Report - rakugakobo.com/best123/login.php

Report Overview

Submitted URL
rakugakobo.com/best123/login.php
IP
183.90.228.38
ASN
#131965 Xserver Inc.
Submitted
2022-10-04 18:09:02
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.2 kB	142.250.74.3
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	51 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	21 kB	142.250.74.174
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
rakugakobo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.1 kB	32 kB	183.90.228.38
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.210.107.213
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	1.7 kB	142.250.74.10
webfonts.xserver.jp	429707	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	33 kB	202.226.37.225
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	48 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	rakugakobo.com/best123/login.php	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/uploads/master-slider/custom.css?ver=12.2	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.6.0	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/themes/sydney/js/so-legacy.js?ver=5.5.10	Phishing
2022-10-04	medium	rakugakobo.com/best123/login.php	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/uploads/pz-linkcard/style.css?ver=5.5.10	Phishing
2022-10-04	medium	rakugakobo.com/wp-includes/js/wp-embed.min.js?ver=5.5.10	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/themes/sydney/fonts/font-awesome.min.css?ver=5.5.10	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/themes/sydney/js/so-legacy-main.js?ver=5.5.10	Phishing
2022-10-04	medium	rakugakobo.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10	Phishing
2022-10-04	medium	rakugakobo.com/wp-content/themes/sydney/style.css?ver=20200129	Phishing
2022-10-04	medium	rakugakobo.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	rakugakobo.com/best123/login.php	231 B	2023-03-08	2023-03-08
Pretty URL rakugakobo.com/best123/login.php IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:32:44 Last Seen2023-03-08 08:25:37 Times Seen1 Hash 1b073494525ed1875c697b026b86303d 5c81ab4c87b6fe6b0875712fb892685aa907827e 5d4596b1a1388cf50fc074299f00d82582f836f25a0dba720458c914313dc92a Loading...

	rakugakobo.com/wp-content/themes/sydney/js/so-legacy-main.js?ver=5.5.10	3.0 kB	2023-03-08	2023-08-14
Pretty URL rakugakobo.com/wp-content/themes/sydney/js/so-legacy-main.js?ver=5.5.10 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:32:44 Last Seen2023-08-14 10:30:24 Times Seen6 Hash 0570f9efa7df5cffed6af62e314faa66 67089cf89355312003bc994e5d2c159f849acc8a ac4f107356f18173c5bb868bc92e912a545fc4739b17f4592b4c2010b748b70f Loading...

	rakugakobo.com/best123/login.php	2.1 kB	2023-03-08	2023-03-08
Pretty URL rakugakobo.com/best123/login.php IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:32:44 Last Seen2023-03-08 08:25:37 Times Seen1 Hash 4ea2b488b48f3d1c3def4fbc9e8b6e8d e744c4f8fbe377f5f7a2856719d10105cfc4e3ae 84863fd09d39ab6eeb356d68383a46999b4fe599ed0bfdfad6351d9a1151320e Loading...

	rakugakobo.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-20
Pretty URL rakugakobo.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-20 09:49:39 Times Seen17722 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	rakugakobo.com/wp-content/themes/sydney/js/scripts.js?ver=5.5.10	74 kB	2023-03-07	2024-01-03
Pretty URL rakugakobo.com/wp-content/themes/sydney/js/scripts.js?ver=5.5.10 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:26:48 Last Seen2024-01-03 03:46:38 Times Seen13 Hash be109c43bf158031c9d5e0b8290a1964 d71839a990dbabaf0350ca67706701909993d04e 87dcc45bb858a37810c4b5442c26d2920286c6f3babfc98d1124d7111b1617bd Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	rakugakobo.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2	14 kB	2023-03-07	2024-04-18
Pretty URL rakugakobo.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-18 02:51:38 Times Seen1671 Hash 309e1a27ab5c8722dea8f46fc8c384d5 784a35686079a37cf469e27fd7efa1b2fac7ac97 a0ea735f765d5bc1230beb63bcb701b69c80d77c48572a61bb159a8915903278 Loading...

