c5fc537f6900"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235503
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e8fb725-AMS
GET

https://www.klarmobil.de/theme/fonts/FagoWeb-Black.woff

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/FagoWeb-Black.woff HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff2
content-length: 185712
access-control-allow-origin: *
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "2d570-1c5fc537f6900"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235503
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e91b725-AMS
GET

https://www.klarmobil.de/theme/fonts/FagoWeb.woff

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/FagoWeb.woff HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff
content-length: 1220
access-control-allow-origin: *
last-modified: Tue, 04 Jul 2023 06:52:20 GMT
etag: "4c4-5ffa3b978b100"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235503
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e93b725-AMS
GET

https://www.klarmobil.de/theme/fonts/fa-solid-900.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/fa-solid-900.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff
content-length: 27608
access-control-allow-origin: *
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "6bd8-5ffa3b603ae80"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 234976
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e8db725-AMS
GET

https://www.klarmobil.de/theme/fonts/fa-regular-400.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/fa-regular-400.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff2
content-length: 170020
access-control-allow-origin: *
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "29824-1c5fc537f6900"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235503
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e90b725-AMS
GET

https://www.klarmobil.de/theme/fonts/fa-light-300.woff2

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/fa-light-300.woff2 HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff
content-length: 27092
access-control-allow-origin: *
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "69d4-5ffa3b603ae80"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 234976
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e8ab725-AMS
GET

https://www.klarmobil.de/theme/fonts/svgfont.woff

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/fonts/svgfont.woff HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: font/woff
content-length: 27716
access-control-allow-origin: *
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "6c44-5ffa3b603ae80"
vary: Accept, Accept-Encoding
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 234976
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e8eb725-AMS
GET

https://www.klarmobil.de/theme/css/km-a-c371a186.min.css

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/css/km-a-c371a186.min.css HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: application/javascript
content-length: 30902
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "15d9d-5ffa3b603ae80-gzip"
vary: Accept-Encoding,Accept
content-encoding: gzip
cache-control: max-age=604800, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 236195
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152865e99b725-AMS
GET

https://www.klarmobil.de/a/css/klarmobil-953e8b51.min.css

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /a/css/klarmobil-953e8b51.min.css HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: text/css
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "cf4e9-5ffa3b603ae80-gzip"
vary: Accept-Encoding,Accept
content-encoding: gzip
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235673
server: cloudflare
cf-ray: 7fa152865e95b725-AMS
GET

https://www.klarmobil.de/theme/js/jquery-3.6.0.min.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/js/jquery-3.6.0.min.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 1680
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "690-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866ea4b725-AMS
GET

https://www.klarmobil.de/theme/js/km-a-baf64c02.min.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/js/km-a-baf64c02.min.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 4552
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "11c8-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866ea5b725-AMS
GET

https://www.klarmobil.de/a/js/klarmobil-8784b933.min.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /a/js/klarmobil-8784b933.min.js HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 5322
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "14ca-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866ea8b725-AMS
GET

https://www.klarmobil.de/theme/images/klarmobil-de-Logo-transp-Markenzusatz--mobile.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/klarmobil-de-Logo-transp-Markenzusatz--mobile.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 4382
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "111e-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866ea6b725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-allnet-flat.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-allnet-flat.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 5254
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "1486-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eabb725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-hst.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-hst.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 3970
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "f82-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eaab725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-daten-flat.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-daten-flat.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 1742
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "6ce-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eb1b725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-handys-mit-vertrag.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-handys-mit-vertrag.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: application/javascript
last-modified: Tue, 04 Jul 2023 06:53:44 GMT
etag: "b523b-5ffa3be7a6e00-gzip"
vary: Accept-Encoding,Accept
content-encoding: gzip
cache-control: max-age=7776000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235673
server: cloudflare
cf-ray: 7fa152866e9fb725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-handys-ohne-vertrag.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-handys-ohne-vertrag.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 1472
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "5c0-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eaeb725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-tablet-only.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-tablet-only.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 5792
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "16a0-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eacb725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-zubehoer.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-zubehoer.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 1530
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "5fa-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eafb725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-kontakt.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-kontakt.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/webp
content-length: 1330
vary: Accept, Accept-Encoding
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "532-5ffa3b603ae80"
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235306
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866eb0b725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-onlineservice.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-onlineservice.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: image/svg+xml
content-length: 3715
last-modified: Tue, 04 Jul 2023 06:51:22 GMT
etag: "245a-5ffa3b603ae80-gzip"
vary: Accept-Encoding,Accept
content-encoding: gzip
cache-control: max-age=2592000, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 235672
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa152866ea3b725-AMS
GET

https://www.klarmobil.de/theme/images/km-header--hover-faq.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-faq.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: application/javascript
content-length: 10022
x-forwarded-proto: https
cf-ray: 7fa152866ea0b725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 235672
cache-control: max-age=7776000, public
content-encoding: gzip
etag: "978a-5faed1742cc00-gzip"
last-modified: Fri, 05 May 2023 07:18:08 GMT
strict-transport-security: max-age=31536001; includeSubDomains; preload;
vary: Accept-Encoding,Accept
server: cloudflare
GET

https://www.klarmobil.de/theme/images/km-header--hover-kuendigung.png

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /theme/images/km-header--hover-kuendigung.png HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:56 GMT
content-type: text/css
content-length: 9559
x-forwarded-proto: https
cf-ray: 7fa152865e96b725-AMS
cf-cache-status: HIT
accept-ranges: bytes
age: 235673
cache-control: max-age=7776000, public
content-encoding: gzip
etag: "10d55-5faed1569c640-gzip"
last-modified: Fri, 05 May 2023 07:17:37 GMT
strict-transport-security: max-age=31536001; includeSubDomains; preload;
vary: Accept-Encoding,Accept
server: cloudflare
GET

https://www.klarmobil.de/shop/cart/minicart/link

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /shop/cart/minicart/link HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:57 GMT
content-type: application/javascript
content-length: 524
last-modified: Fri, 05 May 2023 07:18:09 GMT
etag: "355-5faed17520e40-gzip"
vary: Accept-Encoding,Accept
content-encoding: gzip
cache-control: max-age=604800, public
x-forwarded-proto: https
strict-transport-security: max-age=31536001; includeSubDomains; preload;
cf-cache-status: HIT
age: 236293
accept-ranges: bytes
server: cloudflare
cf-ray: 7fa1528898aeb725-AMS
GET

https://www.klarmobil.de/sw.js

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /sw.js HTTP/2.0
host: www.klarmobil.de
cache-control: max-age=0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
service-worker: script
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: serviceworker
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604612289
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604612291.30
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:57 GMT
content-type: text/html;charset=UTF-8
set-cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw; path=/; domain=.klarmobil.de; expires=Tue, 20-Aug-2024 07:56:57 GMT
set-cookie: cart-counter=0; Path=/shop
set-cookie: cookie-notification=NOT_ACCEPTED; Max-Age=360000000; Expires=Tue, 16 Jan 2035 23:56:57 GMT; Path=/; Secure
set-cookie: JSESSIONID=Y23-4ea0a08d-25eb-4e40-a583-52ac57b8fbee; Path=/shop; Secure; HttpOnly
set-cookie: ROUTEID=.app3; path=/
set-cookie: SERVERID-HYBRIS=ffffffff09cc621345525d5f4f58455e445a4a421793;path=/;secure;httponly
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
strict-transport-security: max-age=31536001; includeSubDomains; preload;
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-language: de
vary: Accept-Encoding
x-forwarded-proto: https
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fa152887898b725-AMS
content-encoding: gzip
GET

https://www.klarmobil.de/shop/cart/minicart/rollover

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /shop/cart/minicart/rollover HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, */*; q=0.01
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/kameleoonplatform.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cart-counter=0
cookie: JSESSIONID=Y23-4ea0a08d-25eb-4e40-a583-52ac57b8fbee
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604615452
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: cookie-notification=NOT_ACCEPTED
cookie: ROUTEID=.app3
cookie: SERVERID-HYBRIS=ffffffff09cc621345525d5f4f58455e445a4a421793
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604615454.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:56:57 GMT
content-type: text/html;charset=UTF-8
set-cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw; path=/; domain=.klarmobil.de; expires=Tue, 20-Aug-2024 07:56:57 GMT
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
strict-transport-security: max-age=31536001; includeSubDomains; preload;
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-language: de
vary: Accept-Encoding
x-forwarded-proto: https
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fa15289494eb725-AMS
content-encoding: gzip
GET

https://www.klarmobil.de/

msedge.exe

Remote address:

172.64.155.78:443

Request

GET / HTTP/2.0
host: www.klarmobil.de
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: cookie-notification=NOT_ACCEPTED
cookie: ROUTEID=.app3
cookie: SERVERID-HYBRIS=ffffffff09cc621345525d5f4f58455e445a4a421793
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604638584
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604638587.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:57:22 GMT
content-type: text/html; charset=utf-8
cf-ray: 7fa15319ded9b725-AMS
cf-cache-status: DYNAMIC
cache-control: public, max-age=300
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 241b025da3883bdb653910a6da97c0a8.cloudfront.net (CloudFront)
apigw-requestid: KADTGiQRliAEMbA=
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.kameleoon.eu https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://dynamic.criteo.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://tm.dp.klarmobil.de https://cdn.privacy-mgmt.com https://www.googletagmanager.com https://www.google-analytics.com https://widgets.trustedshops.com https://www.klarmobil.de https://embed.binkies3d.com https://az589851.vo.msecnd.net https://bat.bing.com https://connect.facebook.net https://amplify.outbrain.com https://cdn.taboola.com https://content.zeotap.com https://trc.taboola.com https://googleads.g.doubleclick.net https://tr.outbrain.com https://s3-eu-west-1.amazonaws.com https://*.id.opendns.com https://www.googleadservices.com https://dynamic.criteo.com https://sslwidget.criteo.com https://bt.fraud0.com https://wave.outbrain.com; style-src 'self' 'unsafe-inline' https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com; font-src 'self' https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://fonts.gstatic.com data:; img-src 'self' https://downloads.ctfassets.net https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://images.ctfassets.net https://media.mdm.klarmobil.de https://www.klarmobil.de https://tm.dp.klarmobil.de https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com https://az589851.vo.msecnd.net https://tr.outbrain.com https://www.google.be https://bat.bing.com https://trc.taboola.com https://www.google.com https://www.google.de https://www.facebook.com https://www.googletagmanager.com https://cm.g.doubleclick.net https://match.adsrvr.org https://mwzeom.zeotap.com https://googleads.g.doubleclick.net https://x.bidswitch.net https://ib.adnxs.com https://secure.adnxs.com https://contextual.media.net https://pixel.rubiconproject.com https://match.sharethrough.com https://rtb-csync.smartadserver.com https://sync-t1.taboola.com https://criteo-sync.teads.tv https://eb2.3lift.com https://ups.analytics.yahoo.com https://cm.adform.net https://visitor.omnitagjs.com https://r.casalemedia.com https://gum.criteo.com https://id5-sync.com https://ad.360yield.com https://matching.ivitrack.com https://exchange.mediavine.com https://sync.outbrain.com https://simage2.pubmatic.com https://criteo-partners.tremorhub.com https://ad.yieldlab.net https://sync-criteo.ads.yieldmo.com https://dis.criteo.com https://a.twiago.com https://dpm.demdex.net https://beacon.krxd.net https://s.thebrighttag.com blob: data:; connect-src 'self' https://data.kameleoon.io https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://km-git-components.s3.eu-central-1.amazonaws.com https://km-prod-components.s3.eu-central-1.amazonaws.com https://graphql.contentful.com https://cdn.privacy-mgmt.com https://tm.dp.klarmobil.de https://stats.g.doubleclick.net https://www.klarmobil.de https://www-git.klarmobil.de https://www-preview.klarmobil.de https://o571954.ingest.sentry.io https://o1173614.ingest.sentry.io https://binkiesproductionweu.servicebus.windows.net https://embed.binkies3d.com https://az589851.vo.msecnd.net https://bat.bing.com https://spl.zeotap.com https://trc.taboola.com https://www.google.be https://www.facebook.com https://trc-events.taboola.com https://www.google.com https://www.google.de https://googleads.g.doubleclick.net https://static.adfarm1.adition.com https://measurement-api.criteo.com https://ad.doubleclick.net https://pagead2.googlesyndication.com https://api.fraud0.com https://api.klarmobil.de https://graphql.klarmobil.services; object-src 'none'; child-src 'self'; frame-src 'self' https://ecom-roaming-notfallkommunkation-git.s3.eu-central-1.amazonaws.com https://ecom-roaming-notfallkommunkation-prod.s3.eu-central-1.amazonaws.com https://cdn.privacy-mgmt.com https://8508168.fls.doubleclick.net https://s3-eu-west-1.amazonaws.com https://*.id.opendns.com https://gum.criteo.com https://td.doubleclick.net https://fledge.eu.criteo.com; frame-ancestors 'none'; upgrade-insecure-requests; block-all-mixed-content
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
permissions-policy: camera=(), microphone=(), autoplay=(), display-capture=(), document-domain=(), geolocation=()
referrer-policy: strict-origin-when-cross-origin
x-amz-cf-id: H3tZxzeR-AgElMYHfHg5NiCMrNxtLfWZbZRmD4YhdzkbHnlcYBsNoA==
x-amz-cf-pop: AMS1-C1
x-cache: Miss from cloudfront
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: gzip
GET

https://www.klarmobil.de/kmr-assets/brands/brand_button_apple.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/brands/brand_button_apple.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: cookie-notification=NOT_ACCEPTED
cookie: ROUTEID=.app3
cookie: SERVERID-HYBRIS=ffffffff09cc621345525d5f4f58455e445a4a421793
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: qwt_actions=1-0-0-0-0-0
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604641567
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604641568.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:57:23 GMT
content-type: image/svg+xml
cf-ray: 7fa1532db80db725-AMS
cf-cache-status: HIT
age: 235661
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"3a12bde651a52fdf11bce9ab8370099b"
last-modified: Wed, 16 Aug 2023 08:20:39 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 bdba42cf1410fb617eeb4ffd3e0b9cb6.cloudfront.net (CloudFront)
x-amz-cf-id: ozIEa3rbbIcqyhDBVRhhR7eZgYml3H_GiQB_Q3FbKVwEBo5lRwk_lw==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/brands/brand_button_google.svg

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/brands/brand_button_google.svg HTTP/2.0
host: www.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: cookie-notification=NOT_ACCEPTED
cookie: ROUTEID=.app3
cookie: SERVERID-HYBRIS=ffffffff09cc621345525d5f4f58455e445a4a421793
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: qwt_actions=1-0-0-0-0-0
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604641567
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604641568.30

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:57:23 GMT
content-type: image/svg+xml
cf-ray: 7fa1532db80fb725-AMS
cf-cache-status: HIT
age: 235661
cache-control: max-age=31536000, stale-while-revalidate=86400
content-encoding: gzip
etag: W/"8d7583e8b7b3bb2c5d7112d6ac9bee70"
last-modified: Wed, 16 Aug 2023 08:20:40 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 3ffec0ecfde687fb371812ad42f5cfc2.cloudfront.net (CloudFront)
x-amz-cf-id: EnMd1RfTSF2tKzXzKDXQDBtBLX6XHuEKFTlYZudi9_InqCGmUMtSHA==
x-amz-cf-pop: AMS1-C1
x-amz-server-side-encryption: AES256
x-cache: RefreshHit from cloudfront
server: cloudflare
GET

https://www.klarmobil.de/kmr-assets/favicons/favicon.ico

msedge.exe

Remote address:

172.64.155.78:443

Request

GET /kmr-assets/favicons/favicon.ico HTTP/2.0
host: www.klarmobil.de
pragma: no-cache
cache-control: no-cache
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: KmrABTest=new
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA
cookie: _sp_v1_p=950
cookie: _sp_v1_data=598280
cookie: _sp_su=false
cookie: abtesting=testing-b
cookie: SERVERID-WEB=ffffffff09cc8e1245525d5f4f58455e445a4a423660
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: cookie-notification=NOT_ACCEPTED
cookie: ROUTEID=.app3
cookie: SERVERID-HYBRIS=ffffffff09cc621345525d5f4f58455e445a4a421793
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: f0_uid=bf270aad-54f2-4b2f-a32d-d9f843dcc57c.1692604641567
cookie: f0_sid=f768edf2-2e86-4e87-ba56-6e1ae372bdd7.1692604641568.30
cookie: _fbp=fb.1.1692604642136.99396007
cookie: qwt_actions=2-0-0-0-0-0
cookie: cto_bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE
cookie: _gcl_au=1.1.2007220147.1692604644
cookie: _gid=GA1.2.1989015307.1692604644
cookie: outbrain_cid_fetch=true
cookie: _ga_RYGW3GJJ1B=GS1.1.1692604641.1.0.1692604644.0.0.0
cookie: FPLC=I6cvm6IQ1c%2BuBSr0F1dRWo5aTboTIMymkf7cB%2BsBZTVVCQr6HEm2jvm0xBBWggivZH6cv%2F323eCbq07S2wPDonuIDU1SbakfkmoQwrTH0dMkEY38lg2oUrefzg3NQQ%3D%3D
cookie: GASSID4=FPID2.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644
cookie: _gat_UA-50664136-1=1
cookie: _ga=GA1.2.151341609.1692604644
cookie: GASSID=FPID1.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:57:26 GMT
content-type: image/vnd.microsoft.icon
cf-ray: 7fa1533f5887b725-AMS
cf-cache-status: HIT
age: 234952
cache-control: max-age=31536000, stale-while-revalidate=86400
etag: W/"18053c0090110634b91a6d9212bf7b31"
last-modified: Wed, 16 Aug 2023 08:20:41 GMT
set-cookie: KmrABTest=new; path=/; Max-Age=2628000
vary: Accept-Encoding
via: 1.1 0e3d5915b30e289999d244786c9a2560.cloudfront.net (CloudFront)
x-amz-cf-id: h2LfUkTGlWbF_OlUcWe_mwKjcSHDnvJYy7jAcH7m2hjS3CNh4feRgw==
x-amz-cf-pop: BRU50-C1
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
server: cloudflare
content-encoding: gzip
DNS

images.ctfassets.net

msedge.exe

Remote address:

8.8.8.8:53

Request

images.ctfassets.net

IN A

Response

images.ctfassets.net

IN CNAME

d3orhvfyxudxxq.cloudfront.net

d3orhvfyxudxxq.cloudfront.net

IN A

52.222.139.47

d3orhvfyxudxxq.cloudfront.net

IN A

52.222.139.123

d3orhvfyxudxxq.cloudfront.net

IN A

52.222.139.72

d3orhvfyxudxxq.cloudfront.net

IN A

52.222.139.122
DNS

media.mdm.klarmobil.de

msedge.exe

Remote address:

8.8.8.8:53

Request

media.mdm.klarmobil.de

IN A

Response

media.mdm.klarmobil.de

IN A

13.227.219.97

media.mdm.klarmobil.de

IN A

13.227.219.75

media.mdm.klarmobil.de

IN A

13.227.219.38

media.mdm.klarmobil.de

IN A

13.227.219.44
DNS

tm.dp.klarmobil.de

msedge.exe

Remote address:

8.8.8.8:53

Request

tm.dp.klarmobil.de

IN A

Response

tm.dp.klarmobil.de

IN A

216.239.34.21

tm.dp.klarmobil.de

IN A

216.239.36.21

tm.dp.klarmobil.de

IN A

216.239.32.21

tm.dp.klarmobil.de

IN A

216.239.38.21
DNS

3xhb4v7cn4.kameleoon.eu

msedge.exe

Remote address:

8.8.8.8:53

Request

3xhb4v7cn4.kameleoon.eu

IN A

Response

3xhb4v7cn4.kameleoon.eu

IN CNAME

distributed-services-new01.kameleoon.net

distributed-services-new01.kameleoon.net

IN A

95.217.57.95
DNS

kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com

IN A

Response

kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com

IN CNAME

s3-r-w.eu-central-1.amazonaws.com

s3-r-w.eu-central-1.amazonaws.com

IN A

52.219.169.222

s3-r-w.eu-central-1.amazonaws.com

IN A

3.5.139.142

s3-r-w.eu-central-1.amazonaws.com

IN A

52.219.171.30

s3-r-w.eu-central-1.amazonaws.com

IN A

3.5.135.186

s3-r-w.eu-central-1.amazonaws.com

IN A

52.219.170.130

s3-r-w.eu-central-1.amazonaws.com

IN A

52.219.170.94

s3-r-w.eu-central-1.amazonaws.com

IN A

52.219.75.164

s3-r-w.eu-central-1.amazonaws.com

IN A

52.219.169.82
DNS

o571954.ingest.sentry.io

msedge.exe

Remote address:

8.8.8.8:53

Request

o571954.ingest.sentry.io

IN A

Response

o571954.ingest.sentry.io

IN A

34.120.195.249
GET

https://images.ctfassets.net/1glbh88h5ua1/4fpGQGzgesqf1BwxgLmry5/c25c4ea0ff30c7c47649a7dc4985115e/klarmobil-logo-mit-claim.svg

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/4fpGQGzgesqf1BwxgLmry5/c25c4ea0ff30c7c47649a7dc4985115e/klarmobil-logo-mit-claim.svg HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
last-modified: Wed, 12 Jul 2023 08:23:53 GMT
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
date: Mon, 21 Aug 2023 05:10:54 GMT
cache-control: max-age=31536000
etag: W/"8b8b9b9a0a62f5fad2ee408f25b8bd6d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: ZgsF_TDaZag-3EgvF1O5hOT7qp_ZbdK7MjuLGtvi1cJEzjd0EC0e7w==
age: 9992
GET

https://images.ctfassets.net/1glbh88h5ua1/6xcjQr85Dv5oy96HiIYtEy/46c8589ba9d291c38cf784189e8c8cbb/klarmobil-logo-ohne-claim.svg

