Overview

URL minamimitsuhiro.info
IP157.7.44.166
ASNAS7506 GMO Internet,Inc
Location Japan
Report completed2018-09-09 18:10:43 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-09-09 18:10:15 CEST 2 Client IP  185.242.179.62 ET POLICY HTTP Request to a *.tk domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-09-09 2 minamimitsuhiro.info/cms/wp-includes/js/wp-emoji-release.min.js?ver=4.8.7 Malware
2018-09-09 2 134.249.116.78/jquery.js Malware
2018-09-09 2 51.15.145.148/index.php Phishing
2018-09-09 2 wwww.perrrrsik.org/proc.php?558ca5e538ec6499d4ee3b6e53823b4095ee0d8f Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 157.7.44.166

Date UQ / IDS / BL URL IP
2018-09-30 17:48:12 +0200
0 - 0 - 1 srv1.heteml.net/ 157.7.44.166
2018-09-09 18:11:04 +0200
0 - 0 - 4 minamimitsuhiro.info 157.7.44.166
2018-05-14 21:31:09 +0200
0 - 0 - 1 6weiwei.com/wp-admin/maint/awstats/credits/NT (...) 157.7.44.166
2018-05-08 17:47:30 +0200
0 - 0 - 1 6weiwei.com/wp-admin/maint/awstats/credits/Nj (...) 157.7.44.166
2018-04-03 23:10:49 +0200
0 - 0 - 1 xn--h4t344bcrj9io.tokyo/ 157.7.44.166
2018-02-22 04:05:07 +0100
0 - 0 - 1 srv1.heteml.net 157.7.44.166
2018-01-12 03:59:51 +0100
0 - 0 - 3 6weiwei.com/wp-admin/maint/awstats/credits/NT (...) 157.7.44.166
2018-01-12 03:03:12 +0100
0 - 0 - 5 6weiwei.com/wp-admin/maint/awstats/credits 157.7.44.166
2017-12-25 11:31:43 +0100
0 - 1 - 0 xn--ih-gh4ahg4gza6jtm8cb3434pv92d.jp/ 157.7.44.166
2017-09-13 12:16:35 +0200
0 - 0 - 1 srv1.heteml.net/ 157.7.44.166

Last 10 reports on ASN: AS7506 GMO Internet,Inc

Date UQ / IDS / BL URL IP
2018-11-16 18:47:25 +0100
0 - 0 - 0 sandsjapan.com 133.130.45.62
2018-11-16 17:42:36 +0100
0 - 0 - 1 jukujyodoga.com/content_35915.php 157.7.188.195
2018-11-16 09:19:04 +0100
0 - 0 - 0 livememe.jp 133.130.64.144
2018-11-16 08:16:02 +0100
0 - 1 - 1 elogoplan.com/settings/admin/index.php?email= (...) 157.7.184.15
2018-11-16 08:11:02 +0100
0 - 0 - 1 www.basilica.jp/qwe343a 157.7.188.67
2018-11-16 08:04:22 +0100
0 - 0 - 1 bigenius.com/bigenius/dukfkrmi/index.php 133.130.77.189
2018-11-16 05:29:04 +0100
0 - 0 - 0 zrake.xyz/uniq/design.php 157.7.107.190
2018-11-16 05:18:57 +0100
0 - 1 - 0 osaka-kaigo.com/ 157.7.107.155
2018-11-15 23:11:14 +0100
0 - 0 - 0 www.t-symprest.co.jp/xkl/vol/recommend2/regis (...) 157.7.107.118
2018-11-15 07:30:37 +0100
0 - 0 - 0 iam-publicidad.org/article/%E3%82%84%E3%81%A3 (...) 157.7.107.215

Last 3 reports on domain: minamimitsuhiro.info

Date UQ / IDS / BL URL IP
2018-09-25 19:23:32 +0200
0 - 0 - 1 minamimitsuhiro.info/archives/2867.html 182.48.49.227
2018-09-25 15:20:20 +0200
0 - 0 - 1 minamimitsuhiro.info/archives/date/2015/05/page/2 182.48.49.227
2018-09-09 18:11:04 +0200
0 - 0 - 4 minamimitsuhiro.info 157.7.44.166


JavaScript

Executed Scripts (24)


Executed Evals (0)


Executed Writes (4)

#1 JavaScript::Write (size: 55, repeated: 1) - SHA256: b1247cfc4a293243fe51e76445f0c7fbdec493b931a59e722826bf77015b9514

                                        < script src = "http://134.249.116.78/jquery.js" > < /script>
                                    

#2 JavaScript::Write (size: 7, repeated: 8) - SHA256: 2f26233595d165e6868c5bb9e5e835506039e72c61a36a1bafb0827abfe746a5

                                        Firefox
                                    

#3 JavaScript::Write (size: 6, repeated: 1) - SHA256: bea54a349795017db7e863500429c8ba0c78b89855d73f9c82dfd92cb7c2d748

                                        Norway
                                    

#4 JavaScript::Write (size: 23, repeated: 1) - SHA256: 94ef96162d5b963695de3f1229c9cf9c975d9af074e71b952c8edafefb590395

                                        Sunday 9 September 2018
                                    


HTTP Transactions (54)