	rakugakobo.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10	14 kB	2023-03-07	2024-04-20
Pretty URL rakugakobo.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-20 09:49:39 Times Seen3527 Hash 878184c5d285d4d52d926d36ef19b718 dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847 Loading...

	rakugakobo.com/best123/login.php	154 B	2023-03-08	2023-03-08
Pretty URL rakugakobo.com/best123/login.php IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:32:44 Last Seen2023-03-08 08:25:37 Times Seen1 Hash 0c97b1f7200897ec476ddec29795e6a5 474dccdcae1be2ed9afa0302a424d8f72cb0e7d0 323a715462a8c9d438a58c4e794f71bb41ff0c0b2babe66c781e7805a824a4db Loading...

	rakugakobo.com/wp-includes/js/wp-embed.min.js?ver=5.5.10	1.4 kB	2023-03-07	2024-04-22
Pretty URL rakugakobo.com/wp-includes/js/wp-embed.min.js?ver=5.5.10 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-22 22:46:20 Times Seen6871 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	rakugakobo.com/best123/login.php	156 B	2023-03-08	2023-03-08
Pretty URL rakugakobo.com/best123/login.php IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:32:44 Last Seen2023-03-08 08:25:37 Times Seen1 Hash e99491678d2c5fa63857be51f2306398 331814fff3f8cfa8587b93c4ee50cc112a991397 ea1f525eb69e92058b154b902588f120922d0f690a063b935beb2cb11d52acd4 Loading...

	rakugakobo.com/wp-content/themes/sydney/js/main.js?ver=20200504	11 kB	2023-03-08	2023-03-26
Pretty URL rakugakobo.com/wp-content/themes/sydney/js/main.js?ver=20200504 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:32:44 Last Seen2023-03-26 11:42:24 Times Seen2 Hash fe568cd4eaf0e2eda5d83500a5009d4f 05d4a9702d4a5718cea4480ac3e8b8af16f3e48f 1b6906f668663068355cc0ba365f9d3658f91a1e7c23836bfadacf72bd797cb3 Loading...

	rakugakobo.com/wp-content/themes/sydney/js/so-legacy.js?ver=5.5.10	10 kB	2023-03-07	2024-04-18
Pretty URL rakugakobo.com/wp-content/themes/sydney/js/so-legacy.js?ver=5.5.10 IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:39 Last Seen2024-04-18 15:44:47 Times Seen517 Hash 11e8d0f90fcab5b06754715d5f2893b5 0a68aa91fa0e126d9a0ff3af4012cefb881979fa 1288468cd9261b7f13407aaac93ed6d82874059ee8aa25c605c4b594f169ec74 Loading...

	webfonts.xserver.jp/js/xserver.js?ver=1.2.1	20 kB	2023-03-07	2024-04-18
Pretty URL webfonts.xserver.jp/js/xserver.js?ver=1.2.1 IP 202.226.37.225 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:19 Last Seen2024-04-18 02:50:17 Times Seen126 Hash ec76b05903aad10276e1c73c96948ab9 326202ce1f4fb7373b127f1a76223fe0fa60393d b96773c4b9e609994855c2ff9b4463610ee73c5a4a3f11938d88dcc2894d1c16 Loading...

	rakugakobo.com/best123/login.php	329 B	2023-03-07	2024-04-22
Pretty URL rakugakobo.com/best123/login.php IP 183.90.228.38 ASN #131965 Xserver Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-22 00:28:39 Times Seen3712 Hash 03d6d38af8c34d50a7d4f77919f3f6c7 90e18129a2b50addce02c98c923534d242233216 9f7a87d73cf34cd5d76d600a5ce326ac1ce32a021067b1bb50587fa488b13444 Loading...