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/6xcjQr85Dv5oy96HiIYtEy/46c8589ba9d291c38cf784189e8c8cbb/klarmobil-logo-ohne-claim.svg HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
last-modified: Wed, 12 Jul 2023 08:23:31 GMT
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
date: Mon, 21 Aug 2023 02:21:55 GMT
cache-control: max-age=31536000
etag: W/"54f022dd403e41095f16f2231f1a19b4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: Ehtwm-PBpM-1XSqw9y2WxfYUQYZeRwQ3oHkNIEnAkvS4QO3l3YgZiw==
age: 20659
GET

https://images.ctfassets.net/1glbh88h5ua1/2IsWHv8li7QplX6i4iTtV0/4ff793827dbff91b69c9d76221000eed/start_ap-frei.jpg?w=768&h=432&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/2IsWHv8li7QplX6i4iTtV0/4ff793827dbff91b69c9d76221000eed/start_ap-frei.jpg?w=768&h=432&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 62046
last-modified: Mon, 31 Jul 2023 23:10:17 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 07:56:49 GMT
cache-control: max-age=31536000
etag: "5e74fe6e239d5ac7dbfc020a9923e07e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: hvMdrdiQvN_6xIz61MX5WeZRpTxBNwAtbpz7Q4zSAL1Qy0OhgYX9ig==
age: 29878
GET

https://images.ctfassets.net/1glbh88h5ua1/4l9PFZJmHDIWskAkEjsiVC/52e4c7864686c8aceafc34b0cf7f91e8/header-allnet-flats.jpg?w=272&h=272&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/4l9PFZJmHDIWskAkEjsiVC/52e4c7864686c8aceafc34b0cf7f91e8/header-allnet-flats.jpg?w=272&h=272&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 15808
last-modified: Fri, 07 Jul 2023 12:02:59 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "b507723a9d101d44c917d7d3387896ad"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: qPA5esto8fIl4JWuC1jvoFM_aje7qyTjGmDDf38TvpRAZsLnYDUBLA==
age: 11447
GET

https://images.ctfassets.net/1glbh88h5ua1/AaAN6WmbQseAmcE308ckX/c79dd0b42ee21d62a35f2fb4b236f732/Monatl_kuendbare_Tarife_272x272.jpg?w=272&h=272&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/AaAN6WmbQseAmcE308ckX/c79dd0b42ee21d62a35f2fb4b236f732/Monatl_kuendbare_Tarife_272x272.jpg?w=272&h=272&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 14566
last-modified: Wed, 12 Jul 2023 08:34:14 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "92a8c8de1ef8124d3dd8c89f667e08e7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: QyOcnVIQHj-tuDBPJ9KVUKwfmnTRk4mByy8lEf1JP5E8KCgKMAwH1A==
age: 11447
GET

https://images.ctfassets.net/1glbh88h5ua1/4tjDmHxp8zVyINxQp8PSCY/21d9b58992e0d652f731f8a2d256ff41/header-handys-mit-vertrag.jpg?w=272&h=272&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/4tjDmHxp8zVyINxQp8PSCY/21d9b58992e0d652f731f8a2d256ff41/header-handys-mit-vertrag.jpg?w=272&h=272&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 15820
last-modified: Fri, 07 Jul 2023 10:44:29 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 05:15:33 GMT
cache-control: max-age=31536000
etag: "566d3a55a10542c301d4fdacb2113dc3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 31-jNukXQnC3PGvZWOXzih8VJPnSEXsXX7nBcFTiHTtZi_3V9kWmCw==
age: 9730
GET

https://images.ctfassets.net/1glbh88h5ua1/3ZY9PrruTXXfWVfdCBCTES/119f227ac65e2a2835167b2827bb6bd4/header-handys-ohne-vertrag.jpg?w=173&h=272&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/3ZY9PrruTXXfWVfdCBCTES/119f227ac65e2a2835167b2827bb6bd4/header-handys-ohne-vertrag.jpg?w=173&h=272&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 12822
last-modified: Wed, 07 Jun 2023 14:13:42 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Sun, 20 Aug 2023 08:58:50 GMT
cache-control: max-age=31536000
etag: "4407b2afc61361d2e32387bc028ce4a3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 9k-7VRScUYE_WLtP8L4V52E8XxZoVpguHAsZv8iTldMJZ1pusXQFqw==
age: 82681
GET

https://images.ctfassets.net/1glbh88h5ua1/7qwvZdD3Y19fpmnLsgpJne/eb04f88cf01ec60f845254a63115730e/header-tablets-ohne-vertrag.jpg?w=173&h=272&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/7qwvZdD3Y19fpmnLsgpJne/eb04f88cf01ec60f845254a63115730e/header-tablets-ohne-vertrag.jpg?w=173&h=272&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 14770
last-modified: Fri, 02 Jun 2023 10:45:28 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "cd81ab515f68b33c7bc08e467eac0238"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 4yrWOqnrm-2En3Ob7c0CqyBBNNOhV1UueZxjDJ4xcYKNbxFnfTB3hQ==
age: 11644
GET

https://images.ctfassets.net/1glbh88h5ua1/3wwXhYPPycODRAHtPm9xBP/c9cd0072b21d1bda7ca2d684c0bed344/header-zubehoer.jpg?w=173&h=272&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/3wwXhYPPycODRAHtPm9xBP/c9cd0072b21d1bda7ca2d684c0bed344/header-zubehoer.jpg?w=173&h=272&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 11664
last-modified: Fri, 07 Jul 2023 13:17:18 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "a1e040c4526882be30e317f7a88f917f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: fDDvh1gx5zw0651MvLBfjtEaLZFWmhWF2wu7BbSoKhKqMI5p7ZEI2A==
age: 11644
GET

https://images.ctfassets.net/1glbh88h5ua1/3gGzUQItHVVQSmIjT5FI3y/8e8a0216059828f27a08510d887469f1/Huellen.png?w=84&h=120&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/3gGzUQItHVVQSmIjT5FI3y/8e8a0216059828f27a08510d887469f1/Huellen.png?w=84&h=120&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 4586
last-modified: Wed, 12 Jul 2023 08:34:14 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "d23bd2f95052706a5c8a5a4d388ef7cb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: mrobEpN_rTWYQh8aE4xjItOUcqPNliJDAA87xu4z9f8HBEvvLgYCig==
age: 11447
GET

https://images.ctfassets.net/1glbh88h5ua1/4paIrjpGHqaaVCuAF6thBc/d9cbb7b2f9426b1f9b02c2eb45ff4062/Kabel.png?w=64&h=120&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/4paIrjpGHqaaVCuAF6thBc/d9cbb7b2f9426b1f9b02c2eb45ff4062/Kabel.png?w=64&h=120&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 1398
last-modified: Wed, 12 Jul 2023 08:34:14 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 06:49:29 GMT
cache-control: max-age=31536000
etag: "df062203bd8f2e883b61a67051e52338"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: dHDsPWuuBYQehCwMoqtXUFd5qRoVMLEURfCR7K_vFtdBRa3DsPGMvg==
age: 6200
GET

https://images.ctfassets.net/1glbh88h5ua1/304ULTOuzyZ24RSWmRxlpG/ba15301c5ac7646b2846b544ca65be8e/akg-n700-wireless-kopfhoerer-black-vorderseite.webp

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/304ULTOuzyZ24RSWmRxlpG/ba15301c5ac7646b2846b544ca65be8e/akg-n700-wireless-kopfhoerer-black-vorderseite.webp HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 55852
last-modified: Thu, 08 Sep 2022 14:50:04 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 01:50:39 GMT
cache-control: max-age=31536000
etag: "baf40921fd1d5fb4402520c6e9c7b520"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: TqwLEqVNqi1bxfCEDXMHEQgEMkDwaIZ9xfCchQv6kz4WQMPmjXZIUQ==
age: 23396
GET

https://images.ctfassets.net/1glbh88h5ua1/fMTiCpEwm4zXCEG7Ng4Ni/84bb95991bc461d08bdb057291f651e5/header-haufige-fragen.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/fMTiCpEwm4zXCEG7Ng4Ni/84bb95991bc461d08bdb057291f651e5/header-haufige-fragen.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 6828
last-modified: Thu, 08 Jun 2023 07:26:12 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 05:15:33 GMT
cache-control: max-age=31536000
etag: "9b4c3792dbf4fb664baa4974fcab5fc0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: xNcAvoBo9E2tKo9GczMtoZ9nlQgttIDWEWTfb_KJM0U3Lu9QPnsRXQ==
age: 9989
GET

https://images.ctfassets.net/1glbh88h5ua1/1BappdDJmIZERDwkgbwqUQ/a69da0cade51c7796211968de1c36dc0/header-login.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/1BappdDJmIZERDwkgbwqUQ/a69da0cade51c7796211968de1c36dc0/header-login.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 5790
last-modified: Fri, 07 Jul 2023 10:44:29 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "553df36e76a6f881b4bd6cee0f681cd8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: qk9eTJvhVseZjCOkpWAR5SlIhiC1rNCx-d4d7S6KLJpuymKh9iTvEg==
age: 11645
GET

https://images.ctfassets.net/1glbh88h5ua1/6jiwtNgtgujfTBUadTBp7K/a7646975950a2f84aafc3718b9bd260c/header-app.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/6jiwtNgtgujfTBUadTBp7K/a7646975950a2f84aafc3718b9bd260c/header-app.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 8298
last-modified: Tue, 06 Jun 2023 21:52:42 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 06:02:46 GMT
cache-control: max-age=31536000
etag: "a831d8e3eca55c9964dedb68c4ad644a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: mon3w7knysfw_xYJsDVycJC7xT8dJ0O_edQYYGzMVUokfRKkNFDYoA==
age: 6985
GET

https://images.ctfassets.net/1glbh88h5ua1/4c67uPFpY6Hjdc3NnRpC2F/2f7a2e39a992c048c8f35e29ed322f1d/header-kuendigen.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/4c67uPFpY6Hjdc3NnRpC2F/2f7a2e39a992c048c8f35e29ed322f1d/header-kuendigen.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 6292
last-modified: Sun, 06 Aug 2023 07:49:54 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "674264aab6c305913a5b9fdee5939c5f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: yOOLr7prVORifa-sr1OpuB3RaKeMmYAyerT0sdeuOKcKRotGxd84cA==
age: 11645
GET

https://images.ctfassets.net/1glbh88h5ua1/6aobdKdGgkwnFk6jqg9glM/7f23032a0ae296168b04cae8630cbfb4/header-kontakt.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/6aobdKdGgkwnFk6jqg9glM/7f23032a0ae296168b04cae8630cbfb4/header-kontakt.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 6494
last-modified: Wed, 07 Jun 2023 00:57:59 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 05:15:33 GMT
cache-control: max-age=31536000
etag: "636009797ef521eecfb664cadd01cd4c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: Uk_HtmIC1wEziKNVBycL9tTqYVzbFeZyrM0HudaCnFe3pQToyPC2pQ==
age: 10138
GET

https://images.ctfassets.net/1glbh88h5ua1/2nQMxdvR8yijnYBRgALXh6/86513b6f61108324cfc8a7b731e872d6/header-ueber-uns.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/2nQMxdvR8yijnYBRgALXh6/86513b6f61108324cfc8a7b731e872d6/header-ueber-uns.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 7210
last-modified: Fri, 07 Jul 2023 10:44:29 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "d9e50632014281ddc33376c6af14043a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: QaWdMYqEXwj8vO0UWk8fTqlqGTVax9Pem_pel9uyAeC6vZIXc5aEYw==
age: 11644
GET

https://images.ctfassets.net/1glbh88h5ua1/vefyYHMMxbcXYAKxlZM2G/33b3b94b574a598bbb23f8b4ff1f448a/header-karriere.jpg?w=173&h=129&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/vefyYHMMxbcXYAKxlZM2G/33b3b94b574a598bbb23f8b4ff1f448a/header-karriere.jpg?w=173&h=129&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 6594
last-modified: Sun, 06 Aug 2023 03:49:13 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "453d3cd674f623b208993ddea81144e9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 359tipaVBIi3ER5cYRV-rmx5lOjzyOgrSu4NQFxdF5o3T-1MJMY-fA==
age: 11644
GET

https://images.ctfassets.net/1glbh88h5ua1/5XfbTR3TTfWbWmiHQKxVj1/3704bf5c0c954f48586d958738a5b555/klarmobil-app.png?w=600&h=600&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/5XfbTR3TTfWbWmiHQKxVj1/3704bf5c0c954f48586d958738a5b555/klarmobil-app.png?w=600&h=600&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 34408
last-modified: Fri, 11 Aug 2023 09:28:35 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 05:20:02 GMT
cache-control: max-age=31536000
etag: "9113b67ed692a4760b25757c6e0eb3b2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 0LcmFAD1cuVivtLTVz9Y2fhY_rhCFEhqeaRljlO3BQfpoyb6bHoM7w==
age: 9732
GET

https://images.ctfassets.net/1glbh88h5ua1/6XgF6wq4o8zRctYycWbAPu/b5a1a44e8ddc7953283d4fd3c7d5a392/klarmobil-footer-ssl-logo_transparent-_2_404x208.png?w=210&h=107&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/6XgF6wq4o8zRctYycWbAPu/b5a1a44e8ddc7953283d4fd3c7d5a392/klarmobil-footer-ssl-logo_transparent-_2_404x208.png?w=210&h=107&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 3306
last-modified: Fri, 11 Aug 2023 12:50:09 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "beb1393d627d3a0a21488a0f9fd1d3ca"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: Mu_xgdy_qu3_5NIHdCYgJPK7ylMWoD11pM4F3IzbA6jG8wrc9D8wlg==
age: 11645
GET

https://images.ctfassets.net/1glbh88h5ua1/7I5JkId5kN3a4vpZ9euIQ7/538dbc7989cce329fc04eb42b32f3666/klarmobil-footer-zahlungsmethoden.png?w=328&h=112&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/7I5JkId5kN3a4vpZ9euIQ7/538dbc7989cce329fc04eb42b32f3666/klarmobil-footer-zahlungsmethoden.png?w=328&h=112&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 10144
last-modified: Fri, 11 Aug 2023 12:50:09 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "53d07db465444a3563f69e36ac7f7bc9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: rntJeXDlPOTMa2MDh1zrUXcVUKouZsMMYM5WlTiywtNwDhJ721z9XQ==
age: 11645
GET

https://images.ctfassets.net/1glbh88h5ua1/5DfSvAxg5o0b1A7tOBl98Z/9f8da491de596efe6b5f68c0a38897fb/klarmobil-footer-consors-finanz-328x40.png?w=328&h=40&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/5DfSvAxg5o0b1A7tOBl98Z/9f8da491de596efe6b5f68c0a38897fb/klarmobil-footer-consors-finanz-328x40.png?w=328&h=40&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 2952
last-modified: Wed, 12 Jul 2023 08:34:15 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 06:11:03 GMT
cache-control: max-age=31536000
etag: "0739f19ef41ae2cf93ac8cee1b197820"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: txZ7aCom1EbWYfLOkGZt7mDoZ9PRcCPn1GWGQwHS_6oZq5OiUIW3SA==
age: 6371
GET

https://images.ctfassets.net/1glbh88h5ua1/4K9gQTpsFh2aGuXId6Fq9D/c9edcdeb403fcf7dcf276973046b4c33/klarmobil-footer-dhl-328x12.png?w=328&h=12&fm=webp&q=90&fit=fill

msedge.exe

Remote address:

52.222.139.47:443

Request

GET /1glbh88h5ua1/4K9gQTpsFh2aGuXId6Fq9D/c9edcdeb403fcf7dcf276973046b4c33/klarmobil-footer-dhl-328x12.png?w=328&h=12&fm=webp&q=90&fit=fill HTTP/2.0
host: images.ctfassets.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/webp
content-length: 542
last-modified: Wed, 12 Jul 2023 08:34:15 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 21 Aug 2023 04:58:05 GMT
cache-control: max-age=31536000
etag: "9cbc0b3142010443a11bf8e04db1c3c2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 abc3ecd1d98ae9cd426d47386509de18.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: V4kJVPgs21eYpV1fz7WlljN0G31HsCB9f-H67mL_eGlM2cGiJZNIKw==
age: 10765
DNS

embed.binkies3d.com

msedge.exe

Remote address:

8.8.8.8:53

Request

embed.binkies3d.com

IN A

Response

embed.binkies3d.com

IN CNAME

binkies3d-embed.trafficmanager.net

binkies3d-embed.trafficmanager.net

IN CNAME

binkies-embed-app.azurewebsites.net

binkies-embed-app.azurewebsites.net

IN CNAME

waws-prod-am2-485.sip.azurewebsites.windows.net

waws-prod-am2-485.sip.azurewebsites.windows.net

IN CNAME

waws-prod-am2-485-f076.westeurope.cloudapp.azure.com

waws-prod-am2-485-f076.westeurope.cloudapp.azure.com

IN A

20.50.2.79
GET

https://media.mdm.klarmobil.de/cdn?name=iphone-14-128-gb-midnight-vorderseite&version=5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e&subType=png&width=152&height=202

msedge.exe

Remote address:

13.227.219.97:443

Request

GET /cdn?name=iphone-14-128-gb-midnight-vorderseite&version=5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e&subType=png&width=152&height=202 HTTP/2.0
host: media.mdm.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 301

content-type: text/plain; charset=utf-8
content-length: 19
date: Mon, 31 Jul 2023 10:48:47 GMT
location: /5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/152x202/iphone-14-128-gb-midnight-vorderseite.webp
cache-control: public, max-age=31536000, immutable
apigw-requestid: I7OuYjd-FiAEPpg=
x-cache: Hit from cloudfront
via: 1.1 3649c20f8adf8628b43dbef00864e392.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: PMvdGMyZfWG1UZkgRgclNaMVQg4947sRiAAPAXXzffx98WYFD1mDWg==
age: 1804085
GET

https://media.mdm.klarmobil.de/cdn?name=samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite&version=87d342493f87a2c2aa1d581ca7e656c36a5bcf34&subType=png&width=132&height=176

msedge.exe

Remote address:

13.227.219.97:443

Request

GET /cdn?name=samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite&version=87d342493f87a2c2aa1d581ca7e656c36a5bcf34&subType=png&width=132&height=176 HTTP/2.0
host: media.mdm.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 301

content-type: text/plain; charset=utf-8
content-length: 19
date: Wed, 02 Aug 2023 07:23:08 GMT
location: /87d342493f87a2c2aa1d581ca7e656c36a5bcf34/132x176/samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite.webp
cache-control: public, max-age=31536000, immutable
apigw-requestid: JBWeZgxMFiAEPgg=
x-cache: Hit from cloudfront
via: 1.1 3649c20f8adf8628b43dbef00864e392.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: YLvbmBJC07B1wfozs3vUAqmidv2G24XZEnNWoZCvZ1ANSBjDV4TG1A==
age: 1643625
GET

https://media.mdm.klarmobil.de/cdn?name=iphone-14-128-gb-midnight-vorderseite&version=5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e&subType=png&width=132&height=176

msedge.exe

Remote address:

13.227.219.97:443

Request

GET /cdn?name=iphone-14-128-gb-midnight-vorderseite&version=5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e&subType=png&width=132&height=176 HTTP/2.0
host: media.mdm.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 301

content-type: text/plain; charset=utf-8
content-length: 19
date: Mon, 31 Jul 2023 10:48:57 GMT
location: /5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/132x176/iphone-14-128-gb-midnight-vorderseite.webp
cache-control: public, max-age=31536000, immutable
apigw-requestid: I7Ov_ixsliAEJwQ=
x-cache: Hit from cloudfront
via: 1.1 3649c20f8adf8628b43dbef00864e392.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: rYTuHwmpmAnrJ_BVYIbT8ndvU3FwB1aXa9SMpf-It9QIiG6FeQok4g==
age: 1804076
GET

https://media.mdm.klarmobil.de/5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/152x202/iphone-14-128-gb-midnight-vorderseite.webp

msedge.exe

Remote address:

13.227.219.97:443

Request

GET /5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/152x202/iphone-14-128-gb-midnight-vorderseite.webp HTTP/2.0
host: media.mdm.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 200

content-type: image/webp
content-length: 17644
date: Sat, 12 Aug 2023 20:40:30 GMT
last-modified: Sat, 12 Aug 2023 20:04:16 GMT
etag: "dd6545f795c5afcc44ceca7214becd4d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 3649c20f8adf8628b43dbef00864e392.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: PSAvbLiGrB57F25BhOfcauZXdUroaJh3imY3bDvy3CR14piw4xrDPQ==
age: 731783
GET

https://media.mdm.klarmobil.de/87d342493f87a2c2aa1d581ca7e656c36a5bcf34/132x176/samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite.webp

msedge.exe

Remote address:

13.227.219.97:443

Request

GET /87d342493f87a2c2aa1d581ca7e656c36a5bcf34/132x176/samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite.webp HTTP/2.0
host: media.mdm.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 200

content-type: image/webp
content-length: 15556
date: Sat, 19 Aug 2023 00:13:07 GMT
last-modified: Fri, 18 Aug 2023 15:38:13 GMT
etag: "8ab7e0edad26a0ad01c3378c057ec37d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 3649c20f8adf8628b43dbef00864e392.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: nGceLpHoRu2egSxnByeEnvPBbYwSBbKuu-khGuaWjOiewDOb-KABnQ==
age: 200627
GET

https://media.mdm.klarmobil.de/5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/132x176/iphone-14-128-gb-midnight-vorderseite.webp

msedge.exe

Remote address:

13.227.219.97:443

Request

GET /5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/132x176/iphone-14-128-gb-midnight-vorderseite.webp HTTP/2.0
host: media.mdm.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2

Response

HTTP/2.0 200

content-type: image/webp
content-length: 14100
date: Mon, 31 Jul 2023 10:55:16 GMT
last-modified: Mon, 31 Jul 2023 10:55:15 GMT
etag: "83046530e1a49ea4e89431d0789846c2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 3649c20f8adf8628b43dbef00864e392.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: SJ9I74PSd8DBvYhCJLodzlAAuVOoWflRPpGruyVAEG42Pq5OdxHq-g==
age: 1803698
DNS

cdn.privacy-mgmt.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.privacy-mgmt.com

IN A

Response

cdn.privacy-mgmt.com

IN A

108.156.60.116

cdn.privacy-mgmt.com

IN A

108.156.60.119

cdn.privacy-mgmt.com

IN A

108.156.60.77

cdn.privacy-mgmt.com

IN A

108.156.60.66
GET

https://3xhb4v7cn4.kameleoon.eu/kameleoon.js

msedge.exe

Remote address:

95.217.57.95:443

Request

GET /kameleoon.js HTTP/1.1
Host: 3xhb4v7cn4.kameleoon.eu
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Mon, 21 Aug 2023 07:56:49 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Aug 2023 09:59:40 GMT
ETag: W/"64cccc0c-2572c"
Expires: Mon, 21 Aug 2023 09:26:49 GMT
Cache-Control: max-age=5400
Content-Encoding: br
Strict-Transport-Security: max-age=31536000; includeSubDomains
GET

https://tm.dp.klarmobil.de/tm_km_main?id=GTM-P3MCX5

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /tm_km_main?id=GTM-P3MCX5 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
GET

https://tm.dp.klarmobil.de/cnsnt?pmdata_vendor=undefined&pmdata_purpose=undefined&ctid=message%20displayed&time=1692604613.266

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /cnsnt?pmdata_vendor=undefined&pmdata_purpose=undefined&ctid=message%20displayed&time=1692604613.266 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
GET

https://tm.dp.klarmobil.de/cnsnt?pmdata_vendor=null&pmdata_purpose=null&ctid=11&time=1692604637.904

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /cnsnt?pmdata_vendor=null&pmdata_purpose=null&ctid=11&time=1692604637.904 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
GET

https://tm.dp.klarmobil.de/cwrw?c_name=authId&c_content=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&c_life=31536000

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /cwrw?c_name=authId&c_content=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&c_life=31536000 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
GET

https://tm.dp.klarmobil.de/cwrw?c_name=iab_purposes&c_content=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D&c_life=31536000

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /cwrw?c_name=iab_purposes&c_content=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D&c_life=31536000 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
GET

https://tm.dp.klarmobil.de/cwrw?c_name=noniab_vendors&c_content=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C&c_life=31536000

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /cwrw?c_name=noniab_vendors&c_content=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C&c_life=31536000 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
GET

https://tm.dp.klarmobil.de/analytics.js

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /analytics.js HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
GET

https://tm.dp.klarmobil.de/qwt?events=page_view&gtm_cb=1711630616

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /qwt?events=page_view&gtm_cb=1711630616 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: qwt_actions=1-0-0-0-0-0
GET

https://tm.dp.klarmobil.de/gtag/js?id=G-RYGW3GJJ1B&l=dataLayer&cx=c

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /gtag/js?id=G-RYGW3GJJ1B&l=dataLayer&cx=c HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: qwt_actions=1-0-0-0-0-0
cookie: __gtm_sesStart=1692604641466
GET

https://tm.dp.klarmobil.de/g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&_s=1&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&en=page_view&_fv=1&_ss=1&ep.user_agent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F92.0.4515.131%20Safari%2F537.36%20Edg%2F92.0.902.67&ep.ab_test=-&ep.device=desktop&ep.event_id=1692604853456_16926049116281&ep.traffic_referrer=0&ep.user_type=-&ep.customer_type=neukunde&ep.traffic_origin=0&ep.event_time_micro=1692604641.459&ep.marketing_kuendigungsstatus=&ep.customer_vvl_status=&ep.page_location_new=https%3A%2F%2Fwww.klarmobil.de%2F&richsstsse

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&_s=1&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&en=page_view&_fv=1&_ss=1&ep.user_agent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F92.0.4515.131%20Safari%2F537.36%20Edg%2F92.0.902.67&ep.ab_test=-&ep.device=desktop&ep.event_id=1692604853456_16926049116281&ep.traffic_referrer=0&ep.user_type=-&ep.customer_type=neukunde&ep.traffic_origin=0&ep.event_time_micro=1692604641.459&ep.marketing_kuendigungsstatus=&ep.customer_vvl_status=&ep.page_location_new=https%3A%2F%2Fwww.klarmobil.de%2F&richsstsse HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: _fbp=fb.1.1692604642136.99396007
cookie: qwt_actions=2-0-0-0-0-0
cookie: cto_bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE
cookie: _gcl_au=1.1.2007220147.1692604644
cookie: _gid=GA1.2.1989015307.1692604644
cookie: _ga_RYGW3GJJ1B=GS1.1.1692604641.1.0.1692604641.0.0.0
cookie: _ga=GA1.1.151341609.1692604644
POST

https://tm.dp.klarmobil.de/j/collect?v=1&_v=j101&aip=1&a=940899471&t=pageview&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dp=%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&_u=aGBACEAjFAAAACgFKI~&jid=467565557&gjid=1583076024&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&_r=1&gtm=45Fe38g0n71P3MCX5&cd6=&cd8=0&cd17=&cd26=(not%20set)&gcs=G111&cd13=151341609.1692604644&cd14=pageview&z=1905971574

msedge.exe

Remote address:

216.239.34.21:443

Request

POST /j/collect?v=1&_v=j101&aip=1&a=940899471&t=pageview&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dp=%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&_u=aGBACEAjFAAAACgFKI~&jid=467565557&gjid=1583076024&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&_r=1&gtm=45Fe38g0n71P3MCX5&cd6=&cd8=0&cd17=&cd26=(not%20set)&gcs=G111&cd13=151341609.1692604644&cd14=pageview&z=1905971574 HTTP/2.0
host: tm.dp.klarmobil.de
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: _fbp=fb.1.1692604642136.99396007
cookie: qwt_actions=2-0-0-0-0-0
cookie: cto_bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE
cookie: _gcl_au=1.1.2007220147.1692604644
cookie: _gid=GA1.2.1989015307.1692604644
cookie: _ga=GA1.1.151341609.1692604644
cookie: _ga_RYGW3GJJ1B=GS1.1.1692604641.1.0.1692604644.0.0.0
cookie: FPLC=I6cvm6IQ1c%2BuBSr0F1dRWo5aTboTIMymkf7cB%2BsBZTVVCQr6HEm2jvm0xBBWggivZH6cv%2F323eCbq07S2wPDonuIDU1SbakfkmoQwrTH0dMkEY38lg2oUrefzg3NQQ%3D%3D
cookie: GASSID4=FPID2.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644
cookie: _gat_UA-50664136-1=1
GET

https://tm.dp.klarmobil.de/collect?v=1&_v=j101&aip=1&a=940899471&t=event&ni=1&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&ec=component_visible&ea=B%C3%BChne%20Startseite&_u=aGDACEAjFAAAACgFKIC~&jid=&gjid=&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&gtm=45Fe38g0n71P3MCX5&cd8=0&cd17=&cd26=(not%20set)&cd30=1-0-0-0-0&cd39=2-0-0-0-0-0&gcs=G111&cd13=151341609.1692604644&cd14=event&z=1980349881

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /collect?v=1&_v=j101&aip=1&a=940899471&t=event&ni=1&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&ec=component_visible&ea=B%C3%BChne%20Startseite&_u=aGDACEAjFAAAACgFKIC~&jid=&gjid=&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&gtm=45Fe38g0n71P3MCX5&cd8=0&cd17=&cd26=(not%20set)&cd30=1-0-0-0-0&cd39=2-0-0-0-0-0&gcs=G111&cd13=151341609.1692604644&cd14=event&z=1980349881 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: _fbp=fb.1.1692604642136.99396007
cookie: qwt_actions=2-0-0-0-0-0
cookie: cto_bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE
cookie: _gcl_au=1.1.2007220147.1692604644
cookie: _gid=GA1.2.1989015307.1692604644
cookie: _ga_RYGW3GJJ1B=GS1.1.1692604641.1.0.1692604644.0.0.0
cookie: FPLC=I6cvm6IQ1c%2BuBSr0F1dRWo5aTboTIMymkf7cB%2BsBZTVVCQr6HEm2jvm0xBBWggivZH6cv%2F323eCbq07S2wPDonuIDU1SbakfkmoQwrTH0dMkEY38lg2oUrefzg3NQQ%3D%3D
cookie: GASSID4=FPID2.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644
cookie: _gat_UA-50664136-1=1
cookie: _ga=GA1.2.151341609.1692604644
GET

https://tm.dp.klarmobil.de/collect?v=1&_v=j101&aip=1&a=940899471&t=event&ni=1&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&ec=component_visible&ea=Header&_u=aGDACEAjFAAAACgFKIC~&jid=&gjid=&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&gtm=45Fe38g0n71P3MCX5&cd8=0&cd17=&cd26=(not%20set)&cd30=1-0-0-0-0&cd39=2-0-0-0-0-0&gcs=G111&cd13=151341609.1692604644&cd14=event&z=2045234057

msedge.exe

Remote address:

216.239.34.21:443

Request

GET /collect?v=1&_v=j101&aip=1&a=940899471&t=event&ni=1&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&ec=component_visible&ea=Header&_u=aGDACEAjFAAAACgFKIC~&jid=&gjid=&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&gtm=45Fe38g0n71P3MCX5&cd8=0&cd17=&cd26=(not%20set)&cd30=1-0-0-0-0&cd39=2-0-0-0-0-0&gcs=G111&cd13=151341609.1692604644&cd14=event&z=2045234057 HTTP/2.0
host: tm.dp.klarmobil.de
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: _fbp=fb.1.1692604642136.99396007
cookie: qwt_actions=2-0-0-0-0-0
cookie: cto_bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE
cookie: _gcl_au=1.1.2007220147.1692604644
cookie: _gid=GA1.2.1989015307.1692604644
cookie: _ga_RYGW3GJJ1B=GS1.1.1692604641.1.0.1692604644.0.0.0
cookie: FPLC=I6cvm6IQ1c%2BuBSr0F1dRWo5aTboTIMymkf7cB%2BsBZTVVCQr6HEm2jvm0xBBWggivZH6cv%2F323eCbq07S2wPDonuIDU1SbakfkmoQwrTH0dMkEY38lg2oUrefzg3NQQ%3D%3D
cookie: GASSID4=FPID2.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644
cookie: _gat_UA-50664136-1=1
cookie: _ga=GA1.2.151341609.1692604644
POST

https://tm.dp.klarmobil.de/g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&_s=2&richsstsse

msedge.exe

Remote address:

216.239.34.21:443

Request

POST /g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&_s=2&richsstsse HTTP/2.0
host: tm.dp.klarmobil.de
content-length: 1123
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=43qge9vEQ1jr5Eosn7yCOR60K__g6fZxWKIi11MzNec-1692604609-0-AUhgOkBA3ePi8+PwBLiQE2KiFSwdFUOx2k4AatvoS/9/TUGMgF7St6A85AU/INPm7gWxuZpFcSDWeShJKEfRFj8=
cookie: cf_clearance=gei7wDAOwIuk2m2s7CER7GlWmBnm_6x.0mEArDkvldI-1692604614-0-1-3173c76.2da7bcc6.54166396-0.2.1692604614
cookie: _sp_su=false
cookie: fnuuid=ZOMYybq6fC6rc76XVhXn3wAAAOw
cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22
cookie: iab_purposes=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D
cookie: noniab_vendors=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C
cookie: kameleoonVisitorCode=_js_sh7r7o1950u53pu2
cookie: session60=
cookie: __gtm_sessionId=7e96669e2fbc4f4b9c08f2aca0e083b6
cookie: __gtm_sesStart=1692604641466
cookie: qwt_actions_new=1-0-0-0-0
cookie: _fbp=fb.1.1692604642136.99396007
cookie: qwt_actions=2-0-0-0-0-0
cookie: cto_bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE
cookie: _gcl_au=1.1.2007220147.1692604644
cookie: _gid=GA1.2.1989015307.1692604644
cookie: _ga_RYGW3GJJ1B=GS1.1.1692604641.1.0.1692604644.0.0.0
cookie: FPLC=I6cvm6IQ1c%2BuBSr0F1dRWo5aTboTIMymkf7cB%2BsBZTVVCQr6HEm2jvm0xBBWggivZH6cv%2F323eCbq07S2wPDonuIDU1SbakfkmoQwrTH0dMkEY38lg2oUrefzg3NQQ%3D%3D
cookie: GASSID4=FPID2.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644
cookie: _gat_UA-50664136-1=1
cookie: _ga=GA1.2.151341609.1692604644
cookie: GASSID=FPID1.2.P1w0ALKIYYgw%2FTsaJQAAUZwsimwuhb9VqqVXfyZVuK0%3D.1692604644
GET

https://cdn.privacy-mgmt.com/mms/v2/get_site_data?hasCsp=true&href=https%3A%2F%2Fwww.klarmobil.de%2F&account_id=1148

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /mms/v2/get_site_data?hasCsp=true&href=https%3A%2F%2Fwww.klarmobil.de%2F&account_id=1148 HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
date: Mon, 21 Aug 2023 07:56:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-sp-mms-node: ip-10-128-32-41
strict-transport-security: max-age=15552000; includeSubdomains
cache-control: max-age=3600, s-maxage=86400
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: LnLrrJkE0eu2dSsVCt4uOmevbh4CNBXke3R3z8DZIOcXbVQpc38QIw==
OPTIONS

https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true

msedge.exe

Remote address:

108.156.60.116:443

Request

OPTIONS /consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true HTTP/2.0
host: cdn.privacy-mgmt.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.klarmobil.de
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 21 Aug 2023 07:56:54 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=600
strict-transport-security: max-age=15552000; includeSubDomains
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: JpIPaZZF6AR4Cwo6dKbdAvMHNwGXYMwoioqT8O2piGQf4-JXf_9g2A==
GET

https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
content-length: 204
date: Mon, 21 Aug 2023 07:56:54 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=600
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: SSuAJo_WLKXXdY-MkFXlT7pc1MaJE7pvfXrhGuKKFCxJ5n-scDKvLw==
OPTIONS

https://cdn.privacy-mgmt.com/wrapper/tcfv2/v2/gdpr/native-message/new-user?hasCsp=true&env=prod&body=%7B%22propertyId%22%3A6670%2C%22accountId%22%3A1148%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22meta%22%3A%22%7B%5C%22mmsCookies%5C%22%3A%5B%5D%2C%5C%22resolved%5C%22%3Anull%7D%22%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fcdn.privacy-mgmt.com%22%2C%22targetingParams%22%3A%22%7B%7D%22%2C%22campaignEnv%22%3A%22prod%22%2C%22legalBasisChanges%22%3Afalse%2C%22vendorListAdditions%22%3Afalse%7D&nonkeyed=%7B%22_sp_v1_uid%22%3Anull%2C%22_sp_v1_data%22%3Anull%2C%22_sp_v1_p%22%3Anull%7D&scriptVersion=2.8.0&scriptType=tcfv2&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

OPTIONS /wrapper/tcfv2/v2/gdpr/native-message/new-user?hasCsp=true&env=prod&body=%7B%22propertyId%22%3A6670%2C%22accountId%22%3A1148%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22meta%22%3A%22%7B%5C%22mmsCookies%5C%22%3A%5B%5D%2C%5C%22resolved%5C%22%3Anull%7D%22%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fcdn.privacy-mgmt.com%22%2C%22targetingParams%22%3A%22%7B%7D%22%2C%22campaignEnv%22%3A%22prod%22%2C%22legalBasisChanges%22%3Afalse%2C%22vendorListAdditions%22%3Afalse%7D&nonkeyed=%7B%22_sp_v1_uid%22%3Anull%2C%22_sp_v1_data%22%3Anull%2C%22_sp_v1_p%22%3Anull%7D&scriptVersion=2.8.0&scriptType=tcfv2&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.klarmobil.de
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 21 Aug 2023 07:56:54 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization,SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=86400, s-maxage=1200
strict-transport-security: max-age=15552000; includeSubDomains
access-control-max-age: 86400
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: QkCtYdptsR251m9UB4YUdA6ejIfnX3BumgLP0QEtO0g1Wn0zlptjBw==
GET

https://cdn.privacy-mgmt.com/wrapper/tcfv2/v2/gdpr/native-message/new-user?hasCsp=true&env=prod&body=%7B%22propertyId%22%3A6670%2C%22accountId%22%3A1148%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22meta%22%3A%22%7B%5C%22mmsCookies%5C%22%3A%5B%5D%2C%5C%22resolved%5C%22%3Anull%7D%22%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fcdn.privacy-mgmt.com%22%2C%22targetingParams%22%3A%22%7B%7D%22%2C%22campaignEnv%22%3A%22prod%22%2C%22legalBasisChanges%22%3Afalse%2C%22vendorListAdditions%22%3Afalse%7D&nonkeyed=%7B%22_sp_v1_uid%22%3Anull%2C%22_sp_v1_data%22%3Anull%2C%22_sp_v1_p%22%3Anull%7D&scriptVersion=2.8.0&scriptType=tcfv2&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /wrapper/tcfv2/v2/gdpr/native-message/new-user?hasCsp=true&env=prod&body=%7B%22propertyId%22%3A6670%2C%22accountId%22%3A1148%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22meta%22%3A%22%7B%5C%22mmsCookies%5C%22%3A%5B%5D%2C%5C%22resolved%5C%22%3Anull%7D%22%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fcdn.privacy-mgmt.com%22%2C%22targetingParams%22%3A%22%7B%7D%22%2C%22campaignEnv%22%3A%22prod%22%2C%22legalBasisChanges%22%3Afalse%2C%22vendorListAdditions%22%3Afalse%7D&nonkeyed=%7B%22_sp_v1_uid%22%3Anull%2C%22_sp_v1_data%22%3Anull%2C%22_sp_v1_p%22%3Anull%7D&scriptVersion=2.8.0&scriptType=tcfv2&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:56:54 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, SP_SCRIPT_VERSION
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=1200
strict-transport-security: max-age=15552000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: jm7iO7ukQ-UuJ60bgLmumc8XbKB5okmYRzyaElyGAdBlO1OhcmpfZQ==
GET

https://cdn.privacy-mgmt.com/mms/v2/get_site_data?hasCsp=true&href=https%3A%2F%2Fwww.klarmobil.de%2Fkameleoonplatform.html&account_id=1148

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /mms/v2/get_site_data?hasCsp=true&href=https%3A%2F%2Fwww.klarmobil.de%2Fkameleoonplatform.html&account_id=1148 HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
date: Mon, 21 Aug 2023 07:56:57 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-sp-mms-node: ip-10-128-33-165
strict-transport-security: max-age=15552000; includeSubdomains
cache-control: max-age=3600, s-maxage=86400
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: hS6w2aEXxad60ZRqZi3hrIWDiHy7vRTO3JxiJ7gkYp3tHGKhYO7MNA==
OPTIONS

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?hasCsp=true&accountId=1148&includeCustomVendorsRes=true&withSiteActions=true&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

OPTIONS /consent/tcfv2/consent/v2/6670/consent-all?hasCsp=true&accountId=1148&includeCustomVendorsRes=true&withSiteActions=true&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.klarmobil.de
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 21 Aug 2023 07:57:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=1200
strict-transport-security: max-age=15552000; includeSubDomains
access-control-max-age: 1200
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: Cn3VJACuKqzG7mEnO7GytcKctRQW2F4c0nf4fypLpLyURr-DTF6GbA==
GET

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?hasCsp=true&accountId=1148&includeCustomVendorsRes=true&withSiteActions=true&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /consent/tcfv2/consent/v2/6670/consent-all?hasCsp=true&accountId=1148&includeCustomVendorsRes=true&withSiteActions=true&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:57:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=1200
strict-transport-security: max-age=15552000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: G42_RYiQoBQcIB5snm9G0tJAyH3am-tB55gvwN0WJI9OEfbedJzcdA==
GET

https://cdn.privacy-mgmt.com/mms/v2/choice_select?hasCsp=true&choice_id=7934267&href=https%3A%2F%2Fwww.klarmobil.de%2F&cookie=%5B%22_sp_v1_ss%3D1%3AH4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA%3B%22%2C%22_sp_v1_p%3D950%3B%22%2C%22_sp_su%3Dfalse%3B%22%2C%22_sp_v1_uid%3D1%3A950%3Ae2a63185-b070-4abb-b3cf-755715d96e1b%3B%22%2C%22_sp_v1_data%3D2%3A598280%3A1684765462%3A0%3A2%3A0%3A2%3A0%3A0%3A_%3A-1%3B%22%5D&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /mms/v2/choice_select?hasCsp=true&choice_id=7934267&href=https%3A%2F%2Fwww.klarmobil.de%2F&cookie=%5B%22_sp_v1_ss%3D1%3AH4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA%3B%22%2C%22_sp_v1_p%3D950%3B%22%2C%22_sp_su%3Dfalse%3B%22%2C%22_sp_v1_uid%3D1%3A950%3Ae2a63185-b070-4abb-b3cf-755715d96e1b%3B%22%2C%22_sp_v1_data%3D2%3A598280%3A1684765462%3A0%3A2%3A0%3A2%3A0%3A0%3A_%3A-1%3B%22%5D&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
date: Mon, 21 Aug 2023 07:57:19 GMT
access-control-allow-origin: https://www.klarmobil.de
access-control-allow-methods: GET
access-control-allow-credentials: true
x-sp-mms-node: ip-10-128-33-165
strict-transport-security: max-age=15552000; includeSubdomains
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
set-cookie: _sp_v1_uid=1:950:e2a63185-b070-4abb-b3cf-755715d96e1b; Max-Age=2592000; Path=/; Secure; SameSite=None
set-cookie: _sp_v1_data=2:598280:1684765462:0:2:-1:2:0:0:_:-1; Max-Age=2592000; Path=/; Secure; SameSite=None
set-cookie: _sp_v1_ss=1:H4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA; Max-Age=2592000; Path=/; Secure; SameSite=None
set-cookie: _sp_v1_opt=1:login|true:last_id|11:; Max-Age=2592000; Path=/; Secure; SameSite=None
set-cookie: _sp_v1_stage=; Max-Age=0; Path=/; Secure; SameSite=None
set-cookie: _sp_v1_csv=; Max-Age=2592000; Path=/; Secure; SameSite=None
set-cookie: _sp_v1_lt=1:; Max-Age=2592000; Path=/; Secure; SameSite=None
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: snDfItrYitImrmxOrRSYVE_dE6oTSkl0iyrs8k5-TWxYCufuMT5-qg==
OPTIONS

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?withSiteActions=true&consentUUID=undefined&euconsent=[EUCONSENT]&authId=undefined&mmsDomain=cdn.privacy-mgmt.com&consentLanguage=EN&hasCsp=true&sampleRate=0.05&sendPVData=false&includeCustomVendorsRes=1&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

OPTIONS /consent/tcfv2/consent/v2/6670/consent-all?withSiteActions=true&consentUUID=undefined&euconsent=[EUCONSENT]&authId=undefined&mmsDomain=cdn.privacy-mgmt.com&consentLanguage=EN&hasCsp=true&sampleRate=0.05&sendPVData=false&includeCustomVendorsRes=1&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type
origin: https://www.klarmobil.de
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/plain; charset=utf-8
content-length: 2
date: Mon, 21 Aug 2023 07:57:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=1200
strict-transport-security: max-age=15552000; includeSubDomains
access-control-max-age: 1200
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: Vvf_TKf58Hl1zVQqWFUCa_xy714091nXAqULNm76ajddto5I1SsW1A==
POST

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?withSiteActions=true&consentUUID=undefined&euconsent=[EUCONSENT]&authId=undefined&mmsDomain=cdn.privacy-mgmt.com&consentLanguage=EN&hasCsp=true&sampleRate=0.05&sendPVData=false&includeCustomVendorsRes=1&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

POST /consent/tcfv2/consent/v2/6670/consent-all?withSiteActions=true&consentUUID=undefined&euconsent=[EUCONSENT]&authId=undefined&mmsDomain=cdn.privacy-mgmt.com&consentLanguage=EN&hasCsp=true&sampleRate=0.05&sendPVData=false&includeCustomVendorsRes=1&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
content-length: 302
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
content-length: 363
date: Mon, 21 Aug 2023 07:57:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: no-cache
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 0t2p35Fzs-uu1HUaT44_v1ZoZCvVMbVjfV2c_0MZxW1K02chOXdAMg==
POST

https://cdn.privacy-mgmt.com/mms/set_consent_cookies?consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID_maxAge=31536000&hasCsp=true&ch=4250995734250995733a11

msedge.exe

Remote address:

108.156.60.116:443

Request

POST /mms/set_consent_cookies?consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID_maxAge=31536000&hasCsp=true&ch=4250995734250995733a11 HTTP/2.0
host: cdn.privacy-mgmt.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Mon, 21 Aug 2023 07:57:19 GMT
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-credentials: true
strict-transport-security: max-age=15552000; includeSubdomains
set-cookie: consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22; Max-Age=31536000; Path=/; Secure; SameSite=None
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: QegIBoM2GpK8A5F-XwrJQ7u_hdN3f9kadE4BLn6dyNbYLRtwURuAuQ==
OPTIONS

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true

msedge.exe

Remote address:

108.156.60.116:443

Request

OPTIONS /consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true HTTP/2.0
host: cdn.privacy-mgmt.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.klarmobil.de
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
content-length: 204
date: Mon, 21 Aug 2023 07:56:54 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=600
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: TveqLv1cLl_xQn3TJLy1VvA3xjMbKTG3F8dWxH7Z9ntPl2rTALijPQ==
age: 29
GET

https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
content-length: 8
date: Mon, 21 Aug 2023 07:57:23 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: no-cache
strict-transport-security: max-age=15552000; includeSubDomains
allow: GET,HEAD
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: YYgcaC_6P2zljmhD3MA4H7y6Z0u27ieOyECjb_5FxHPCqjXwT0dyqA==
GET

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:57:23 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: no-cache
strict-transport-security: max-age=15552000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b23a8ff8d37f680e0dbac5e6c56145e2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: c6RGmp-CMjfGdNLx0w4PTeFg0GHTmrtFHZA3c-wcooMn12aObD-rpA==
GET

https://cdn.privacy-mgmt.com/wrapperMessagingWithoutDetection.js

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /wrapperMessagingWithoutDetection.js HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Thu, 29 Jun 2023 18:47:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: null
server: AmazonS3
content-encoding: br
date: Mon, 21 Aug 2023 07:18:49 GMT
cache-control: max-age=3600
etag: W/"5e3878e26ddaa88961142d7e991cc443"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fbbc548a3de404eb87126afd4e3999ba.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: EiinpAwPCDoXhtr8s1iqFhN6lmVCdolfmtMSLJ3rx6RwRaqyLIThLw==
age: 2282
GET

https://cdn.privacy-mgmt.com/index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2 HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
last-modified: Thu, 20 Jul 2023 18:05:52 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 21 Aug 2023 07:15:51 GMT
cache-control: max-age=3600
etag: W/"fc9732b173fdfc12851718a0e6c284b9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fbbc548a3de404eb87126afd4e3999ba.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: ePmoUNHdVYhiX6yZjwgG7L6MO_32wNVnL4GGrOV5WIkTOGOfTgurTA==
age: 2464
GET

https://cdn.privacy-mgmt.com/Notice.96c9d.css

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /Notice.96c9d.css HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://cdn.privacy-mgmt.com/index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/css
last-modified: Thu, 20 Jul 2023 18:05:52 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 21 Aug 2023 07:49:30 GMT
cache-control: max-age=3600
etag: W/"85b79a297c63f7ae734ccb4dbbf4a3b6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fbbc548a3de404eb87126afd4e3999ba.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: zr9Q0viBa7zrm8GLbv4iXstoYLQXOQGmHoSs5LynfVMIs1AuOaQ1xQ==
age: 446
GET

https://cdn.privacy-mgmt.com/polyfills.d36c5.js

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /polyfills.d36c5.js HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cdn.privacy-mgmt.com/index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Thu, 20 Jul 2023 18:05:52 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 21 Aug 2023 07:19:36 GMT
cache-control: max-age=3600
etag: W/"89661b8fd918815bcb224bba79cabab1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fbbc548a3de404eb87126afd4e3999ba.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 8ihnpVWDTGCooZn0U3tk3Uv-dhzl1hmzO6AEiNIcs-gR0GCAUMZJGw==
age: 2240
GET

https://cdn.privacy-mgmt.com/Notice.8f9a5.js

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /Notice.8f9a5.js HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cdn.privacy-mgmt.com/index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Thu, 20 Jul 2023 18:05:52 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 21 Aug 2023 07:06:38 GMT
cache-control: max-age=3600
etag: W/"cb6488e8a544b39dfe23aadd351c6b0e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fbbc548a3de404eb87126afd4e3999ba.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: 7XJqkYFy1TpsZ3j7eZVgd28YUEu6nubGKOlA2CHZYmWI8vVKmOEOoQ==
age: 3018
GET

https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/categories?siteId=6670&consentLanguage=de

msedge.exe

Remote address:

108.156.60.116:443

Request

GET /consent/tcfv2/vendor-list/categories?siteId=6670&consentLanguage=de HTTP/2.0
host: cdn.privacy-mgmt.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cdn.privacy-mgmt.com/index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:56:55 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, PUT, POST, DELETE
cache-control: max-age=0, s-maxage=3600
strict-transport-security: max-age=15552000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fbbc548a3de404eb87126afd4e3999ba.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P2
x-amz-cf-id: t-ExWCagvHyIjtHZiqN0crXhO6njF-FYDcQqT805xi0S_mqg_dNXjw==
DNS

67.31.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.31.126.40.in-addr.arpa

IN PTR

Response
DNS

84.36.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.36.18.104.in-addr.arpa

IN PTR

Response
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

78.155.64.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

78.155.64.172.in-addr.arpa

IN PTR

Response
DNS

131.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

131.179.250.142.in-addr.arpa

IN PTR

Response

131.179.250.142.in-addr.arpa

IN PTR

ams17s10-in-f31e100net
DNS

47.139.222.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

47.139.222.52.in-addr.arpa

IN PTR

Response

47.139.222.52.in-addr.arpa

IN PTR

server-52-222-139-47ams50r cloudfrontnet
DNS

97.219.227.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.219.227.13.in-addr.arpa