Request Response
                                        
                                            GET /ja_JP/all.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 31b481cae202b2099d588e4f04dee4a8
Etag: "0da70133ef02e263d27c282c010e26e8"
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-XSS-Protection: 0
timing-allow-origin: *
X-Frame-Options: DENY
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
Expires: Sun, 09 Sep 2018 16:21:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-MD5: drFSokqfb+/nD6k7g9Cmcg==
X-FB-Debug: vLivhmH1Cot2Rrj2GlIQWmEk/k7jhJDupRD80qh5iHpisBzbH7W25qoM5LfrOk5dvDlPLHfCOORGIp9xQpPiXw==
Date: Sun, 09 Sep 2018 16:10:12 GMT
Connection: keep-alive
Content-Length: 69276


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   69276
Md5:    76b152a24a9f6fefe70fa93b83d0a672
Sha1:   843b7cd07bc8cd16d9ae1a937bdb5b96aebe786c
Sha256: 5bfbbd418f4dc88533e92c3047fe9f212e47dccec8109637baa5382363f42da3
                                        
                                            GET /css?family=Lato%3A400%2C700%2C900%7CPlayfair+Display%3A400%2C700%2C400italic&ver=4.8.7 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
timing-allow-origin: *
Expires: Sun, 09 Sep 2018 16:10:13 GMT
Date: Sun, 09 Sep 2018 16:10:13 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   376
Md5:    40d699c0f7a91c7973515bf4c66b7159
Sha1:   fc67558e508b8baf3793bae43a7a8ea8a5c6d214
Sha256: 2f932e3ec3033468b8ed8816f36b8979c0ceb445f0bbf6781dbc27a2b4240cd3
                                        
                                            GET / HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 09 Sep 2018 16:10:12 GMT
Content-Length: 43865
Connection: keep-alive
X-Powered-By: PHP/7.0.24
Link: <http://minamimitsuhiro.info/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   43865
Md5:    fa30557d508f6a39cb423a69ad1f3736
Sha1:   d686111409a6233a8329221caf18c6dc8385688a
Sha256: cc75bb16ba11016a1697ba8bbc3151ae47b64487a50034f02a6d142bbca14d91
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    b24f3ae5fc6da40cdb4ce9d2b0006d7b
Sha1:   a6218f63b723ea18dc8c343778aaacd166aa37ee
Sha256: 1ef2e489ac07101574cc7be233723d4ca8448be9dcc5f7cfd324b0626f677d80
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    539b585b6cba9a19ebed4201f049e777
Sha1:   cdd9b5a0da759d8c0c8b3f1f77a371988f2d8459
Sha256: 4ad7c0bdf28a54a5158242e68e3ab1ddf6b301921060b9b2964b8100b0668664
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 05 Sep 2018 13:23:36 GMT
Etag: 250CA4DDEB3A3245B5A74A3AAFB6C42CA3DA65A9
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=248577
Expires: Wed, 12 Sep 2018 13:13:10 GMT
Date: Sun, 09 Sep 2018 16:10:13 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    adb57d97dc49ff79861f724242cd72c3
Sha1:   250ca4ddeb3a3245b5a74a3aafb6c42ca3da65a9
Sha256: 72728afe241bd461a53af8aee12b398cb27997fc0dca343c6e751539f415f83c
                                        
                                            GET /cms/wp-includes/js/wp-emoji-release.min.js?ver=4.8.7 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 206
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 06:16:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   206
Md5:    bbaa2673ca4a7119c884fe9ec5dd939c
Sha1:   8b743968c55ae2b6c256d8a1ff84e1cebd4b90c4
Sha256: e53f577eb5c5b60b05a487629b46bc1605e3a5b56bf0762ae07d59dc197ba016

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /cms/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 460
Connection: keep-alive
Last-Modified: Sun, 24 Sep 2017 15:08:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   460
Md5:    4af7e0110312af26a249b0e22fd29699
Sha1:   ba60866f09877b45669dcf02b4b03961d00cdab8
Sha256: 6aab0219bdee0d687838d36aa02b5edba23045535f046c18dac684d80cddc25d
                                        
                                            GET /cms/wp-content/themes/lovecraft/style.css?ver=4.8.7 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 10284
Connection: keep-alive
Last-Modified: Sun, 24 Sep 2017 11:49:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10284
Md5:    5f8a6812fc8e46cb76457e3c20f26a07
Sha1:   aaab05ab161b80a7d931291cea956a0f351faabf
Sha256: 18933dd208d65caa966e6c02c29f7f3d9e3c24574c0f57b184267bc381201f7a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 06 Sep 2018 11:00:19 GMT
Etag: F46B3081FC41FFBE40AE5C41D1BBCCB992772C6A
X-OCSP-Responder-ID: rmdccaocsp26
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=326390
Expires: Thu, 13 Sep 2018 10:50:03 GMT
Date: Sun, 09 Sep 2018 16:10:13 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    11b86f6791e3c924034742666e215f55
Sha1:   f46b3081fc41ffbe40ae5c41d1bbccb992772c6a
Sha256: 9cb1e277eac70f5c49e2439331665a90022c39503801ad2d0ee14b228c82b6ff
                                        
                                            GET /cms/wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 206
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 06:16:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   206
Md5:    bbaa2673ca4a7119c884fe9ec5dd939c
Sha1:   8b743968c55ae2b6c256d8a1ff84e1cebd4b90c4
Sha256: e53f577eb5c5b60b05a487629b46bc1605e3a5b56bf0762ae07d59dc197ba016
                                        
                                            GET /cms/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 206
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 06:16:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   206
Md5:    bbaa2673ca4a7119c884fe9ec5dd939c
Sha1:   8b743968c55ae2b6c256d8a1ff84e1cebd4b90c4
Sha256: e53f577eb5c5b60b05a487629b46bc1605e3a5b56bf0762ae07d59dc197ba016
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.11
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 06 Sep 2018 11:00:19 GMT
Etag: 8AFBD34DEEA094D5DF1EBD686DBEBA17F022FABA
X-OCSP-Responder-ID: rmdccaocsp13
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=326408
Expires: Thu, 13 Sep 2018 10:50:21 GMT
Date: Sun, 09 Sep 2018 16:10:13 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    04a6e44d7df81d85b56e145d3704adf4
Sha1:   8afbd34deea094d5df1ebd686dbeba17f022faba
Sha256: 18ec93fa60c2655d8d6cb050caaa5aed3977e971c2227bdfd9c2e87a20024b7c
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
timing-allow-origin: *
Etag: "5bdc16c1e0fb6744c27805d606d01b66"
Expires: Sun, 09 Sep 2018 16:10:13 GMT
Date: Sun, 09 Sep 2018 16:10:13 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=138=QYCnvGU4yLTtBe7M6Wy1kC7z1luev333ElalQybiJGEGOattWeQtrXMPThAOgPQBX1XFJ01IJFxPhCWKBeumB51zvW9nFxmYFNHfqzEuGWqhttfmahdM-hc8ZlOl6Vza;Domain=.google.com;Path=/;Expires=Mon, 11-Mar-2019 16:10:13 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16815
Md5:    8ea2e358761276651038ee9b4c6f0555
Sha1:   33cee61642a1113b8191970c547ab7f2b5cc25ce
Sha256: a0b0bec96fc4032aef4a3039b50f8043dbe71bb09bba7600355bb6d823dd3cea
                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=171865
Date: Sun, 09 Sep 2018 16:10:13 GMT
Etag: "5b9520ad-1d7"
Expires: Tue, 11 Sep 2018 15:33:06 GMT
Last-Modified: Sun, 09 Sep 2018 13:31:25 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c9d7cfa18e73ef922d54fa735c80beb8
Sha1:   ad1e3e4d4f731be6cdae1f86c18e230d63e77b4c
Sha256: e63c855c4bda80c820bb71d03aa9cc9a705f26bd1e3871fcdd34bef721bb1832
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=153998
Date: Sun, 09 Sep 2018 16:10:13 GMT
Etag: "5b94dad3-1d7"
Expires: Tue, 11 Sep 2018 10:30:52 GMT
Last-Modified: Sun, 09 Sep 2018 08:33:23 GMT
Server: ECS (arn/46D1)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    3ff77f0af584576455f49c3a10f97781
Sha1:   ca23d4fe4c02c053b1ccc0c2d2ab119a6f939b36
Sha256: 72fff99ebcb38c1766b23becc2a86449b749442e666d10eb47bfa34dc8b3c2a5
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
timing-allow-origin: *
Date: Sun, 09 Sep 2018 16:02:41 GMT
Expires: Sun, 09 Sep 2018 18:02:41 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Cache-Control: public, max-age=7200
Age: 452
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /cms/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 206
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 06:16:57 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   206
Md5:    bbaa2673ca4a7119c884fe9ec5dd939c
Sha1:   8b743968c55ae2b6c256d8a1ff84e1cebd4b90c4
Sha256: e53f577eb5c5b60b05a487629b46bc1605e3a5b56bf0762ae07d59dc197ba016
                                        
                                            GET /cms/wp-content/uploads/2017/10/logo.png HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 12321
Connection: keep-alive
Last-Modified: Wed, 18 Oct 2017 00:35:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12321
Md5:    a1ca8b30a311f5b813d235d798924e67
Sha1:   cd5880ec89b5876b5cee35e16e61916a90f44be2
Sha256: 289fb59c8b32be467618dfee35ad5472d689b740bafb20fbdf2e3383d7e1f8c7
                                        
                                            GET /cms/wp-content/themes/lovecraft/genericons/genericons.css?ver=4.8.7 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Content-Length: 15118
Connection: keep-alive
Last-Modified: Sun, 24 Sep 2017 04:07:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15118
Md5:    238d1ce281805b5b73f0d1514c4b9051
Sha1:   608c52e73129f0c8959187432a16c84e1b822279
Sha256: 0acacfe8761f532e3c8f98a02084f08df971165493270daa10ba5f8904c55033
                                        
                                            GET /cms/wp-content/uploads/2018/09/IMG_0878-700x933.jpg HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 09 Sep 2018 16:10:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 01:39:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   117740
Md5:    6063935b8da99fa40713d36ba45f745e
Sha1:   d7ef6cf7744c018f2075437c0e68c6082c464c5a
Sha256: b475a9fa7d6048ae6692d908e86f656b51904233ac2703053c2e3b712d518303
                                        
                                            GET /menu/page.js HTTP/1.1 
Host: static.addtoany.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         104.20.111.39
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 09 Sep 2018 16:10:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dd08d3b56af9fbe78941c9c532f09f7601536509414; expires=Mon, 09-Sep-19 16:10:14 GMT; path=/; domain=.addtoany.com; HttpOnly
Cache-Control: public, max-age=172800
Cf-Bgj: minify
Etag: W/"124bd-573c418e39f3d"
Last-Modified: Sun, 19 Aug 2018 06:42:31 GMT
P3P: CP="ALL DSP COR CURa ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV INT"
Vary: Accept-Encoding
Via: e5s
CF-Cache-Status: HIT
Expires: Tue, 11 Sep 2018 16:10:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 457aec81897742b5-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   25172
Md5:    6b62a01efea4023ef2565dec52cac53e
Sha1:   60f5ef47f89f7db0e449f7e071be59a0778e13ce
Sha256: fc5b176ec7cd0474865a4f31a6cc9b1a1718abe111bb0d2eaf8ba54c60446997
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:10:14 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    9458a375662991703fac2b59f134015b
Sha1:   2255a7368e6b11b7ad48c37d1820ec8e0fec6ffb
Sha256: d569846c4c53563ed37f842e4f456c8c9fc7507c95d1ebd9d869e40e3815d566
                                        