HTTP Transactions (53)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5351
Expires: Tue, 04 Oct 2022 19:38:02 GMT
Date: Tue, 04 Oct 2022 18:08:51 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 17:35:23 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l0y0dQk8iEhZJCuNnuI_od3wAZuTKD5aahMq0ulBXlmw_OQJ5nH9JA==
Age: 2007

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4089
Expires: Tue, 04 Oct 2022 19:17:00 GMT
Date: Tue, 04 Oct 2022 18:08:51 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: HMNaRyOrD9z7H73e762roPz6G3gSI26tZqlLIOd1jjosUuC82uJ6dMRZllwgYGk4mOar3wMplig=
x-amz-request-id: ARQPZYVGKKJQ0A9W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 04 Oct 2022 17:51:28 GMT
age: 1043
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 17:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 18:21:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: teTka4iqlr7Dcrbkin-65n1T90hYxejdEbBP-q9zmcv0qKHyDEEPZQ==
Age: 2359

rakugakobo.com/best123/login.php

183.90.228.38

301 Moved Permanently

0 B

URL HTTP/1.1
rakugakobo.com/best123/login.php
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /best123/login.php HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 18:08:52 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Expires: Tue, 04 Oct 2022 19:08:52 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://rakugakobo.com/best123/login.php

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5374
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:52 GMT
Last-Modified: Tue, 04 Oct 2022 16:39:18 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.210.107.213

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.210.107.213:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kCH9AJM3XKFDMkCgaRMJ7w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Mw8wuoYzfqh0YPuHbWeHru9rrE=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1e184fee5ac0b30e1ff5e942368b4dc4
289fca868d714badfbe49d97775c590d1a3c0fa6
6ac74cae0095c358fa2ab6064a4228dc2bdf37efc17f62e1fcafa7de76eebe3b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AC74CAE0095C358FA2AB6064A4228DC2BDF37EFC17F62E1FCAFA7DE76EEBE3B"
Last-Modified: Tue, 04 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Wed, 05 Oct 2022 00:08:25 GMT
Date: Tue, 04 Oct 2022 18:08:52 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Raleway%3A400%2C600&subset=latin&display=swap

142.250.74.10

200 OK

1.0 kB

URL HTTP/2
fonts.googleapis.com/css?family=Raleway%3A400%2C600&subset=latin&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.0 kB (1002 bytes)
Hash
219a89971613530247700ec5a4bf6ed7
77e941615c1a611bc4cbab8f2cade269a47860fd
ca75fe7988f0b2f039dc9c2851a540c938f18ba61044eb2b9bae41c2be6d5684

HTTP Headers

GET /css?family=Raleway%3A400%2C600&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 18:08:53 GMT
date: Tue, 04 Oct 2022 18:08:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16081
Expires: Tue, 04 Oct 2022 22:36:54 GMT
Date: Tue, 04 Oct 2022 18:08:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16081
Expires: Tue, 04 Oct 2022 22:36:54 GMT
Date: Tue, 04 Oct 2022 18:08:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16081
Expires: Tue, 04 Oct 2022 22:36:54 GMT
Date: Tue, 04 Oct 2022 18:08:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16081
Expires: Tue, 04 Oct 2022 22:36:54 GMT
Date: Tue, 04 Oct 2022 18:08:53 GMT
Connection: keep-alive

rakugakobo.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2

183.90.228.38

200 OK

6.3 kB

URL HTTP/2
rakugakobo.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type
ASCII text
Size
6.3 kB (6252 bytes)
Hash
9a47aec0b7f7815a323125c7a9265769
f7376a3d3ed39c79d374e5cbdd2f967f3357c361
3ced97c63cbb6ca19faac65552f3abdd0c0343b85ed5b71e1fad10fcda3b67cc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:04:42 GMT
etag: W/"780-5ae8c7019b71e"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/uploads/master-slider/custom.css?ver=12.2