IN PTR

Response

97.219.227.13.in-addr.arpa

IN PTR

server-13-227-219-97ams54r cloudfrontnet
DNS

apps.identrust.com

msedge.exe

Remote address:

8.8.8.8:53

Request

apps.identrust.com

IN A

Response

apps.identrust.com

IN CNAME

identrust.edgesuite.net

identrust.edgesuite.net

IN CNAME

a1952.dscq.akamai.net

a1952.dscq.akamai.net

IN A

2.18.121.70

a1952.dscq.akamai.net

IN A

2.18.121.68
GET

http://apps.identrust.com/roots/dstrootcax3.p7c

msedge.exe

Remote address:

2.18.121.70:80

Request

GET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: apps.identrust.com

Response

HTTP/1.1 200 OK

X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15768000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self' *.identrust.com
Last-Modified: Wed, 08 Feb 2023 16:52:56 GMT
ETag: "37d-5f433188daa00"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Mon, 21 Aug 2023 08:56:49 GMT
Date: Mon, 21 Aug 2023 07:56:49 GMT
Connection: keep-alive
DNS

data.kameleoon.io

msedge.exe

Remote address:

8.8.8.8:53

Request

data.kameleoon.io

IN A

Response

data.kameleoon.io

IN CNAME

eu-log-parser-loadbalanced.kameleoon.io

eu-log-parser-loadbalanced.kameleoon.io

IN A

95.217.77.229

eu-log-parser-loadbalanced.kameleoon.io

IN A

95.217.77.225

eu-log-parser-loadbalanced.kameleoon.io

IN A

65.109.119.234

eu-log-parser-loadbalanced.kameleoon.io

IN A

65.109.119.141

eu-log-parser-loadbalanced.kameleoon.io

IN A

95.217.77.226

eu-log-parser-loadbalanced.kameleoon.io

IN A

65.109.119.232

eu-log-parser-loadbalanced.kameleoon.io

IN A

95.217.77.235

eu-log-parser-loadbalanced.kameleoon.io

IN A

95.217.77.232

eu-log-parser-loadbalanced.kameleoon.io

IN A

65.109.36.162

eu-log-parser-loadbalanced.kameleoon.io

IN A

95.217.77.219
POST

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

msedge.exe

Remote address:

95.217.77.229:443

Request

POST /visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false HTTP/1.1
Host: data.kameleoon.io
Connection: keep-alive
Content-Length: 291
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://www.klarmobil.de
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx/1.22.1
Date: Mon, 21 Aug 2023 07:56:50 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: user-agent,kameleoon-client
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self' 'nonce-superNonce';base-uri 'self';form-action 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
POST

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

msedge.exe

Remote address:

95.217.77.229:443

Request

POST /visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false HTTP/1.1
Host: data.kameleoon.io
Connection: keep-alive
Content-Length: 392
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://www.klarmobil.de
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx/1.22.1
Date: Mon, 21 Aug 2023 07:56:53 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: user-agent,kameleoon-client
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self' 'nonce-superNonce';base-uri 'self';form-action 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
POST

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

msedge.exe

Remote address:

95.217.77.229:443

Request

POST /visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false HTTP/1.1
Host: data.kameleoon.io
Connection: keep-alive
Content-Length: 51
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://www.klarmobil.de
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx/1.22.1
Date: Mon, 21 Aug 2023 07:57:05 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: user-agent,kameleoon-client
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self' 'nonce-superNonce';base-uri 'self';form-action 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
POST

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

msedge.exe

Remote address:

95.217.77.229:443

Request

POST /visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false HTTP/1.1
Host: data.kameleoon.io
Connection: keep-alive
Content-Length: 51
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://www.klarmobil.de
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx/1.22.1
Date: Mon, 21 Aug 2023 07:57:20 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: user-agent,kameleoon-client
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self' 'nonce-superNonce';base-uri 'self';form-action 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
POST

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

msedge.exe

Remote address:

95.217.77.229:443

Request

POST /visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false HTTP/1.1
Host: data.kameleoon.io
Connection: keep-alive
Content-Length: 324
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://www.klarmobil.de
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx/1.22.1
Date: Mon, 21 Aug 2023 07:57:23 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: user-agent,kameleoon-client
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self' 'nonce-superNonce';base-uri 'self';form-action 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
POST

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

msedge.exe

Remote address:

95.217.77.229:443

Request

POST /visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false HTTP/1.1
Host: data.kameleoon.io
Connection: keep-alive
Content-Length: 392
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Content-Type: text/plain;charset=UTF-8
Accept: */*
Origin: https://www.klarmobil.de
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx/1.22.1
Date: Mon, 21 Aug 2023 07:57:23 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: user-agent,kameleoon-client
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self' 'nonce-superNonce';base-uri 'self';form-action 'self'
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
DNS

249.195.120.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

249.195.120.34.in-addr.arpa

IN PTR

Response

249.195.120.34.in-addr.arpa

IN PTR

24919512034bcgoogleusercontentcom
DNS

222.169.219.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

222.169.219.52.in-addr.arpa

IN PTR

Response

222.169.219.52.in-addr.arpa

IN PTR

s3-r-weu-central-1 amazonawscom
DNS

206.23.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

206.23.217.172.in-addr.arpa

IN PTR

Response

206.23.217.172.in-addr.arpa

IN PTR

prg03s05-in-f141e100net

206.23.217.172.in-addr.arpa

IN PTR

prg03s05-in-f206�I

206.23.217.172.in-addr.arpa

IN PTR

ams16s37-in-f14�I
DNS

bt.fraud0.com

msedge.exe

Remote address:

8.8.8.8:53

Request

bt.fraud0.com

IN A

Response

bt.fraud0.com

IN A

34.149.199.84
DNS

21.34.239.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.34.239.216.in-addr.arpa

IN PTR

Response

21.34.239.216.in-addr.arpa

IN PTR

any-in-22151e100net
DNS

79.2.50.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

79.2.50.20.in-addr.arpa

IN PTR

Response
DNS

95.57.217.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.57.217.95.in-addr.arpa

IN PTR

Response

95.57.217.95.in-addr.arpa

IN PTR

distributed-services-new01 kameleoonnet
DNS

116.60.156.108.in-addr.arpa

Remote address:

8.8.8.8:53

Request

116.60.156.108.in-addr.arpa

IN PTR

Response

116.60.156.108.in-addr.arpa

IN PTR

server-108-156-60-116ams1r cloudfrontnet
DNS

8.36.251.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.36.251.142.in-addr.arpa

IN PTR

Response

8.36.251.142.in-addr.arpa

IN PTR

ams15s44-in-f81e100net
DNS

67.211.227.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.211.227.13.in-addr.arpa

IN PTR

Response

67.211.227.13.in-addr.arpa

IN PTR

server-13-227-211-67ams54r cloudfrontnet
DNS

70.121.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

70.121.18.2.in-addr.arpa

IN PTR

Response

70.121.18.2.in-addr.arpa

IN PTR

a2-18-121-70deploystaticakamaitechnologiescom
GET

https://bt.fraud0.com/api/v2/fz.js?cid=20b5b743-0899-4847-af6a-fc04195382a0

msedge.exe

Remote address:

34.149.199.84:443

Request

GET /api/v2/fz.js?cid=20b5b743-0899-4847-af6a-fc04195382a0 HTTP/2.0
host: bt.fraud0.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

229.77.217.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

229.77.217.95.in-addr.arpa

IN PTR

Response

229.77.217.95.in-addr.arpa

IN PTR

data-api-new03 kameleoonnet
DNS

84.199.149.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.199.149.34.in-addr.arpa

IN PTR

Response

84.199.149.34.in-addr.arpa

IN PTR

8419914934bcgoogleusercontentcom
DNS

o1173614.ingest.sentry.io

msedge.exe

Remote address:

8.8.8.8:53

Request

o1173614.ingest.sentry.io

IN A

Response

o1173614.ingest.sentry.io

IN A

34.120.195.249
POST

https://o1173614.ingest.sentry.io/api/5720764/envelope/?sentry_key=8db40a889fd14273a85733908b5d08ff&sentry_version=7

msedge.exe

Remote address:

34.120.195.249:443

Request

POST /api/5720764/envelope/?sentry_key=8db40a889fd14273a85733908b5d08ff&sentry_version=7 HTTP/2.0
host: o1173614.ingest.sentry.io
content-length: 473
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

az589851.vo.msecnd.net

msedge.exe

Remote address:

8.8.8.8:53

Request

az589851.vo.msecnd.net

IN A

Response

az589851.vo.msecnd.net

IN CNAME

cs9.wpc.v0cdn.net

cs9.wpc.v0cdn.net

IN A

72.21.81.200
GET

https://az589851.vo.msecnd.net/integrations/zqnIEeIZ/7c2i0ch0/2ad29b9/integration_static.js

msedge.exe

Remote address:

72.21.81.200:443

Request

GET /integrations/zqnIEeIZ/7c2i0ch0/2ad29b9/integration_static.js HTTP/2.0
host: az589851.vo.msecnd.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.klarmobil.de
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: timing-allow-origin,x-ms-meta-contentlength
age: 12157277
cache-control: public, max-age=31536000
content-md5: FW69/CtnBbytQ1a0zY8SLA==
content-type: application/x-javascript
date: Mon, 21 Aug 2023 07:56:54 GMT
etag: 0x8DABBE5C814B690
last-modified: Tue, 01 Nov 2022 08:48:00 GMT
server: ECAcc (bsa/EB30)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 4effbd8b-601e-00d1-0673-65f13e000000
x-ms-version: 2009-09-19
content-length: 92422
DNS

200.81.21.72.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.81.21.72.in-addr.arpa

IN PTR

Response
DNS

api.fraud0.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.fraud0.com

IN A

Response

api.fraud0.com

IN A

34.160.30.67
POST

https://api.fraud0.com/event

msedge.exe

Remote address:

34.160.30.67:443

Request

POST /event HTTP/2.0
host: api.fraud0.com
content-length: 667
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

binkiesproductionweu.servicebus.windows.net

msedge.exe

Remote address:

8.8.8.8:53

Request

binkiesproductionweu.servicebus.windows.net

IN A

Response

binkiesproductionweu.servicebus.windows.net

IN CNAME

ns-sb2-prod-am3-002.cloudapp.net

ns-sb2-prod-am3-002.cloudapp.net

IN A

104.46.32.56
DNS

67.30.160.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.30.160.34.in-addr.arpa

IN PTR

Response

67.30.160.34.in-addr.arpa

IN PTR

673016034bcgoogleusercontentcom
DNS

56.32.46.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.32.46.104.in-addr.arpa

IN PTR

Response
DNS

widgets.trustedshops.com

msedge.exe

Remote address:

8.8.8.8:53

Request

widgets.trustedshops.com

IN A

Response

widgets.trustedshops.com

IN A

52.222.139.84

widgets.trustedshops.com

IN A

52.222.139.45

widgets.trustedshops.com

IN A

52.222.139.33

widgets.trustedshops.com

IN A

52.222.139.58
GET

https://widgets.trustedshops.com/js/X1E535F21A1CFDDD0BAB08A47B1086571.js

msedge.exe

Remote address:

52.222.139.84:443

Request

GET /js/X1E535F21A1CFDDD0BAB08A47B1086571.js HTTP/2.0
host: widgets.trustedshops.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Mon, 21 Aug 2023 05:02:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 21 Aug 2023 07:51:11 GMT
cache-control: public, max-age=3600
etag: W/"256417112fc8838c9bb798db76b42270"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 425cbe8f956bdcb8754c19eb873fd2d0.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: t-KQRLu3Tx0LdkWhTGiz3-JMyoEupL-ZSTLh0CgjC3-V2ArH_sL7Eg==
age: 347
GET

https://widgets.trustedshops.com/assets/trustbadge.js

msedge.exe

Remote address:

52.222.139.84:443

Request

GET /assets/trustbadge.js HTTP/2.0
host: widgets.trustedshops.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Wed, 09 Aug 2023 17:50:55 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 21 Aug 2023 07:09:09 GMT
cache-control: max-age=3600
etag: W/"f92baa0f503ebfecfe9a9e81227a9ba3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 425cbe8f956bdcb8754c19eb873fd2d0.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: dn164xlVqTnnlStrC4z0Z_PsriBSSy-6NUyaoNJs6xmgyPXBG0vczw==
age: 2869
DNS

storage.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

storage.googleapis.com

IN A

Response

storage.googleapis.com

IN A

216.58.214.16

storage.googleapis.com

IN A

142.250.179.144

storage.googleapis.com

IN A

142.251.36.48

storage.googleapis.com

IN A

172.217.168.240

storage.googleapis.com

IN A

142.250.179.176

storage.googleapis.com

IN A

142.250.179.208

storage.googleapis.com

IN A

142.251.36.16

storage.googleapis.com

IN A

142.251.39.112

storage.googleapis.com

IN A

172.217.168.208

storage.googleapis.com

IN A

172.217.23.208

storage.googleapis.com

IN A

216.58.208.112
GET

https://storage.googleapis.com/workbox-cdn/releases/3.5.0/workbox-sw.js

msedge.exe

Remote address:

216.58.214.16:443

Request

GET /workbox-cdn/releases/3.5.0/workbox-sw.js HTTP/2.0
host: storage.googleapis.com
cache-control: max-age=0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://api.fraud0.com/event

msedge.exe

Remote address:

34.160.30.67:443

Request

POST /event HTTP/2.0
host: api.fraud0.com
content-length: 250
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

84.139.222.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.139.222.52.in-addr.arpa

IN PTR

Response

84.139.222.52.in-addr.arpa

IN PTR

server-52-222-139-84ams50r cloudfrontnet
DNS

16.214.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

16.214.58.216.in-addr.arpa

IN PTR

Response

16.214.58.216.in-addr.arpa

IN PTR

lhr26s05-in-f161e100net

16.214.58.216.in-addr.arpa

IN PTR

ams17s09-in-f16�H

16.214.58.216.in-addr.arpa

IN PTR

�8
DNS

2.136.104.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.136.104.51.in-addr.arpa

IN PTR

Response
DNS

86.23.85.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

86.23.85.13.in-addr.arpa

IN PTR

Response
DNS

connect.facebook.net

msedge.exe

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.247.8
DNS

dynamic.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

dynamic.criteo.com

IN A

Response

dynamic.criteo.com

IN CNAME

dynamic.fr3.vip.prod.criteo.com

dynamic.fr3.vip.prod.criteo.com

IN A

178.250.7.16
DNS

amplify.outbrain.com

msedge.exe

Remote address:

8.8.8.8:53

Request

amplify.outbrain.com

IN A

Response

amplify.outbrain.com

IN CNAME

wildcard.outbrain.com.edgekey.net

wildcard.outbrain.com.edgekey.net

IN CNAME

e10883.g.akamaiedge.net

e10883.g.akamaiedge.net

IN A

96.16.109.182
DNS

cdn.taboola.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.taboola.com

IN A

Response

cdn.taboola.com

IN CNAME

tls13.taboola.map.fastly.net

tls13.taboola.map.fastly.net

IN A

151.101.1.44

tls13.taboola.map.fastly.net

IN A

151.101.65.44

tls13.taboola.map.fastly.net

IN A

151.101.129.44

tls13.taboola.map.fastly.net

IN A

151.101.193.44
DNS

tr.outbrain.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tr.outbrain.com

IN A

Response

tr.outbrain.com

IN CNAME

alldcs.outbrain.org

alldcs.outbrain.org

IN CNAME

chidc2.outbrain.org

chidc2.outbrain.org

IN A

64.74.236.63
GET

https://cdn.taboola.com/libtrc/unip/1429091/tfa.js

msedge.exe

Remote address:

151.101.1.44:443

Request

GET /libtrc/unip/1429091/tfa.js HTTP/2.0
host: cdn.taboola.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

x-amz-id-2: yloKmX23kv+KreU+IZAsWm8hD63rGoqxdqGnW99CBV93ga54XccrrSSWIRuwq64yNpTPfitd4Sk=
x-amz-request-id: BY7JVYNATP7V9XSY
x-amz-replication-status: PENDING
last-modified: Sun, 20 Aug 2023 11:14:55 GMT
etag: "fdd85b2f6730f76098afe40392323890"
x-amz-server-side-encryption: AES256
x-amz-version-id: wUa3oJKZZmsR3oO5QbkC2imBYE.lZRRB
content-type: application/javascript; charset=utf-8
server: AmazonS3
x-tbl-debug: bestatus=200,beresp=OK
content-encoding: gzip
accept-ranges: bytes
date: Mon, 21 Aug 2023 07:57:23 GMT
via: 1.1 varnish
age: 35
x-served-by: cache-ams21030-AMS
x-cache: HIT
x-cache-hits: 1
x-timer: S1692604643.315891,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 87
access-control-allow-origin: *
content-length: 19609
GET

https://trc.taboola.com/1429091/trc/3/json?tim=1692604641926&data=%7B%22id%22%3A279%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1692604641888%2C%22cv%22%3A%2220230816-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22e%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dklarmobilgmbhcomobilcom-debitelgmbh-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22tim%22%3A1692604641900%2C%22ref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22tos%22%3A33%2C%22ssd%22%3A1%2C%22scd%22%3A39%7D%7D&pubit=i

msedge.exe

Remote address:

151.101.1.44:443

Request

GET /1429091/trc/3/json?tim=1692604641926&data=%7B%22id%22%3A279%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1692604641888%2C%22cv%22%3A%2220230816-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22e%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dklarmobilgmbhcomobilcom-debitelgmbh-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22tim%22%3A1692604641900%2C%22ref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22tos%22%3A33%2C%22ssd%22%3A1%2C%22scd%22%3A39%7D%7D&pubit=i HTTP/2.0
host: trc.taboola.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
x-fastly-to-nlb-rtt: 735
content-encoding: gzip
x-log-content-encoding: gzip
accept-ranges: bytes
date: Mon, 21 Aug 2023 07:57:23 GMT
via: 1.1 varnish
x-service-version: v1
x-served-by: cache-ams21030-AMS
x-cache: MISS
x-cache-hits: 0
x-timer: S1692604644.753476,VS0,VE8
vary: Accept-Encoding
x-vcl-time-ms: 8
GET

https://trc.taboola.com/1429091/log/3/unip?en=page_view&item-url=https%3A%2F%2Fwww.klarmobil.de%2F&tim=1692604641900&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2145&ssd=1&scd=40&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced

msedge.exe

Remote address:

151.101.1.44:443

Request

GET /1429091/log/3/unip?en=page_view&item-url=https%3A%2F%2Fwww.klarmobil.de%2F&tim=1692604641900&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2145&ssd=1&scd=40&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced HTTP/2.0
host: trc.taboola.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.klarmobil.de
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
x-fastly-to-nlb-rtt: 769
accept-ranges: bytes
date: Mon, 21 Aug 2023 07:57:25 GMT
via: 1.1 varnish
x-service-version: v1
x-served-by: cache-ams21030-AMS
x-cache: MISS
x-cache-hits: 0
x-timer: S1692604646.709036,VS0,VE2
x-vcl-time-ms: 2
GET

https://trc.taboola.com/1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=Session&tim=1692604641934&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2146&ssd=1&scd=40

msedge.exe

Remote address:

151.101.1.44:443

Request

GET /1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=Session&tim=1692604641934&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2146&ssd=1&scd=40 HTTP/2.0
host: trc.taboola.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.klarmobil.de
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
x-fastly-to-nlb-rtt: 779
accept-ranges: bytes
date: Mon, 21 Aug 2023 07:57:25 GMT
via: 1.1 varnish
x-service-version: v1
x-served-by: cache-ams21030-AMS
x-cache: MISS
x-cache-hits: 0
x-timer: S1692604646.710201,VS0,VE2
x-vcl-time-ms: 2
GET

https://trc.taboola.com/1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=PageView&tim=1692604644840&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2950&ssd=1&scd=40

msedge.exe

Remote address:

151.101.1.44:443

Request

GET /1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=PageView&tim=1692604644840&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2950&ssd=1&scd=40 HTTP/2.0
host: trc.taboola.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.klarmobil.de
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.klarmobil.de
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
x-fastly-to-nlb-rtt: 784
accept-ranges: bytes
date: Mon, 21 Aug 2023 07:57:26 GMT
via: 1.1 varnish
x-service-version: v1
x-served-by: cache-ams21030-AMS
x-cache: MISS
x-cache-hits: 0
x-timer: S1692604647.542257,VS0,VE2
x-vcl-time-ms: 2
GET

https://amplify.outbrain.com/cp/obtp.js

msedge.exe

Remote address:

96.16.109.182:443

Request

GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "5815fbf64c9af594c239523fd631e077:1692096294.934174"
Last-Modified: Tue, 15 Aug 2023 10:04:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7087
Cache-Control: max-age=1200
Expires: Mon, 21 Aug 2023 08:17:23 GMT
Date: Mon, 21 Aug 2023 07:57:23 GMT
Connection: keep-alive
X-RG: EU
X-CC: NL
GET

https://dynamic.criteo.com/js/ld/ld.js?a=51848

msedge.exe

Remote address:

178.250.7.16:443

Request

GET /js/ld/ld.js?a=51848 HTTP/2.0
host: dynamic.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript; charset=utf-8
date: Mon, 21 Aug 2023 07:57:22 GMT
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin
vary: Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

8.247.240.157.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.247.240.157.in-addr.arpa

IN PTR

Response

8.247.240.157.in-addr.arpa

IN PTR

xx-fbcdn-shv-01-ams2fbcdnnet
DNS

44.1.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

44.1.101.151.in-addr.arpa

IN PTR

Response
DNS

trc.taboola.com

msedge.exe

Remote address:

8.8.8.8:53

Request

trc.taboola.com

IN A

Response

trc.taboola.com

IN CNAME

dualstack.tls13.taboola.map.fastly.net

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.1.44

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.65.44

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.129.44

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.193.44
DNS

gum.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

gum.criteo.com

IN A

Response

gum.criteo.com

IN CNAME

gum.nl3.vip.prod.criteo.com

gum.nl3.vip.prod.criteo.com

IN A

178.250.1.11
DNS

wave.outbrain.com

msedge.exe

Remote address:

8.8.8.8:53

Request

wave.outbrain.com

IN A

Response

wave.outbrain.com

IN CNAME

wildcard.outbrain.com.edgekey.net

wildcard.outbrain.com.edgekey.net

IN CNAME

e10883.g.akamaiedge.net

e10883.g.akamaiedge.net

IN A

23.57.82.102
GET

https://gum.criteo.com/syncframe?topUrl=www.klarmobil.de&origin=onetag&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /syncframe?topUrl=www.klarmobil.de&origin=onetag&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
date: Mon, 21 Aug 2023 07:57:23 GMT
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=52c82f39-fc42-4f3a-ab8f-5505b8481355; expires=Sat, 14 Sep 2024 07:57:22 GMT; domain=.criteo.com; path=/; secure; samesite=none
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 300494
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://gum.criteo.com/sid/json?origin=onetag&domain=klarmobil.de&sn=EdgeSyncframe&so=0&topUrl=www.klarmobil.de&info=eleUSV9WYkw2cXlZdEk0QldmcnduNkFSUlNmOWlpaVdYdzRtaDhDdGZKZWQxVDR3NXBBUUQ0YXVnY21RS21TVkVwVkh3eHRWMXVxRmV4VVg2VkY4QjBNTmxGZyUzRCUzRA&idsd=868941522,1607701211&cw=1&lsw=1

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sid/json?origin=onetag&domain=klarmobil.de&sn=EdgeSyncframe&so=0&topUrl=www.klarmobil.de&info=eleUSV9WYkw2cXlZdEk0QldmcnduNkFSUlNmOWlpaVdYdzRtaDhDdGZKZWQxVDR3NXBBUUQ0YXVnY21RS21TVkVwVkh3eHRWMXVxRmV4VVg2VkY4QjBNTmxGZyUzRCUzRA&idsd=868941522,1607701211&cw=1&lsw=1 HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/syncframe?topUrl=www.klarmobil.de&origin=onetag&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:57:24 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uid=62b46cfc-7ff6-45f4-91f9-11ef23c781d1; expires=Sat, 14 Sep 2024 07:57:23 GMT; domain=.criteo.com; path=/; secure; samesite=none
server-processing-duration-in-ticks: 582574
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://gum.criteo.com/sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=
server-processing-duration-in-ticks: 366334
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=
server-processing-duration-in-ticks: 303038
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 341509
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 336904
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=
server-processing-duration-in-ticks: 311756
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 342032
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://aa.agkn.com/adscores/g.pixel?sid=9212273938&ct=
server-processing-duration-in-ticks: 394381
strict-transport-security: max-age=31536000; preload;
GET

https://gum.criteo.com/sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.11:443