                                            GET /r/collect?v=1&_v=j68&a=309638668&t=pageview&_s=1&dl=http%3A%2F%2Fminamimitsuhiro.info%2F&ul=en-us&de=UTF-8&dt=%E5%8D%97%E5%85%85%E6%B5%A9%20%E3%82%AA%E3%83%95%E3%82%A3%E3%82%B7%E3%83%A3%E3%83%AB%E3%83%96%E3%83%AD%E3%82%B0%20%7C%20%E7%B9%8A%E7%B6%AD%E8%A3%BD%E9%80%A0%E6%A5%AD%E3%80%81%E7%94%A3%E5%9C%B0%E3%80%81%E3%82%A2%E3%83%91%E3%83%AC%E3%83%AB%E3%83%A1%E3%83%BC%E3%82%AB%E3%83%BC%E3%80%81%E5%B0%8F%E5%A3%B2%E5%BA%97%E3%81%AA%E3%81%A9%E5%B9%85%E5%BA%83%E3%81%8F%E7%B9%8A%E7%B6%AD%E7%94%A3%E6%A5%AD%E5%85%A8%E8%88%AC%E3%81%A8%E3%83%95%E3%82%A1%E3%83%83%E3%82%B7%E3%83%A7%E3%83%B3%E6%83%85%E5%A0%B1%E3%82%92%E7%99%BA%E4%BF%A1&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=186417742&gjid=2131133790&cid=1179116144.1536509414&tid=UA-68652115-1&_gid=1864409890.1536509414&_r=1&z=1444906841 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         172.217.20.46
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-68652115-1&cid=1179116144.1536509414&jid=186417742&_gid=1864409890.1536509414&gjid=2131133790&_v=j68&z=1444906841
Access-Control-Allow-Origin: *
Date: Sun, 09 Sep 2018 16:10:14 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 419
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   419
Md5:    fe1b0488e7fdcb091744898af9e7aa18
Sha1:   cfcff06361b90640f1cdee59442d6f5291cfbfe0
Sha256: 909c88f8e7443aa02a6de26623aae3d9b80dee7b05e247cfd64ad7fbf8479ca8
                                        
                                            GET /css?family=PT+Serif:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/cms/wp-content/themes/lovecraft/style.css?ver=4.8.7

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
timing-allow-origin: *
Expires: Sun, 09 Sep 2018 16:10:14 GMT
Date: Sun, 09 Sep 2018 16:10:14 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   234
Md5:    c3cf42d516b2ba63210c6f67087644be
Sha1:   1534cbfebf8f30da1529ffde48d6412f811570e2
Sha256: eb21ab0e4e3afc7f292d16d0d05314be560fe12f61169acc63ee9b862cf93a3d
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 09 Sep 2018 16:10:14 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    5ab51918484609cdfc1c3c14168d6df4
Sha1:   ca994d81696a16db4ff203c4cd6994ed09725399
Sha256: 6e4d12544d5c8ad592c87866dab6285e459436e407893d1feac4449f82da20b5
                                        
                                            GET /js/bookmark_button.js HTTP/1.1 
Host: b.st-hatena.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         23.43.141.175
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Wed, 05 Sep 2018 09:17:04 GMT
Etag: "5b8f9f10-8996"
Server: nginx
Content-Encoding: gzip
Content-Length: 10365
Cache-Control: max-age=19493
Expires: Sun, 09 Sep 2018 21:35:07 GMT
Date: Sun, 09 Sep 2018 16:10:14 GMT
Connection: keep-alive
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10365
Md5:    05670958c21ce77e065f71eb81179c0c
Sha1:   7ce08386b9691ed71db6e152c55f58e5627ec1af
Sha256: 0174c2d4b37b328dd3099c35fed249335d23f9a5e538fa907968bc89dadd9eb2
                                        
                                            GET /cms/wp-content/uploads/2018/09/IMG_0874-700x933.jpg HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 01:39:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   111225
Md5:    f12824caac689715baee0f76648ea244
Sha1:   d9898baff3ef02d7909ad152e5ee81068547c9ce
Sha256: 1a372f1545da35f0f74419a032c7db451107757158fe40cdf22d12fa87c86e88
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-68652115-1&cid=1179116144.1536509414&jid=186417742&_gid=1864409890.1536509414&gjid=2131133790&_v=j68&z=1444906841 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         74.125.205.156
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Sun, 09 Sep 2018 16:10:14 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /jquery.js HTTP/1.1 
Host: 134.249.116.78
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         134.249.116.78
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 09 Sep 2018 16:10:09 GMT
Server: Apache/2.4.28 (Win32) PHP/7.2.8
Last-Modified: Fri, 31 Aug 2018 12:08:26 GMT
Etag: "e52-574ba0c81eeda"
Accept-Ranges: bytes
Content-Length: 3666
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   3666
Md5:    949d94a03fe4223d04d2cd4e0777e92b
Sha1:   3336c019553912f7b60bb28025cf53a479167b98
Sha256: 3a7ff5b48c3713682d85cba91eef11f96ab54706eaff879f49898b5e66069cff

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /index.php HTTP/1.1 
Host: 51.15.145.148
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         51.15.145.148
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 09 Sep 2018 16:10:18 GMT
Server: Apache/2.4.25 (Win32) PHP/7.2.7
X-Powered-By: PHP/7.2.7
Set-Cookie: a777d=1; expires=Mon, 10-Sep-2018 04:10:18 GMT; Max-Age=43200; path=/
Content-Length: 161
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   161
Md5:    297509f68c799f3c746a555eb86b0e1d
Sha1:   53f288a7cc5ad2b677ceab0fe7a9ea9e7f7cd5b0
Sha256: 2b9c1b5f2e47ee35882f4d786aed334ef78e3a164553701341d7bf8f35707dd9

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 51.15.145.148
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: a777d=1

                                         
                                         51.15.145.148
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 09 Sep 2018 16:10:18 GMT
Server: Apache/2.4.25 (Win32) PHP/7.2.7
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Language: en


--- Additional Info ---
Magic:  HTML document text
Size:   305
Md5:    837e77d0ca41cc359e10396c9001d535
Sha1:   9a43f20d35c88ca74cfd9be4acfa0ddf31c64956
Sha256: 6e21ecee62f728367a328ffe5483bb04def05490a66a63642385e01c3ce38099
                                        
                                            GET /index/?601491161591 HTTP/1.1 
Host: permettrequalit.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://51.15.145.148/index.php

                                         
                                         185.242.179.62
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.12.2
Date: Sun, 09 Sep 2018 16:10:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 21 Jul 1977 07:30:00 GMT
Last-Modified: Sun, 09 Sep 2018 16:10:15 GMT
Cache-Control: max-age=0
Pragma: no-cache
Set-Cookie: 00831=%7B%22streams%22%3A%5B1536509415%5D%2C%22campaigns%22%3A%7B%2291%22%3A1536509415%7D%2C%22time%22%3A1536509415%7D; expires=Wed, 10-Oct-2018 16:10:15 GMT; Max-Age=2678400; path=/; domain=.permettrequalit.tk
Location: http://wwww.perrrrsik.org/?utm_medium=4c23b9fecf7dfd895dfe0da99e857f3bee8e9d42&utm_campaign=91


--- Additional Info ---

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET /?utm_medium=4c23b9fecf7dfd895dfe0da99e857f3bee8e9d42&utm_campaign=91 HTTP/1.1 
Host: wwww.perrrrsik.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://51.15.145.148/index.php

                                         
                                         198.143.165.219
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 09 Sep 2018 16:10:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: u=31fb7fc29b8d876d01c8fbaa035385df; expires=Mon, 09-Sep-2019 16:10:15 GMT; Max-Age=31536000; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2309
Md5:    c883b85f962c23fdf50fc9b2b526afc0
Sha1:   d6eb8327ffe502790848743ef547efa1cd52610a
Sha256: f57893602edf10dd3f773baa063c9b2c33d236d5dfff8c9a74df52da709ae01b
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: wwww.perrrrsik.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: u=31fb7fc29b8d876d01c8fbaa035385df

                                         
                                         198.143.165.219
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Sun, 09 Sep 2018 16:10:16 GMT
Content-Length: 1150
Last-Modified: Wed, 04 Oct 2017 19:16:17 GMT
Connection: keep-alive
Etag: "59d53381-47e"
Expires: Mon, 10 Sep 2018 16:10:16 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    91abe01116ab422c598e9c8af72cf4da
Sha1:   0f2815fe8e067d48537ad168225ab4674271fa27
Sha256: b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc
                                        
                                            GET /?utm_term=6599250965830830396&clickverify=1&c=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6b9bbbe8fbd8db0b3b1b5b6b4b5b4aaababafaaa79cac929390919697a6a1ead9dce9eeef989f9786e0e1e6d6d5d2ccfbc0c1cbffcccdc7c3c0c5c0c2f4c5fafbf8f9fcfdfcfdf2a2f8f1fef7f4ce HTTP/1.1 
Host: wwww.perrrrsik.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wwww.perrrrsik.org/?utm_medium=4c23b9fecf7dfd895dfe0da99e857f3bee8e9d42&utm_campaign=91
Cookie: u=31fb7fc29b8d876d01c8fbaa035385df

                                         
                                         198.143.165.219
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sun, 09 Sep 2018 16:10:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1711
Md5:    e731d4e200a62fa77badd8f6557569f6
Sha1:   5f00fbd804393c20bff803bf6caa333bcf9cb4ee
Sha256: 21136e57483d3b302e4fc20ec295fe78e0c5cfb5a4af5365157d547e68c11d41
                                        
                                            GET /proc.php?558ca5e538ec6499d4ee3b6e53823b4095ee0d8f HTTP/1.1 
Host: wwww.perrrrsik.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wwww.perrrrsik.org/?utm_term=6599250965830830396&clickverify=1&c=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6b9bbbe8fbd8db0b3b1b5b6b4b5b4aaababafaaa79cac929390919697a6a1ead9dce9eeef989f9786e0e1e6d6d5d2ccfbc0c1cbffcccdc7c3c0c5c0c2f4c5fafbf8f9fcfdfcfdf2a2f8f1fef7f4ce
Cookie: u=31fb7fc29b8d876d01c8fbaa035385df

                                         
                                         198.143.165.219
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 09 Sep 2018 16:10:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.astroandina.com/9ade8db7-bb89-4b00-beb6-9cc45e8d1e96?2=1608&3=1608-3a49efbz&1=6599250965830830396


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 05 Sep 2018 06:44:52 GMT
Etag: 0C39754C1764CDFDCE6EB7A8A62CE7D7280EBA36
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=224675
Expires: Wed, 12 Sep 2018 06:34:51 GMT
Date: Sun, 09 Sep 2018 16:10:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a667b79f754550f0779a0372ce149a65
Sha1:   0c39754c1764cdfdce6eb7a8a62ce7d7280eba36
Sha256: 28836c24623a3c9094ece48bc3d1d907890eabfda8be79bd3fd7cf96b033dfa8
                                        
                                            GET /9ade8db7-bb89-4b00-beb6-9cc45e8d1e96?2=1608&3=1608-3a49efbz&1=6599250965830830396 HTTP/1.1 
Host: www.astroandina.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wwww.perrrrsik.org/?utm_term=6599250965830830396&clickverify=1&c=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6b9bbbe8fbd8db0b3b1b5b6b4b5b4aaababafaaa79cac929390919697a6a1ead9dce9eeef989f9786e0e1e6d6d5d2ccfbc0c1cbffcccdc7c3c0c5c0c2f4c5fafbf8f9fcfdfcfdf2a2f8f1fef7f4ce

                                         
                                         104.18.162.148
HTTP/1.1 302 Found
                                        
Date: Sun, 09 Sep 2018 16:10:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: __cfduid=dcb74240f42fa5f86be02854be10943d91536509416; expires=Mon, 09-Sep-19 16:10:16 GMT; path=/; domain=.astroandina.com; HttpOnly 9ade8db7-bb89-4b00-beb6-9cc45e8d1e96-v4=9ade8db7-bb89-4b00-beb6-9cc45e8d1e96;domain=www.astroandina.com;path=/;HttpOnly cep-v4=ad1mO0l9iCaGngGktSP89z0sO90QC3oFaf8Bxmm3AiYF7iOtLA0RPmtSE-sfPv4n54EY8WzsTE3TzgZ7ycZIYFUlMyPFsRV7ukkNgZpQRGj_eKWpPh3cfWwFutOG7q-p2ld1PFVFrXaTFEiLLI7iH8T3GaJ_78POapUlzbwhDu1ath-D85zGtitxWazG-bt5WF46Q0JZigjr3tpmRERXSmSD2AcTHAVWWMabMsJlxwGFK4mbNsGLMXdffxhDPZ7Q;Max-Age=86400;Expires=Mon, 10-Sep-2018 16:10:16 GMT;domain=www.astroandina.com;path=/;HttpOnly
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://safe.net-av80.stream/survey-r/index-en-s9.html?country=Norway&td=www.astroandina.com&br=Firefox&isp=Firefox&cep=bGOaNoWGym0fmupCzcsQKs_lGI7ucaT5uaqo7QGeySYtGvCJOZ5Pn0wZ0UinS54kv1V_MAWSHdWiAWwzDtSdCKPDyfJmX6VazFlNetOmbDsZ18AVC62Lxo1ej6QEs3NIWFbfo0Ard_6g8dcoOoghJSYN46XPGP26Z93uXCglwCy_AYc7RUhaDUUtbZZPSaaJjt-Qyr45ZcZQGtHKiZNT_-9TalozHqresILflye8EHFAO-2DWHgRRLeri8DRa7sM&2=1608&3=1608-3a49efbz&1=6599250965830830396
Pragma: no-cache
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 457aec8d1857429d-OSL


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 09 Sep 2018 01:39:53 GMT
Etag: 55526DC931DFEA8E034E64E3D8D4E5944A4B1835
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=551947
Expires: Sun, 16 Sep 2018 01:29:23 GMT
Date: Sun, 09 Sep 2018 16:10:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    4d03b0ee8885bb5009a74cb1ecbe2984
Sha1:   55526dc931dfea8e034e64e3d8d4e5944a4b1835
Sha256: 2361f7a78814747eb3852424d47220a9e1edc73605a71ff3aa6fd7f76ca916d5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 06 Sep 2018 11:00:19 GMT
Etag: 55F86705C607450F609050F44484CF60D203C4A8
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 312
Cache-Control: public, no-transform, must-revalidate, max-age=326423
Expires: Thu, 13 Sep 2018 10:50:39 GMT
Date: Sun, 09 Sep 2018 16:10:16 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   312
Md5:    37a18040b86d14d6ad35e1bcb9d8179d
Sha1:   55f86705c607450f609050f44484cf60d203c4a8
Sha256: e8bc77827a12040e4003f31074abff26566d48fa25ca746684854d8757f85575
                                        
                                            GET /survey-r/index-en-s9.html?country=Norway&td=www.astroandina.com&br=Firefox&isp=Firefox&cep=bGOaNoWGym0fmupCzcsQKs_lGI7ucaT5uaqo7QGeySYtGvCJOZ5Pn0wZ0UinS54kv1V_MAWSHdWiAWwzDtSdCKPDyfJmX6VazFlNetOmbDsZ18AVC62Lxo1ej6QEs3NIWFbfo0Ard_6g8dcoOoghJSYN46XPGP26Z93uXCglwCy_AYc7RUhaDUUtbZZPSaaJjt-Qyr45ZcZQGtHKiZNT_-9TalozHqresILflye8EHFAO-2DWHgRRLeri8DRa7sM&2=1608&3=1608-3a49efbz&1=6599250965830830396 HTTP/1.1 
Host: safe.net-av80.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wwww.perrrrsik.org/?utm_term=6599250965830830396&clickverify=1&c=1&utm_content=fdc2c69a9cafac9c939496a19e9291a58b8bb8ccbecabcbd83828787b68081818aa6b9bbbe8fbd8db0b3b1b5b6b4b5b4aaababafaaa79cac929390919697a6a1ead9dce9eeef989f9786e0e1e6d6d5d2ccfbc0c1cbffcccdc7c3c0c5c0c2f4c5fafbf8f9fcfdfcfdf2a2f8f1fef7f4ce

                                         
                                         104.18.247.141
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sun, 09 Sep 2018 16:10:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d83699c5da6235c17177d1cec9ba091c91536509416; expires=Mon, 09-Sep-19 16:10:16 GMT; path=/; domain=.safe.net-av80.stream; HttpOnly
Last-Modified: Fri, 06 Jul 2018 11:58:34 GMT
CF-Cache-Status: HIT
Expires: Mon, 09 Sep 2019 16:10:16 GMT
Cache-Control: public, max-age=31536000
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 457aec8edf2a42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4845
Md5:    8539472253b52ded6ab251f30a1dcff0
Sha1:   41927bff01f2d3cb0871ad859ca8304b675370c4
Sha256: 2e935236fbb616eb91e31b5bd5b649f83900486ef990cd155f493961ec82f8f7
                                        
                                            GET /survey-r/cadeau.png HTTP/1.1 
Host: safe.net-av80.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://safe.net-av80.stream/survey-r/index-en-s9.html?country=Norway&td=www.astroandina.com&br=Firefox&isp=Firefox&cep=bGOaNoWGym0fmupCzcsQKs_lGI7ucaT5uaqo7QGeySYtGvCJOZ5Pn0wZ0UinS54kv1V_MAWSHdWiAWwzDtSdCKPDyfJmX6VazFlNetOmbDsZ18AVC62Lxo1ej6QEs3NIWFbfo0Ard_6g8dcoOoghJSYN46XPGP26Z93uXCglwCy_AYc7RUhaDUUtbZZPSaaJjt-Qyr45ZcZQGtHKiZNT_-9TalozHqresILflye8EHFAO-2DWHgRRLeri8DRa7sM&2=1608&3=1608-3a49efbz&1=6599250965830830396
Cookie: __cfduid=d83699c5da6235c17177d1cec9ba091c91536509416

                                         
                                         104.18.247.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 09 Sep 2018 16:10:16 GMT
Content-Length: 3874
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: imgq:85
Cf-Polished: pngoptimizer, origSize=4205, status=webp_bigger
Etag: "5b3f5970-106d"
Expires: Mon, 09 Sep 2019 16:10:16 GMT
Last-Modified: Fri, 06 Jul 2018 11:58:40 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 457aec8fba0e42c1-OSL


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   3874
Md5:    a2d1c299fb230720aa7ec05c807235d8
Sha1:   9cf9af403d1e99f729f471b044cac1f9cdb0db0e
Sha256: 307c26add3993919636506b9b6d90a51ce2d2736c16d50c03540c7d785880356
                                        
                                            GET /survey-r/sgs3.png HTTP/1.1 
Host: safe.net-av80.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://safe.net-av80.stream/survey-r/index-en-s9.html?country=Norway&td=www.astroandina.com&br=Firefox&isp=Firefox&cep=bGOaNoWGym0fmupCzcsQKs_lGI7ucaT5uaqo7QGeySYtGvCJOZ5Pn0wZ0UinS54kv1V_MAWSHdWiAWwzDtSdCKPDyfJmX6VazFlNetOmbDsZ18AVC62Lxo1ej6QEs3NIWFbfo0Ard_6g8dcoOoghJSYN46XPGP26Z93uXCglwCy_AYc7RUhaDUUtbZZPSaaJjt-Qyr45ZcZQGtHKiZNT_-9TalozHqresILflye8EHFAO-2DWHgRRLeri8DRa7sM&2=1608&3=1608-3a49efbz&1=6599250965830830396
Cookie: __cfduid=d83699c5da6235c17177d1cec9ba091c91536509416

                                         
                                         104.18.247.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 09 Sep 2018 16:10:16 GMT
Content-Length: 2847
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: imgq:85
Cf-Polished: pngoptimizer, origSize=2953
Etag: "5b3f596f-b89"
Expires: Mon, 09 Sep 2019 16:10:16 GMT
Last-Modified: Fri, 06 Jul 2018 11:58:39 GMT
Vary: Accept
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 457aec900c9b4297-OSL


--- Additional Info ---
Magic:  PNG image, 90 x 90, 8-bit colormap, non-interlaced
Size:   2847
Md5:    f88c2c0dd2fccd986dbcb7b94dbeb5ea
Sha1:   1db09462bb8a03527b491a26ed8c228ac1b28518
Sha256: 01c8b8111d40c416f8cb1f4ea1fcd5e362069f61231dbb6f2f2f1ff290bbc2b6
                                        
                                            GET /survey-r/tabs3.png HTTP/1.1 
Host: safe.net-av80.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://safe.net-av80.stream/survey-r/index-en-s9.html?country=Norway&td=www.astroandina.com&br=Firefox&isp=Firefox&cep=bGOaNoWGym0fmupCzcsQKs_lGI7ucaT5uaqo7QGeySYtGvCJOZ5Pn0wZ0UinS54kv1V_MAWSHdWiAWwzDtSdCKPDyfJmX6VazFlNetOmbDsZ18AVC62Lxo1ej6QEs3NIWFbfo0Ard_6g8dcoOoghJSYN46XPGP26Z93uXCglwCy_AYc7RUhaDUUtbZZPSaaJjt-Qyr45ZcZQGtHKiZNT_-9TalozHqresILflye8EHFAO-2DWHgRRLeri8DRa7sM&2=1608&3=1608-3a49efbz&1=6599250965830830396
Cookie: __cfduid=d83699c5da6235c17177d1cec9ba091c91536509416

                                         
                                         104.18.247.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 09 Sep 2018 16:10:16 GMT
Content-Length: 3314
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: imgq:85
Cf-Polished: pngoptimizer, origSize=3320
Etag: "5b3f596f-cf8"
Expires: Mon, 09 Sep 2019 16:10:16 GMT
Last-Modified: Fri, 06 Jul 2018 11:58:39 GMT
Vary: Accept
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 457aec900c9c4297-OSL


--- Additional Info ---
Magic:  PNG image, 90 x 85, 8-bit colormap, non-interlaced
Size:   3314
Md5:    95faa6cf5df7076aec5b8cecdd63f497
Sha1:   2212cd5ef354e58b8a33870a829b0e0c27820a38
Sha256: 38c0e9dbe71e8f54919447b35bd92fad297b0703c723dba829bf6cf302fb6411
                                        
                                            GET /survey-r/s9.png HTTP/1.1 
Host: safe.net-av80.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://safe.net-av80.stream/survey-r/index-en-s9.html?country=Norway&td=www.astroandina.com&br=Firefox&isp=Firefox&cep=bGOaNoWGym0fmupCzcsQKs_lGI7ucaT5uaqo7QGeySYtGvCJOZ5Pn0wZ0UinS54kv1V_MAWSHdWiAWwzDtSdCKPDyfJmX6VazFlNetOmbDsZ18AVC62Lxo1ej6QEs3NIWFbfo0Ard_6g8dcoOoghJSYN46XPGP26Z93uXCglwCy_AYc7RUhaDUUtbZZPSaaJjt-Qyr45ZcZQGtHKiZNT_-9TalozHqresILflye8EHFAO-2DWHgRRLeri8DRa7sM&2=1608&3=1608-3a49efbz&1=6599250965830830396
Cookie: __cfduid=d83699c5da6235c17177d1cec9ba091c91536509416

                                         
                                         104.18.247.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 09 Sep 2018 16:10:16 GMT
Content-Length: 2191
Connection: keep-alive
Cache-Control: public, max-age=31536000
Cf-Bgj: imgq:85
Cf-Polished: pngoptimizer, origSize=2196
Etag: "5b3f596f-894"
Expires: Mon, 09 Sep 2019 16:10:16 GMT
Last-Modified: Fri, 06 Jul 2018 11:58:39 GMT
Vary: Accept
CF-Cache-Status: HIT
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 457aec900c2f4291-OSL


--- Additional Info ---
Magic:  PNG image, 100 x 100, 8-bit colormap, non-interlaced
Size:   2191
Md5:    b48d288b366687e274a2421ddf67381a
Sha1:   05adf864f92f7cf3b287098e92fc809f0e0a7dbb
Sha256: edf274ad27f728057d099d3969bfb61e1dd835b2e9b75cdc19f7b7d2fd24ab71
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: safe.net-av80.stream
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d83699c5da6235c17177d1cec9ba091c91536509416

                                         
                                         104.18.247.141
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sun, 09 Sep 2018 16:10:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 17 Jul 2018 10:42:14 GMT
Etag: W/"5b4dc806-46"
Expires: Mon, 09 Sep 2019 16:10:17 GMT
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 457aec90486842a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   62
Md5:    74f60f0216cc1cb10b33dbeff395f192
Sha1:   de23674230843f409d5a7f840d6a30343675ae66
Sha256: 3a5f2a1419874bc1fac0fed7484c13a962f706e8ba99f7c6dca7a979c71d77c4
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 51.15.145.148
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: a777d=1

                                         
                                         51.15.145.148
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 09 Sep 2018 16:10:21 GMT
Server: Apache/2.4.25 (Win32) PHP/7.2.7
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Language: en


--- Additional Info ---
Magic:  HTML document text
Size:   305
Md5:    837e77d0ca41cc359e10396c9001d535
Sha1:   9a43f20d35c88ca74cfd9be4acfa0ddf31c64956
Sha256: 6e21ecee62f728367a328ffe5483bb04def05490a66a63642385e01c3ce38099
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.1179116144.1536509414; _gid=GA1.2.1864409890.1536509414; _gat=1; http_uid_utm=1

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Sun, 09 Sep 2018 16:10:18 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/7.0.24
Server: Apache


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.1179116144.1536509414; _gid=GA1.2.1864409890.1536509414; _gat=1; http_uid_utm=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /cms/wp-content/uploads/2018/09/IMG_0884-700x933.jpg HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 09 Sep 2018 16:10:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2018 01:39:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
                                        
                                            GET /cms/wp-content/uploads/2017/09/cover_minami-1.jpg HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/

                                         
                                         157.7.44.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 09 Sep 2018 16:10:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 24 Sep 2017 04:07:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache


--- Additional Info ---
                                        
                                            GET /page/2 HTTP/1.1 
Host: minamimitsuhiro.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://minamimitsuhiro.info/
X-Moz: prefetch
Cookie: _ga=GA1.2.1179116144.1536509414; _gid=GA1.2.1864409890.1536509414; _gat=1; http_uid_utm=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---