183.90.228.38

200 OK

828 B

URL HTTP/2
rakugakobo.com/wp-content/uploads/master-slider/custom.css?ver=12.2
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type
ASCII text
Size
828 B (828 bytes)
Hash
c223566a8ddb6730887beff41e9ca4c8
15f28607256edc1e9d973b1fb2210efa479f2759
fa7a637cf58e68f8f693ee0cdfd62ca58578dc83de7542822061ee08ad4f2057

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/master-slider/custom.css?ver=12.2 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
content-length: 828
last-modified: Sat, 05 Sep 2020 08:14:25 GMT
etag: "33c-5ae8c92d2c2e8"
accept-ranges: bytes
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11955 bytes)
Hash
54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tJwzKfs7HnQ7dVcINwnlzxTChXiEi4JPj8jrS8p5KhurRx_o3ZVOZQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
age: 71874
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ae1e7d3-41cb-4400-8cae-870baa006b86.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7777 bytes)
Hash
5a137925cb6116c46ce21c6e27933c44
2973e908318c68489bba9b4242254769a4f3d1ba
737bf9c3d2906a937ed0b082c8830982163be90acf8dd01dacc7ec80c5c8bcd1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ae1e7d3-41cb-4400-8cae-870baa006b86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7777
x-amzn-requestid: d035ce80-1700-4e69-8b75-e0bf47ca9ddf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDCWCFw4oAMFVDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63311759-0412900d669b5381058ec9a2;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 03:07:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1VY-i7YZI4ACXrrwL9CSNQb0mjLUnhsVCLER7f_fUHxqJkzrP3aSnA==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 06:18:54 GMT
age: 42599
etag: "2973e908318c68489bba9b4242254769a4f3d1ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10878 bytes)
Hash
f62719b24a32198c6f462a0a0412ac98
d893d8035379e06e53e365b9f47f5da40bff932b
ca863affca1559e92e415a4de2e78e4b4c1ec4cf8e8549693499c6f79bd27975

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10878
x-amzn-requestid: a849d918-ec40-47d4-93cb-e938b010bd50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpJKGAPIAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556d-242a8d2208b6574c34063c1f;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 40cLnZvUr45pWmnT6qZgZu13Y1pyeycMEK-m9ALI1LVo2Wpysjt7Vw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:45:04 GMT
age: 73429
etag: "d893d8035379e06e53e365b9f47f5da40bff932b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4858 bytes)
Hash
6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 72727
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9917 bytes)
Hash
d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 72779
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/uploads/2018/01/logo_rakugakobo_s-2.png

183.90.228.38

200 OK

15 kB

URL HTTP/2
rakugakobo.com/wp-content/uploads/2018/01/logo_rakugakobo_s-2.png
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type
PNG image data, 250 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (15275 bytes)
Hash
4c5143c33134cb9b44184f716cd198c7
b28e5e467e75fe4e97f9dfe34679e27f57a7309f
0ad8517d34fae6fa42413a290944f52ceb56564a41507862abe2a11a87f8fc43

HTTP Headers

GET /wp-content/uploads/2018/01/logo_rakugakobo_s-2.png HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: image/png
content-length: 15275
last-modified: Thu, 04 Jan 2018 16:00:27 GMT
etag: "3bab-561f56e2edcc0"
accept-ranges: bytes
X-Firefox-Spdy: h2

webfonts.xserver.jp/js/xserver.js?ver=1.2.1

202.226.37.225

200 OK

8.2 kB

URL HTTP/1.1
webfonts.xserver.jp/js/xserver.js?ver=1.2.1
IP
202.226.37.225:0
ASN
#131965 Xserver Inc.