Request

GET /sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://aa.agkn.com/adscores/g.pixel?sid=9212273938&ct=
server-processing-duration-in-ticks: 262725
strict-transport-security: max-age=31536000; preload;
GET

https://wave.outbrain.com/mtWavesBundler/handler/00150212ce76bc57d952d48d4edde3319e

msedge.exe

Remote address:

23.57.82.102:443

Request

GET /mtWavesBundler/handler/00150212ce76bc57d952d48d4edde3319e HTTP/1.1
Host: wave.outbrain.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://www.klarmobil.de/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: text/html; charset=utf-8
X-TraceId: a0d840df5f6bc45462dffdd0a7b7ea85
Access-Control-Allow-Origin: *
ob-sent-time: 1692097021870
ETag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=60
Expires: Mon, 21 Aug 2023 07:58:23 GMT
Date: Mon, 21 Aug 2023 07:57:23 GMT
Content-Length: 22
Connection: keep-alive
X-RG: EU
X-CC: NL
DNS

www.facebook.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

157.240.201.35
DNS

dnacdn.net

msedge.exe

Remote address:

8.8.8.8:53

Request

dnacdn.net

IN A

Response

dnacdn.net

IN A

74.119.119.139
DNS

ag.gbc.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ag.gbc.criteo.com

IN A

Response

ag.gbc.criteo.com

IN CNAME

gbc6.va.us.criteo.com

gbc6.va.us.criteo.com

IN A

185.235.85.174

gbc6.va.us.criteo.com

IN A

185.235.85.184

gbc6.va.us.criteo.com

IN A

185.235.85.185

gbc6.va.us.criteo.com

IN A

185.235.85.181

gbc6.va.us.criteo.com

IN A

185.235.85.190

gbc6.va.us.criteo.com

IN A

185.235.85.188

gbc6.va.us.criteo.com

IN A

185.235.85.194

gbc6.va.us.criteo.com

IN A

185.235.85.180

gbc6.va.us.criteo.com

IN A

185.235.85.189

gbc6.va.us.criteo.com

IN A

185.235.85.173

gbc6.va.us.criteo.com

IN A

185.235.85.169

gbc6.va.us.criteo.com

IN A

185.235.85.175

gbc6.va.us.criteo.com

IN A

185.235.85.186

gbc6.va.us.criteo.com

IN A

185.235.85.192

gbc6.va.us.criteo.com

IN A

185.235.85.178

gbc6.va.us.criteo.com

IN A

185.235.85.179

gbc6.va.us.criteo.com

IN A

185.235.85.176

gbc6.va.us.criteo.com

IN A

185.235.85.191

gbc6.va.us.criteo.com

IN A

185.235.85.193

gbc6.va.us.criteo.com

IN A

185.235.85.170

gbc6.va.us.criteo.com

IN A

185.235.85.168

gbc6.va.us.criteo.com

IN A

185.235.85.195

gbc6.va.us.criteo.com

IN A

185.235.85.187

gbc6.va.us.criteo.com

IN A

185.235.85.177

gbc6.va.us.criteo.com

IN A

185.235.85.183

gbc6.va.us.criteo.com

IN A

185.235.85.172

gbc6.va.us.criteo.com

IN A

185.235.85.182

gbc6.va.us.criteo.com

IN A

185.235.85.171
DNS

gem.gbc.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

gem.gbc.criteo.com

IN A

Response

gem.gbc.criteo.com

IN CNAME

gbc7.fr3.eu.criteo.com

gbc7.fr3.eu.criteo.com

IN A

185.235.86.216

gbc7.fr3.eu.criteo.com

IN A

185.235.86.204

gbc7.fr3.eu.criteo.com

IN A

185.235.86.208

gbc7.fr3.eu.criteo.com

IN A

185.235.86.211

gbc7.fr3.eu.criteo.com

IN A

185.235.86.222

gbc7.fr3.eu.criteo.com

IN A

185.235.86.202

gbc7.fr3.eu.criteo.com

IN A

185.235.86.196

gbc7.fr3.eu.criteo.com

IN A

185.235.86.203

gbc7.fr3.eu.criteo.com

IN A

185.235.86.200

gbc7.fr3.eu.criteo.com

IN A

185.235.86.215

gbc7.fr3.eu.criteo.com

IN A

185.235.86.206

gbc7.fr3.eu.criteo.com

IN A

185.235.86.214

gbc7.fr3.eu.criteo.com

IN A

185.235.86.201

gbc7.fr3.eu.criteo.com

IN A

185.235.86.209

gbc7.fr3.eu.criteo.com

IN A

185.235.86.221

gbc7.fr3.eu.criteo.com

IN A

185.235.86.199

gbc7.fr3.eu.criteo.com

IN A

185.235.86.205

gbc7.fr3.eu.criteo.com

IN A

185.235.86.210

gbc7.fr3.eu.criteo.com

IN A

185.235.86.197

gbc7.fr3.eu.criteo.com

IN A

185.235.86.212

gbc7.fr3.eu.criteo.com

IN A

185.235.86.213

gbc7.fr3.eu.criteo.com

IN A

185.235.86.218

gbc7.fr3.eu.criteo.com

IN A

185.235.86.220

gbc7.fr3.eu.criteo.com

IN A

185.235.86.219

gbc7.fr3.eu.criteo.com

IN A

185.235.86.223

gbc7.fr3.eu.criteo.com

IN A

185.235.86.198

gbc7.fr3.eu.criteo.com

IN A

185.235.86.217

gbc7.fr3.eu.criteo.com

IN A

185.235.86.207
GET

https://gem.gbc.criteo.com/newidsd

msedge.exe

Remote address:

185.235.86.216:443

Request

GET /newidsd HTTP/2.0
host: gem.gbc.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:57:23 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 61855
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://dnacdn.net/dna

msedge.exe

Remote address:

74.119.119.139:443

Request

GET /dna HTTP/2.0
host: dnacdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Mon, 21 Aug 2023 07:57:23 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: browser_data=Dz1nMV9WYkw2cXlZdEk0QldmcnduNkFSUlNmOWlpaVdYdzRtaDhDdGZKZWQxVDR3NXBBUUQ0YXVnY21RS21TVkVwVkh3WThHaThvc3FXNExPQlpWWlVpRWs1USUzRCUzRA; expires=Sat, 14 Sep 2024 07:57:24 GMT; domain=dnacdn.net; path=/; secure; samesite=none
server-processing-duration-in-ticks: 217008
strict-transport-security: max-age=31536000; preload;
GET

https://dnacdn.net/dna

msedge.exe

Remote address:

74.119.119.139:443

Request

GET /dna HTTP/2.0
host: dnacdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: browser_data=Dz1nMV9WYkw2cXlZdEk0QldmcnduNkFSUlNmOWlpaVdYdzRtaDhDdGZKZWQxVDR3NXBBUUQ0YXVnY21RS21TVkVwVkh3WThHaThvc3FXNExPQlpWWlVpRWs1USUzRCUzRA

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:57:24 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: browser_data=eleUSV9WYkw2cXlZdEk0QldmcnduNkFSUlNmOWlpaVdYdzRtaDhDdGZKZWQxVDR3NXBBUUQ0YXVnY21RS21TVkVwVkh3eHRWMXVxRmV4VVg2VkY4QjBNTmxGZyUzRCUzRA; expires=Sat, 14 Sep 2024 07:57:24 GMT; domain=dnacdn.net; path=/; secure; samesite=none
server-processing-duration-in-ticks: 307271
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://ag.gbc.criteo.com/newidsd

msedge.exe

Remote address:

185.235.85.174:443

Request

GET /newidsd HTTP/2.0
host: ag.gbc.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Mon, 21 Aug 2023 07:57:23 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 87590
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

16.7.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

16.7.250.178.in-addr.arpa

IN PTR

Response
DNS

182.109.16.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

182.109.16.96.in-addr.arpa

IN PTR

Response

182.109.16.96.in-addr.arpa

IN PTR

a96-16-109-182deploystaticakamaitechnologiescom
DNS

63.236.74.64.in-addr.arpa

Remote address:

8.8.8.8:53

Request

63.236.74.64.in-addr.arpa

IN PTR

Response

63.236.74.64.in-addr.arpa

IN PTR

chioutbraincom
DNS

11.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.1.250.178.in-addr.arpa

IN PTR

Response
DNS

102.82.57.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

102.82.57.23.in-addr.arpa

IN PTR

Response

102.82.57.23.in-addr.arpa

IN PTR

a23-57-82-102deploystaticakamaitechnologiescom
DNS

35.201.240.157.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.201.240.157.in-addr.arpa

IN PTR

Response

35.201.240.157.in-addr.arpa

IN PTR

edge-star-mini-shv-01-ams4facebookcom
DNS

216.86.235.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

216.86.235.185.in-addr.arpa

IN PTR

Response
DNS

139.119.119.74.in-addr.arpa

Remote address:

8.8.8.8:53

Request

139.119.119.74.in-addr.arpa

IN PTR

Response
DNS

174.85.235.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.85.235.185.in-addr.arpa

IN PTR

Response
DNS

sslwidget.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sslwidget.criteo.com

IN A

Response

sslwidget.criteo.com

IN CNAME

widget.nl3.vip.prod.criteo.com

widget.nl3.vip.prod.criteo.com

IN A

178.250.1.9
DNS

trc-events.taboola.com

msedge.exe

Remote address:

8.8.8.8:53

Request

trc-events.taboola.com

IN A

Response

trc-events.taboola.com

IN CNAME

ch-trc-events.taboola.com

ch-trc-events.taboola.com

IN CNAME

ch-vip001.taboola.com

ch-vip001.taboola.com

IN A

141.226.124.48
GET

https://sslwidget.criteo.com/event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvpg%26tms%3Dgtm-template&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=eec836e0-d5e7-4626-8645-debbfdcae4f9&dtycbr=88267&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvpg%26tms%3Dgtm-template&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=eec836e0-d5e7-4626-8645-debbfdcae4f9&dtycbr=88267&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2 HTTP/2.0
host: sslwidget.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
access-control-allow-origin: *
cache-control: no-cache
content-encoding: gzip
expires: 0
pragma: no-cache
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 8084137
strict-transport-security: max-age=31536000; preload;
GET

https://sslwidget.criteo.com/event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dgtm-template%26userinfos%3Dundefined&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=bb09e128-f859-4f0b-93d3-6974c9936675&dtycbr=37986&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dgtm-template%26userinfos%3Dundefined&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=bb09e128-f859-4f0b-93d3-6974c9936675&dtycbr=37986&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2 HTTP/2.0
host: sslwidget.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript
date: Mon, 21 Aug 2023 07:57:25 GMT
server: Kestrel
access-control-allow-origin: *
cache-control: no-cache
content-encoding: gzip
expires: 0
pragma: no-cache
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 8002844
strict-transport-security: max-age=31536000; preload;
GET

https://sslwidget.criteo.com/event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dgtm-template%26userinfos%3Dundefined&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=74566e58-4ebe-4d55-afa8-30c6148d8601&dtycbr=4172&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dgtm-template%26userinfos%3Dundefined&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=74566e58-4ebe-4d55-afa8-30c6148d8601&dtycbr=4172&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2 HTTP/2.0
host: sslwidget.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/x-javascript
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
access-control-allow-origin: *
cache-control: no-cache
content-encoding: gzip
expires: 0
pragma: no-cache
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 15175714
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
location: https://widget.us.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
server-processing-duration-in-ticks: 67908
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
location: https://widget.us.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3
server-processing-duration-in-ticks: 85529
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
location: https://widget.us.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
server-processing-duration-in-ticks: 188534
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
location: https://widget.us.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3
server-processing-duration-in-ticks: 123552
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
location: https://widget.us.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3
server-processing-duration-in-ticks: 97573
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

178.250.1.9:443

Request

GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
date: Mon, 21 Aug 2023 07:57:26 GMT
server: Kestrel
location: https://widget.us.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
server-processing-duration-in-ticks: 110808
strict-transport-security: max-age=31536000; preload;
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

142.251.39.98
DNS

stats.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

stats.g.doubleclick.net

IN A

Response

stats.g.doubleclick.net

IN A

142.250.102.155

stats.g.doubleclick.net

IN A

142.250.102.157

stats.g.doubleclick.net

IN A

142.250.102.154

stats.g.doubleclick.net

IN A

142.250.102.156
GET

https://googleads.g.doubleclick.net/pagead/landing?gcs=G111&gcd=G111&rnd=1555723574.1692604644&url=https%3A%2F%2Fwww.klarmobil.de%2F&gtm=45Fe38g0n71P3MCX5&auid=2007220147.1692604644

msedge.exe

Remote address:

142.251.39.98:443

Request

GET /pagead/landing?gcs=G111&gcd=G111&rnd=1555723574.1692604644&url=https%3A%2F%2Fwww.klarmobil.de%2F&gtm=45Fe38g0n71P3MCX5&auid=2007220147.1692604644 HTTP/2.0
host: googleads.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-50664136-1&cid=151341609.1692604644&jid=467565557&_gid=1989015307.1692604644&gjid=1583076024&_v=j101&z=1905971574

msedge.exe

Remote address:

142.250.102.155:443

Request

GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-50664136-1&cid=151341609.1692604644&jid=467565557&_gid=1989015307.1692604644&gjid=1583076024&_v=j101&z=1905971574 HTTP/2.0
host: stats.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain
accept: */*
origin: null
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

cm.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

cm.g.doubleclick.net

IN A

Response

cm.g.doubleclick.net

IN A

142.250.179.162
DNS

196.168.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.168.217.172.in-addr.arpa

IN PTR

Response

196.168.217.172.in-addr.arpa

IN PTR

ams16s32-in-f41e100net
DNS

9.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

9.1.250.178.in-addr.arpa

IN PTR

Response
DNS

48.124.226.141.in-addr.arpa

Remote address:

8.8.8.8:53

Request

48.124.226.141.in-addr.arpa

IN PTR

Response
DNS

98.39.251.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

98.39.251.142.in-addr.arpa

IN PTR

Response

98.39.251.142.in-addr.arpa

IN PTR

ams15s48-in-f21e100net
DNS

155.102.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

155.102.250.142.in-addr.arpa

IN PTR

Response

155.102.250.142.in-addr.arpa

IN PTR

rb-in-f1551e100net
DNS

8508168.fls.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

8508168.fls.doubleclick.net

IN A

Response

8508168.fls.doubleclick.net

IN CNAME

dart.l.doubleclick.net

dart.l.doubleclick.net

IN A

142.250.179.134
GET

https://8508168.fls.doubleclick.net/activityi;src=8508168;type=all_sess;cat=alles0;ord=7e96669e2fbc4f4b9c08f2aca0e083b6;auiddc=2007220147.1692604644;u15=7e96669e2fbc4f4b9c08f2aca0e083b6;u14=undefined;gtm=45Fe38g0;gcs=G111;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;epver=2;~oref=https%3A%2F%2Fwww.klarmobil.de%2F?

msedge.exe

Remote address:

142.250.179.134:443

Request

GET /activityi;src=8508168;type=all_sess;cat=alles0;ord=7e96669e2fbc4f4b9c08f2aca0e083b6;auiddc=2007220147.1692604644;u15=7e96669e2fbc4f4b9c08f2aca0e083b6;u14=undefined;gtm=45Fe38g0;gcs=G111;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;epver=2;~oref=https%3A%2F%2Fwww.klarmobil.de%2F? HTTP/2.0
host: 8508168.fls.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.klarmobil.de/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

x.bidswitch.net

msedge.exe

Remote address:

8.8.8.8:53

Request

x.bidswitch.net

IN A

Response

x.bidswitch.net

IN CNAME

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

3.72.245.72

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

18.196.11.58

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

18.193.190.7

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

18.159.70.92

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

18.196.96.246

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

18.196.122.173

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

35.157.211.238

alb-aws-fr-bruges-1875226813.eu-central-1.elb.amazonaws.com

IN A

52.28.2.204
DNS

ib.adnxs.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ib.adnxs.com

IN A

Response

ib.adnxs.com

IN CNAME

g.geo.appnexusgslb.net

g.geo.appnexusgslb.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

185.89.210.46

ib.anycast.adnxs.com

IN A

185.89.210.244

ib.anycast.adnxs.com

IN A

185.89.210.180

ib.anycast.adnxs.com

IN A

185.89.210.212

ib.anycast.adnxs.com

IN A

185.89.210.153

ib.anycast.adnxs.com

IN A

185.89.210.90

ib.anycast.adnxs.com

IN A

185.89.211.12

ib.anycast.adnxs.com

IN A

185.89.211.84

ib.anycast.adnxs.com

IN A

185.89.210.82

ib.anycast.adnxs.com

IN A

185.89.210.20

ib.anycast.adnxs.com

IN A

185.89.210.122

ib.anycast.adnxs.com

IN A

185.89.211.116
DNS

secure.adnxs.com

msedge.exe

Remote address:

8.8.8.8:53

Request

secure.adnxs.com

IN A

Response

secure.adnxs.com

IN CNAME

g.geo.appnexusgslb.net

g.geo.appnexusgslb.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

37.252.172.123

ib.anycast.adnxs.com

IN A

37.252.171.149

ib.anycast.adnxs.com

IN A

37.252.171.21

ib.anycast.adnxs.com

IN A

37.252.171.52

ib.anycast.adnxs.com

IN A

37.252.171.85

ib.anycast.adnxs.com

IN A

37.252.173.215

ib.anycast.adnxs.com

IN A

37.252.171.53
DNS

contextual.media.net

msedge.exe

Remote address:

8.8.8.8:53

Request

contextual.media.net

IN A

Response

contextual.media.net

IN A

104.85.0.23
DNS

pixel.rubiconproject.com

msedge.exe

Remote address:

8.8.8.8:53

Request

pixel.rubiconproject.com

IN A

Response

pixel.rubiconproject.com

IN CNAME

pixel.rubiconproject.net.akadns.net

pixel.rubiconproject.net.akadns.net

IN A

213.19.162.80

pixel.rubiconproject.net.akadns.net

IN A

213.19.162.90
DNS

match.sharethrough.com

msedge.exe

Remote address:

8.8.8.8:53

Request

match.sharethrough.com

IN A

Response

match.sharethrough.com

IN CNAME

match-us-east-1-ecs.sharethrough.com

match-us-east-1-ecs.sharethrough.com

IN A

54.81.223.21

match-us-east-1-ecs.sharethrough.com

IN A

34.197.10.159

match-us-east-1-ecs.sharethrough.com

IN A

3.227.175.66

match-us-east-1-ecs.sharethrough.com

IN A

34.196.26.137

match-us-east-1-ecs.sharethrough.com

IN A

52.21.121.77

match-us-east-1-ecs.sharethrough.com

IN A

3.233.86.45

match-us-east-1-ecs.sharethrough.com

IN A

3.215.102.121

match-us-east-1-ecs.sharethrough.com

IN A

18.214.20.208
DNS

sync-t1.taboola.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sync-t1.taboola.com

IN A

Response

sync-t1.taboola.com

IN CNAME

ch-sync.taboola.com

ch-sync.taboola.com

IN CNAME

ch-vip001.taboola.com

ch-vip001.taboola.com

IN A

141.226.124.48
DNS

rtb-csync.smartadserver.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rtb-csync.smartadserver.com

IN A

Response

rtb-csync.smartadserver.com

IN CNAME

rtb-csync-geo.usersync-prod-sas.akadns.net

rtb-csync-geo.usersync-prod-sas.akadns.net

IN CNAME

rtb-csync-itx4.smartadserver.com

rtb-csync-itx4.smartadserver.com

IN A

185.86.139.93

rtb-csync-itx4.smartadserver.com

IN A

185.86.139.101

rtb-csync-itx4.smartadserver.com

IN A

185.86.139.94

rtb-csync-itx4.smartadserver.com

IN A

185.86.139.104

rtb-csync-itx4.smartadserver.com

IN A

185.86.139.102

rtb-csync-itx4.smartadserver.com

IN A

185.86.139.103
DNS

criteo-sync.teads.tv

msedge.exe

Remote address:

8.8.8.8:53

Request

criteo-sync.teads.tv

IN A

Response

criteo-sync.teads.tv

IN CNAME

criteo-sync.teads.tv.edgekey.net

criteo-sync.teads.tv.edgekey.net

IN CNAME

e9957.e4.akamaiedge.net

e9957.e4.akamaiedge.net

IN A

23.207.99.171
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.86.139.93:443

Request

GET /redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: rtb-csync.smartadserver.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
date: Mon, 21 Aug 2023 07:57:26 GMT
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.86.139.93:443

Request

GET /redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: rtb-csync.smartadserver.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
date: Mon, 21 Aug 2023 07:57:26 GMT
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.86.139.93:443

Request

GET /redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: rtb-csync.smartadserver.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
date: Mon, 21 Aug 2023 07:57:26 GMT
GET

https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

104.85.0.23:443

Request

GET /cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: contextual.media.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: Apache
content-length: 156
content-type: image/gif
set-cookie: visitor-id=3356062460714939000V10; Expires=Tue, 20 Aug 2024 07:57:26 GMT; domain=.media.net; Path=/; sameSite=none; secure=true
set-cookie: data-c-ts=1692604646;Expires=Wed, 20 Sep 2023 07:57:26 GMT;path=/;domain=.media.net; sameSite=none; secure=true
set-cookie: data-c=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA~~3;Expires=Wed, 20 Sep 2023 07:57:26 GMT;path=/;domain=.media.net; sameSite=none; secure=true
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
p3p: CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
p3p: CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
p3p: CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Mon, 21 Aug 2023 07:57:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 21 Aug 2023 07:57:26 GMT
GET

https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

104.85.0.23:443

Request

GET /cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: contextual.media.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

23.207.99.171:443

Request

GET /um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: criteo-sync.teads.tv
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
server: akka-http/10.2.10
content-length: 23
expires: Mon, 21 Aug 2023 07:57:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 21 Aug 2023 07:57:26 GMT
GET

https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

23.207.99.171:443

Request

GET /um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: criteo-sync.teads.tv
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
server: akka-http/10.2.10
content-length: 23
expires: Mon, 21 Aug 2023 07:57:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 21 Aug 2023 07:57:26 GMT
GET

https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

23.207.99.171:443

Request

GET /um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: criteo-sync.teads.tv
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
server: akka-http/10.2.10
content-length: 23
expires: Mon, 21 Aug 2023 07:57:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 21 Aug 2023 07:57:26 GMT
DNS

eb2.3lift.com

msedge.exe

Remote address:

8.8.8.8:53

Request

eb2.3lift.com

IN A

Response

eb2.3lift.com

IN CNAME

na-eb2.3lift.com

na-eb2.3lift.com

IN CNAME

us-east-eb2.3lift.com

us-east-eb2.3lift.com

IN A

35.71.139.29

us-east-eb2.3lift.com

IN A

52.223.22.214
DNS

ups.analytics.yahoo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ups.analytics.yahoo.com

IN A

Response

ups.analytics.yahoo.com

IN CNAME

prod.ups-ats.aolp-ds-prd.aws.oath.cloud

prod.ups-ats.aolp-ds-prd.aws.oath.cloud

IN CNAME

prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud

prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud

IN CNAME

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

IN A

3.71.149.231

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

IN A

3.75.62.37
DNS

visitor.omnitagjs.com

msedge.exe

Remote address:

8.8.8.8:53

Request

visitor.omnitagjs.com

IN A

Response

visitor.omnitagjs.com

IN CNAME

visitor-fra02.omnitagjs.com

visitor-fra02.omnitagjs.com

IN A

185.255.84.153

visitor-fra02.omnitagjs.com

IN A

185.255.84.152
DNS

r.casalemedia.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.casalemedia.com

IN A

Response

r.casalemedia.com

IN CNAME

um.indexww.com.akadns.net

um.indexww.com.akadns.net

IN CNAME

u12.lb.indexww.com

u12.lb.indexww.com

IN CNAME

fr-xn.lb.indexww.com

fr-xn.lb.indexww.com

IN A

185.80.39.216
DNS

dpm.demdex.net

msedge.exe

Remote address:

8.8.8.8:53

Request

dpm.demdex.net

IN A

Response

dpm.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

52.214.255.27

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

52.50.247.156

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

18.200.152.171

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

52.215.85.23

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

63.35.31.5

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

52.210.221.217

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

54.154.199.42

dcs-edge-irl1-876252164.eu-west-1.elb.amazonaws.com

IN A

52.211.186.134
DNS

dis.criteo.com

msedge.exe

Remote address:

8.8.8.8:53

Request

dis.criteo.com

IN A

Response

dis.criteo.com

IN CNAME

widget.nl3.vip.prod.criteo.com

widget.nl3.vip.prod.criteo.com

IN A

178.250.1.9
GET

https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

3.71.149.231:443

Request

GET /ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: ups.analytics.yahoo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

