| | 188.114.96.1 | 200 OK | 0 B |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 17:48:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 24 Apr 2024 18:48:13 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://w2.hajime-noippo.com/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rNM5NQ%2BGhDo6sLS0UQeZ2RjbPOwSbihREfjH9D8i7ihorSPfRmbv2cC%2F0NDdzW6CeYnivO%2Bg7HOIwDlu2v73ALem0eAEdGbJ1KASop17croZdrlmGKXG66XbXplcdhMz4J9Hy5RzdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8797ec45db9456ba-OSL
alt-svc: h2=":443"; ma=60
|
|
| | 188.114.96.1 | 200 OK | 42 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (26805) Hashf602b3f1d75d6524bb3b210a057f75c5 0752f38bf7d3a67b62e1a96ba56bf6449f874997 e95a9dc4cca01dabebfe0eaafaa2cedf7a13f24913cbac195056f71161e1d065
GET / HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
link: <https://w2.hajime-noippo.com/wp-json/>; rel="https://api.w.org/", <https://w2.hajime-noippo.com/wp-json/wp/v2/pages/5196>; rel="alternate"; type="application/json", <https://w2.hajime-noippo.com/>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uAoQzA%2FF5A3b6NfGVLk1x6BhwUdPIuidfg9nFesnJO65x4k5AC2P%2BuAQqQKuLn%2FY%2BDJJpOSwJQNVjxcfldg7FeiKvjU8gsMjHo2t1IehfF6gxFuZS%2F9GnbusM97R5QgTs1uB2QDIuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec338c40568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif | 188.114.96.1 | 200 OK | 42 B |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: image/gif
content-length: 42
last-modified: Tue, 13 Feb 2024 23:52:10 GMT
etag: "65cc00aa-2a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TttEn2i0KW30ZdaueL%2BE4Oz%2B0taZwKtiTaiOqMS0XJAG%2FD6IFkBrTFCgW5iN9V%2F%2FNYuQembKgurB7nUglD0q6Qp%2Bl5sohJK54K%2B%2F54FfXknhwN0bjNhUk0dNwzlxHoMvJC3MWa1UuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec579942712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-XMQE0WCWY0 | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-XMQE0WCWY0 IP142.250.74.168:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size102 kB (102250 bytes) Hash077e31ca342b7b20213ccdd0cf0a4eb3 c5b667bc956ab731249a7658f6eda898d1923c13 bd0e83317c60b5187792f74d657f994a77aa03472f73605f5a7c67850b9b11ac
GET /gtag/js?id=G-XMQE0WCWY0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 17:48:15 GMT
expires: Wed, 24 Apr 2024 17:48:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hajime-noippo.com/wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png | 104.21.3.125 | 301 Moved Permanently | 167 B |
URL GET HTTP/2hajime-noippo.com/wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png IP104.21.3.125:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png HTTP/1.1
Host: hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: text/html
content-length: 167
location: https://w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png
cache-control: max-age=3600
expires: Wed, 24 Apr 2024 18:48:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G0%2FR3qjlS9KKHjmTa1c9%2F3pkhZBqBq1PuBPNOnXygQ7X%2F0LJVsX2z3BhflsVsTEJks1rOgREvpD8O6J1qm5JqdZalN2Jop2rdgzl8Uwhuu8X3Ym3Enzcpmf7otbNh9izMZ66fQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec59d841712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_7f6e2eaf9644b24dc2d448ef7bc98690.css?ver=5.1.3 | 188.114.96.1 | 200 OK | 9.2 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_7f6e2eaf9644b24dc2d448ef7bc98690.css?ver=5.1.3 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash8a7c7f6b3ab4d0fc8f0f0f500513ce7c b6d7c6413c2effad5d6977f7849fb2e3d6da12e2 fbe0f5082583c05c3329dcb5f514e57286911e089ac0edaaa896ee09aa4ae3b9
GET /wp-content/cache/autoptimize/css/autoptimize_single_7f6e2eaf9644b24dc2d448ef7bc98690.css?ver=5.1.3 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/css
last-modified: Tue, 31 Oct 2023 21:36:30 GMT
etag: W/"6541735e-13b40"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VTEEW8PYBRDBCgmX165OVO%2BuOGLPMFK0FYJqFXsyCg8Eb4M5SaeqTZT6G0N4QcO69kVrQZbv8EQ3IPPx4knZMzTpM5%2B5NCtqY9S6AqCRrmei38pQpcjvucUViJ3S3SHRpbkqqsvzuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5768d8712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_713672a3c6ece71e068926b13ae1e55e.css?ver=1.4.0 | 188.114.96.1 | 200 OK | 532 B |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_713672a3c6ece71e068926b13ae1e55e.css?ver=1.4.0 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with no line terminators Hash398b3779c4d505952bfa3acf1b680851 1776eb491198955b78584299c273714849588fd7 172638a23c0d57350f8c097f80fd9dcf58cecaf5217cd70b8fa552b68a2a62e9
GET /wp-content/cache/autoptimize/css/autoptimize_single_713672a3c6ece71e068926b13ae1e55e.css?ver=1.4.0 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/css
last-modified: Fri, 22 Sep 2023 10:21:03 GMT
etag: W/"650d6a8f-4a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jxuYgmeKNRJWhj72qW0OKn6KusrQmt0Jh7qgJG2oMhUJKgA4konv08kF7SEcVDgtdmjOrQWE0z7WM62KYpH%2BkAHTLdzWnUYozMj6aKZHG2f1n0mGimQle93C%2F4A3Rjis0vjdkdaKKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5768db712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/themes/toivo-lite/fonts/genericons/genericons/genericons.min.css?ver=3.3 | 188.114.96.1 | 200 OK | 16 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/themes/toivo-lite/fonts/genericons/genericons/genericons.min.css?ver=3.3 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (26109), with no line terminators Hash30da4ad078bba7fc071bfb8a797a17b1 2890f436c30e9bcd2a6a49fb70cc518f44d9c40b 60dd61f6082bdbbe685019e397738bc0c56c6d4407854b734745de7be0b13ee9
GET /wp-content/themes/toivo-lite/fonts/genericons/genericons/genericons.min.css?ver=3.3 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 00:04:08 GMT
etag: W/"64e69e78-65fd"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o1MAySE9dXfO4FAlggJniWR6fquc1k1%2BhXsv4aVo05VJsF1%2FjUF0gdYCG%2FsyrtLWVEvAdfhy7NZdBCGlx8jxL9OFdXmF7g2N50%2BorGNq%2B9H5BX7iLq5zvD3g%2Fbkc%2BB41y0VK48aR%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5768eb712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 16 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/css
last-modified: Thu, 04 Apr 2024 02:04:43 GMT
etag: W/"660e0abb-1bae5"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uqezGcf3REdY%2FGtHIjcZFvQxMxsOy6dbecH1lsn8RfcgN9df%2BozRDek7%2FLAKJROE9z2Yk6j%2FN17YNRKoF2niatGNMR%2F6i%2F1s%2BS83M99RjVvrZgr824XwZVArkO65iGIsoqOI1aGG1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5768d6712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/js/autoptimize_single_1b4f585909aa1be075f32370c0255988.js | 188.114.96.1 | 200 OK | 23 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/js/autoptimize_single_1b4f585909aa1be075f32370c0255988.js IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (563) Hashdbf05285842ca074f12dd0146481df7a a080f9f499e98e5d13b70afa37f21c5911adf212 db0cd174f4b92548d337b26d627bd1a6cdf433ebf14db53cfced287b85f9dbb8
GET /wp-content/cache/autoptimize/js/autoptimize_single_1b4f585909aa1be075f32370c0255988.js HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Fri, 22 Sep 2023 10:21:03 GMT
etag: W/"650d6a8f-257"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hf8imCc4z4Rk2oXdutPTHATZ50eveLjFEYp8gyqZPxSLGPpAlhku%2BCm4UUQ9xNZ9TcGDlqqfAd%2FlHdI9ihv%2B1qR5tosDH%2FYHdOg6P3FCp%2BcCXtvlBMJOqQBm0TFROgRKRPMALu3FMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec579944712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/css/loading.gif | 104.21.3.125 | 301 Moved Permanently | 167 B |
URL GET HTTP/2hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/css/loading.gif IP104.21.3.125:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /wp-content/plugins/a3-lazy-load/assets/css/loading.gif HTTP/1.1
Host: hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: text/html
content-length: 167
location: https://w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/css/loading.gif
cache-control: max-age=3600
expires: Wed, 24 Apr 2024 18:48:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f%2Foxzd848lb7GD4jirI1bq7WZP8mLtjD4dTvm2H5kGepVfJfziqm8B%2BdekGNhmhNrp3iZhSDUbSDsrZM2AQiieUGNRkW8xur1rFFfLlQiSSmXJ3adIaB58gcagWtccxo%2Ff8E%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec59c838712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.pubfuture-ad.com/v2/unit/pt.js | 104.26.4.231 | 200 OK | 55 kB |
URL GET HTTP/2cdn.pubfuture-ad.com/v2/unit/pt.js IP104.26.4.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash20ecdcc58b93f84db89dadba682e6227 99bcd53bbce43a393ff98b4a4e133d09681bc803 bdc1d51e1e7d9317fd46854c0c822c4b78c88f1a201abec416b2af3067e90051
GET /v2/unit/pt.js HTTP/1.1
Host: cdn.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=134472
access-control-allow-origin: *
etag: W/"20d48-ag0Jt2pPDbTolR0JdLKSxdXS/wY"
vary: Accept-Encoding
cache-control: max-age=7200
cf-cache-status: HIT
age: 226842
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gVzItgrqMR6HdM0D7JJcMG3neRcFiy3y4PI3QOMttDZhgSzVbFy%2FEN7iXDGFy1vuLb0wOD%2FBiKBQW9MgSIdMFQYdPRg%2FQlpI1lGn4jasSU9zjyTU1A6m%2BGv1HeyG6S2qFsrKYmmY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec57fb4b1c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Lato%3A300%2C400%2C700%2C300italic%2C400italic%2C700italic%7CRaleway%3A400%2C600%2C500%2C700%2C800&subset=latin%2Clatin-ext | 216.58.207.234 | 200 OK | 1.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Lato%3A300%2C400%2C700%2C300italic%2C400italic%2C700italic%7CRaleway%3A400%2C600%2C500%2C700%2C800&subset=latin%2Clatin-ext IP216.58.207.234:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hashe1005ca21be87580c564a2aed490d334 f21384e0a5a60b0388283d52633b10fbda74892e 8d0d87a7ddf99f2e16cec08f99c5ff1e3eb28f009ffaea3d7cc8c898b64f07f8
GET /css?family=Lato%3A300%2C400%2C700%2C300italic%2C400italic%2C700italic%7CRaleway%3A400%2C600%2C500%2C700%2C800&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 17:48:15 GMT
date: Wed, 24 Apr 2024 17:48:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| protagcdn.com/s/hajime-noippo.com/site.js | 104.26.7.142 | 200 OK | 178 kB |
URL GET HTTP/2protagcdn.com/s/hajime-noippo.com/site.js IP104.26.7.142:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectprotagcdn.com FingerprintE5:49:AE:5C:29:62:08:B9:64:8F:C0:0D:0E:97:B8:2F:D5:86:30:DC ValiditySun, 21 Apr 2024 09:27:45 GMT - Sat, 20 Jul 2024 09:27:44 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators Size178 kB (177765 bytes) Hash6531962fbbe85f9afc6de7b2322608f3 cc934c8cd2760f3ec8e60e3a4f15793b6354ac42 951c8a506fdaa935e2652d5341834dc107694f9e54b0183660f86e8478466d58
GET /s/hajime-noippo.com/site.js HTTP/1.1
Host: protagcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/javascript
cache-control: public, max-age=1800
cf-bgj: minify
cf-polished: origSize=458392
expires: Wed, 24 Apr 2024 18:18:16 GMT
last-modified: Thu, 14 Sep 2023 08:00:18 GMT