File type
Unicode text, UTF-8 text, with very long lines (17166)
Size
8.2 kB (8159 bytes)
Hash
2aa2869f633f951ae056115d944cdb9a
2a6c9acc265dc62995007a51590dd5fa144a52c7
07f34f7e400ae44e91e55fdb0535b78209e87343a86eeba9643d206b9b7233b2

HTTP Headers

GET /js/xserver.js?ver=1.2.1 HTTP/1.1
Host: webfonts.xserver.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 18:08:54 GMT
Content-Type: application/javascript
Last-Modified: Tue, 13 Aug 2019 03:18:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5d522c18-4e15"
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
195d162678034c3ab84daffa4c4a5723
85fab036e8ab318c51b5c05ff33f2388e5716acd
03e8ce6aa80a44c5f2abf860c3bbf25d8e56fc49458a3f8c11fbe2130b71bb6c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2

216.58.207.195

200 OK

46 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

HTTP Headers

GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rakugakobo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:13:12 GMT
expires: Tue, 03 Oct 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 75342
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 16:41:09 GMT
expires: Tue, 04 Oct 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 5266
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
60dea52abe2437132a0387ad8becc0ac
61e9fb41f1fc795ef7204b8948621d4dbc6d3052
ac998fb48810aeb183ec2d19cfd58b81f2243207add4c553e1e87f00fa6d5f3f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 18:08:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j98&a=1120498755&t=pageview&_s=1&dl=https%3A%2F%2Frakugakobo.com%2Fbest123%2Flogin.php&ul=en-us&de=UTF-8&dt=%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%8C%E8%A6%8B%E3%81%A4%E3%81%8B%E3%82%8A%E3%81%BE%E3%81%9B%E3%82%93%E3%81%A7%E3%81%97%E3%81%9F%20%E2%80%93%20%E3%83%A9%E3%82%AF%E7%94%BB%E5%B7%A5%E6%88%BF%E6%A0%AA%E5%BC%8F%E4%BC%9A%E7%A4%BE&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=645295867&gjid=100998259&cid=2033988140.1664906935&tid=UA-20483715-1&_gid=161154484.1664906935&_r=1&_slc=1&z=1100697106

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1120498755&t=pageview&_s=1&dl=https%3A%2F%2Frakugakobo.com%2Fbest123%2Flogin.php&ul=en-us&de=UTF-8&dt=%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%8C%E8%A6%8B%E3%81%A4%E3%81%8B%E3%82%8A%E3%81%BE%E3%81%9B%E3%82%93%E3%81%A7%E3%81%97%E3%81%9F%20%E2%80%93%20%E3%83%A9%E3%82%AF%E7%94%BB%E5%B7%A5%E6%88%BF%E6%A0%AA%E5%BC%8F%E4%BC%9A%E7%A4%BE&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=645295867&gjid=100998259&cid=2033988140.1664906935&tid=UA-20483715-1&_gid=161154484.1664906935&_r=1&_slc=1&z=1100697106
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

POST /j/collect?v=1&_v=j98&a=1120498755&t=pageview&_s=1&dl=https%3A%2F%2Frakugakobo.com%2Fbest123%2Flogin.php&ul=en-us&de=UTF-8&dt=%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%8C%E8%A6%8B%E3%81%A4%E3%81%8B%E3%82%8A%E3%81%BE%E3%81%9B%E3%82%93%E3%81%A7%E3%81%97%E3%81%9F%20%E2%80%93%20%E3%83%A9%E3%82%AF%E7%94%BB%E5%B7%A5%E6%88%BF%E6%A0%AA%E5%BC%8F%E4%BC%9A%E7%A4%BE&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=645295867&gjid=100998259&cid=2033988140.1664906935&tid=UA-20483715-1&_gid=161154484.1664906935&_r=1&_slc=1&z=1100697106 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://rakugakobo.com
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://rakugakobo.com
date: Tue, 04 Oct 2022 18:08:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

rakugakobo.com/favicon.ico

183.90.228.38

302 Found

0 B

URL HTTP/2
rakugakobo.com/favicon.ico
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 18:08:55 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://rakugakobo.com/wp-includes/images/w-logo-blue-white-bg.png
link: <https://rakugakobo.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
X-Firefox-Spdy: h2

webfonts.xserver.jp/advance/ref/ja/107/checkdigit?K18MUcZzRRA%3D

202.226.37.225

200 OK

1 B

URL HTTP/1.1
webfonts.xserver.jp/advance/ref/ja/107/checkdigit?K18MUcZzRRA%3D
IP
202.226.37.225:0
ASN
#131965 Xserver Inc.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9