3.71.149.231:443

Request

GET /ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: ups.analytics.yahoo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

3.71.149.231:443

Request

GET /ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: ups.analytics.yahoo.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

ad.360yield.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ad.360yield.com

IN A

Response

ad.360yield.com

IN CNAME

ice.360yield.com

ice.360yield.com

IN CNAME

na-ice.360yield.com

na-ice.360yield.com

IN A

18.215.76.18

na-ice.360yield.com

IN A

3.214.218.211

na-ice.360yield.com

IN A

34.201.254.73

na-ice.360yield.com

IN A

3.225.131.246

na-ice.360yield.com

IN A

107.22.87.99

na-ice.360yield.com

IN A

52.23.63.120

na-ice.360yield.com

IN A

34.207.4.245

na-ice.360yield.com

IN A

3.229.116.83
DNS

matching.ivitrack.com

msedge.exe

Remote address:

8.8.8.8:53

Request

matching.ivitrack.com

IN A

Response

matching.ivitrack.com

IN CNAME

tag.ivitrack.com

tag.ivitrack.com

IN A

34.117.157.22
GET

https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.255.84.153:443

Request

GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: visitor.omnitagjs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=4af1e1e5f339e96153922fb04af5d199; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Mon, 21 Aug 2023 07:57:26 GMT
content-length: 49
x-envoy-upstream-service-time: 7
server: ayl-lb-fra02
GET

https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.255.84.153:443

Request

GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: visitor.omnitagjs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=8b32a31504d75e237ef85670693b4d93; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Mon, 21 Aug 2023 07:57:26 GMT
content-length: 49
x-envoy-upstream-service-time: 38
server: ayl-lb-fra02
GET

https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.255.84.153:443

Request

GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: visitor.omnitagjs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=b8de38b69fe0ece5522ce24731be9228; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Mon, 21 Aug 2023 07:57:27 GMT
content-length: 49
x-envoy-upstream-service-time: 7
server: ayl-lb-fra02
GET

https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.80.39.216:443

Request

GET /rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/1.1
Host: r.casalemedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Mon, 21 Aug 2023 07:57:26 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
GET

https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.80.39.216:443

Request

GET /rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/1.1
Host: r.casalemedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Mon, 21 Aug 2023 07:57:26 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
GET

https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.80.39.216:443

Request

GET /rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/1.1
Host: r.casalemedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Mon, 21 Aug 2023 07:57:27 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=498
Connection: Keep-Alive
GET

https://matching.ivitrack.com/sync?realm=criteo&uid=k-PMXAvY40ri7VeQCkCD0tLUL5tqxS3ATImt9UTw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

34.117.157.22:443

Request

GET /sync?realm=criteo&uid=k-PMXAvY40ri7VeQCkCD0tLUL5tqxS3ATImt9UTw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: matching.ivitrack.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

18.215.76.18:443

Request

GET /match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: ad.360yield.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Mon, 21 Aug 2023 07:57:27 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
GET

https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

18.215.76.18:443

Request

GET /match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: ad.360yield.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

exchange.mediavine.com

msedge.exe

Remote address:

8.8.8.8:53

Request

exchange.mediavine.com

IN A

Response

exchange.mediavine.com

IN A

35.174.68.73

exchange.mediavine.com

IN A

107.21.2.40

exchange.mediavine.com

IN A

52.203.164.158

exchange.mediavine.com

IN A

34.226.31.75

exchange.mediavine.com

IN A

44.199.45.100

exchange.mediavine.com

IN A

3.222.170.15

exchange.mediavine.com

IN A

3.214.168.216

exchange.mediavine.com

IN A

50.16.65.194
DNS

sync.outbrain.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sync.outbrain.com

IN A

Response

sync.outbrain.com

IN CNAME

alldcs.outbrain.org

alldcs.outbrain.org

IN CNAME

chidc2.outbrain.org

chidc2.outbrain.org

IN A

64.74.236.191
DNS

simage2.pubmatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

simage2.pubmatic.com

IN A

Response

simage2.pubmatic.com

IN CNAME

simage2v2.pubmnet.com

simage2v2.pubmnet.com

IN CNAME

pug-lhrc.pubmnet.com

pug-lhrc.pubmnet.com

IN A

185.64.190.80
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.64.190.80:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Mon, 21 Aug 2023 07:57:26 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

msedge.exe

Remote address:

185.64.190.80:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Mon, 21 Aug 2023 07:57:27 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
DNS

content.zeotap.com

Remote address:

8.8.8.8:53

Request

content.zeotap.com

IN A

Response

content.zeotap.com

IN A

104.22.24.87

content.zeotap.com

IN A

104.22.25.87

content.zeotap.com

IN A

172.67.13.182
DNS

bat.bing.com

Remote address:

8.8.8.8:53

Request

bat.bing.com

IN A

Response

bat.bing.com

IN CNAME

bat-bing-com.a-0001.a-msedge.net

bat-bing-com.a-0001.a-msedge.net

IN CNAME

dual-a-0001.a-msedge.net

dual-a-0001.a-msedge.net

IN A

204.79.197.200

dual-a-0001.a-msedge.net

IN A

13.107.21.200
DNS

s3-eu-west-1.amazonaws.com

Remote address:

8.8.8.8:53

Request

s3-eu-west-1.amazonaws.com

IN A

Response

s3-eu-west-1.amazonaws.com

IN A

52.92.34.144

s3-eu-west-1.amazonaws.com

IN A

52.218.24.163

s3-eu-west-1.amazonaws.com

IN A

52.218.61.187

s3-eu-west-1.amazonaws.com

IN A

52.218.36.154

s3-eu-west-1.amazonaws.com

IN A

52.218.57.179

s3-eu-west-1.amazonaws.com

IN A

52.218.0.43

s3-eu-west-1.amazonaws.com

IN A

52.218.53.2

s3-eu-west-1.amazonaws.com

IN A

52.92.32.192
DNS

criteo-partners.tremorhub.com

Remote address:

8.8.8.8:53

Request

criteo-partners.tremorhub.com

IN A

104.18.36.84:443

www.callmobile.de

tls, http2

msedge.exe

989 B
6.2kB
9
8
104.18.36.84:443

https://www.callmobile.de/

tls, http2

msedge.exe

1.6kB
6.8kB
11
11

HTTP Request

GET https://www.callmobile.de/

HTTP Response

301
172.64.155.78:443

https://www.klarmobil.de/kmr-assets/favicons/favicon.ico

tls, http2

msedge.exe

90.3kB
2.3MB
1153
2109

HTTP Request

GET https://www.klarmobil.de/

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/kmr-assets/fonts/fago/fago-std-black.woff2

HTTP Request

GET https://www.klarmobil.de/kmr-assets/fonts/fago/fago-cond-black.woff2

HTTP Request

GET https://www.klarmobil.de/kmr-assets/fonts/fago/fago-cond-black-italic.woff2

HTTP Request

GET https://www.klarmobil.de/kmr-assets/fonts/nunito-sans/nunitosans-regular.woff2

HTTP Request

GET https://www.klarmobil.de/kmr-assets/fonts/nunito-sans/nunitosans-bold.woff2

HTTP Request

GET https://www.klarmobil.de/kmr-assets/fonts/nunito-sans/nunitosans-black.woff2

HTTP Request

GET https://www.klarmobil.de/kmr-assets/kmr-global.97d54824638ba8a7.css

HTTP Request

GET https://www.klarmobil.de/kmr-assets/icons/sprite-458dd343.svg

HTTP Request

GET https://www.klarmobil.de/kmr-assets/runtime.bb398e5e8190fd41.js

HTTP Request

GET https://www.klarmobil.de/kmr-assets/polyfills.a989803d8c4a95eb.js

HTTP Request

GET https://www.klarmobil.de/kmr-assets/main.8c52842723b38b99.js

HTTP Request

GET https://www.klarmobil.de/kmr-assets/icons/colored-cff0f2bb.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/kmr-assets/svgs/default/chevron-left.svg

HTTP Request

GET https://www.klarmobil.de/kmr-assets/svgs/default/chevron-right.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/cdn-cgi/challenge-platform/scripts/invisible.js

HTTP Response

302

HTTP Request

GET https://www.klarmobil.de/cdn-cgi/challenge-platform/h/g/scripts/jsd/313d8a27/invisible.js

HTTP Response

200

HTTP Request

POST https://www.klarmobil.de/cdn-cgi/challenge-platform/h/g/cv/result/7fa15256fb6ab725

HTTP Request

GET https://www.klarmobil.de/kmr-assets/kmr-manifest.webmanifest

HTTP Request

GET https://www.klarmobil.de/kmr-assets/favicons/favicon.ico

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/kmr-assets/favicons/android-icon-144x144.png

HTTP Request

GET https://www.klarmobil.de/kmr-assets/favicons/favicon-32x32.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/theme/images/klarmobil.de-logo@2x.png

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/kameleoonplatform.html

HTTP Response

404

HTTP Request

GET https://www.klarmobil.de/theme/fonts/FagoWeb-Bold.woff

HTTP Request

GET https://www.klarmobil.de/theme/fonts/FagoWeb-Black.woff

HTTP Request

GET https://www.klarmobil.de/theme/fonts/FagoWeb.woff

HTTP Request

GET https://www.klarmobil.de/theme/fonts/fa-solid-900.woff2

HTTP Request

GET https://www.klarmobil.de/theme/fonts/fa-regular-400.woff2

HTTP Request

GET https://www.klarmobil.de/theme/fonts/fa-light-300.woff2

HTTP Request

GET https://www.klarmobil.de/theme/fonts/svgfont.woff

HTTP Request

GET https://www.klarmobil.de/theme/css/km-a-c371a186.min.css

HTTP Request

GET https://www.klarmobil.de/a/css/klarmobil-953e8b51.min.css

HTTP Request

GET https://www.klarmobil.de/theme/js/jquery-3.6.0.min.js

HTTP Request

GET https://www.klarmobil.de/theme/js/km-a-baf64c02.min.js

HTTP Request

GET https://www.klarmobil.de/a/js/klarmobil-8784b933.min.js

HTTP Request

GET https://www.klarmobil.de/theme/images/klarmobil-de-Logo-transp-Markenzusatz--mobile.svg

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-allnet-flat.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-hst.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-daten-flat.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-handys-mit-vertrag.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-handys-ohne-vertrag.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-tablet-only.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-zubehoer.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-kontakt.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-onlineservice.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-faq.png

HTTP Request

GET https://www.klarmobil.de/theme/images/km-header--hover-kuendigung.png

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/shop/cart/minicart/link

HTTP Request

GET https://www.klarmobil.de/sw.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/shop/cart/minicart/rollover

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/kmr-assets/brands/brand_button_apple.svg

HTTP Request

GET https://www.klarmobil.de/kmr-assets/brands/brand_button_google.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.klarmobil.de/kmr-assets/favicons/favicon.ico

HTTP Response

200
172.64.155.78:443

www.klarmobil.de

tls, http2

msedge.exe

897 B
6.0kB
7
7
52.222.139.47:443

images.ctfassets.net

tls, http2

msedge.exe

1.1kB
6.6kB
11
11
52.222.139.47:443

images.ctfassets.net

tls, http2

msedge.exe

1.1kB
6.6kB
11
11
52.222.139.47:443

https://images.ctfassets.net/1glbh88h5ua1/4K9gQTpsFh2aGuXId6Fq9D/c9edcdeb403fcf7dcf276973046b4c33/klarmobil-footer-dhl-328x12.png?w=328&h=12&fm=webp&q=90&fit=fill

tls, http2

msedge.exe

15.2kB
365.6kB
236
300

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/4fpGQGzgesqf1BwxgLmry5/c25c4ea0ff30c7c47649a7dc4985115e/klarmobil-logo-mit-claim.svg

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/6xcjQr85Dv5oy96HiIYtEy/46c8589ba9d291c38cf784189e8c8cbb/klarmobil-logo-ohne-claim.svg

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/2IsWHv8li7QplX6i4iTtV0/4ff793827dbff91b69c9d76221000eed/start_ap-frei.jpg?w=768&h=432&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/4l9PFZJmHDIWskAkEjsiVC/52e4c7864686c8aceafc34b0cf7f91e8/header-allnet-flats.jpg?w=272&h=272&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/AaAN6WmbQseAmcE308ckX/c79dd0b42ee21d62a35f2fb4b236f732/Monatl_kuendbare_Tarife_272x272.jpg?w=272&h=272&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/4tjDmHxp8zVyINxQp8PSCY/21d9b58992e0d652f731f8a2d256ff41/header-handys-mit-vertrag.jpg?w=272&h=272&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/3ZY9PrruTXXfWVfdCBCTES/119f227ac65e2a2835167b2827bb6bd4/header-handys-ohne-vertrag.jpg?w=173&h=272&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/7qwvZdD3Y19fpmnLsgpJne/eb04f88cf01ec60f845254a63115730e/header-tablets-ohne-vertrag.jpg?w=173&h=272&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/3wwXhYPPycODRAHtPm9xBP/c9cd0072b21d1bda7ca2d684c0bed344/header-zubehoer.jpg?w=173&h=272&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/3gGzUQItHVVQSmIjT5FI3y/8e8a0216059828f27a08510d887469f1/Huellen.png?w=84&h=120&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/4paIrjpGHqaaVCuAF6thBc/d9cbb7b2f9426b1f9b02c2eb45ff4062/Kabel.png?w=64&h=120&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/304ULTOuzyZ24RSWmRxlpG/ba15301c5ac7646b2846b544ca65be8e/akg-n700-wireless-kopfhoerer-black-vorderseite.webp

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/fMTiCpEwm4zXCEG7Ng4Ni/84bb95991bc461d08bdb057291f651e5/header-haufige-fragen.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/1BappdDJmIZERDwkgbwqUQ/a69da0cade51c7796211968de1c36dc0/header-login.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/6jiwtNgtgujfTBUadTBp7K/a7646975950a2f84aafc3718b9bd260c/header-app.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/4c67uPFpY6Hjdc3NnRpC2F/2f7a2e39a992c048c8f35e29ed322f1d/header-kuendigen.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/6aobdKdGgkwnFk6jqg9glM/7f23032a0ae296168b04cae8630cbfb4/header-kontakt.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/2nQMxdvR8yijnYBRgALXh6/86513b6f61108324cfc8a7b731e872d6/header-ueber-uns.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/vefyYHMMxbcXYAKxlZM2G/33b3b94b574a598bbb23f8b4ff1f448a/header-karriere.jpg?w=173&h=129&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/5XfbTR3TTfWbWmiHQKxVj1/3704bf5c0c954f48586d958738a5b555/klarmobil-app.png?w=600&h=600&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/6XgF6wq4o8zRctYycWbAPu/b5a1a44e8ddc7953283d4fd3c7d5a392/klarmobil-footer-ssl-logo_transparent-_2_404x208.png?w=210&h=107&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/7I5JkId5kN3a4vpZ9euIQ7/538dbc7989cce329fc04eb42b32f3666/klarmobil-footer-zahlungsmethoden.png?w=328&h=112&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/5DfSvAxg5o0b1A7tOBl98Z/9f8da491de596efe6b5f68c0a38897fb/klarmobil-footer-consors-finanz-328x40.png?w=328&h=40&fm=webp&q=90&fit=fill

HTTP Request

GET https://images.ctfassets.net/1glbh88h5ua1/4K9gQTpsFh2aGuXId6Fq9D/c9edcdeb403fcf7dcf276973046b4c33/klarmobil-footer-dhl-328x12.png?w=328&h=12&fm=webp&q=90&fit=fill

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
13.227.219.97:443

https://media.mdm.klarmobil.de/5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/132x176/iphone-14-128-gb-midnight-vorderseite.webp

tls, http2

msedge.exe

3.9kB
58.9kB
42
62

HTTP Request

GET https://media.mdm.klarmobil.de/cdn?name=iphone-14-128-gb-midnight-vorderseite&version=5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e&subType=png&width=152&height=202

HTTP Response

301

HTTP Request

GET https://media.mdm.klarmobil.de/cdn?name=samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite&version=87d342493f87a2c2aa1d581ca7e656c36a5bcf34&subType=png&width=132&height=176

HTTP Request

GET https://media.mdm.klarmobil.de/cdn?name=iphone-14-128-gb-midnight-vorderseite&version=5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e&subType=png&width=132&height=176

HTTP Response

301

HTTP Response

301

HTTP Request

GET https://media.mdm.klarmobil.de/5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/152x202/iphone-14-128-gb-midnight-vorderseite.webp

HTTP Response

200

HTTP Request

GET https://media.mdm.klarmobil.de/87d342493f87a2c2aa1d581ca7e656c36a5bcf34/132x176/samsung-galaxy-s23-128-gb-5g-phantom-black-trade-in-vorderseite.webp

HTTP Request

GET https://media.mdm.klarmobil.de/5dbb796fc0d7e1476f2c018a0c47dae1dae0ba7e/132x176/iphone-14-128-gb-midnight-vorderseite.webp

HTTP Response

200

HTTP Response

200
52.219.169.222:443

kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com

tls

msedge.exe

4.8kB
19.1kB
22
28
34.120.195.249:443

o571954.ingest.sentry.io

tls, http2

msedge.exe

851 B
4.3kB
6
6
95.217.57.95:443

https://3xhb4v7cn4.kameleoon.eu/kameleoon.js

tls, http

msedge.exe

2.2kB
44.6kB
24
39

HTTP Request

GET https://3xhb4v7cn4.kameleoon.eu/kameleoon.js

HTTP Response

200
216.239.34.21:443

https://tm.dp.klarmobil.de/g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&_s=2&richsstsse

tls, http2

msedge.exe

16.3kB
283.8kB
170
276

HTTP Request

GET https://tm.dp.klarmobil.de/tm_km_main?id=GTM-P3MCX5

HTTP Request

GET https://tm.dp.klarmobil.de/cnsnt?pmdata_vendor=undefined&pmdata_purpose=undefined&ctid=message%20displayed&time=1692604613.266

HTTP Request

GET https://tm.dp.klarmobil.de/cnsnt?pmdata_vendor=null&pmdata_purpose=null&ctid=11&time=1692604637.904

HTTP Request

GET https://tm.dp.klarmobil.de/cwrw?c_name=authId&c_content=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&c_life=31536000

HTTP Request

GET https://tm.dp.klarmobil.de/cwrw?c_name=iab_purposes&c_content=%7B%221%22%3Atrue%2C%222%22%3Atrue%2C%223%22%3Atrue%2C%224%22%3Atrue%2C%225%22%3Atrue%2C%226%22%3Atrue%2C%227%22%3Atrue%2C%228%22%3Atrue%2C%229%22%3Atrue%2C%2210%22%3Atrue%2C%2211%22%3Afalse%7D&c_life=31536000

HTTP Request

GET https://tm.dp.klarmobil.de/cwrw?c_name=noniab_vendors&c_content=Google%20Maps%2Cvirtualq%20GmbH%2COutbrain%2CGoogle%20Ads%2CThe%20Trade%20Desk%2CGoogle%20Analytics%2CTrusted%20Shops%20GmbH%2CYouTube%2CTikTok%2CVitrado%20GmbH%2CZeotap%20GmbH%2CADITION%20technologies%20AG%2Cadvanced%20STORE%20GmbH%2CTaboola%2CDeep%20Media%20Technologies%20GmbH%2CChannelpilot%20Solutions%20GmbH%2CFacebook%2CMicrosoft%20Advertising%2CAWIN%2CIridion%2CCriteo%20SA%2C&c_life=31536000

HTTP Request

GET https://tm.dp.klarmobil.de/analytics.js

HTTP Request

GET https://tm.dp.klarmobil.de/qwt?events=page_view&gtm_cb=1711630616

HTTP Request

GET https://tm.dp.klarmobil.de/gtag/js?id=G-RYGW3GJJ1B&l=dataLayer&cx=c

HTTP Request

GET https://tm.dp.klarmobil.de/g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&_s=1&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&en=page_view&_fv=1&_ss=1&ep.user_agent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F92.0.4515.131%20Safari%2F537.36%20Edg%2F92.0.902.67&ep.ab_test=-&ep.device=desktop&ep.event_id=1692604853456_16926049116281&ep.traffic_referrer=0&ep.user_type=-&ep.customer_type=neukunde&ep.traffic_origin=0&ep.event_time_micro=1692604641.459&ep.marketing_kuendigungsstatus=&ep.customer_vvl_status=&ep.page_location_new=https%3A%2F%2Fwww.klarmobil.de%2F&richsstsse

HTTP Request

POST https://tm.dp.klarmobil.de/j/collect?v=1&_v=j101&aip=1&a=940899471&t=pageview&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dp=%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&_u=aGBACEAjFAAAACgFKI~&jid=467565557&gjid=1583076024&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&_r=1&gtm=45Fe38g0n71P3MCX5&cd6=&cd8=0&cd17=&cd26=(not%20set)&gcs=G111&cd13=151341609.1692604644&cd14=pageview&z=1905971574

HTTP Request

GET https://tm.dp.klarmobil.de/collect?v=1&_v=j101&aip=1&a=940899471&t=event&ni=1&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&ec=component_visible&ea=B%C3%BChne%20Startseite&_u=aGDACEAjFAAAACgFKIC~&jid=&gjid=&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&gtm=45Fe38g0n71P3MCX5&cd8=0&cd17=&cd26=(not%20set)&cd30=1-0-0-0-0&cd39=2-0-0-0-0-0&gcs=G111&cd13=151341609.1692604644&cd14=event&z=1980349881

HTTP Request

GET https://tm.dp.klarmobil.de/collect?v=1&_v=j101&aip=1&a=940899471&t=event&ni=1&_s=1&dl=https%3A%2F%2Fwww.klarmobil.de%2F&dh=www.klarmobil.de&ul=en-us&de=UTF-8&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&sd=24-bit&sr=1280x720&vp=1263x609&je=0&ec=component_visible&ea=Header&_u=aGDACEAjFAAAACgFKIC~&jid=&gjid=&cid=151341609.1692604644&tid=UA-50664136-1&_gid=1989015307.1692604644&gtm=45Fe38g0n71P3MCX5&cd8=0&cd17=&cd26=(not%20set)&cd30=1-0-0-0-0&cd39=2-0-0-0-0-0&gcs=G111&cd13=151341609.1692604644&cd14=event&z=2045234057

HTTP Request

POST https://tm.dp.klarmobil.de/g/collect?v=2&tid=G-RYGW3GJJ1B&gtm=45he38g0&_p=940899471&gcs=G111&cid=151341609.1692604644&ul=en-us&sr=1280x720&_fplc=0&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&sst.uc=&sst.rnd=1555723574.1692604644&sst.gse=1&sst.gcd=G111&dt=Top-Smartphones%2C%20g%C3%BCnstige%20Handytarife%20und%20Zubeh%C3%B6r%20%7C%20klarmobil.de&dl=https%3A%2F%2Fwww.klarmobil.de%2F&sid=1692604641&sct=1&seg=0&dr=https%3A%2F%2Fwww.klarmobil.de%2F&_s=2&richsstsse
20.50.2.79:443

embed.binkies3d.com

tls

msedge.exe

2.1kB
10.8kB
17
19
108.156.60.116:443

https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true

tls, http2

msedge.exe

7.1kB
29.5kB
49
57

HTTP Request

GET https://cdn.privacy-mgmt.com/mms/v2/get_site_data?hasCsp=true&href=https%3A%2F%2Fwww.klarmobil.de%2F&account_id=1148

HTTP Response

200

HTTP Request

OPTIONS https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true

HTTP Response

200

HTTP Request

OPTIONS https://cdn.privacy-mgmt.com/wrapper/tcfv2/v2/gdpr/native-message/new-user?hasCsp=true&env=prod&body=%7B%22propertyId%22%3A6670%2C%22accountId%22%3A1148%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22meta%22%3A%22%7B%5C%22mmsCookies%5C%22%3A%5B%5D%2C%5C%22resolved%5C%22%3Anull%7D%22%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fcdn.privacy-mgmt.com%22%2C%22targetingParams%22%3A%22%7B%7D%22%2C%22campaignEnv%22%3A%22prod%22%2C%22legalBasisChanges%22%3Afalse%2C%22vendorListAdditions%22%3Afalse%7D&nonkeyed=%7B%22_sp_v1_uid%22%3Anull%2C%22_sp_v1_data%22%3Anull%2C%22_sp_v1_p%22%3Anull%7D&scriptVersion=2.8.0&scriptType=tcfv2&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/wrapper/tcfv2/v2/gdpr/native-message/new-user?hasCsp=true&env=prod&body=%7B%22propertyId%22%3A6670%2C%22accountId%22%3A1148%2C%22propertyHref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22meta%22%3A%22%7B%5C%22mmsCookies%5C%22%3A%5B%5D%2C%5C%22resolved%5C%22%3Anull%7D%22%2C%22clientMMSOrigin%22%3A%22https%3A%2F%2Fcdn.privacy-mgmt.com%22%2C%22targetingParams%22%3A%22%7B%7D%22%2C%22campaignEnv%22%3A%22prod%22%2C%22legalBasisChanges%22%3Afalse%2C%22vendorListAdditions%22%3Afalse%7D&nonkeyed=%7B%22_sp_v1_uid%22%3Anull%2C%22_sp_v1_data%22%3Anull%2C%22_sp_v1_p%22%3Anull%7D&scriptVersion=2.8.0&scriptType=tcfv2&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/mms/v2/get_site_data?hasCsp=true&href=https%3A%2F%2Fwww.klarmobil.de%2Fkameleoonplatform.html&account_id=1148

HTTP Response

200

HTTP Request

OPTIONS https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?hasCsp=true&accountId=1148&includeCustomVendorsRes=true&withSiteActions=true&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?hasCsp=true&accountId=1148&includeCustomVendorsRes=true&withSiteActions=true&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/mms/v2/choice_select?hasCsp=true&choice_id=7934267&href=https%3A%2F%2Fwww.klarmobil.de%2F&cookie=%5B%22_sp_v1_ss%3D1%3AH4sIAAAAAAAAAItWqo5RKimOUbKKhjHySnNydGKUUpHYJWCJ6traWFwSSjooBuWBGAZ4lMcCANQdvj55AAAA%3B%22%2C%22_sp_v1_p%3D950%3B%22%2C%22_sp_su%3Dfalse%3B%22%2C%22_sp_v1_uid%3D1%3A950%3Ae2a63185-b070-4abb-b3cf-755715d96e1b%3B%22%2C%22_sp_v1_data%3D2%3A598280%3A1684765462%3A0%3A2%3A0%3A2%3A0%3A0%3A_%3A-1%3B%22%5D&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

OPTIONS https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?withSiteActions=true&consentUUID=undefined&euconsent=[EUCONSENT]&authId=undefined&mmsDomain=cdn.privacy-mgmt.com&consentLanguage=EN&hasCsp=true&sampleRate=0.05&sendPVData=false&includeCustomVendorsRes=1&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

POST https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v2/6670/consent-all?withSiteActions=true&consentUUID=undefined&euconsent=[EUCONSENT]&authId=undefined&mmsDomain=cdn.privacy-mgmt.com&consentLanguage=EN&hasCsp=true&sampleRate=0.05&sendPVData=false&includeCustomVendorsRes=1&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

POST https://cdn.privacy-mgmt.com/mms/set_consent_cookies?consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID_maxAge=31536000&hasCsp=true&ch=4250995734250995733a11

HTTP Response

200

HTTP Request

OPTIONS https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true

HTTP Request

GET https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/latest-version?siteId=6670&accountId=1148&hasCsp=true

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/consent/tcfv2/consent/v3/6670/consent-status?hasCsp=true&authId=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&consentUUID=1cf4c24e-9c5d-4d1b-8136-b12a2c44bfae_22&hasLocalData=true&dateCreated=2023-08-21T07%3A57%3A19.859Z&accountId=1148&withSiteActions=true

HTTP Response

200
108.156.60.116:443

https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/categories?siteId=6670&consentLanguage=de

tls, http2

msedge.exe

4.9kB
138.9kB
66
110

HTTP Request

GET https://cdn.privacy-mgmt.com/wrapperMessagingWithoutDetection.js

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/index.html?message_id=778652&consentUUID=undefined&preload_message=true&hasCsp=true&version=v1&consent_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fconsent%2Ftcfv2&mms_origin=https%3A%2F%2Fcdn.privacy-mgmt.com%2Fmms%2Fv2

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/Notice.96c9d.css

HTTP Request

GET https://cdn.privacy-mgmt.com/polyfills.d36c5.js

HTTP Request

GET https://cdn.privacy-mgmt.com/Notice.8f9a5.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn.privacy-mgmt.com/consent/tcfv2/vendor-list/categories?siteId=6670&consentLanguage=de

HTTP Response

200
216.239.34.21:443

tm.dp.klarmobil.de

tls, http2

msedge.exe

907 B
5.0kB
7
7
2.18.121.70:80

http://apps.identrust.com/roots/dstrootcax3.p7c

http

msedge.exe

324 B
1.6kB
4
4

HTTP Request

GET http://apps.identrust.com/roots/dstrootcax3.p7c

HTTP Response

200
95.217.77.229:443

https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

tls, http

msedge.exe

7.1kB
8.8kB
19
15

HTTP Request

POST https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

HTTP Response

204

HTTP Request

POST https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

HTTP Response

204

HTTP Request

POST https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

HTTP Response

204

HTTP Request

POST https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

HTTP Response

204

HTTP Request

POST https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

HTTP Response

204

HTTP Request

POST https://data.kameleoon.io/visit/events?siteCode=3xhb4v7cn4&visitorCode=sh7r7o1950u53pu2&itp=false

HTTP Response

204
34.149.199.84:443

https://bt.fraud0.com/api/v2/fz.js?cid=20b5b743-0899-4847-af6a-fc04195382a0

tls, http2

msedge.exe

2.8kB
52.9kB
37
44

HTTP Request

GET https://bt.fraud0.com/api/v2/fz.js?cid=20b5b743-0899-4847-af6a-fc04195382a0
34.120.195.249:443

https://o1173614.ingest.sentry.io/api/5720764/envelope/?sentry_key=8db40a889fd14273a85733908b5d08ff&sentry_version=7

tls, http2

msedge.exe

2.3kB
5.1kB
14
14

HTTP Request

POST https://o1173614.ingest.sentry.io/api/5720764/envelope/?sentry_key=8db40a889fd14273a85733908b5d08ff&sentry_version=7
72.21.81.200:443

https://az589851.vo.msecnd.net/integrations/zqnIEeIZ/7c2i0ch0/2ad29b9/integration_static.js

tls, http2

msedge.exe

4.6kB
104.7kB
65
84

HTTP Request

GET https://az589851.vo.msecnd.net/integrations/zqnIEeIZ/7c2i0ch0/2ad29b9/integration_static.js

HTTP Response

200
34.160.30.67:443

https://api.fraud0.com/event

tls, http2

msedge.exe

2.3kB
6.1kB
12
12

HTTP Request

POST https://api.fraud0.com/event
104.46.32.56:443

binkiesproductionweu.servicebus.windows.net

tls

msedge.exe

1.7kB
6.7kB
8
8
104.46.32.56:443

binkiesproductionweu.servicebus.windows.net

tls

msedge.exe

4.7kB
7.1kB
12
11
52.222.139.84:443

https://widgets.trustedshops.com/assets/trustbadge.js

tls, http2

msedge.exe

3.0kB
76.8kB
39
67

HTTP Request

GET https://widgets.trustedshops.com/js/X1E535F21A1CFDDD0BAB08A47B1086571.js

HTTP Response

200

HTTP Request

GET https://widgets.trustedshops.com/assets/trustbadge.js

HTTP Response

200
216.58.214.16:443

https://storage.googleapis.com/workbox-cdn/releases/3.5.0/workbox-sw.js

tls, http2

msedge.exe

1.6kB
7.5kB
13
12

HTTP Request

GET https://storage.googleapis.com/workbox-cdn/releases/3.5.0/workbox-sw.js
34.160.30.67:443

https://api.fraud0.com/event

tls, http2

msedge.exe

1.9kB
6.1kB
12
12

HTTP Request

POST https://api.fraud0.com/event
157.240.247.8:443

connect.facebook.net

tls

msedge.exe

4.3kB
145.9kB
68
112
151.101.1.44:443

https://trc.taboola.com/1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=PageView&tim=1692604644840&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2950&ssd=1&scd=40

tls, http2

msedge.exe

3.5kB
28.4kB
24
36

HTTP Request

GET https://cdn.taboola.com/libtrc/unip/1429091/tfa.js

HTTP Response

200

HTTP Request

GET https://trc.taboola.com/1429091/trc/3/json?tim=1692604641926&data=%7B%22id%22%3A279%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1692604641888%2C%22cv%22%3A%2220230816-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22e%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dklarmobilgmbhcomobilcom-debitelgmbh-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22tim%22%3A1692604641900%2C%22ref%22%3A%22https%3A%2F%2Fwww.klarmobil.de%2F%22%2C%22tos%22%3A33%2C%22ssd%22%3A1%2C%22scd%22%3A39%7D%7D&pubit=i

HTTP Response

200

HTTP Request

GET https://trc.taboola.com/1429091/log/3/unip?en=page_view&item-url=https%3A%2F%2Fwww.klarmobil.de%2F&tim=1692604641900&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2145&ssd=1&scd=40&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced

HTTP Request

GET https://trc.taboola.com/1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=Session&tim=1692604641934&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2146&ssd=1&scd=40

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://trc.taboola.com/1429091/log/3/unip?item-url=https%3A%2F%2Fwww.klarmobil.de%2F&en=PageView&tim=1692604644840&vi=1692604641888&ri=32e23d52d5b2df6e45c44bbab9662ced&ref=https%3A%2F%2Fwww.klarmobil.de%2F&cv=20230816-2-RELEASE&tos=2950&ssd=1&scd=40

HTTP Response

204
64.74.236.63:443

tr.outbrain.com

tls

msedge.exe

2.3kB
4.8kB
8
7
96.16.109.182:443

https://amplify.outbrain.com/cp/obtp.js

tls, http

msedge.exe

1.6kB
12.7kB
10
15

HTTP Request

GET https://amplify.outbrain.com/cp/obtp.js

HTTP Response

200
178.250.7.16:443

https://dynamic.criteo.com/js/ld/ld.js?a=51848

tls, http2

msedge.exe

2.0kB
25.2kB
21
23

HTTP Request

GET https://dynamic.criteo.com/js/ld/ld.js?a=51848

HTTP Response

200
64.74.236.63:443

tr.outbrain.com

tls

msedge.exe

913 B
4.2kB
6
5
178.250.1.11:443

https://gum.criteo.com/sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

4.8kB
13.3kB
26
23

HTTP Request

GET https://gum.criteo.com/syncframe?topUrl=www.klarmobil.de&origin=onetag&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://gum.criteo.com/sid/json?origin=onetag&domain=klarmobil.de&sn=EdgeSyncframe&so=0&topUrl=www.klarmobil.de&info=eleUSV9WYkw2cXlZdEk0QldmcnduNkFSUlNmOWlpaVdYdzRtaDhDdGZKZWQxVDR3NXBBUUQ0YXVnY21RS21TVkVwVkh3eHRWMXVxRmV4VVg2VkY4QjBNTmxGZyUzRCUzRA&idsd=868941522,1607701211&cw=1&lsw=1

HTTP Response

200

HTTP Request

GET https://gum.criteo.com/sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://gum.criteo.com/sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Request

GET https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Response

302

HTTP Request

GET https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://gum.criteo.com/sync?c=4&r=1&a=1&u=https://tags.bluekai.com/site/29001/sync?3rdpartyuserid=%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://gum.criteo.com/sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://gum.criteo.com/sync?c=9&r=1&a=1&u=https%3A%2F%2Faa.agkn.com%2Fadscores%2Fg.pixel%3Fsid%3D9212273938%26ct%3D%40USERID%40&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302
23.57.82.102:443

https://wave.outbrain.com/mtWavesBundler/handler/00150212ce76bc57d952d48d4edde3319e

tls, http

msedge.exe

1.6kB
5.5kB
9
10

HTTP Request

GET https://wave.outbrain.com/mtWavesBundler/handler/00150212ce76bc57d952d48d4edde3319e

HTTP Response

200
157.240.201.35:443

www.facebook.com

tls

msedge.exe

1.8kB
3.4kB
11
11
185.235.86.216:443

https://gem.gbc.criteo.com/newidsd

tls, http2

msedge.exe

1.5kB
4.7kB
9
8

HTTP Request

GET https://gem.gbc.criteo.com/newidsd

HTTP Response

200
74.119.119.139:443

https://dnacdn.net/dna

tls, http2

msedge.exe

1.7kB
5.5kB
11
9

HTTP Request

GET https://dnacdn.net/dna

HTTP Response

200

HTTP Request

GET https://dnacdn.net/dna

HTTP Response

200
185.235.85.174:443

https://ag.gbc.criteo.com/newidsd

tls, http2

msedge.exe

1.5kB
4.7kB
10
10

HTTP Request

GET https://ag.gbc.criteo.com/newidsd

HTTP Response

200
178.250.1.9:443

sslwidget.criteo.com

tls

msedge.exe

1.0kB
4.2kB
10
8
178.250.1.9:443

https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

5.4kB
22.6kB
30
30

HTTP Request

GET https://sslwidget.criteo.com/event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvpg%26tms%3Dgtm-template&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=eec836e0-d5e7-4626-8645-debbfdcae4f9&dtycbr=88267&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2

HTTP Request

GET https://sslwidget.criteo.com/event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dgtm-template%26userinfos%3Dundefined&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=bb09e128-f859-4f0b-93d3-6974c9936675&dtycbr=37986&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://sslwidget.criteo.com/event?a=51848&v=5.17.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dgtm-template%26userinfos%3Dundefined&p2=e%3Ddis&adce=1&bundle=y90jfF9WYkw2cXlZdEk0QldmcnduNkFSUlNXaEZVUkpXWjBUb3BRNUxsbkN4WDF0N3BFV3prT1dvNlBnTjlvU0xMS1NFdDdJc2FmUFJIR1ExYjg4ZXJ2VWslMkZjdFcwSnUwY1MxYUR4V2YxYzlmcXhXd09NczJ3V09xNHBXY0FVMlpGR1IxNnByJTJGV1l4Wjl4UHdod0d2UDdEaEZBJTNEJTNE&tld=klarmobil.de&dy=1&fu=https%253A%252F%252Fwww.klarmobil.de%252F&pu=https%253A%252F%252Fwww.klarmobil.de%252F&ceid=74566e58-4ebe-4d55-afa8-30c6148d8601&dtycbr=4172&gra=1&grs=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&grv=2

HTTP Response

200

HTTP Request

GET https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3

HTTP Request

GET https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302

HTTP Response

302

HTTP Request

GET https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Request

GET https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3

HTTP Response

302

HTTP Response

302

HTTP Request

GET https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-IREEO440ri7VeQCkCD0tLUL5tqwYdDmTFHghMA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA&google_error=3

HTTP Response

302

HTTP Request

GET https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

302
141.226.124.48:443

trc-events.taboola.com

tls

msedge.exe

2.8kB
5.7kB
15
13
142.251.39.98:443

https://googleads.g.doubleclick.net/pagead/landing?gcs=G111&gcd=G111&rnd=1555723574.1692604644&url=https%3A%2F%2Fwww.klarmobil.de%2F&gtm=45Fe38g0n71P3MCX5&auid=2007220147.1692604644

tls, http2

msedge.exe

1.8kB
7.0kB
13
14

HTTP Request

GET https://googleads.g.doubleclick.net/pagead/landing?gcs=G111&gcd=G111&rnd=1555723574.1692604644&url=https%3A%2F%2Fwww.klarmobil.de%2F&gtm=45Fe38g0n71P3MCX5&auid=2007220147.1692604644
142.250.102.155:443

https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-50664136-1&cid=151341609.1692604644&jid=467565557&_gid=1989015307.1692604644&gjid=1583076024&_v=j101&z=1905971574

tls, http2

msedge.exe

1.8kB
7.1kB
12
12

HTTP Request

GET https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-50664136-1&cid=151341609.1692604644&jid=467565557&_gid=1989015307.1692604644&gjid=1583076024&_v=j101&z=1905971574
142.250.179.134:443

https://8508168.fls.doubleclick.net/activityi;src=8508168;type=all_sess;cat=alles0;ord=7e96669e2fbc4f4b9c08f2aca0e083b6;auiddc=2007220147.1692604644;u15=7e96669e2fbc4f4b9c08f2aca0e083b6;u14=undefined;gtm=45Fe38g0;gcs=G111;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;epver=2;~oref=https%3A%2F%2Fwww.klarmobil.de%2F?

tls, http2

msedge.exe

2.0kB
7.1kB
12
14

HTTP Request

GET https://8508168.fls.doubleclick.net/activityi;src=8508168;type=all_sess;cat=alles0;ord=7e96669e2fbc4f4b9c08f2aca0e083b6;auiddc=2007220147.1692604644;u15=7e96669e2fbc4f4b9c08f2aca0e083b6;u14=undefined;gtm=45Fe38g0;gcs=G111;uaa=x86;uamb=0;uam=;uap=Windows;uapv=10.0;uaw=0;epver=2;~oref=https%3A%2F%2Fwww.klarmobil.de%2F?
185.89.210.46:443

ib.adnxs.com

tls

msedge.exe

4.9kB
6.0kB
16
18
3.72.245.72:443

x.bidswitch.net

tls

msedge.exe

2.4kB
6.7kB
15
18
37.252.172.123:443

secure.adnxs.com

tls

msedge.exe

4.9kB
6.0kB
17
16
213.19.162.80:443

pixel.rubiconproject.com

tls

msedge.exe

3.6kB
4.8kB
12
10
185.86.139.93:443

https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.3kB
5.3kB
13
11

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Cxop0I40ri7VeQCkCD0tLUL5tqzLUsXVrBNINw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200
104.85.0.23:443

https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.1kB
6.3kB
13
17

HTTP Request

GET https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k--sfSeI40ri7VeQCkCD0tLUL5tqwhaXRM8wSrSA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
54.81.223.21:443

match.sharethrough.com

tls

msedge.exe

2.4kB
6.3kB
13
12
23.207.99.171:443

https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.4kB
8.1kB
17
23

HTTP Request

GET https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://criteo-sync.teads.tv/um?eid=80&uid=k-olq-Lo40ri7VeQCkCD0tLUL5tqy4hKhWn4o_ug&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200
3.71.149.231:443

https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.4kB
5.7kB
16
15

HTTP Request

GET https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Request

GET https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Request

GET https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-kV7Bc440ri7VeQCkCD0tLUL5tqx-v4kiOoyblA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
35.71.139.29:443

eb2.3lift.com

tls

msedge.exe

2.5kB
8.2kB
15
20
185.255.84.153:443

https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.3kB
8.0kB
13
14

HTTP Request

GET https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-N2nS6I40ri7VeQCkCD0tLUL5tqxOHn6jC1dhBQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200
185.80.39.216:443

https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http

msedge.exe

3.4kB
7.8kB
12
14

HTTP Request

GET https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k--vekeI40ri7VeQCkCD0tLUL5tqzDdqG0fSY6fQ&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200
52.214.255.27:443

dpm.demdex.net

tls

msedge.exe

3.5kB
7.7kB
11
11
34.117.157.22:443

https://matching.ivitrack.com/sync?realm=criteo&uid=k-PMXAvY40ri7VeQCkCD0tLUL5tqxS3ATImt9UTw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

1.9kB
6.2kB
13
15

HTTP Request

GET https://matching.ivitrack.com/sync?realm=criteo&uid=k-PMXAvY40ri7VeQCkCD0tLUL5tqxS3ATImt9UTw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
18.215.76.18:443

https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.0kB
6.5kB
12
13

HTTP Request

GET https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BUvEUY40ri7VeQCkCD0tLUL5tqzolNMtHD8UyA&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA
64.74.236.191:443

sync.outbrain.com

tls

msedge.exe

867 B
3.9kB
5
4
35.174.68.73:443

exchange.mediavine.com

tls

msedge.exe

1.8kB
7.1kB
11
10
185.64.190.80:443

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

tls, http2

msedge.exe

2.1kB
5.6kB
13
16

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-4TNe9440ri7VeQCkCD0tLUL5tqzVOw8-GNofKw&gdpr=1&gdpr_consent=CPw2poAPw2poAAGABCENDRCgAP_AAAAAAAQ4GawCAAKgAnABUAFsAYYBLQF5wM0AzUAAAAgSAGABUAYYC8x0AMACoAwwF5koAIC8ykAIACoC8wAA.f_gAAAAAAAAA