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DsoxvdhjnYj7enWjBJ0AGCBtzxKhguizA34vntQf998sj%2BqOcNfB%2BgDpOl%2BAPnxOHandRWlrcvF6ceZ4%2FE9bAwS7DS6GpY4Z5TNPD2qODh7A42lVj2yWIXe2syvib14%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec57ff1156c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 519990
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/themes/toivo-lite/js/responsive-nav.min.js?ver=1.2.0 | 188.114.96.1 | 200 OK | 7.7 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/themes/toivo-lite/js/responsive-nav.min.js?ver=1.2.0 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (6485), with no line terminators Hash7506fab9b1972ca905d53b97ae42c816 5f9fd5a5f5b57d4836c8fb3d0e738ffff5b02bce ee875d1b0a82057344852ee7a374ac88a66e6b38da6b096b2fd3ed5719cd4f21
GET /wp-content/themes/toivo-lite/js/responsive-nav.min.js?ver=1.2.0 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 00:04:08 GMT
etag: W/"64e69e78-1955"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8xYE147b49sD2qsBATde%2BQGZHwtCuBxiWI02L0ddCO2nH6d2F9QDaxlcpJzwyUavtWBWJhWDHFzJK2bSsY%2FS7PyuIUizIDgduYCHZ7H38%2Ba47v%2FhpAYx1KdviQOq33pWiA5Txk8J3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec579945712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png | 188.114.96.1 | 200 OK | 1.0 MB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typePNG image data, 1920 x 498, 8-bit/color RGBA, non-interlaced Size1.0 MB (1035305 bytes) Hash4a8aec1381f0f8f079cf5040ba07e3f3 9ae35610bdd7db86cab2dbd2592aa801c04eb803 115b210520e779db0b38ed1c4c2b8d367db3851c15880d4a7c8cd5aeda3c9e0d
GET /wp-content/uploads/2023/08/cropped-164354502-hajime-no-ippo-wallpapers.png HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: image/png
content-length: 1035305
last-modified: Thu, 24 Aug 2023 16:46:17 GMT
etag: "64e78959-fcc29"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lFTFzwRXyv6tVHIXBiPiP1Pu8EYFo1tw%2FxaojRxr7y%2BMG%2BSyAMzU7F7DKAVzRRT%2FOMMPUR6g5BY946PusLTYTdVPD%2Bx2M0%2BguPDEPoZlx1a0mi64zihx%2FVLzl6C9PQwsrbripGqnwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5b1f90712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.onesignal.com/sdks/OneSignalSDK.js?ver=1.0.0 | 104.17.111.223 | 200 OK | 3.4 kB |
URL GET HTTP/2cdn.onesignal.com/sdks/OneSignalSDK.js?ver=1.0.0 IP104.17.111.223:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectonesignal.com Fingerprint28:4D:B2:BB:68:03:29:A7:D8:CB:4B:48:D4:14:BD:A4:4C:0F:D8:70 ValidityMon, 01 Apr 2024 23:12:28 GMT - Sun, 30 Jun 2024 23:12:27 GMT
File typeJavaScript source, ASCII text, with very long lines (9163) Hasha87c48d211877c49b878679b2e3cdab8 e75653dd0156806682e39abe8b1323ed40d840ca 4191d89ec03bce5dc273716075335e31851031184b0fff0ab9fc900a8442019f
GET /sdks/OneSignalSDK.js?ver=1.0.0 HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/javascript
etag: W/"a87c48d211877c49b878679b2e3cdab8"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 815
expires: Sat, 27 Apr 2024 17:48:16 GMT
cache-control: public, max-age=259200
set-cookie: __cf_bm=xfj68qWrtRM71DTP_bwUek080edysZV.FRaJlXh45tI-1713980896-1.0.1.1-ZcT1dFazootjrUZI5Hdos_.BObPA3YBMNpWqQa3oUNd3KE23Rp562IS2ExyY0EOkMaEBdGvX2ZGaBko0YThZPw; path=/; expires=Wed, 24-Apr-24 18:18:16 GMT; domain=.onesignal.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 8797ec57e97ab50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/gid.js?userId=008048c667a64600ee0a89aca7d8ccd2 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=008048c667a64600ee0a89aca7d8ccd2 IP139.45.195.8:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hashf9bad4c92678ec9b460ad32d34d51e32 d9207bf2e82a6f8bcfce3e52d1f80888cdb99207 035177512c28f9870f5eb05d24f49c3b3abdd015f498944251242e90257b1150
GET /gid.js?userId=008048c667a64600ee0a89aca7d8ccd2 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://w2.hajime-noippo.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008048c667a64600ee0a89aca7d8ccd2; expires=Thu, 24 Apr 2025 17:48:16 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/css/loading.gif | 188.114.96.1 | 200 OK | 1.7 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/css/loading.gif IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeGIF image data, version 89a, 32 x 32 Hash265808cc54404f22de9785c713e0cb7e bf3d1b71957caee1c6273061ad00c99c5d785a0f b6e4dff920e21e3f436a014140d01d43c97177e007556ede69f772f08cb7a7ec
GET /wp-content/plugins/a3-lazy-load/assets/css/loading.gif HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_XMQE0WCWY0=GS1.1.1713980896.1.0.1713980896.0.0.0; _ga=GA1.1.1091121213.1713980897
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: image/gif
content-length: 1690
last-modified: Tue, 13 Feb 2024 23:52:10 GMT
etag: "65cc00aa-69a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RlVek6p%2FF4ropSS33UjjYJU4%2Bjnd7XRFfHkJmMHlYFU4tMHLLVgOXJ%2BqI3K4WEWVJkKJjh4ajNsc%2B5Hr%2FIr0vBOh2yiWeKn7%2BA1GjoOa3NMbIgc9OosnA0EjJbrTR1Y31Ga6Wa0aNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5ca991712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ip2geo.pubfuture-ad.com/detail | 104.26.5.231 | 200 OK | 33 B |
URL GET HTTP/2ip2geo.pubfuture-ad.com/detail IP104.26.5.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
Hash007af5ffed017e37943df31888ef8666 2877ed4c460ba9164b3625e32502a9d83a2a1d4a bfb9d45766b6f87ee2c5f55862cdffe168aa7df0ff6ed0917b0fbcb035fdcdd2
GET /detail HTTP/1.1
Host: ip2geo.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/json; charset=utf-8
content-length: 33
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"21-KHftTEYLqRZLNiXjJQKp2DoqHUo"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xKzJoHEuPHTydGZK0n0VHgLrvUitNJ%2FEbyOfWTfLa9fV0oxU%2FaKCJzfChsPuufvlc7SE5UBc4RES6qzLWRdNhJYZCd8x4%2FyZDa6yZxZmhFgUY9lTQ6d9aEQot7NVaMJYXxp%2FpMsUtpec"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec5d2e910b4d-OSL
X-Firefox-Spdy: h2
|
|
| bygliscortor.com/401/6807769 | 139.45.197.242 | 200 OK | 76 kB |
URL GET HTTP/2bygliscortor.com/401/6807769 IP139.45.197.242:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectbygliscortor.com Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT
File typegzip compressed data, max speed, from Unix Hash45e761f102ecf34f54fc1a9296d46019 f7f2c80fa13dd5be0e2b0f7b4147fa5be1a7e01d 02b172af0bc2b5944ad4784f8c649dc4c259264d43de67e6ae1f54f87d7c4acb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /401/6807769 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/javascript
x-trace-id: b7fd38f63809983e871ff4eefee1b515
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=0300482c6bf8427ae04dcc3cf8befd34; expires=Thu, 24 Apr 2025 17:48:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-hajime-no-ippo-png-removebg-preview-32x32.png | 188.114.96.1 | 200 OK | 1.9 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-hajime-no-ippo-png-removebg-preview-32x32.png IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash22de262681580f7079f05c66d7eb50ec 302de2ec970f2f9e73f4503222ce9f1562af1282 2b960e64b1224dfdbfe71e018c3e3c52b247b788680b08a521807b14b75434ea
GET /wp-content/uploads/2023/08/cropped-hajime-no-ippo-png-removebg-preview-32x32.png HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: _ga_XMQE0WCWY0=GS1.1.1713980896.1.0.1713980896.0.0.0; _ga=GA1.1.1091121213.1713980897
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: image/png
content-length: 1873
last-modified: Thu, 24 Aug 2023 16:43:45 GMT
etag: "64e788c1-751"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4745
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EiivQ2YeX2R0geJWim7AJLMN%2BoE39ch7oTEWmHQfl6VURbPdNNrC5bqNQQwkPSE%2BHV5SJJWinzGJHSLgyI3ylgg6C0fCUUT4laPHXVOGuqB2st4jdEsuzd%2Bx7RSEB%2BC8TkjRMFP3xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5f2d06712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/uploads/2023/08/manga-importado-hajime-no-ippo-100-japones-remate-vol-107-D_NQ_NP_960140-MLM26894168393_022018-F.jpg | 188.114.96.1 | 200 OK | 47 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/uploads/2023/08/manga-importado-hajime-no-ippo-100-japones-remate-vol-107-D_NQ_NP_960140-MLM26894168393_022018-F.jpg IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], progressive, precision 8, 404x630, components 3 Hash8e3a4727e54c94a919803b39fa3a4a1e c16415d8be110cee0b721c4ee5baa137b7ba763b 304b2876acabc3a427b5263f64fba615f40540db23c32166fbcc9ac95ca95a8e
GET /wp-content/uploads/2023/08/manga-importado-hajime-no-ippo-100-japones-remate-vol-107-D_NQ_NP_960140-MLM26894168393_022018-F.jpg HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: _ga_XMQE0WCWY0=GS1.1.1713980896.1.0.1713980896.0.0.0; _ga=GA1.1.1091121213.1713980897; prefetchAd_6807767=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: image/jpeg
content-length: 47337
last-modified: Thu, 24 Aug 2023 13:17:34 GMT
etag: "64e7586e-b8e9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3642
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WLjPXCty6ReCpY1CPFtfKn0Tii7hAjAStp2J1RnPx%2BhdhToKxg8KLUO%2BW%2BtTaU0xpOVQeMyBsqEQwDCF3NhYDrTha2I3Tqzl3ymDaZvsV9iJwlEeEYsQhhPvEUrc%2FMcZA6fzQlK0Gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5fbdc1712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/uploads/2023/08/05affe8247e94c03a2bf380b95935d5f-tv-anime-anime-comics-720x1099-1.jpg | 188.114.96.1 | 200 OK | 69 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/uploads/2023/08/05affe8247e94c03a2bf380b95935d5f-tv-anime-anime-comics-720x1099-1.jpg IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], progressive, precision 8, 504x769, components 3 Hashcf9e1d9db913b72deab29a3030615d80 e3755efccf9c0cbdb23de58d69f850d7e9fc01d1 6de06aa209661ac4db19074094b5443abaed0c90ac6f223e5dec47a7a09897c7
GET /wp-content/uploads/2023/08/05affe8247e94c03a2bf380b95935d5f-tv-anime-anime-comics-720x1099-1.jpg HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: _ga_XMQE0WCWY0=GS1.1.1713980896.1.0.1713980896.0.0.0; _ga=GA1.1.1091121213.1713980897; prefetchAd_6807767=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: image/jpeg
content-length: 68615
last-modified: Thu, 24 Aug 2023 13:17:22 GMT
etag: "64e75862-10c07"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3642
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ao19Eg3Iu4P5d7h0Aqg%2BecIXWUVOfb3vWYSOaRPC92wRObd9kmVaWpPBCuHwAsS0cpWPLznjd4WBy%2BWBhLwinwHk5IZI6Kqvki%2BwersdTvg28LFfdTZYDd46eYADgdDNvBfsIuxdSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5fbdc8712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ip2geo.pubfuture-ad.com/detail | 104.26.5.231 | 200 OK | 33 B |
URL GET HTTP/2ip2geo.pubfuture-ad.com/detail IP104.26.5.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
Hash007af5ffed017e37943df31888ef8666 2877ed4c460ba9164b3625e32502a9d83a2a1d4a bfb9d45766b6f87ee2c5f55862cdffe168aa7df0ff6ed0917b0fbcb035fdcdd2