HTTP Headers

GET /advance/ref/ja/107/checkdigit?K18MUcZzRRA%3D HTTP/1.1
Host: webfonts.xserver.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://rakugakobo.com
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 18:08:55 GMT
Content-Type: text/plain;;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
ETag: "typesquare-use-cache"
Cache-Control: public, s-maxage=8640000
Pragma: cache
X-Cache-Status: HIT

rakugakobo.com/wp-includes/images/w-logo-blue-white-bg.png

183.90.228.38

200 OK

4.1 kB

URL HTTP/2
rakugakobo.com/wp-includes/images/w-logo-blue-white-bg.png
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4119 bytes)
Hash
000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rakugakobo.com/best123/login.php
Connection: keep-alive
Cookie: _ga=GA1.2.2033988140.1664906935; _gid=GA1.2.161154484.1664906935; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:55 GMT
content-type: image/png
content-length: 4119
last-modified: Thu, 11 Jun 2020 04:22:17 GMT
etag: "1017-5a7c74e4bc942"
accept-ranges: bytes
X-Firefox-Spdy: h2

webfonts.xserver.jp/advance/mkfont/ja/107/ts?condition=e38123f77e9d6dc18df78efa3e2dfa1f&eid=K18MUcZzRRA%3D&location=https%3A%2F%2Frakugakobo.com%2Fbest123%2Flogin.php&bw[name]=Firefox&bw[ftf]=0&bw[os]=Linux&fonts[family]=%E8%A6%8B%E5%87%BA%E3%82%B4MB31&fonts[str]=5omA5Zyo5Zyw5Lya56S%2B5ZCN44GK5o6i44GX44Gu44Oa44O844K444GM6KaL44Gk44GL44KK44G%2B44Gb44KT44CCMA%3D%3D

202.226.37.225

200 OK

5.5 kB

URL HTTP/1.1
webfonts.xserver.jp/advance/mkfont/ja/107/ts?condition=e38123f77e9d6dc18df78efa3e2dfa1f&eid=K18MUcZzRRA%3D&location=https%3A%2F%2Frakugakobo.com%2Fbest123%2Flogin.php&bw[name]=Firefox&bw[ftf]=0&bw[os]=Linux&fonts[family]=%E8%A6%8B%E5%87%BA%E3%82%B4MB31&fonts[str]=5omA5Zyo5Zyw5Lya56S%2B5ZCN44GK5o6i44GX44Gu44Oa44O844K444GM6KaL44Gk44GL44KK44G%2B44Gb44KT44CCMA%3D%3D
IP
202.226.37.225:0
ASN
#131965 Xserver Inc.

File type
Web Open Font Format, TrueType, length 5524, version 1.6553\012- data
Size
5.5 kB (5524 bytes)
Hash
09213d66483d067a70955d08a78b63e8
84672c7d3c0c27eca1803a499cf5b384f447ee11
46a1864bb8a7cc1e55a9f513ae4ccadd34df18e0a6c38feeed9bdfa919ae53ec

HTTP Headers

GET /advance/mkfont/ja/107/ts?condition=e38123f77e9d6dc18df78efa3e2dfa1f&eid=K18MUcZzRRA%3D&location=https%3A%2F%2Frakugakobo.com%2Fbest123%2Flogin.php&bw[name]=Firefox&bw[ftf]=0&bw[os]=Linux&fonts[family]=%E8%A6%8B%E5%87%BA%E3%82%B4MB31&fonts[str]=5omA5Zyo5Zyw5Lya56S%2B5ZCN44GK5o6i44GX44Gu44Oa44O844K444GM6KaL44Gk44GL44KK44G%2B44Gb44KT44CCMA%3D%3D HTTP/1.1
Host: webfonts.xserver.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rakugakobo.com
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 18:08:55 GMT
Content-Type: application/x-font-woff;
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Last-Modified: Tue, 04 Oct 2022 00:00:00 GMT
Cache-Control: public, s-maxage=2346065
Pragma: cache
ETag: "typesquare-use-cache"
X-Cache-Status: MISS

webfonts.xserver.jp/ab.woff

202.226.37.225

200 OK

18 kB

URL HTTP/1.1
webfonts.xserver.jp/ab.woff
IP
202.226.37.225:0
ASN
#131965 Xserver Inc.