HTTP Response

200
52.214.255.27:443

dpm.demdex.net

tls

msedge.exe

2.0kB
1.1kB
6
5
52.214.255.27:443

dpm.demdex.net

tls

msedge.exe

746 B
309 B
4
4
52.214.255.27:443

dpm.demdex.net

tls

746 B
269 B
4
3
52.92.34.144:443

s3-eu-west-1.amazonaws.com

tls

3.3kB
156 B
6
3
204.79.197.200:443

bat.bing.com

tls

1.7kB
13.1kB
11
17
104.22.24.87:443

content.zeotap.com

tls

2.1kB
32.6kB
22
32

8.8.8.8:53

www.callmobile.de

dns

msedge.exe

63 B
95 B
1
1

DNS Request

www.callmobile.de

DNS Response

104.18.36.84

172.64.151.172
8.8.8.8:53

59.128.231.4.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

59.128.231.4.in-addr.arpa
8.8.8.8:53

254.7.248.8.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

254.7.248.8.in-addr.arpa
8.8.8.8:53

www.klarmobil.de

dns

msedge.exe

62 B
94 B
1
1

DNS Request

www.klarmobil.de

DNS Response

172.64.155.78

104.18.32.178
8.8.8.8:53

images.ctfassets.net

dns

msedge.exe

66 B
170 B
1
1

DNS Request

images.ctfassets.net

DNS Response

52.222.139.47

52.222.139.123

52.222.139.72

52.222.139.122
8.8.8.8:53

media.mdm.klarmobil.de

dns

msedge.exe

68 B
132 B
1
1

DNS Request

media.mdm.klarmobil.de

DNS Response

13.227.219.97

13.227.219.75

13.227.219.38

13.227.219.44
8.8.8.8:53

tm.dp.klarmobil.de

dns

msedge.exe

64 B
128 B
1
1

DNS Request

tm.dp.klarmobil.de

DNS Response

216.239.34.21

216.239.36.21

216.239.32.21

216.239.38.21
8.8.8.8:53

3xhb4v7cn4.kameleoon.eu

dns

msedge.exe

69 B
139 B
1
1

DNS Request

3xhb4v7cn4.kameleoon.eu

DNS Response

95.217.57.95
8.8.8.8:53

kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com

dns

msedge.exe

99 B
248 B
1
1

DNS Request

kmr-trusted-shops-badge.s3.eu-central-1.amazonaws.com

DNS Response

52.219.169.222

3.5.139.142

52.219.171.30

3.5.135.186

52.219.170.130

52.219.170.94

52.219.75.164

52.219.169.82
8.8.8.8:53

o571954.ingest.sentry.io

dns

msedge.exe

70 B
86 B
1
1

DNS Request

o571954.ingest.sentry.io

DNS Response

34.120.195.249
8.8.8.8:53

embed.binkies3d.com

dns

msedge.exe

65 B
296 B
1
1

DNS Request

embed.binkies3d.com

DNS Response

20.50.2.79
8.8.8.8:53

cdn.privacy-mgmt.com

dns

msedge.exe

66 B
130 B
1
1

DNS Request

cdn.privacy-mgmt.com

DNS Response

108.156.60.116

108.156.60.119

108.156.60.77

108.156.60.66
8.8.8.8:53

67.31.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

67.31.126.40.in-addr.arpa
8.8.8.8:53

84.36.18.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

84.36.18.104.in-addr.arpa
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

95.221.229.192.in-addr.arpa
8.8.8.8:53

78.155.64.172.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

78.155.64.172.in-addr.arpa
8.8.8.8:53

131.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

131.179.250.142.in-addr.arpa
8.8.8.8:53

47.139.222.52.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

47.139.222.52.in-addr.arpa
8.8.8.8:53

97.219.227.13.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

97.219.227.13.in-addr.arpa
8.8.8.8:53

apps.identrust.com

dns

msedge.exe

64 B
165 B
1
1

DNS Request

apps.identrust.com

DNS Response

2.18.121.70

2.18.121.68
8.8.8.8:53

data.kameleoon.io

dns

msedge.exe

63 B
264 B
1
1

DNS Request

data.kameleoon.io

DNS Response

95.217.77.229

95.217.77.225

65.109.119.234

65.109.119.141

95.217.77.226

65.109.119.232

95.217.77.235

95.217.77.232

65.109.36.162

95.217.77.219
8.8.8.8:53

249.195.120.34.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

249.195.120.34.in-addr.arpa
8.8.8.8:53

222.169.219.52.in-addr.arpa

dns

73 B
120 B
1
1

DNS Request

222.169.219.52.in-addr.arpa
8.8.8.8:53

206.23.217.172.in-addr.arpa

dns

73 B
173 B
1
1

DNS Request

206.23.217.172.in-addr.arpa
8.8.8.8:53

bt.fraud0.com

dns

msedge.exe

59 B
75 B
1
1

DNS Request

bt.fraud0.com

DNS Response

34.149.199.84
8.8.8.8:53

21.34.239.216.in-addr.arpa

dns

72 B
107 B
1
1

DNS Request

21.34.239.216.in-addr.arpa
8.8.8.8:53

79.2.50.20.in-addr.arpa

dns

69 B
155 B
1
1

DNS Request

79.2.50.20.in-addr.arpa
8.8.8.8:53

95.57.217.95.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

95.57.217.95.in-addr.arpa
8.8.8.8:53

116.60.156.108.in-addr.arpa

dns

73 B
130 B
1
1

DNS Request

116.60.156.108.in-addr.arpa
8.8.8.8:53

8.36.251.142.in-addr.arpa

dns

71 B
109 B
1
1

DNS Request

8.36.251.142.in-addr.arpa
8.8.8.8:53

67.211.227.13.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

67.211.227.13.in-addr.arpa
8.8.8.8:53

70.121.18.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

70.121.18.2.in-addr.arpa
8.8.8.8:53

229.77.217.95.in-addr.arpa

dns

72 B
114 B
1
1

DNS Request

229.77.217.95.in-addr.arpa
8.8.8.8:53

84.199.149.34.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

84.199.149.34.in-addr.arpa
8.8.8.8:53

o1173614.ingest.sentry.io

dns

msedge.exe

71 B
87 B
1
1

DNS Request

o1173614.ingest.sentry.io

DNS Response

34.120.195.249
8.8.8.8:53

az589851.vo.msecnd.net

dns

msedge.exe

68 B
112 B
1
1

DNS Request

az589851.vo.msecnd.net

DNS Response

72.21.81.200
8.8.8.8:53

200.81.21.72.in-addr.arpa

dns

71 B
142 B
1
1

DNS Request

200.81.21.72.in-addr.arpa
8.8.8.8:53

api.fraud0.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.fraud0.com

DNS Response

34.160.30.67
8.8.8.8:53

binkiesproductionweu.servicebus.windows.net

dns

msedge.exe

89 B
148 B
1
1

DNS Request

binkiesproductionweu.servicebus.windows.net

DNS Response

104.46.32.56
224.0.0.251:5353

msedge.exe

578 B
9
8.8.8.8:53

67.30.160.34.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

67.30.160.34.in-addr.arpa
8.8.8.8:53

56.32.46.104.in-addr.arpa

dns

71 B
145 B
1
1

DNS Request

56.32.46.104.in-addr.arpa
8.8.8.8:53

widgets.trustedshops.com

dns

msedge.exe

70 B
134 B
1
1

DNS Request

widgets.trustedshops.com

DNS Response

52.222.139.84

52.222.139.45

52.222.139.33

52.222.139.58
8.8.8.8:53

storage.googleapis.com

dns

msedge.exe

68 B
244 B
1
1

DNS Request

storage.googleapis.com

DNS Response

216.58.214.16

142.250.179.144

142.251.36.48

172.217.168.240

142.250.179.176

142.250.179.208

142.251.36.16

142.251.39.112

172.217.168.208

172.217.23.208

216.58.208.112
34.160.30.67:443

api.fraud0.com

https

msedge.exe

3.9kB
5.5kB
8
10
216.58.214.16:443

storage.googleapis.com

https

msedge.exe

4.0kB
13.8kB
13
17
8.8.8.8:53

84.139.222.52.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

84.139.222.52.in-addr.arpa
8.8.8.8:53

16.214.58.216.in-addr.arpa

dns

72 B
155 B
1
1

DNS Request

16.214.58.216.in-addr.arpa
8.8.8.8:53

2.136.104.51.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

2.136.104.51.in-addr.arpa
8.8.8.8:53

86.23.85.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

86.23.85.13.in-addr.arpa
34.120.195.249:443

o1173614.ingest.sentry.io

https

msedge.exe

3.8kB
4.3kB
6
8
8.8.8.8:53

connect.facebook.net

dns

msedge.exe

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

157.240.247.8
8.8.8.8:53

dynamic.criteo.com

dns

msedge.exe

64 B
115 B
1
1

DNS Request

dynamic.criteo.com

DNS Response

178.250.7.16
8.8.8.8:53

amplify.outbrain.com

dns

msedge.exe

66 B
163 B
1
1

DNS Request

amplify.outbrain.com

DNS Response

96.16.109.182
8.8.8.8:53

cdn.taboola.com

dns

msedge.exe

61 B
167 B
1
1

DNS Request

cdn.taboola.com

DNS Response

151.101.1.44

151.101.65.44

151.101.129.44

151.101.193.44
8.8.8.8:53

tr.outbrain.com

dns

msedge.exe

61 B
131 B
1
1

DNS Request

tr.outbrain.com

DNS Response

64.74.236.63
8.8.8.8:53

8.247.240.157.in-addr.arpa

dns

72 B
116 B
1
1

DNS Request

8.247.240.157.in-addr.arpa
8.8.8.8:53

44.1.101.151.in-addr.arpa

dns

71 B
131 B
1
1

DNS Request

44.1.101.151.in-addr.arpa
34.160.30.67:443

api.fraud0.com

https

msedge.exe

3.0kB
5.4kB
7
9
8.8.8.8:53

trc.taboola.com

dns

msedge.exe

61 B
177 B
1
1

DNS Request

trc.taboola.com

DNS Response

151.101.1.44

151.101.65.44

151.101.129.44

151.101.193.44
8.8.8.8:53

gum.criteo.com

dns

msedge.exe

60 B
107 B
1
1

DNS Request

gum.criteo.com

DNS Response

178.250.1.11
8.8.8.8:53

wave.outbrain.com

dns

msedge.exe

63 B
160 B
1
1

DNS Request

wave.outbrain.com

DNS Response

23.57.82.102
8.8.8.8:53

www.facebook.com

dns

msedge.exe

62 B
107 B
1
1

DNS Request

www.facebook.com

DNS Response

157.240.201.35
8.8.8.8:53

dnacdn.net

dns

msedge.exe

56 B
72 B
1
1

DNS Request

dnacdn.net

DNS Response

74.119.119.139
8.8.8.8:53

ag.gbc.criteo.com

dns

msedge.exe

63 B
536 B
1
1

DNS Request

ag.gbc.criteo.com

DNS Response

185.235.85.174

185.235.85.184

185.235.85.185

185.235.85.181

185.235.85.190

185.235.85.188

185.235.85.194

185.235.85.180

185.235.85.189

185.235.85.173

185.235.85.169

185.235.85.175

185.235.85.186

185.235.85.192

185.235.85.178

185.235.85.179

185.235.85.176

185.235.85.191

185.235.85.193

185.235.85.170

185.235.85.168

185.235.85.195

185.235.85.187

185.235.85.177

185.235.85.183

185.235.85.172

185.235.85.182

185.235.85.171
8.8.8.8:53

gem.gbc.criteo.com

dns

msedge.exe

64 B
538 B
1
1

DNS Request

gem.gbc.criteo.com

DNS Response

185.235.86.216

185.235.86.204

185.235.86.208

185.235.86.211

185.235.86.222

185.235.86.202

185.235.86.196

185.235.86.203

185.235.86.200

185.235.86.215

185.235.86.206

185.235.86.214

185.235.86.201

185.235.86.209

185.235.86.221

185.235.86.199

185.235.86.205

185.235.86.210

185.235.86.197

185.235.86.212

185.235.86.213

185.235.86.218

185.235.86.220

185.235.86.219

185.235.86.223

185.235.86.198

185.235.86.217

185.235.86.207
8.8.8.8:53

16.7.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

16.7.250.178.in-addr.arpa
8.8.8.8:53

182.109.16.96.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

182.109.16.96.in-addr.arpa
8.8.8.8:53

63.236.74.64.in-addr.arpa

dns

71 B
101 B
1
1

DNS Request

63.236.74.64.in-addr.arpa
8.8.8.8:53

11.1.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

11.1.250.178.in-addr.arpa
8.8.8.8:53

102.82.57.23.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

102.82.57.23.in-addr.arpa
34.120.195.249:443

o1173614.ingest.sentry.io

https

msedge.exe

2.7kB
4.3kB
6
8
8.8.8.8:53

35.201.240.157.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

35.201.240.157.in-addr.arpa
8.8.8.8:53

216.86.235.185.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

216.86.235.185.in-addr.arpa
8.8.8.8:53

139.119.119.74.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

139.119.119.74.in-addr.arpa
8.8.8.8:53

174.85.235.185.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

174.85.235.185.in-addr.arpa
8.8.8.8:53

sslwidget.criteo.com

dns

msedge.exe

66 B
116 B
1
1

DNS Request

sslwidget.criteo.com

DNS Response

178.250.1.9
8.8.8.8:53

trc-events.taboola.com

dns

msedge.exe

68 B
136 B
1
1

DNS Request

trc-events.taboola.com

DNS Response

141.226.124.48
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

73 B
89 B
1
1

DNS Request

googleads.g.doubleclick.net

DNS Response

142.251.39.98
8.8.8.8:53

stats.g.doubleclick.net

dns

msedge.exe

69 B
133 B
1
1

DNS Request

stats.g.doubleclick.net

DNS Response

142.250.102.155

142.250.102.157

142.250.102.154

142.250.102.156
8.8.8.8:53

cm.g.doubleclick.net

dns

msedge.exe

66 B
82 B
1
1

DNS Request

cm.g.doubleclick.net

DNS Response

142.250.179.162
142.251.39.98:443

googleads.g.doubleclick.net

https

msedge.exe

2.5kB
8.5kB
7
11
8.8.8.8:53

196.168.217.172.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

196.168.217.172.in-addr.arpa
8.8.8.8:53

9.1.250.178.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

9.1.250.178.in-addr.arpa
8.8.8.8:53

48.124.226.141.in-addr.arpa

dns

73 B
133 B
1
1

DNS Request

48.124.226.141.in-addr.arpa
8.8.8.8:53

98.39.251.142.in-addr.arpa

dns

72 B
110 B
1
1

DNS Request

98.39.251.142.in-addr.arpa
8.8.8.8:53

155.102.250.142.in-addr.arpa

dns

74 B
108 B
1
1

DNS Request

155.102.250.142.in-addr.arpa
8.8.8.8:53

8508168.fls.doubleclick.net

dns

msedge.exe

73 B
110 B
1
1

DNS Request

8508168.fls.doubleclick.net

DNS Response

142.250.179.134
8.8.8.8:53

x.bidswitch.net

dns

msedge.exe

61 B
262 B
1
1

DNS Request

x.bidswitch.net

DNS Response

3.72.245.72

18.196.11.58

18.193.190.7

18.159.70.92

18.196.96.246

18.196.122.173

35.157.211.238

52.28.2.204
8.8.8.8:53

ib.adnxs.com

dns

msedge.exe

58 B
311 B
1
1

DNS Request

ib.adnxs.com

DNS Response

185.89.210.46

185.89.210.244

185.89.210.180

185.89.210.212

185.89.210.153

185.89.210.90

185.89.211.12

185.89.211.84

185.89.210.82

185.89.210.20

185.89.210.122

185.89.211.116
8.8.8.8:53

secure.adnxs.com

dns

msedge.exe

62 B
235 B
1
1

DNS Request

secure.adnxs.com

DNS Response

37.252.172.123

37.252.171.149

37.252.171.21

37.252.171.52

37.252.171.85

37.252.173.215

37.252.171.53
8.8.8.8:53

contextual.media.net

dns

msedge.exe

66 B
82 B
1
1

DNS Request

contextual.media.net

DNS Response

104.85.0.23
8.8.8.8:53

pixel.rubiconproject.com

dns

msedge.exe

70 B
151 B
1
1

DNS Request

pixel.rubiconproject.com

DNS Response

213.19.162.80

213.19.162.90
8.8.8.8:53

match.sharethrough.com

dns

msedge.exe

68 B
230 B
1
1

DNS Request

match.sharethrough.com

DNS Response

54.81.223.21

34.197.10.159

3.227.175.66

34.196.26.137

52.21.121.77

3.233.86.45

3.215.102.121

18.214.20.208
8.8.8.8:53

sync-t1.taboola.com

dns

msedge.exe

65 B
127 B
1
1

DNS Request

sync-t1.taboola.com

DNS Response

141.226.124.48
8.8.8.8:53

rtb-csync.smartadserver.com

dns

msedge.exe

73 B
254 B
1
1

DNS Request

rtb-csync.smartadserver.com

DNS Response

185.86.139.93

185.86.139.101

185.86.139.94

185.86.139.104

185.86.139.102

185.86.139.103
8.8.8.8:53

criteo-sync.teads.tv

dns

msedge.exe

66 B
162 B
1
1

DNS Request

criteo-sync.teads.tv

DNS Response

23.207.99.171
142.250.179.134:443

8508168.fls.doubleclick.net

https

msedge.exe

4.1kB
7.6kB
10
11
8.8.8.8:53

eb2.3lift.com

dns

msedge.exe

59 B
138 B
1
1

DNS Request

eb2.3lift.com

DNS Response

35.71.139.29

52.223.22.214
8.8.8.8:53

ups.analytics.yahoo.com

dns

msedge.exe

69 B
254 B
1
1

DNS Request

ups.analytics.yahoo.com

DNS Response

3.71.149.231

3.75.62.37
8.8.8.8:53

visitor.omnitagjs.com

dns

msedge.exe

67 B
127 B
1
1

DNS Request

visitor.omnitagjs.com

DNS Response

185.255.84.153

185.255.84.152
8.8.8.8:53

r.casalemedia.com

dns

msedge.exe

63 B
167 B
1
1

DNS Request

r.casalemedia.com

DNS Response

185.80.39.216
8.8.8.8:53

dpm.demdex.net

dns

msedge.exe

60 B
298 B
1
1

DNS Request

dpm.demdex.net

DNS Response

52.214.255.27

52.50.247.156

18.200.152.171

52.215.85.23

63.35.31.5

52.210.221.217

54.154.199.42

52.211.186.134
8.8.8.8:53

dis.criteo.com

dns

msedge.exe

60 B
110 B
1
1

DNS Request

dis.criteo.com

DNS Response

178.250.1.9
8.8.8.8:53

ad.360yield.com

dns

msedge.exe

61 B
228 B
1
1

DNS Request

ad.360yield.com

DNS Response

18.215.76.18

3.214.218.211

34.201.254.73

3.225.131.246

107.22.87.99

52.23.63.120

34.207.4.245

3.229.116.83
8.8.8.8:53

matching.ivitrack.com

dns

msedge.exe

67 B
101 B
1
1

DNS Request

matching.ivitrack.com

DNS Response

34.117.157.22
8.8.8.8:53

exchange.mediavine.com

dns

msedge.exe

68 B
196 B
1
1

DNS Request

exchange.mediavine.com

DNS Response

35.174.68.73

107.21.2.40

52.203.164.158

34.226.31.75

44.199.45.100

3.222.170.15

3.214.168.216

50.16.65.194
8.8.8.8:53

sync.outbrain.com

dns

msedge.exe

63 B
133 B
1
1

DNS Request

sync.outbrain.com

DNS Response

64.74.236.191
8.8.8.8:53

simage2.pubmatic.com

dns

msedge.exe

66 B
137 B
1
1

DNS Request

simage2.pubmatic.com

DNS Response

185.64.190.80
8.8.8.8:53

content.zeotap.com

dns

64 B
112 B
1
1

DNS Request

content.zeotap.com

DNS Response

104.22.24.87

104.22.25.87

172.67.13.182
8.8.8.8:53

bat.bing.com

dns

58 B
162 B
1
1

DNS Request

bat.bing.com

DNS Response

204.79.197.200

13.107.21.200
8.8.8.8:53

s3-eu-west-1.amazonaws.com

dns

72 B
200 B
1
1

DNS Request

s3-eu-west-1.amazonaws.com

DNS Response

52.92.34.144

52.218.24.163

52.218.61.187

52.218.36.154

52.218.57.179

52.218.0.43

52.218.53.2

52.92.32.192
8.8.8.8:53

criteo-partners.tremorhub.com

dns

75 B
1

DNS Request

criteo-partners.tremorhub.com

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

Filesize
1KB

MD5
55540a230bdab55187a841cfe1aa1545

SHA1
363e4734f757bdeb89868efe94907774a327695e

SHA256
d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

SHA512
c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

Filesize
230B

MD5
a4ee57f96c793e610c7dc2580bf61379

SHA1
f74257dfbf8abf7b3ea4cac99736d42fa8b3165c

SHA256
b168ae92d6ae11bf3f89f651b5e51285ec9e22468a23cfa7be90ec358ed10747

SHA512
93eec84adc6a4f2ce0b2616e8f92488155edd0ae9523c8e49bd386540d22eb2ee2d775f213c6f1af784975cc8d77bca1433e1c85b30c8a37b75c846eeb0a2de4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
3423d7e71b832850019e032730997f69

SHA1
bbc91ba3960fb8f7f2d5a190e6585010675d9061

SHA256
53770e40359b9738d8898520d7e4a57c28498edddbadf76ec4a599837aa0c649

SHA512
03d5fee4152300d6c5e9f72c059955c944c7e6d207e433e9fdd693639e63ea699a01696d7bbf56d2033fd52ad260c9ae36a2c5c888112d81bf7e04a3f273e65d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
137KB

MD5
df65a64db9f1b760c9e2ccc166c7ef64

SHA1
4f558ca7cd5e152dd5bc096930d7ded8f3f5c6a7

SHA256
85aac4aca7a4842ea043c5c64203f5876589b41850e58c4372266119268d64de

SHA512
1989849bd3c4b4e1a1dec072a17c940257b8285ed6652367092e8e89e3c8793749a0996329b104bc714b99be4f92e4546f881a2961a09404ac40c9e8479a05e9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
43KB

MD5
b712513b8380ec914a71d65594e2d844

SHA1
88b8e07ccd24e0e7ee3690a4db9d06f41a1ecece

SHA256
27e70529f28f6accd402fc015627c53649a792568e55ec2337da14f42b3d2890

SHA512
c88b223b6fe56998ba050b13c9d8b34443c848df3d432649a803f81c674321ad9634883a0eb5fbb1275c560c11adf69a5207909064b7d991966e4da989e9e9f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
43KB

MD5
894b3f95dc5cd288512cfb710438183c

SHA1
bf627e6325ad61e3a504c01782df4f748fb7dd0e

SHA256
7006f16adb1475faacf692319a0a9339189d254f1e592b5a2b3e6963d4c93dd5

SHA512
33e9c8cc62d5e796730931e3797b08d141e8ff795136efa9202881088ade9ecbd4953e0dc49c5c0d62eed0f6d3489964bb6f40b7e13d2bcb98f5c4703ab3edf6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014

Filesize
90KB

MD5
156ebdfc2b6705bcad4356b4cd8f122c

SHA1
33921ce0de7aeeb8df7515f12189419a42ecb9a7

SHA256
de7c498f1577b200bdb3e07e286a9a0294dd00b0bc72bfb75efb6a56b1d6e1be

SHA512
edab7b1778aa3d47b10c541668726c0d8d2c947009b953f700cdcaf078352a0937d4cc9e4a04c524e87da60a79f8e74ca869a66d4d9bf50a05e5a77b17073f3f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
504B

MD5
8722006dfcf2bec8f37ab352b239f14a

SHA1
890efd3e2ec3c472d0d15a523762e1445e07c9c9

SHA256
69c7b6659326e970308139fbbf5dae909972801e0f93e04fe6727bf30df5aeac

SHA512
f63c56936e1a6cc369a2839fe3b51b0352b58735986810098b2ad9d7a4d59909d4c09483c4518df4da2dfb767ab7b5e6b1ce4eb6944e8b310f11bd10ddf09d96

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
111B

MD5
285252a2f6327d41eab203dc2f402c67

SHA1
acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

SHA256
5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

SHA512
11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
c216cd967719424974cd90251936c57f

SHA1
802703a15f79c60f3522b5b4482bdb5266f39c44

SHA256
29040ea189c3ad8f5250fbff447b2b8ca021f7f7969b7136e9c113b975560940

SHA512
fdad36777ba31be42da4fb9d81f39581eec982864bd36b4e2040ed64bf1bd1a56ae00ff189b2f3a1d846950fc739deac5529178d83969ac2a2a5e6b489a5736d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
f4d9142f26094e26702f49339e7c34cc

SHA1
2d4524c4840549cf2dc7b86fec2d8ea6edf84061

SHA256
881aabe08defad1c7446c19f4e1de1015dec5ff63fcfebf6f0ab49b1613a1a39

SHA512
65b31589cc143070c22b18ee8d9135e7c5a2e0bf1b9814a2f70bda84be92731a92e54867cb877bcc0a8cafd182cbdea2a9c2ad3a41afe34c3f00033267fe4099

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
10KB

MD5
568c1cfa4f9ef9e582a99c16780e5024

SHA1
f5ec1c167da639c123de478cd63bf431df4ba82b

SHA256
4ca859b5b6dce786b123fcf05d783de3889a66d91c0b8b8eb62603e99a3619c0

SHA512
83fd68cf76a0de61acb1af176c399dcf0016a3ee9984e6245c3fec196e1ba9682c316afbfef9bf111028274b82b6d5d42397a0a783054c46b2740b26b9cafda9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
24KB

MD5
0e78f9a3ece93ae9434c64ea2bff51dc

SHA1
a0e4c75fe32417fe2df705987df5817326e1b3b9

SHA256
5c8ce4455f2a3e5f36f30e7100f85bdd5e44336a8312278769f89f68b8d60e68

SHA512
9d1686f0b38e3326ad036c8b218b61428204910f586dccf8b62ecbed09190f7664a719a89a6fbc0ecb429aecf5dd0ec06de44be3a1510369e427bde0626fd51d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
168B

MD5
461f163e2b870f8f16d3b51d31ad7d5d

SHA1
93f55b597f81bea6eed5245f58dbd36f70a0401d

SHA256
caf6cd75566c5172df4b6eb468646bf29d02f9ef888a4278f1c50444d392227b

SHA512
0684dfa5bb52a2034c7b47f547ea20c4c826f28633f204e214ca7e86e926f8b050b6640ae9079037c77f57d1578500c8c4369f8edc6459a66e46e45c3cf483d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe585b2b.TMP

Filesize
48B

MD5
b7881a15e146da63642725b8904b5720

SHA1
b8165f8c59328909a02d84451a9b82359c3ddfaa

SHA256
5cfa7098485bfa727ed50574b95d811088319d3a6e956469eddd0ae40b87696e

SHA512
2d2fbf21187518a90e40fc98b814dc8ef4a9f46285cd9dd325eb87a3b395044c1a98d707915118b74586d9e75f66de91e3de278f5d9a319e52d538097aac3304

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
ef5ce1ebee0c3955326ee84e26d45b71

SHA1
7e2f2b1acdbc8a2b13af2e3461f0386515f158b9

SHA256
39500d9db2e606fa0bca377df96f5f1fcf8345901d37efcb78fb291a70f35aeb

SHA512
21e73f111efff2ffa24118b0e6a3c974ca5d1eafd102b0d3177f45959cbace688eb5226fc55c7099fbd9f01986ae354b0d4f3d8d959a7f352df00d4a06fb1981

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5854a3.TMP

Filesize
1KB

MD5
0884c3b86347f71c9db220e143ebe595

SHA1
c38ff5181d16597904ae26dbcbaa09d88a3e7912

SHA256
4112dc4a0e1116c4d8620796b6def80f607d832035df601b6571180e512d9b50

SHA512
b644fdae4eba7f486ce81901c16ddc6645c450f2f6a08fda346f5b4c96f84f17cabd7ba73da58d3bb9d810d8b40601025a31a56be6731febeccb39024b56badb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
15114e39ffa2219ef4442bd3aa468f7d

SHA1
15cb36e066df6cd9f1fc8a17382134bb4cccd0dd

SHA256
fed4c43f6aa926572c5354e827667b74430ce8a39e8c88bfcb7ba1dde796dfae

SHA512
f1460584d0a04c2b9a224345d1d830f937a241108d93933480001acf80bc7d625134dbf46573bb92e6ecf1cb58c4ad25b9378eb5721ee09fcb1a1e886e7f5518

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
12KB

MD5
90ed5369ae8f8740f2d593f929af3ee0

SHA1
87bde6c56fe4a162517daba5f1cd20f9cfed7bfc

SHA256
65a7522ad7c6b61413d92f8cf1590ef1e2b89ae208b397a9e1f18e0180989e13

SHA512
f42d0d1356a824f8afac6ad21d8b9b253a265b4aa8cc8934db5861eb6904f1a152006cd7c0b95a07049e97abc519af7961cdfed920b1e10762b96aff861245d7

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request