GET /detail HTTP/1.1
Host: ip2geo.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/json; charset=utf-8
content-length: 33
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"21-KHftTEYLqRZLNiXjJQKp2DoqHUo"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sWQCtqeSa5ej07J9rTOv6pDPfpW6n8UyIu%2FM%2B%2F3UHGgzRRMBNPmR5SnnV9mi4mFsYIr38fzFV%2B5gf01lP5iO6zKPOf4vmSszEhDZ641rXP1UpMjCqbXphgWBoRnautt1oRSLpMQu0pdS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec5d2e920b4d-OSL
X-Firefox-Spdy: h2
|
|
| bygliscortor.com/500/6807769?excludes=&oaid=008048c667a64600ee0a89aca7d8ccd2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.242 | 200 OK | 0 B |
URL GET HTTP/2bygliscortor.com/500/6807769?excludes=&oaid=008048c667a64600ee0a89aca7d8ccd2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.242:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectbygliscortor.com Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /500/6807769?excludes=&oaid=008048c667a64600ee0a89aca7d8ccd2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:17 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://w2.hajime-noippo.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| tzegilo.com/stattag.js | 104.21.11.245 | 200 OK | 7.5 kB |
IP104.21.11.245:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecttzegilo.com Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1 ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT
File typeJavaScript source, ASCII text, with very long lines (18486) Hash70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zQR0w76RstE41EdccfvQOpEyB4gHFYfsAxiC66%2BuuA8eXXRdf%2BgkEGixFCBr%2F7g5bvXABzDyhxfGgv9L50t2N6nwkE4ve1M6cW73gAJQ2t9AC5ir8EU5050tOvZOTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec60ff690b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| phoenix-widget.com/static/js/builder/w.js?site_id=65f42a14da59d8a56b1626aa&widget_id=65f42a2cda59d8a56b1626ac | 188.166.21.205 | 200 OK | 432 B |
URL GET HTTP/1.1phoenix-widget.com/static/js/builder/w.js?site_id=65f42a14da59d8a56b1626aa&widget_id=65f42a2cda59d8a56b1626ac IP188.166.21.205:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.phoenix-widget.com FingerprintB3:A6:FD:3B:D0:60:5D:61:53:71:EA:91:7B:F2:B2:5A:09:99:B7:E8 ValidityWed, 13 Mar 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
Hash3a2d0fae74d361d1a0179e71bad68b3b 32170f487f80372866db0645a6243f3efbf53737 b365ce4abb837b768c2e3cf65b7d6e0b67c43f45a50e73429adf01f170e7f2c1
GET /static/js/builder/w.js?site_id=65f42a14da59d8a56b1626aa&widget_id=65f42a2cda59d8a56b1626ac HTTP/1.1
Host: phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 24 Apr 2024 17:48:17 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 Jan 2024 08:35:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"65ba066e-3db"
Expires: Thu, 24 Apr 2025 17:48:17 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip
|
|
| s3.pubfuture.com/favicon.ico | 172.67.74.59 | | 33 kB |
URL GET s3.pubfuture.com/favicon.ico IP172.67.74.59:0
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectpubfuture.com Fingerprint3A:A6:B9:EB:56:80:6A:CB:64:E8:46:1A:9B:61:2D:3A:48:9F:64:CF ValidityWed, 17 Apr 2024 03:02:42 GMT - Tue, 16 Jul 2024 03:02:41 GMT
File typeMS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel Hash5a10f4d56ecc576aac7ab338278c298e 43fd680e40a370dfab4d09b37d8dfd16cdc2ec69 e649b7248c6654b2f9b8fbd1de068ac6ea88568a2a9f4e27c61de53db44ad0ac
GET /favicon.ico HTTP/1.1
Host: s3.pubfuture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: image/x-icon
last-modified: Thu, 22 Dec 2022 00:27:43 GMT
etag: W/"5a10f4d56ecc576aac7ab338278c298e"
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000
x-amz-version-id: .n9JmlnexdK9ep5pVHKNkPpiL2sUy5ge
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RQmGrIn9O6CqthpCSbHU33wKaW7n3YfxDwjRRo4yquj-4e7r9B6mGQ==
age: 285508
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tpXWEChk82nD7PsYQ0RmJqcPpDYYmnJt0DqQ20pzmh3qpw42gM0qTOjvCxLrUadYuShoiqZV1TAQWcnQV4NbP4dT8fA9HoBZWY8Y5ccUmEyprohYDCI%2BLwTK4W%2BWCzAUH94%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec6258e0712e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| offerimage.com/www/images/c41479298347dc5e044b6453cedc93e0.jpg | 104.22.33.172 | 200 OK | 14 kB |
URL GET HTTP/2offerimage.com/www/images/c41479298347dc5e044b6453cedc93e0.jpg IP104.22.33.172:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectofferimage.com Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72 ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3 Hashc41479298347dc5e044b6453cedc93e0 6614e54a248f131bcde21e8debf93d0d39cc1b21 73e812ffaa3b42c59e4fe1d523656a100679322ae616350ae6c24d0db8c02d00
GET /www/images/c41479298347dc5e044b6453cedc93e0.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: image/jpeg
content-length: 13521
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6486d956-34d1"
expires: Thu, 25 Apr 2024 13:26:16 GMT
last-modified: Mon, 12 Jun 2023 08:37:42 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 15721
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec641c0292fe-CPH
X-Firefox-Spdy: h2
|
|
| tags.h12-media.com/load2.js | 154.51.131.168 | 200 OK | 98 kB |
URL GET HTTP/2tags.h12-media.com/load2.js IP154.51.131.168:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.h12-media.com Fingerprint82:5A:A3:DD:A2:D3:8C:13:85:81:F5:96:29:70:B0:AE:4E:0C:F7:42 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65521), with CRLF line terminators Hashc4773796fa48dfe301cb3c7b89947a9c eb3adee4c8b2d725f1fee9940036efd1de6b8d3b 329c2cbbe3c28bf8740bbd9e7045e823aa1b1725b7a562d4c3a4b6e5a807c074
GET /load2.js HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=86400
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 15 Apr 2024 13:01:58 GMT
accept-ranges: bytes
etag: "4ca2cd19358fda1:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Wed, 24 Apr 2024 17:48:17 GMT
content-length: 97588
X-Firefox-Spdy: h2
|
|
| f.h12-media.com/?init=1&rnd=0.7065161830006609 | 172.67.198.122 | 200 OK | 21 B |
URL GET HTTP/2f.h12-media.com/?init=1&rnd=0.7065161830006609 IP172.67.198.122:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjecth12-media.com Fingerprint52:A5:48:6C:C0:CA:E6:47:B0:2D:64:C8:D1:BD:95:8D:19:92:45:60 ValidityMon, 15 Apr 2024 15:12:14 GMT - Sun, 14 Jul 2024 15:12:13 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?init=1&rnd=0.7065161830006609 HTTP/1.1
Host: f.h12-media.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:18 GMT
content-type: application/json; Charset=UTF-8
content-length: 21
cache-control: max-age=3600,private
access-control-allow-origin: *
x-powered-by: ARR/3.0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iCB%2Fd%2Br0BymiJ%2BFzXmgFWMK4L%2BMNY4siT1u8F7nYaQsdXYvvlnbk%2BVdnaIdJbXpnEbPVvY1HTsW1HH%2BuwAe5vAqcL30qZmdzqQD6KRck%2F3YemwNoqseJ%2BBbJGEKViRLtlQU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec650ff1b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tags.h12-media.com/v3/go.asp?payload=%7B%22mtoken%22%3A%2291.90.42.154%22%2C%22adtype%22%3A%22sticky%22%2C%22adformat%22%3A%22stickybottom%22%2C%22pubid%22%3A%22220ea9294d14f52b23bddd1aacfcef6b%22%2C%22adunitid%22%3A%2232490%22%2C%22topurl%22%3A%22https%3A%2F%2Fw2.hajime-noippo.com%2F%22%2C%22docref%22%3A%22%22%2C%22auction%22%3A%22e0dwk2jzuz7%22%2C%22pubsubid%22%3Anull%2C%22index%22%3A%221%22%2C%22ishidden%22%3Afalse%2C%22istopwindow%22%3Atrue%2C%22isscrollable%22%3Atrue%2C%22dayofweek%22%3A3%2C%22hourofday%22%3A17%2C%22clang%22%3A%22en-US%22%2C%22docdir%22%3A%22LTR%22%2C%22cdims%22%3A%5B1280%2C1024%5D%2C%22ddims%22%3A%5B1280%2C42451%5D%2C%22sbars%22%3A%5B0%2C0%5D%2C%22endpoint%22%3A%22https%3A%2F%2Ftags.h12-media.com%22%2C%22coords%22%3A%5B640%2C41149%5D%2C%22pwidth%22%3A%5B100%2C1%2C700%2C1260%2C1280%5D%2C%22pheight%22%3A%5Bnull%2C0%2C40496%2C40782%2C40846%2C41025%2C42451%5D%2C%22maxwidth%22%3A1280%2C%22maxheight%22%3A1024%7D&rnd=0.6428412872645017 | 154.51.131.168 | 200 OK | 21 kB |
URL GET HTTP/2tags.h12-media.com/v3/go.asp?payload=%7B%22mtoken%22%3A%2291.90.42.154%22%2C%22adtype%22%3A%22sticky%22%2C%22adformat%22%3A%22stickybottom%22%2C%22pubid%22%3A%22220ea9294d14f52b23bddd1aacfcef6b%22%2C%22adunitid%22%3A%2232490%22%2C%22topurl%22%3A%22https%3A%2F%2Fw2.hajime-noippo.com%2F%22%2C%22docref%22%3A%22%22%2C%22auction%22%3A%22e0dwk2jzuz7%22%2C%22pubsubid%22%3Anull%2C%22index%22%3A%221%22%2C%22ishidden%22%3Afalse%2C%22istopwindow%22%3Atrue%2C%22isscrollable%22%3Atrue%2C%22dayofweek%22%3A3%2C%22hourofday%22%3A17%2C%22clang%22%3A%22en-US%22%2C%22docdir%22%3A%22LTR%22%2C%22cdims%22%3A%5B1280%2C1024%5D%2C%22ddims%22%3A%5B1280%2C42451%5D%2C%22sbars%22%3A%5B0%2C0%5D%2C%22endpoint%22%3A%22https%3A%2F%2Ftags.h12-media.com%22%2C%22coords%22%3A%5B640%2C41149%5D%2C%22pwidth%22%3A%5B100%2C1%2C700%2C1260%2C1280%5D%2C%22pheight%22%3A%5Bnull%2C0%2C40496%2C40782%2C40846%2C41025%2C42451%5D%2C%22maxwidth%22%3A1280%2C%22maxheight%22%3A1024%7D&rnd=0.6428412872645017 IP154.51.131.168:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.h12-media.com Fingerprint82:5A:A3:DD:A2:D3:8C:13:85:81:F5:96:29:70:B0:AE:4E:0C:F7:42 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7224), with CRLF line terminators Hash09fbce91257e3584cd191b70ae6132cf 5fe2ac6f614a5dbba5a8890e6f9608f44051f74d ba73570c3a1c0b0cb77b7696d4f9e7508f6c281eb77ae90228e66336b0c63b24
GET /v3/go.asp?payload=%7B%22mtoken%22%3A%2291.90.42.154%22%2C%22adtype%22%3A%22sticky%22%2C%22adformat%22%3A%22stickybottom%22%2C%22pubid%22%3A%22220ea9294d14f52b23bddd1aacfcef6b%22%2C%22adunitid%22%3A%2232490%22%2C%22topurl%22%3A%22https%3A%2F%2Fw2.hajime-noippo.com%2F%22%2C%22docref%22%3A%22%22%2C%22auction%22%3A%22e0dwk2jzuz7%22%2C%22pubsubid%22%3Anull%2C%22index%22%3A%221%22%2C%22ishidden%22%3Afalse%2C%22istopwindow%22%3Atrue%2C%22isscrollable%22%3Atrue%2C%22dayofweek%22%3A3%2C%22hourofday%22%3A17%2C%22clang%22%3A%22en-US%22%2C%22docdir%22%3A%22LTR%22%2C%22cdims%22%3A%5B1280%2C1024%5D%2C%22ddims%22%3A%5B1280%2C42451%5D%2C%22sbars%22%3A%5B0%2C0%5D%2C%22endpoint%22%3A%22https%3A%2F%2Ftags.h12-media.com%22%2C%22coords%22%3A%5B640%2C41149%5D%2C%22pwidth%22%3A%5B100%2C1%2C700%2C1260%2C1280%5D%2C%22pheight%22%3A%5Bnull%2C0%2C40496%2C40782%2C40846%2C41025%2C42451%5D%2C%22maxwidth%22%3A1280%2C%22maxheight%22%3A1024%7D&rnd=0.6428412872645017 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-store,no-cache,max-age=0,private
content-type: application/x-javascript; Charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: 7thMile=558da462%2D6ef1%2D4fee%2Daa77%2D4aedf43e2e82; Max-Age=5000000; Domain=.h12-media.com; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin:
srg-x: x-.170
x-powered-by: ARR/3.0
date: Wed, 24 Apr 2024 17:48:17 GMT
content-length: 21312
X-Firefox-Spdy: h2
|
|
| api.phoenix-widget.com/api/v2/getdata?callback=phoenix39266&site_id=65f42a14da59d8a56b1626aa&widget_id=65f42a2cda59d8a56b1626ac&puid=973f5be05775383db02e60aa&url=https://w2.hajime-noippo.com/&preview=false | 143.244.196.143 | 200 OK | 1.1 kB |
URL GET HTTP/2api.phoenix-widget.com/api/v2/getdata?callback=phoenix39266&site_id=65f42a14da59d8a56b1626aa&widget_id=65f42a2cda59d8a56b1626ac&puid=973f5be05775383db02e60aa&url=https://w2.hajime-noippo.com/&preview=false IP143.244.196.143:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectapi.phoenix-widget.com Fingerprint88:FD:AA:3C:1B:77:C2:50:6E:83:BA:E7:F7:A0:9F:B5:A2:20:40:2A ValidityThu, 18 Apr 2024 05:59:18 GMT - Wed, 17 Jul 2024 05:59:17 GMT
Hashd9303a873cec8ec86fe110df0d175c2c 3d831d44e36efe6cd89d1bceb5e61015fc25b85c cb34a41c4d53d641e3c525eceebfd663b04d7527b0a3624ef3b2260371e73e39
GET /api/v2/getdata?callback=phoenix39266&site_id=65f42a14da59d8a56b1626aa&widget_id=65f42a2cda59d8a56b1626ac&puid=973f5be05775383db02e60aa&url=https://w2.hajime-noippo.com/&preview=false HTTP/1.1
Host: api.phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:18 GMT
content-type: application/json
content-length: 1101
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, *
access-control-allow-methods: GET
access-control-allow-origin: https://w2.hajime-noippo.com
amp-same-origin: true
etag: "3d831d44e36efe6cd89d1bceb5e61015fc25b85c"
set-cookie: puid=662945e120a1f2566d086c96; Path=/; Domain=phoenix-widget.com; Expires=Thu, 24 Apr 2025 17:48:17 GMT; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| cdn.pubfuture-ad.com/v3/config/adUnitConfig/650c40f15cc64a003fc67ee3?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v | 104.26.4.231 | 200 OK | 37 B |
URL GET HTTP/2cdn.pubfuture-ad.com/v3/config/adUnitConfig/650c40f15cc64a003fc67ee3?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v IP104.26.4.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
File typeASCII text, with no line terminators Hash28b537bc2f65cc8e38c9caf47b985b1c 486be247d614ca3a33bb4844dba0f07863693d3a 39acdc5ddebedfe73d0581940dd01e3db104549657fcc4ace42c738863a2d2e5
GET /v3/config/adUnitConfig/650c40f15cc64a003fc67ee3?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v HTTP/1.1
Host: cdn.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H0kp9KJz8Ca1F6v%2FvP%2B6xz2g27gjuTGpff9cy9E0nztGW0vixoPblC2RfQ98BJWNrgCDoA4W53W%2BfbWfuntZjnB3unSp9a0HKUrCc8BCxnOS1wrYAi%2BrD7wpL%2BDfwHUy7O6HZkz5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec5fab381c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ghb.adtelligent.com/v2/auction/ | 23.227.151.242 | 200 OK | 1.8 kB |
URL POST HTTP/1.1ghb.adtelligent.com/v2/auction/ IP23.227.151.242:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerZeroSSL Subjectghb.adtelligent.com FingerprintF5:43:CF:90:9B:4A:6C:AC:40:BA:BE:D9:17:AF:C1:56:2A:AD:A1:2D ValidityWed, 27 Mar 2024 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT
Hash6940c586ec02b06bf193c5589ce4520e ae53b5c929af136113fd8d9ce1cac5f6c9b5dc9b 22e3dca16205f28761bae30edbf9aa133371ecb98d0167d3b3bc4530c26b0aad
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
content-type: text/plain
Content-Length: 1979
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 24 Apr 2024 17:48:18 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1844
Access-Control-Allow-Origin: https://w2.hajime-noippo.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Content-Encoding: gzip
|
|
| bygliscortor.com/500/6807769?excludes=&oaid=008048c667a64600ee0a89aca7d8ccd2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.242 | 200 OK | 5.6 kB |
URL GET HTTP/2bygliscortor.com/500/6807769?excludes=&oaid=008048c667a64600ee0a89aca7d8ccd2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.242:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectbygliscortor.com Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT
File typegzip compressed data, max speed, from Unix Hash021e7ca1d2126d36fb18a5f327195b15 f2d11df2ca7a51254472f8844d6e6e9858803d92 5741b608cdd45e95cb408797a8a18e8cc71218eebc2cc68c74c2f5ea66614af1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /500/6807769?excludes=&oaid=008048c667a64600ee0a89aca7d8ccd2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: OAID=008048c667a64600ee0a89aca7d8ccd2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/javascript
x-trace-id: 09926508c499d872aa917f8c7e614521
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://w2.hajime-noippo.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008048c667a64600ee0a89aca7d8ccd2; expires=Thu, 24 Apr 2025 17:48:17 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| tags.h12-media.com/rtb/default.asp?pname=hb_result_v3&impdata=2qzII%5FBcvCh2JAgxEvEgoiMNwlMbXdre6ailPbL1rbJ6riuKk7TJ3UTdrXS8xoNHCyqK3CVW9FqKOzk9rn%5FZVNjKQ4xR%2DeBKM%2DWGe5YY6zd%5FdgOggK3zGgIBRgTfjzXdYJkvEcD0G9OAO9xti0ZbovZE%5FMQkT0XhxlixiS%2DcwUnN8DQn0RXOg6Sert0ob1OOj1%2Dumrakb4QioRB2M3p1giSTnKf0X%5FtXnRYnULRwLicn3rsFAQAm6iZGXIslOnaLmZbtb4VK%2DrqWZDNpcEQj8oZLr8PBd7lGVmofsKz81mmcU%5FhPj56hNOEHafYMj8c5K3KDDGecAeidBmBYMhEv%2DhMare1RXUiBeGuZaGOaXupFL2jMpXIwJ3xfEUMcvRpRXoo729HPBSgNdwSyNq0Aqbe4X1yrZR%2DDyfzGOrO6HGWufrqoXWJYnvVNXHcKNgroaKR6xCe1SKBl4ELh6SeikqvLg5SDMC2NJPJMvy%2DYEwPVZGfJjfj6GI8tPdvaukqhXwH4fNRzOhY7AJ6Sw9ln%5FW3qaGHwJiE%2DcelsMIxvKkbE01&size=970x250&wp=0%2E00001&bd=OBT&d=imgpinger | 154.51.131.168 | 200 OK | 164 B |
URL GET HTTP/2tags.h12-media.com/rtb/default.asp?pname=hb_result_v3&impdata=2qzII%5FBcvCh2JAgxEvEgoiMNwlMbXdre6ailPbL1rbJ6riuKk7TJ3UTdrXS8xoNHCyqK3CVW9FqKOzk9rn%5FZVNjKQ4xR%2DeBKM%2DWGe5YY6zd%5FdgOggK3zGgIBRgTfjzXdYJkvEcD0G9OAO9xti0ZbovZE%5FMQkT0XhxlixiS%2DcwUnN8DQn0RXOg6Sert0ob1OOj1%2Dumrakb4QioRB2M3p1giSTnKf0X%5FtXnRYnULRwLicn3rsFAQAm6iZGXIslOnaLmZbtb4VK%2DrqWZDNpcEQj8oZLr8PBd7lGVmofsKz81mmcU%5FhPj56hNOEHafYMj8c5K3KDDGecAeidBmBYMhEv%2DhMare1RXUiBeGuZaGOaXupFL2jMpXIwJ3xfEUMcvRpRXoo729HPBSgNdwSyNq0Aqbe4X1yrZR%2DDyfzGOrO6HGWufrqoXWJYnvVNXHcKNgroaKR6xCe1SKBl4ELh6SeikqvLg5SDMC2NJPJMvy%2DYEwPVZGfJjfj6GI8tPdvaukqhXwH4fNRzOhY7AJ6Sw9ln%5FW3qaGHwJiE%2DcelsMIxvKkbE01&size=970x250&wp=0%2E00001&bd=OBT&d=imgpinger IP154.51.131.168:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.h12-media.com Fingerprint82:5A:A3:DD:A2:D3:8C:13:85:81:F5:96:29:70:B0:AE:4E:0C:F7:42 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashad787f51cfc060d10732c65085cdff51 e3d7ae7828efb9bb7895b5cacd37d64e4ac769f8 032489211ad43a5c993c77904674600333a8c31a9771c969d749f791480f4921
GET /rtb/default.asp?pname=hb_result_v3&impdata=2qzII%5FBcvCh2JAgxEvEgoiMNwlMbXdre6ailPbL1rbJ6riuKk7TJ3UTdrXS8xoNHCyqK3CVW9FqKOzk9rn%5FZVNjKQ4xR%2DeBKM%2DWGe5YY6zd%5FdgOggK3zGgIBRgTfjzXdYJkvEcD0G9OAO9xti0ZbovZE%5FMQkT0XhxlixiS%2DcwUnN8DQn0RXOg6Sert0ob1OOj1%2Dumrakb4QioRB2M3p1giSTnKf0X%5FtXnRYnULRwLicn3rsFAQAm6iZGXIslOnaLmZbtb4VK%2DrqWZDNpcEQj8oZLr8PBd7lGVmofsKz81mmcU%5FhPj56hNOEHafYMj8c5K3KDDGecAeidBmBYMhEv%2DhMare1RXUiBeGuZaGOaXupFL2jMpXIwJ3xfEUMcvRpRXoo729HPBSgNdwSyNq0Aqbe4X1yrZR%2DDyfzGOrO6HGWufrqoXWJYnvVNXHcKNgroaKR6xCe1SKBl4ELh6SeikqvLg5SDMC2NJPJMvy%2DYEwPVZGfJjfj6GI8tPdvaukqhXwH4fNRzOhY7AJ6Sw9ln%5FW3qaGHwJiE%2DcelsMIxvKkbE01&size=970x250&wp=0%2E00001&bd=OBT&d=imgpinger HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: 7thMile=cd4aa55b%2Dd8e4%2D42ae%2D9b64%2Dbc73f2b7583d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-store,no-cache,max-age=0,private
content-type: application/x-javascript; Charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
srg-x: x-.180
x-powered-by: ARR/3.0
date: Wed, 24 Apr 2024 17:48:18 GMT
content-length: 164
X-Firefox-Spdy: h2
|
|
| prebid.a-mo.net/cchain/0?cb=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Dg%26ep%3D737%26traffic_source%3Dsnippet%26session%3D85C706E369C01038%26sp%3D519590%26pb%3D306874%26c%3D747403%26a%3D310531%26domain%3Dhttps%3A%2F%2Fw2.hajime-noippo.com%2F%26extuid%3D | 145.40.97.66 | 302 Found | 0 B |
URL GET HTTP/2prebid.a-mo.net/cchain/0?cb=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Dg%26ep%3D737%26traffic_source%3Dsnippet%26session%3D85C706E369C01038%26sp%3D519590%26pb%3D306874%26c%3D747403%26a%3D310531%26domain%3Dhttps%3A%2F%2Fw2.hajime-noippo.com%2F%26extuid%3D IP145.40.97.66:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subject*.a-mo.net FingerprintA1:19:DD:ED:07:5D:68:74:9A:FE:2B:DF:66:5F:D6:E6:F5:B4:1E:6C ValidityWed, 06 Mar 2024 11:52:06 GMT - Tue, 04 Jun 2024 11:52:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?cb=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Dg%26ep%3D737%26traffic_source%3Dsnippet%26session%3D85C706E369C01038%26sp%3D519590%26pb%3D306874%26c%3D747403%26a%3D310531%26domain%3Dhttps%3A%2F%2Fw2.hajime-noippo.com%2F%26extuid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 24 Apr 2024 17:48:20 GMT
location: https://sync.adtelligent.com/csync?t=g&ep=737&traffic_source=snippet&session=85C706E369C01038&sp=519590&pb=306874&c=747403&a=310531&domain=https://w2.hajime-noippo.com/&extuid=
server: envoy
vary: accept-encoding
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
|
|
| id.a-mx.com/sync/?tagId=&ref=null&u=https://w2.hajime-noippo.com/&tl=https://w2.hajime-noippo.com/&nf=1&rt=true&v=8.37.0&av=2.0&vg=pbjs&us_privacy=null&am=null&gdpr=1&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA | 79.127.216.47 | 302 Found | 0 B |
URL GET HTTP/1.1id.a-mx.com/sync/?tagId=&ref=null&u=https://w2.hajime-noippo.com/&tl=https://w2.hajime-noippo.com/&nf=1&rt=true&v=8.37.0&av=2.0&vg=pbjs&us_privacy=null&am=null&gdpr=1&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA IP79.127.216.47:443 ASN#60068 Datacamp Limited
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subjectid.a-mx.com FingerprintE1:1E:89:FE:28:E7:84:69:37:FD:D0:2F:18:B1:BB:F3:45:1E:1C:E9 ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/?tagId=&ref=null&u=https://w2.hajime-noippo.com/&tl=https://w2.hajime-noippo.com/&nf=1&rt=true&v=8.37.0&av=2.0&vg=pbjs&us_privacy=null&am=null&gdpr=1&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA HTTP/1.1
Host: id.a-mx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
content-type: text/plain
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
date: Wed, 24 Apr 2024 19:48:20 +0200
access-control-allow-credentials: true
access-control-allow-origin: https://w2.hajime-noippo.com
location: https://c3.a-mo.net/b?uid=7f15eccc-03ee-4258-b514-3d49af192407&sh=id.a-mx.com&?us_privacy=null&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1
content-length: 0
set-cookie: amdt_t=g::1713980900866; Max-Age=31536000; Expires=Thu, 24 Apr 2025 17:48:20 GMT; Path=/; Domain=a-mx.com; Secure; HTTPOnly; SameSite=None
amuid2=7f15eccc-03ee-4258-b514-3d49af192407; Max-Age=31536000; Expires=Thu, 24 Apr 2025 17:48:20 GMT; Path=/; Domain=a-mx.com; Secure; HTTPOnly; SameSite=None
|
|
| sync.adtelligent.com/csync?t=g&ep=737&traffic_source=snippet&session=85C706E369C01038&sp=519590&pb=306874&c=747403&a=310531&domain=https://w2.hajime-noippo.com/&extuid= | 185.83.71.234 | 200 OK | 43 B |
URL GET HTTP/1.1sync.adtelligent.com/csync?t=g&ep=737&traffic_source=snippet&session=85C706E369C01038&sp=519590&pb=306874&c=747403&a=310531&domain=https://w2.hajime-noippo.com/&extuid= IP185.83.71.234:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectsync.adtelligent.com Fingerprint2C:5E:FE:77:91:E0:9E:98:A2:D1:1A:0C:31:06:E4:A9:4C:23:EB:E7 ValidityTue, 19 Mar 2024 22:06:15 GMT - Mon, 17 Jun 2024 22:06:14 GMT
File typeGIF image data, version 89a, 1 x 1 Hashfc94fb0c3ed8a8f909dbc7630a0987ff 56d45f8a17f5078a20af9962c992ca4678450765 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /csync?t=g&ep=737&traffic_source=snippet&session=85C706E369C01038&sp=519590&pb=306874&c=747403&a=310531&domain=https://w2.hajime-noippo.com/&extuid= HTTP/1.1
Host: sync.adtelligent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Adtelligent
Date: Wed, 24 Apr 2024 17:48:20 GMT
Content-Type: image/gif
Content-Length: 43
Etag: d97ba0fdf36d259a
Set-Cookie: vmuid=d97ba0fdf36d259a; expires=Fri, 26 Jul 2024 17:48:20 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
|
|
| c3.a-mo.net/b?uid=7f15eccc-03ee-4258-b514-3d49af192407&sh=id.a-mx.com&?us_privacy=null&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1 | 79.127.227.46 | 302 Found | 0 B |
URL GET HTTP/1.1c3.a-mo.net/b?uid=7f15eccc-03ee-4258-b514-3d49af192407&sh=id.a-mx.com&?us_privacy=null&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1 IP79.127.227.46:443 ASN#60068 Datacamp Limited
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subjectid.a-mx.com FingerprintE1:1E:89:FE:28:E7:84:69:37:FD:D0:2F:18:B1:BB:F3:45:1E:1C:E9 ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?uid=7f15eccc-03ee-4258-b514-3d49af192407&sh=id.a-mx.com&?us_privacy=null&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: c3.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
content-type: text/plain
Referer: https://w2.hajime-noippo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
date: Wed, 24 Apr 2024 17:48:20 GMT
access-control-allow-credentials: true
access-control-allow-origin: null
location: https://id.a-mx.com/set?oid=7f15eccc-03ee-4258-b514-3d49af192407&uid=7f15eccc-03ee-4258-b514-3d49af192407&?gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1
content-length: 0
set-cookie: amdt_t=p::1713980900993; Max-Age=31536000; Expires=Thu, 24 Apr 2025 17:48:20 GMT; Path=/; Domain=a-mo.net; Secure; HTTPOnly; SameSite=None
amuid2=7f15eccc-03ee-4258-b514-3d49af192407; Max-Age=31536000; Expires=Thu, 24 Apr 2025 17:48:20 GMT; Path=/; Domain=a-mo.net; Secure; HTTPOnly; SameSite=None
|
|
| id.a-mx.com/set?oid=7f15eccc-03ee-4258-b514-3d49af192407&uid=7f15eccc-03ee-4258-b514-3d49af192407&?gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1 | 79.127.216.47 | 200 OK | 66 B |
URL GET HTTP/1.1id.a-mx.com/set?oid=7f15eccc-03ee-4258-b514-3d49af192407&uid=7f15eccc-03ee-4258-b514-3d49af192407&?gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1 IP79.127.216.47:443 ASN#60068 Datacamp Limited
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subjectid.a-mx.com FingerprintE1:1E:89:FE:28:E7:84:69:37:FD:D0:2F:18:B1:BB:F3:45:1E:1C:E9 ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hash03ee4e5679b588c139bda12607d9096a 344daa1ee10977ae4bf61890fa295f9061f88c5d 2e69b7ceecc39d7af1c3952e54695e7e3f9ad80fc75da288c15cb652f224b58b
GET /set?oid=7f15eccc-03ee-4258-b514-3d49af192407&uid=7f15eccc-03ee-4258-b514-3d49af192407&?gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: id.a-mx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
content-type: text/plain
Referer: https://w2.hajime-noippo.com/
DNT: 1
Connection: keep-alive
Cookie: amdt_t=g::1713980900866; amuid2=7f15eccc-03ee-4258-b514-3d49af192407
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Wed, 24 Apr 2024 19:48:20 +0200
access-control-allow-credentials: true
access-control-allow-origin: null
content-type: application/json
content-length: 66
|
|
| cdn.pubfuture-ad.com/v3/viewAbility/adUnitConfig/650c40f15cc64a003fc67ee3?abilityType=0&source=dzIuaGFqaW1lLW5vaXBwby5jb20v&device=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&countryCode=Tk8=&version=6&tagConfigId=651a45d2a7c0cd003d5eae1c | 104.26.4.231 | 204 No Content | 0 B |
URL GET HTTP/2cdn.pubfuture-ad.com/v3/viewAbility/adUnitConfig/650c40f15cc64a003fc67ee3?abilityType=0&source=dzIuaGFqaW1lLW5vaXBwby5jb20v&device=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&countryCode=Tk8=&version=6&tagConfigId=651a45d2a7c0cd003d5eae1c IP104.26.4.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/viewAbility/adUnitConfig/650c40f15cc64a003fc67ee3?abilityType=0&source=dzIuaGFqaW1lLW5vaXBwby5jb20v&device=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&countryCode=Tk8=&version=6&tagConfigId=651a45d2a7c0cd003d5eae1c HTTP/1.1
Host: cdn.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 24 Apr 2024 17:48:21 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2Bn9Ps9%2FcLOXALVKXUsRfqSuP%2FcezBt4%2BsTYVy1njHQqZizDeRCNkZOTa4d4ZGmikUmfLfJDyOn9YK%2BW4wcwGMtafKZgjfJ1hkURpOjbhkWQhof2XZPmAJObPDsXUL758DCd%2F7Sd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec794c201c16-OSL
X-Firefox-Spdy: h2
|
|
| bygliscortor.com/impression/Z9TUlHfGI_TF_UrojqoRp4Gh3LxZmNYzwUfiZqCdotoqKE0zUK0SJS1O0-_cdFnIacoKc4qCnWGAAZHIamMGhZE85gaWZTmqDYnDn8tOITvrtvKxcQA8HKKOl1KFFtArWD9YVc9amghXbKOl-OH4D6HJjRSLkAJoQXn9lo5En-iPKeam4NnUC2xSTBBXzJbRsdb0cFOMjsQiq3im3aTMT5VEe4faN2vtxyzAjQNMP-u_1eHXv0AOQZLgeGrwm8tit1aAcUcDKDcrrOL-8hGmZ1_JKe4Bt7ODkQ8HEys7qhq5w-m1I4gj8iPZ9RbNGs37J7n3-1yXYy_-dTALPlr5cpvIJ77HJmfdnrFEwEB9ML6eQUfFMUQ5xBbRkq1aGsLf42JEsuwK3bl9RBwOuVNv5c3M3zSes1VggNQYPlce9wkUPDktA1d3C7Yc2lZKs31Kfie0ZfiIWfqrnRfvsuRnPl1R-3ZS2QyIcomdFO6qYrOJ8gVaPS5tnCpCrCmZGPMde_1VDRG7mOL2b8KF-4SuVRrs2uJQZiz8z86Zmvt06mkEvHzwG3xAjs1DCqNtCJ107n8RXcSnbbTftPxBhVvqKrCi89bpDmciBKAJTQ==?_z=6807769&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.242 | 200 OK | 43 B |
URL GET HTTP/2bygliscortor.com/impression/Z9TUlHfGI_TF_UrojqoRp4Gh3LxZmNYzwUfiZqCdotoqKE0zUK0SJS1O0-_cdFnIacoKc4qCnWGAAZHIamMGhZE85gaWZTmqDYnDn8tOITvrtvKxcQA8HKKOl1KFFtArWD9YVc9amghXbKOl-OH4D6HJjRSLkAJoQXn9lo5En-iPKeam4NnUC2xSTBBXzJbRsdb0cFOMjsQiq3im3aTMT5VEe4faN2vtxyzAjQNMP-u_1eHXv0AOQZLgeGrwm8tit1aAcUcDKDcrrOL-8hGmZ1_JKe4Bt7ODkQ8HEys7qhq5w-m1I4gj8iPZ9RbNGs37J7n3-1yXYy_-dTALPlr5cpvIJ77HJmfdnrFEwEB9ML6eQUfFMUQ5xBbRkq1aGsLf42JEsuwK3bl9RBwOuVNv5c3M3zSes1VggNQYPlce9wkUPDktA1d3C7Yc2lZKs31Kfie0ZfiIWfqrnRfvsuRnPl1R-3ZS2QyIcomdFO6qYrOJ8gVaPS5tnCpCrCmZGPMde_1VDRG7mOL2b8KF-4SuVRrs2uJQZiz8z86Zmvt06mkEvHzwG3xAjs1DCqNtCJ107n8RXcSnbbTftPxBhVvqKrCi89bpDmciBKAJTQ==?_z=6807769&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.242:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectbygliscortor.com Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impression/Z9TUlHfGI_TF_UrojqoRp4Gh3LxZmNYzwUfiZqCdotoqKE0zUK0SJS1O0-_cdFnIacoKc4qCnWGAAZHIamMGhZE85gaWZTmqDYnDn8tOITvrtvKxcQA8HKKOl1KFFtArWD9YVc9amghXbKOl-OH4D6HJjRSLkAJoQXn9lo5En-iPKeam4NnUC2xSTBBXzJbRsdb0cFOMjsQiq3im3aTMT5VEe4faN2vtxyzAjQNMP-u_1eHXv0AOQZLgeGrwm8tit1aAcUcDKDcrrOL-8hGmZ1_JKe4Bt7ODkQ8HEys7qhq5w-m1I4gj8iPZ9RbNGs37J7n3-1yXYy_-dTALPlr5cpvIJ77HJmfdnrFEwEB9ML6eQUfFMUQ5xBbRkq1aGsLf42JEsuwK3bl9RBwOuVNv5c3M3zSes1VggNQYPlce9wkUPDktA1d3C7Yc2lZKs31Kfie0ZfiIWfqrnRfvsuRnPl1R-3ZS2QyIcomdFO6qYrOJ8gVaPS5tnCpCrCmZGPMde_1VDRG7mOL2b8KF-4SuVRrs2uJQZiz8z86Zmvt06mkEvHzwG3xAjs1DCqNtCJ107n8RXcSnbbTftPxBhVvqKrCi89bpDmciBKAJTQ==?_z=6807769&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: OAID=008048c667a64600ee0a89aca7d8ccd2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:22 GMT
content-type: image/gif
content-length: 43
x-trace-id: d318b31ccd8a40a99ac365522d1bebcf
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| offerimage.com/www/images/c41479298347dc5e044b6453cedc93e0.jpg | 104.22.33.172 | 200 OK | 14 kB |
URL GET HTTP/2offerimage.com/www/images/c41479298347dc5e044b6453cedc93e0.jpg IP104.22.33.172:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectofferimage.com Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72 ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3 Hashc41479298347dc5e044b6453cedc93e0 6614e54a248f131bcde21e8debf93d0d39cc1b21 73e812ffaa3b42c59e4fe1d523656a100679322ae616350ae6c24d0db8c02d00
GET /www/images/c41479298347dc5e044b6453cedc93e0.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:22 GMT
content-type: image/jpeg
content-length: 13521
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6486d956-34d1"
expires: Thu, 25 Apr 2024 13:26:16 GMT
last-modified: Mon, 12 Jun 2023 08:37:42 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 15726
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec8059df92fe-CPH
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 143631
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 91244
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/plugins/simple-social-buttons/assets/js/frontend-blocks.js?ver=5.1.3 | 188.114.96.1 | 200 OK | 0 B |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/plugins/simple-social-buttons/assets/js/frontend-blocks.js?ver=5.1.3 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/simple-social-buttons/assets/js/frontend-blocks.js?ver=5.1.3 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 20 Mar 2024 02:30:56 GMT
etag: "65fa4a60-0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hy9tWLsvJ6o9%2BsZvgJRl3QKgtKsLQmkRI8tCdYGizzs7k6WiRu68srsAyei8s9wq7SgbXPFhCg2dr0ddrqRpdlYSPv37jPfKnABrokMWVZvaIn60O%2BVkmFV71IIIaHjSxavCSMFsLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5778f9712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 188.114.96.1 | 200 OK | 14 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 00:00:44 GMT
etag: W/"64e69dac-3509"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8phRy%2Btmdmof%2BEdh15xRWUe%2F%2FRolo08OsZCUFeXSc8IBAz8gQJu2MzTRXyWdY6jjckk6gLmZRA9aGiyrjnZksEfggn3cLO8dIx8IExyQael7C6uXmjDyyS22orAvFZz3eAWLKW%2FZJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec577911712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bidder.h12-media.com/prebid/default.asp?payload=2qzII_BcvCh2JAgxEvEgoiMNwlMbXdre6ailPbL1rbJ6riuKk7TJ3UTdrXS8xoNHCyqK3CVW9FqKOzk9rn_ZVNjKQ4xR-eBKM-WGe5YY6zd_dgOggK3zGgIBRgTfjzXdYJkvEcD0G9OAO9xti0ZbovZE_MQkT0XhxlixiS-cwUnN8DQn0RXOg6Sert0ob1OOj1-umrakb4QioRB2M3p1giSTnKf0X_tXnRYnULRwLicn3rsFAQAm6iZGXIslOnaLmZbtb4VK-rqWZDNpcEQj8oZLr8PBd7lGVmofsKz81mmcU_hPj56hNOEHafYMj8c5K3KDDGecAeidBmBYMhEv-hMare1RXUiBeGuZaGOaXupFL2jMpXIwJ3xfEUMcvRpRXoo729HPBSgNdwSyNq0Aqbe4X1yrZR-DyfzGOrO6HGWufrqoXWJYnvVNXHcKNgroaKR6xCe1SKBl4ELh6SeikqvLg5SDMC2NJPJMvy-YEwPVZGfJjfj6GI8tPdvaukqhXwH4fNRzOhY7AJ6Sw9ln_W3qaGHwJiE-celsMIxvKkbE01 | 154.51.131.168 | 200 OK | 4.5 kB |
URL POST HTTP/2bidder.h12-media.com/prebid/default.asp?payload=2qzII_BcvCh2JAgxEvEgoiMNwlMbXdre6ailPbL1rbJ6riuKk7TJ3UTdrXS8xoNHCyqK3CVW9FqKOzk9rn_ZVNjKQ4xR-eBKM-WGe5YY6zd_dgOggK3zGgIBRgTfjzXdYJkvEcD0G9OAO9xti0ZbovZE_MQkT0XhxlixiS-cwUnN8DQn0RXOg6Sert0ob1OOj1-umrakb4QioRB2M3p1giSTnKf0X_tXnRYnULRwLicn3rsFAQAm6iZGXIslOnaLmZbtb4VK-rqWZDNpcEQj8oZLr8PBd7lGVmofsKz81mmcU_hPj56hNOEHafYMj8c5K3KDDGecAeidBmBYMhEv-hMare1RXUiBeGuZaGOaXupFL2jMpXIwJ3xfEUMcvRpRXoo729HPBSgNdwSyNq0Aqbe4X1yrZR-DyfzGOrO6HGWufrqoXWJYnvVNXHcKNgroaKR6xCe1SKBl4ELh6SeikqvLg5SDMC2NJPJMvy-YEwPVZGfJjfj6GI8tPdvaukqhXwH4fNRzOhY7AJ6Sw9ln_W3qaGHwJiE-celsMIxvKkbE01 IP154.51.131.168:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.h12-media.com Fingerprint82:5A:A3:DD:A2:D3:8C:13:85:81:F5:96:29:70:B0:AE:4E:0C:F7:42 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (4698), with no line terminators Hashbeaf718cf8c804e70b5eaadf428effec 2d2b6039e779b19fe491f890baab145b12080146 4c5d88eafd9a0650f4658686a3f4a9a6d430fb7bae4d9cdd4abc87a41f54f714
POST /prebid/default.asp?payload=2qzII_BcvCh2JAgxEvEgoiMNwlMbXdre6ailPbL1rbJ6riuKk7TJ3UTdrXS8xoNHCyqK3CVW9FqKOzk9rn_ZVNjKQ4xR-eBKM-WGe5YY6zd_dgOggK3zGgIBRgTfjzXdYJkvEcD0G9OAO9xti0ZbovZE_MQkT0XhxlixiS-cwUnN8DQn0RXOg6Sert0ob1OOj1-umrakb4QioRB2M3p1giSTnKf0X_tXnRYnULRwLicn3rsFAQAm6iZGXIslOnaLmZbtb4VK-rqWZDNpcEQj8oZLr8PBd7lGVmofsKz81mmcU_hPj56hNOEHafYMj8c5K3KDDGecAeidBmBYMhEv-hMare1RXUiBeGuZaGOaXupFL2jMpXIwJ3xfEUMcvRpRXoo729HPBSgNdwSyNq0Aqbe4X1yrZR-DyfzGOrO6HGWufrqoXWJYnvVNXHcKNgroaKR6xCe1SKBl4ELh6SeikqvLg5SDMC2NJPJMvy-YEwPVZGfJjfj6GI8tPdvaukqhXwH4fNRzOhY7AJ6Sw9ln_W3qaGHwJiE-celsMIxvKkbE01 HTTP/1.1
Host: bidder.h12-media.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
content-type: text/plain
Content-Length: 2138
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Cookie: 7thMile=558da462%2D6ef1%2D4fee%2Daa77%2D4aedf43e2e82
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-store,no-cache,max-age=0,private
content-type: application/json; Charset=UTF-8
server: Microsoft-IIS/10.0
set-cookie: 7thMile=cd4aa55b%2Dd8e4%2D42ae%2D9b64%2Dbc73f2b7583d; Max-Age=5000000; Domain=.h12-media.com; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: https://w2.hajime-noippo.com
srg-x: x-.158
procadsent: 0.4844
x-powered-by: ARR/3.0
date: Wed, 24 Apr 2024 17:48:18 GMT
content-length: 4522
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 188.114.96.1 | 200 OK | 88 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 11:20:45 GMT
etag: W/"654b6f0d-15601"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J9QQZkxtN31oC85sVHU8bVggQJ3kF1VrEngTmcQGuYwO4%2BBIKsFpYfYgWLnXttlQG9tEVzwU7JJaTJuiSbb24C%2F0UWNGHYawq6xwfJJDYdeu3Z9TPr56x9Gwwy6u0Zo9KJPPI69ipQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec57790f712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=77ecac84-336b-42bd-b42f-1a57451c8f7b | 139.45.195.254 | 200 OK | 12 B |
URL POST HTTP/1.1fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=77ecac84-336b-42bd-b42f-1a57451c8f7b IP139.45.195.254:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subjectfleraprt.com Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash6949f52318584a4b51c719a9b84a7287 9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905 72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=77ecac84-336b-42bd-b42f-1a57451c8f7b HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1390
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 24 Apr 2024 17:48:17 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://w2.hajime-noippo.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
|
|
| prebid.a-mo.net/a/c | 145.40.97.66 | 204 No Content | 0 B |
IP145.40.97.66:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subject*.a-mo.net FingerprintA1:19:DD:ED:07:5D:68:74:9A:FE:2B:DF:66:5F:D6:E6:F5:B4:1E:6C ValidityWed, 06 Mar 2024 11:52:06 GMT - Tue, 04 Jun 2024 11:52:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
content-type: text/plain
Content-Length: 7786
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://w2.hajime-noippo.com
cache-control: max-age=0, private, must-revalidate
date: Wed, 24 Apr 2024 17:48:18 GMT
server: envoy
vary: origin, accept-encoding, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/js/autoptimize_single_624ebb44eb0fd0fd92d0a0433823c630.js?ver=2.7.2 | 188.114.96.1 | 200 OK | 953 B |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/js/autoptimize_single_624ebb44eb0fd0fd92d0a0433823c630.js?ver=2.7.2 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (954), with no line terminators Hash5f8acd177611bf552cd7c013e3c5438a 7a2e4d6938a916cb00b5fc65516eaabfcf14f5ad ad4ef456c763bd0bd66b54869f9c7c9a35e968f0149606c4575cd8f633d8efea
GET /wp-content/cache/autoptimize/js/autoptimize_single_624ebb44eb0fd0fd92d0a0433823c630.js?ver=2.7.2 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Fri, 22 Sep 2023 10:21:03 GMT
etag: W/"650d6a8f-3b9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ppRAwmvgU1J7wETmvFr0a004ZjjMgxc9L7Gee0GZPNEPTWRLEpAhSh9osF6nmVh%2FW0b5eKGLSZw33guZv2HzUIf%2BvQ%2B80SuCZwbbMqzOiQd08VhMoczYQZ5KgxVplmPb4EQc2gh%2Bzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec57b982712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI9w2_Gwft.woff2 | 216.58.207.227 | 200 OK | 18 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI9w2_Gwft.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17728, version 1.0 Hash9d09d1df90538b11770ec5f593b6d792 6e117eeeda54f443063becf094332b362e19abb8 a961366b4346f6078cc2f164d2c019f63b37e2693f6fc93a995048a98b25c083
GET /s/lato/v24/S6u_w4BMUTPHjxsI9w2_Gwft.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:37:26 GMT
expires: Fri, 18 Apr 2025 17:37:26 GMT
cache-control: public, max-age=31536000
age: 519050
last-modified: Tue, 02 May 2023 15:08:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnpf.com/651a45d2a7c0cd003d5eae1c.json | 104.21.36.54 | 200 OK | 497 B |
URL GET HTTP/2cdnpf.com/651a45d2a7c0cd003d5eae1c.json IP104.21.36.54:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectcdnpf.com FingerprintE8:32:37:F0:12:77:81:C3:40:49:FF:12:12:E3:97:D8:D6:74:3B:43 ValidityTue, 26 Mar 2024 12:24:09 GMT - Mon, 24 Jun 2024 12:24:08 GMT
File typeHTML document, ASCII text, with very long lines (582), with no line terminators Hash704c466c415a04424256d806f62c20d3 e81fc93b677e31b62804cd76c30a8370db21ba6e ba330cfcd51ff02568e6c079b882c425b0d0f86b88dddbb7179072462daba573
GET /651a45d2a7c0cd003d5eae1c.json HTTP/1.1
Host: cdnpf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/json
access-control-allow-origin: *
etag: W/"eaad022144a3a5a689707a121068ddc9"
last-modified: Tue, 09 Apr 2024 03:48:18 GMT
vary: Origin, Accept-Encoding
cache-control: no-store
cf-cache-status: HIT
age: 22
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C0P4qdujsBOZM4BVEZdAM2oCnSN62X9XoASncjuw1d0PX4mC07H16QYI7Y5w%2FQWIx7m5jHhxdzRjZKUG6XdGqUs2T90sKvuI2r7KDVE556ZwsW03JUgMajgWfpA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec630f367131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js?ver=2.7.2 | 188.114.96.1 | 200 OK | 1.6 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js?ver=2.7.2 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (1637), with no line terminators Hash767a13a0b6f62af29de776e16d541cf2 d306619ed1ec7916673a708c1dda568848880b9a b7aef8beddb3e71e50d6e64537d2ab2c0383bcb9f9191c343517d846f5173235
GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js?ver=2.7.2 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Tue, 13 Feb 2024 23:52:10 GMT
etag: W/"65cc00aa-625"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aj%2FUQhTvtWiuPVB2egdCe1SDlOGxq4HUoS3fatIEFomQXY0%2BsNQQNibDehyyQUfa%2F4T9wqddz2F6jYtnLaNqALAdHXroqFOh0yDcQDegfbNUYk2JqApOX8HdGuqYMuI5VJ%2F2db%2B21g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec57b97e712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 19 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: _ga_XMQE0WCWY0=GS1.1.1713980896.1.0.1713980896.0.0.0; _ga=GA1.1.1091121213.1713980897
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 02:04:43 GMT
etag: W/"660e0abb-4926"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6880
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MnZQfhcqxWn8r%2BY0zmmTVcVxKi%2F63SJE8pcbugy8Qpd7T4u61IW%2BwUkiNT3myd2yMB44nbk25jX%2Fryvy79RceWx4hAdbghmLrc%2Fw%2Bo9RTUzuD0xlPviVDS5dT%2FL17n%2FOJtorX9H3gQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5e6bde712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-hajime-no-ippo-png-removebg-preview-192x192.png | 188.114.96.1 | 200 OK | 42 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/uploads/2023/08/cropped-hajime-no-ippo-png-removebg-preview-192x192.png IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash588c6ec627630839eea1688980687fc0 f9697f627cbc5681c8f9fda7b888df619261ec32 22f1f5a7a39955500e4361829cb33058aed35404584db1f900b2e91d5849849f
GET /wp-content/uploads/2023/08/cropped-hajime-no-ippo-png-removebg-preview-192x192.png HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: _ga_XMQE0WCWY0=GS1.1.1713980896.1.0.1713980896.0.0.0; _ga=GA1.1.1091121213.1713980897
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: image/png
content-length: 42403
last-modified: Thu, 24 Aug 2023 16:43:45 GMT
etag: "64e788c1-a5a3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6018
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PznNYmBwpWDQmXePcCiyqDFjdMJDLAfBT8xUpjlR9Utygclgt0I%2B9orOjDWHcBcBv1%2BmjrkFzDYzaIVK9psFskjvSNKSKfEosjfnRX4XE5yp1l3LQvMjZfZxluGFVCDANG5UzjR6SA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5f2d02712e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vid.vidoomy.com/sync?gdpr=1&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&us_privacy={us_privacy}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Dg%26ep%3D380%26traffic_source%3Dsnippet%26session%3D85C706E369C01038%26sp%3D519590%26pb%3D306874%26c%3D632122%26a%3D556847%26domain%3Dhttps%3A%2F%2Fw2.hajime-noippo.com%2F%26extuid%3D%7B%7BVID%7D%7D | 0.0.0.0 | | 0 B |
URL GET vid.vidoomy.com/sync?gdpr=1&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&us_privacy={us_privacy}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Dg%26ep%3D380%26traffic_source%3Dsnippet%26session%3D85C706E369C01038%26sp%3D519590%26pb%3D306874%26c%3D632122%26a%3D556847%26domain%3Dhttps%3A%2F%2Fw2.hajime-noippo.com%2F%26extuid%3D%7B%7BVID%7D%7D IP0.0.0.0:0
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.vidoomy.com Fingerprint18:AF:A3:4C:BA:C9:5B:1A:FC:8B:1D:B0:76:50:FE:2F:8A:44:59:F3 ValidityWed, 06 Sep 2023 00:00:00 GMT - Sun, 06 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?gdpr=1&gdpr_consent=CP9nLrZP9nLrZAcACBENAqEsAP_gAH_gAAwIg1NX_H__bW9r8Xr3aft0eY1P99j77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQFlHJDUTVigaogVryDMakWcgTNKJ6BkiFMRM2dYCF5vmQtj-QKY5vp9d3dx2D-t_dv83dzyz8VHn3e5_2e0eJCdA58tDfv9bROb-9IPd_58v4v0_F_rk2_eT1l_tevp7B8uft87_XU-9_fff78AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEQaoaIACIAFAAXAA4AD4AKAAqABcADgAHgAQAAkgBcAGUANAA1AB4AD8AIgARwAmABQgCkAKYAVYAtgC6AGIAMwAaAA3gB6AD4AH4AQgAhoBEAESAI4ASwAmgBOACjAGAAMOAZQBlgDNAGiANkAckA5wDogHcAd4A9gB8QD7AP2Af4CAQEHAQgAiIBFICLAIwARqAjgCOgEiAJKASkAmgBPwCgwFQAVEAq4BYgC5gF1gLyAvQBfQDFAGiANeAbQA3ABxADjgHSAOoAdsA9oB9gD-gH_AQgAiYBF4CPYEiASKAlYBMUCZAJlATaAnYBQ8CjwKRAUmApoBT4CoYFSAVKAqwBXICuwFhQLEAsUBaIC1IFsAWzAtwC3QFwALkAXQAu0Bd8C8gLzAX0Av8BggDBgGGgMQAYsAx4BkMDIwMkgZMBk4DKgGWAMzAZyAzwBogDRgGmgNTAarA1cDWQGvANoAbZA24Db4G5AbqA4IBxYDjwHJwOWA5cBzoDnwHigPHgeSB5QD2gHxQPkA-UB9cD7QPugfsB-4D-wH_AQBAgIBAwCB4EEQIJgQYAg2BCECFAEK4IWgheBDOCHIIdQQ8BD0CH4EUwIwARpAjeBHQCPYEfQI_gSEAkUBI2CSAJJQSYBJmCVAJUgSwAlnBLcEuIJdAl2BL6CYAJggTDAmLBMwEzgJqATYgm2CbkE3gTfAnDBOUE5gJ0gTrgnaCdwE8AJ5hBqAAA.YAAAAAAAAAAA&us_privacy={us_privacy}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Dg%26ep%3D380%26traffic_source%3Dsnippet%26session%3D85C706E369C01038%26sp%3D519590%26pb%3D306874%26c%3D632122%26a%3D556847%26domain%3Dhttps%3A%2F%2Fw2.hajime-noippo.com%2F%26extuid%3D%7B%7BVID%7D%7D HTTP/1.1
Host: vid.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:20 GMT
content-type: text/html
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 12 Dec 2023 09:09:26 GMT
x-rgw-object-type: Normal
etag: W/"a9290c6b5f8c75ebc321b414a16a5c2a"
x-amz-storage-class: STANDARD
x-amz-request-id: tx0000065019b5b84f86acc-006579900f-2bb0e51-prg
x-77-nzt: BLlMCRQ3Nzf/SxsMALlMCgk3Nzf/CgAAANRmOBE3NzehbT1aAotn3wA
x-77-nzt-ray: af585630f1c9260ee445296609bff535
x-77-cache: HIT
content-encoding: gzip
x-accel-expires: @1714224281
x-accel-date: 1713187481
x-cache-lb: HIT
x-age-lb: 10
x-77-age: 793429
server: CDN77-Turbo
x-cache: HIT
x-age: 793419
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_d4a56d3242663a4b372dc090375e8136.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 339 B |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_d4a56d3242663a4b372dc090375e8136.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (341), with no line terminators Hashc51eac51ca404b9a4eb7df47f05990c7 a9e761a18276828ef432a8707b8c31781287fac6 dd88b576f9616b937335299bd7bd71b97162d9bd7c046798267fbbcc924da6af
GET /wp-content/cache/autoptimize/css/autoptimize_single_d4a56d3242663a4b372dc090375e8136.css?ver=6.5.2 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/css
last-modified: Fri, 22 Sep 2023 10:21:03 GMT
etag: W/"650d6a8f-153"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oy6UnM2I%2FSZqf2e8Sid3TQc2h7CB0r0%2Bn7dmYtZ5VHn46VswJWIg47ZXpvrs0ArtZ%2FMZ%2BZaqCiFSxNBakk8a5i4tjUSbO42fxcAEc1mbMvA3di81OEq5%2F%2BxStR8fYlqZpQGV5wUDDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5778f6712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/themes/toivo-lite/js/settings.min.js?ver=1.2.0 | 188.114.96.1 | 200 OK | 1.8 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/themes/toivo-lite/js/settings.min.js?ver=1.2.0 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (1900), with no line terminators Hash730fde2b2b29f58873f2dc307e7d0023 b1ca3d549b7cf7c87bfc746df76780b807d7f716 ef5e63f29f2159db35aff05f8f29022421540112f0954060ab531a297379222c
GET /wp-content/themes/toivo-lite/js/settings.min.js?ver=1.2.0 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 00:04:08 GMT
etag: W/"64e69e78-700"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZKYiiwaBI5oIgqgyIBB41yFRm9snY61Uxfny2uOfdUc3Zi%2BdFqrsjwGk88pdbEsu6wck8tI%2BqXUxT8CMoywMUdK1G0EPO7uS%2FJJKuFjvbzS%2F0RHBPb0PASLigri9atbVYZRwfFzZzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec57a952712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdnpf.com/65f478eb9aa49d4b33524531.json | 104.21.36.54 | 200 OK | 367 B |
URL GET HTTP/2cdnpf.com/65f478eb9aa49d4b33524531.json IP104.21.36.54:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectcdnpf.com FingerprintE8:32:37:F0:12:77:81:C3:40:49:FF:12:12:E3:97:D8:D6:74:3B:43 ValidityTue, 26 Mar 2024 12:24:09 GMT - Mon, 24 Jun 2024 12:24:08 GMT
File typeHTML document, ASCII text, with very long lines (410), with no line terminators Hash05d1f33778b0f50a7ccadd78d8ebead3 aa611f133b6083c883c1e2d9e0f3035c661db1f5 c0755fda92150e3caf55fcb046e2455adb8b06a2597f433fe8487c08a2669b06
GET /65f478eb9aa49d4b33524531.json HTTP/1.1
Host: cdnpf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/json
access-control-allow-origin: *
etag: W/"e92442020a8805280854aa20e39ea74b"
last-modified: Tue, 09 Apr 2024 02:28:07 GMT
vary: Origin, Accept-Encoding
cache-control: no-store
cf-cache-status: HIT
age: 23
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cps1lJzsiwYgajZkMZJojfMBs0C4%2FHdPJvIfd0nq%2BVyGD7CQd4KOr3XSjPNjN4c7UvF%2BUW7DPXrgCRmnrwZFXLX9P2w24yVqyWupjLTwL2VnisevVJwtG3g%2BWJ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec61edc67131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| phoenix-widget.com/static/js/builder/widget.js | 188.166.21.205 | 200 OK | 37 kB |
URL GET HTTP/1.1phoenix-widget.com/static/js/builder/widget.js IP188.166.21.205:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerSectigo Limited Subject*.phoenix-widget.com FingerprintB3:A6:FD:3B:D0:60:5D:61:53:71:EA:91:7B:F2:B2:5A:09:99:B7:E8 ValidityWed, 13 Mar 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (36828), with no line terminators Hash5a9456c7c58598842c473488a4b46378 60daf242a22421895c2881264116b87174329cb2 d0a062c4b2e9c936cea7bfe89fb7af32b615446d295029248282e0e8ea67bf8c
GET /static/js/builder/widget.js HTTP/1.1
Host: phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 24 Apr 2024 17:48:17 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 17 Apr 2024 14:54:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"661fe2b7-8fdc"
Expires: Thu, 24 Apr 2025 17:48:17 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip
|
|
| thaudray.com/?rb=a1lNgfgpka3GZgHKwjHY5RR6EYZt8bL0gVgn0ocvyvwdiRGxlm0GE7Z1eKm1WBhVHGdqnzqHcxBhkFLNO3qUNxk0UEv-j0CkEN3zKUP7xHdbEzY5OnpfzlOrKocrnwlw5_T-ufJeH0HOBZRo4rsTPRQIm_ab6l9FNnqKw3Wsru_4uaKVHISZA2H6qt-JqUqBqmZJmSGHl4EesURicw6b9VrYV-LAE9AmWniVW4F7zPyRxdcp8nYSw8v97s7GZ1CiLIX3KKLsukfrvSy3UNbbXA%3D%3D&request_ab2=0&zoneid=6807767&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=0f19853c-1eb1-45b8-b566-ca84d73fc692&userId=008048c667a64600ee0a89aca7d8ccd2&m=link | 139.45.197.237 | 200 OK | 2.6 kB |
URL GET HTTP/2thaudray.com/?rb=a1lNgfgpka3GZgHKwjHY5RR6EYZt8bL0gVgn0ocvyvwdiRGxlm0GE7Z1eKm1WBhVHGdqnzqHcxBhkFLNO3qUNxk0UEv-j0CkEN3zKUP7xHdbEzY5OnpfzlOrKocrnwlw5_T-ufJeH0HOBZRo4rsTPRQIm_ab6l9FNnqKw3Wsru_4uaKVHISZA2H6qt-JqUqBqmZJmSGHl4EesURicw6b9VrYV-LAE9AmWniVW4F7zPyRxdcp8nYSw8v97s7GZ1CiLIX3KKLsukfrvSy3UNbbXA%3D%3D&request_ab2=0&zoneid=6807767&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=0f19853c-1eb1-45b8-b566-ca84d73fc692&userId=008048c667a64600ee0a89aca7d8ccd2&m=link IP139.45.197.237:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectthaudray.com FingerprintAC:F8:68:09:0A:07:CA:0C:1B:6B:C7:58:FE:A7:1F:F5:6D:5D:CA:3E ValidityMon, 05 Feb 2024 05:25:52 GMT - Sun, 05 May 2024 05:25:51 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2617), with no line terminators Hash733e2cb9f95d85bc31d617c6fec2dfab 6ab36503d02237476d62d9153ca8dcd44f3dc647 0e27f7d0750744ebfc69c52e18faf2699f0398054e647347e1a30f6108679bdb
GET /?rb=a1lNgfgpka3GZgHKwjHY5RR6EYZt8bL0gVgn0ocvyvwdiRGxlm0GE7Z1eKm1WBhVHGdqnzqHcxBhkFLNO3qUNxk0UEv-j0CkEN3zKUP7xHdbEzY5OnpfzlOrKocrnwlw5_T-ufJeH0HOBZRo4rsTPRQIm_ab6l9FNnqKw3Wsru_4uaKVHISZA2H6qt-JqUqBqmZJmSGHl4EesURicw6b9VrYV-LAE9AmWniVW4F7zPyRxdcp8nYSw8v97s7GZ1CiLIX3KKLsukfrvSy3UNbbXA%3D%3D&request_ab2=0&zoneid=6807767&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fw2.hajime-noippo.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=0f19853c-1eb1-45b8-b566-ca84d73fc692&userId=008048c667a64600ee0a89aca7d8ccd2&m=link HTTP/1.1
Host: thaudray.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Cookie: OAID=008048c667a64600ee0a89aca7d8ccd2; oaidts=1713980896
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/json
x-trace-id: f9fb5f3a6ece095b32df036176e136a5
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://w2.hajime-noippo.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008048c667a64600ee0a89aca7d8ccd2; expires=Thu, 24 Apr 2025 17:48:17 GMT; path=/; secure; SameSite=None
oaidts=1713980897; expires=Thu, 24 Apr 2025 17:48:17 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 01 May 2024 17:48:17 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js?ver=2.7.2 | 188.114.96.1 | 200 OK | 3.0 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js?ver=2.7.2 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (3100), with no line terminators Hashfa821e246fcb5c6ae9a5ec96199b8f2a 29eb939a9c686f9358e56c3101f712958c97328e a00d70226229a28951229c399f60c4de14d34ffaf2d6dcda3ce00cc5a5312e3d
GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js?ver=2.7.2 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Tue, 13 Feb 2024 23:52:10 GMT
etag: W/"65cc00aa-bc7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nkons46%2BgU2xdS6UX5L63NfTRSNznjO493HJVmRj8aoXud%2Fjj5kdisjoJCYZIUL34KpirH6wF%2BrwXRjhhTvAyXEqygNuSdRwkqw8wqcw4BwFH%2FV640%2Fh2MWefyV29XoN%2FzPuvgb%2FGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec57b971712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjxAwXjeu.woff2 | 216.58.207.227 | 200 OK | 5.5 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjxAwXjeu.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 5472, version 1.0 Hash4bde07f991ba6af69a1e009fd7ce9d1a ed53e9f8967142ea4aa2fd113f696799319d91b2 1c2fc265baaeba4f3f5b8c7285b93343aead25590f08be73d3056718b376c5d7
GET /s/lato/v24/S6uyw4BMUTPHjxAwXjeu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5472
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 21:52:14 GMT
expires: Tue, 22 Apr 2025 21:52:14 GMT
cache-control: public, max-age=31536000
age: 158162
last-modified: Tue, 02 May 2023 15:17:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48208, version 1.0 Hashc49b7c3643f781d71645c5a40a78b5bf e71138026b38afc443fb60da5ffc2244c4f5eb11 8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 21:58:53 GMT
expires: Tue, 22 Apr 2025 21:58:53 GMT
cache-control: public, max-age=31536000
age: 157763
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bygliscortor.com/401/6807769?oo=1&oaid=008048c667a64600ee0a89aca7d8ccd2&sw_version=v1.337.0 | 139.45.197.242 | 200 OK | 2.3 kB |
URL GET HTTP/2bygliscortor.com/401/6807769?oo=1&oaid=008048c667a64600ee0a89aca7d8ccd2&sw_version=v1.337.0 IP139.45.197.242:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectbygliscortor.com Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2479), with no line terminators Hash014adb820605574da08844523ecbed45 7da6d0f78827284cb7815a1204079384381112c6 7f572e33cda6bfdd808adef257b0cc4d5b68c8bb41afe03b95c2a0dae792e069
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /401/6807769?oo=1&oaid=008048c667a64600ee0a89aca7d8ccd2&sw_version=v1.337.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: OAID=0300482c6bf8427ae04dcc3cf8befd34
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/json
x-trace-id: 4889ff3c7ef0d07dc1704be2018390cc
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://w2.hajime-noippo.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008048c667a64600ee0a89aca7d8ccd2; expires=Thu, 24 Apr 2025 17:48:17 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdnpf.com/650c4c095cc64a003fc680a9.json | 104.21.36.54 | 200 OK | 1.4 kB |
URL GET HTTP/2cdnpf.com/650c4c095cc64a003fc680a9.json IP104.21.36.54:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectcdnpf.com FingerprintE8:32:37:F0:12:77:81:C3:40:49:FF:12:12:E3:97:D8:D6:74:3B:43 ValidityTue, 26 Mar 2024 12:24:09 GMT - Mon, 24 Jun 2024 12:24:08 GMT
File typeHTML document, ASCII text, with very long lines (1519), with no line terminators Hashc6c3a2f5bd98b6770542850e66923818 984d6ff2a066849d8b58150d3b57adf3000bcb64 8a09082694350cc76e602d6a957863700640f639c62df03a0816ab831d2e3ddf
GET /650c4c095cc64a003fc680a9.json HTTP/1.1
Host: cdnpf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: application/json
access-control-allow-origin: *
etag: W/"9ac0fcd61a6f8a776c20139208c498c8"
last-modified: Tue, 09 Apr 2024 03:48:18 GMT
vary: Origin, Accept-Encoding
cache-control: no-store
cf-cache-status: HIT
age: 23
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U1JtpU8CDhbhVoSopGjv7qP7gEX0iXLuN1FjfiBPHVnpFsL1Bn3E8Rrakwnjv3btAx5r81nRpztrvWh4F4JzI1Vi3GcvrFsRKKKOvZz2E0smypzQ2Z6D%2BeQGURg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec613cdf7131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.pubfuture-ad.com/v3/config/adUnitConfig/passback/650c40f15cc64a003fc67ee3?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v&pb=NjUwYzRjMDk1Y2M2NGEwMDNmYzY4MGE5&cpb=dHJ1ZQ== | 104.26.4.231 | 200 OK | 31 B |
URL GET HTTP/2cdn.pubfuture-ad.com/v3/config/adUnitConfig/passback/650c40f15cc64a003fc67ee3?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v&pb=NjUwYzRjMDk1Y2M2NGEwMDNmYzY4MGE5&cpb=dHJ1ZQ== IP104.26.4.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
File typeASCII text, with no line terminators Hash83b39b9441bb0313db80b19b0c74f55c f73ea685e0ddbf895427f857fe8b16a5a937f403 b3820ee3294acbbf90c106fa8353458b94f90837a7f4f03b6f2e85ea24025ddd
GET /v3/config/adUnitConfig/passback/650c40f15cc64a003fc67ee3?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v&pb=NjUwYzRjMDk1Y2M2NGEwMDNmYzY4MGE5&cpb=dHJ1ZQ== HTTP/1.1
Host: cdn.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fz0XS2BwLViytOb8T01LPhzG2aacmEe2OYpWJRHqEtKL3hnyloUNy9D%2BSpr7w6T%2BJcNip1%2F%2BBJlrU9F%2Fo%2Fjab0QTrBjtGm9%2FXFzjvuxNWnEVPH2qS%2BurXoZNELD%2F%2F%2BELBT2y9KMV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec61cd1b1c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| thaudray.com/5/6807767 | 139.45.197.237 | 200 OK | 84 kB |
IP139.45.197.237:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjectthaudray.com FingerprintAC:F8:68:09:0A:07:CA:0C:1B:6B:C7:58:FE:A7:1F:F5:6D:5D:CA:3E ValidityMon, 05 Feb 2024 05:25:52 GMT - Sun, 05 May 2024 05:25:51 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb85487c1bf32e546ab3400c4fe4aae4a b0c518fed3abefdecb718a51365cadc4a6a205a5 4d2882093ef30a38fad3b2de9c742a76b4e7a67ec28ee635958f4f51388aef54
GET /5/6807767 HTTP/1.1
Host: thaudray.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:48:16 GMT
content-type: application/javascript
x-trace-id: 6b1ac3a8b8351c2bce24191e8a4973c0
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=008048c667a64600ee0a89aca7d8ccd2; expires=Thu, 24 Apr 2025 17:48:16 GMT; path=/; secure; SameSite=None
oaidts=1713980896; expires=Thu, 24 Apr 2025 17:48:16 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP216.58.207.227:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 02:02:48 GMT
expires: Wed, 23 Apr 2025 02:02:48 GMT
cache-control: public, max-age=31536000
age: 143128
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| f.h12-media.com/v3/prebid3_2.1.js?v=14042024-1 | 172.67.198.122 | 200 OK | 1.0 MB |
URL GET HTTP/3f.h12-media.com/v3/prebid3_2.1.js?v=14042024-1 IP172.67.198.122:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerLet's Encrypt Subjecth12-media.com Fingerprint52:A5:48:6C:C0:CA:E6:47:B0:2D:64:C8:D1:BD:95:8D:19:92:45:60 ValidityMon, 15 Apr 2024 15:12:14 GMT - Sun, 14 Jul 2024 15:12:13 GMT
File typeJavaScript source, ASCII text, with very long lines (65508), with CRLF line terminators Size1.0 MB (1018468 bytes) Hash3a95463dc8474b3a2cae2f350258dc86 be5e60e5e880dc701c03ddb7d1a409450c9ab008 d431b6c5c35b061e86fd51cc0eb7cd330030ac73f8dcbf57117dd21618e94381
GET /v3/prebid3_2.1.js?v=14042024-1 HTTP/1.1
Host: f.h12-media.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Cookie: 7thMile=558da462%2D6ef1%2D4fee%2Daa77%2D4aedf43e2e82
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:18 GMT
content-type: application/javascript
last-modified: Sun, 14 Apr 2024 21:59:58 GMT
etag: W/"cd749d17b78eda1:0"
vary: Accept-Encoding
x-powered-by: ARR/3.0
cache-control: max-age=14400
cf-cache-status: HIT
age: 5878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iePHW7Inwvunj4pmuykD034eqnRAaoL71%2F2YX9yIz1dWvxVfEMU8fVkPOb%2BlOVzdB%2F5O9zCNxmTTqy0E5WGbkvzm91SChf8kCM1AsLnQwOsk2HPnlvRMfOFanxC1QctW%2BiU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec667ece0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.pubfuture-ad.com/v3/config/adUnitConfig/650c41115cc64a003fc67f01?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v | 104.26.4.231 | 200 OK | 31 B |
URL GET HTTP/2cdn.pubfuture-ad.com/v3/config/adUnitConfig/650c41115cc64a003fc67f01?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v IP104.26.4.231:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectpubfuture-ad.com Fingerprint2E:A2:4D:3A:99:66:33:4C:23:A7:85:50:CD:A3:84:F8:9D:85:2C:83 ValidityWed, 06 Mar 2024 04:23:30 GMT - Tue, 04 Jun 2024 04:23:29 GMT
File typeASCII text, with no line terminators Hash1e913fba71df045ca70b0abbf08a5305 814b49014537f399ee28c6eef764079d1604bf00 35db58ab9f170492548e591246717eb3b95c8e09ea689d9e7dc6f31169bfb9fd
GET /v3/config/adUnitConfig/650c41115cc64a003fc67f01?v=6&d=b3RoZXJz&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&s=dzIuaGFqaW1lLW5vaXBwby5jb20v HTTP/1.1
Host: cdn.pubfuture-ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w2.hajime-noippo.com/
Origin: https://w2.hajime-noippo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:48:17 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IKgWNdt7Crte7D0HQ8hH%2Fq5NjqfRi2s7QpuXNKk9NKtm%2Bckr3oWfJq0Z0XR%2B2gVs3Lrq3loJ79qHP3%2FbrKZUslwUfSE1lsz4opXrG8lT7Bup8ft3bH9O4GMB3G%2FfIEOH1Q1vPiFA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797ec610c661c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700 | 216.58.207.234 | 200 OK | 11 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700 IP216.58.207.234:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash155f53ee6339ba8215c3513f7e89a646 1785d802da7b560dc8af49e5c17627ecc88285a0 859bbc3840ddbfac2cbabd04217077fcab6f31a0e24a9f7ff1a2ee6246ba5319
GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 17:48:22 GMT
date: Wed, 24 Apr 2024 17:48:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_db06782fb03679aa700bc4c9fd2bdc93.css?ver=1.2.0 | 188.114.96.1 | 200 OK | 56 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/css/autoptimize_single_db06782fb03679aa700bc4c9fd2bdc93.css?ver=1.2.0 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (56339), with no line terminators Hash5f9600cf7aa65497b97ad1f25f9d5ce2 807862c09432a2577b879408aa220be1b982dc6b 6fa064297578b5ef83eb7cb7c3c75f4e88e374cbed0e8630e43f51a4cc42651c
GET /wp-content/cache/autoptimize/css/autoptimize_single_db06782fb03679aa700bc4c9fd2bdc93.css?ver=1.2.0 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: text/css
last-modified: Fri, 22 Sep 2023 10:21:03 GMT
etag: W/"650d6a8f-dc13"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=juCiy%2FGMkZSeGbzw4AN0HbGtPsGMOeV1qqrDE9DUCQ9LWD5FLfeUEMTSa3dFSwyOsfjz0yqS8F6FbgZ6prwqGVPVO%2FhA%2Bseq6aV7rf4lWcUQ%2B58J%2Fb38pqjDT4D%2FlEdCBod64TTDLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec5768f2712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/cache/autoptimize/js/autoptimize_single_983693764bdfa53dff2ab021c3284874.js?ver=5.1.3 | 188.114.96.1 | 200 OK | 3.4 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/cache/autoptimize/js/autoptimize_single_983693764bdfa53dff2ab021c3284874.js?ver=5.1.3 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeJavaScript source, ASCII text, with very long lines (3444), with no line terminators Hashc3641840dd63a639375275b5781377c8 3a5c76c9e5487ef0c31234bfe82fab7e365308be 8d1299a6934db4b785d59f7637f5083fe9bca448a0799443624a14844fedaa15
GET /wp-content/cache/autoptimize/js/autoptimize_single_983693764bdfa53dff2ab021c3284874.js?ver=5.1.3 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 02:31:02 GMT
etag: W/"65fa4a66-d56"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I3%2FMJEMAEEoYP26%2BBb971VN9QjFKe8f3SebOxmsyzVBK3kWsJYrzspf%2Fd66e0JtFVXKxg1A5FiVZ2c%2F5tGFlouNaOCa6DejEp29QLVKvLsgrKyn%2B9dH7ux6jL0fpPcYE6YXuoCZ3jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec577914712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| w2.hajime-noippo.com/wp-content/themes/toivo-lite/js/functions.min.js?ver=1.2.0 | 188.114.96.1 | 200 OK | 1.5 kB |
URL GET HTTP/3w2.hajime-noippo.com/wp-content/themes/toivo-lite/js/functions.min.js?ver=1.2.0 IP188.114.96.1:443
Requested byhttps://w2.hajime-noippo.com/ CertificateIssuerGoogle Trust Services LLC Subjecthajime-noippo.com Fingerprint93:1B:FD:6E:8F:D3:B5:C4:0F:5A:F0:2F:E1:F5:F7:29:68:96:8B:69 ValidityMon, 08 Apr 2024 17:44:51 GMT - Sun, 07 Jul 2024 17:44:50 GMT
File typeASCII text, with very long lines (1518), with no line terminators Hash763029bf0a8cab317f9c0d0afd2bfe13 e4955405170dfac63a594cc781fe257623f31d6d c5da19760e17172dc7daa70e198e6184f95cba4e6751c561a0a4b4683365f705
GET /wp-content/themes/toivo-lite/js/functions.min.js?ver=1.2.0 HTTP/1.1
Host: w2.hajime-noippo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w2.hajime-noippo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 17:48:15 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 00:04:08 GMT
etag: W/"64e69e78-5c6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=94ngth3eboBZUGUiebnvEe%2BaYHaxR%2BC5G%2BDowQEondDMNHj9T1RHbcv6by3lJn0saGqK3iM5lFFTxoECLTHNmn%2BdKzFGsIaiftgafrglVOcb9LMPG0OPQFvV0rdYCKVylrOhEG7B6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797ec57a954712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|