File type
Web Open Font Format, TrueType, length 17784, version 0.0\012- data
Size
18 kB (17784 bytes)
Hash
537dbe5cff510deb7c96f75dde2685a7
5693b9fb5e93e2455e05247dd97611109d1cda88
e2fa69feab176160c642026437a980e8d82132c225290fcfb0c50a333dd31552

HTTP Headers

GET /ab.woff HTTP/1.1
Host: webfonts.xserver.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rakugakobo.com
Connection: keep-alive
Referer: https://rakugakobo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 18:08:55 GMT
Content-Type: font/woff
Content-Length: 17784
Connection: keep-alive
Last-Modified: Fri, 26 Feb 2021 05:26:27 GMT
ETag: "60388683-4578"
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 31536000
X-Cache-Status: HIT
Accept-Ranges: bytes

rakugakobo.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.6.0

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.6.0
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.6.0 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:04:48 GMT
etag: W/"103dd-5ae8c706b32a8"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 04:14:00 GMT
etag: W/"3795-5bffb17ce862b"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/js/so-legacy.js?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/js/so-legacy.js?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sydney/js/so-legacy.js?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"27a2-5ae8c93f7ea5d"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/best123/login.php

183.90.228.38

404 Not Found

0 B

URL HTTP/2
rakugakobo.com/best123/login.php
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /best123/login.php HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://rakugakobo.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/uploads/pz-linkcard/style.css?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/uploads/pz-linkcard/style.css?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/pz-linkcard/style.css?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 20 Nov 2019 07:10:01 GMT
etag: W/"1930-597c1de8e3696"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-includes/js/wp-embed.min.js?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-includes/js/wp-embed.min.js?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 04:14:00 GMT
etag: W/"592-5bffb17ce862b"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/css/bootstrap/bootstrap.min.css?ver=1

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/css/bootstrap/bootstrap.min.css?ver=1
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/sydney/css/bootstrap/bootstrap.min.css?ver=1 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"40f4-5ae8c93f7abdd"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/fonts/font-awesome.min.css?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/fonts/font-awesome.min.css?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sydney/fonts/font-awesome.min.css?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"7918-5ae8c93f7bb7d"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:04:42 GMT
etag: W/"3719-5ae8c7019b71e"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/js/so-legacy-main.js?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/js/so-legacy-main.js?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sydney/js/so-legacy-main.js?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"bda-5ae8c93f7ea5d"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/js/scripts.js?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/js/scripts.js?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/sydney/js/scripts.js?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"122e8-5ae8c93f7ea5d"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:17:40 GMT
etag: W/"d293-5ae8c9e7387b5"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/style.css?ver=20200129

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/style.css?ver=20200129
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/sydney/style.css?ver=20200129 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"16339-5ae8c93f8099d"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-content/themes/sydney/js/main.js?ver=20200504

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-content/themes/sydney/js/main.js?ver=20200504
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/sydney/js/main.js?ver=20200504 HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 05 Sep 2020 08:14:44 GMT
etag: W/"2c70-5ae8c93f7dabd"
content-encoding: br
X-Firefox-Spdy: h2

rakugakobo.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

183.90.228.38

200 OK

0 B

URL HTTP/2
rakugakobo.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
183.90.228.38:0
ASN
#131965 Xserver Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: rakugakobo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rakugakobo.com/best123/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 18:08:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Aug 2019 05:04:55 GMT
etag: W/"17a69-5911236a75633"
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations