angle.haveid.top/
104.21.77.245301 Moved Permanently 0 B IP 104.21.77.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Mar 2023 18:44:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 03 Mar 2023 19:44:20 GMT
Location: https://angle.haveid.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eBjyxdYsJRhbB4c61pda80ojWz2cFXJKVXJKYnOzMSTfSx0aeC6zBkVuyr51Wko%2Ba1yEk6Hw9A%2BUnO1M4Ej1BBChsKAfFKDRdmvAlk%2BqYutxT1iuaZ%2BgHonS7e6TrLIBU9EV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2407bea878b515-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96abc4d0be3e74da1484937a66c5ff39
357520bead07e25b52d4ca0c0c69db60cfaa0d7c
32c544ef8b8a3faaf08bdb76f8a387510037dfc15a022fd59457cf45215a6ba8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "32C544EF8B8A3FAAF08BDB76F8A387510037DFC15A022FD59457CF45215A6BA8"
Last-Modified: Thu, 02 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6649
Expires: Fri, 03 Mar 2023 20:35:10 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a39c6b0123e56e5b89743a8ad25c746e
feb61559594a73b319532dec130f10068fdf1242
d1adf9c8c7e63c33674a6af4b4111fe0ce1092d362ca4bf7c7dd00e6b6034f09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1ADF9C8C7E63C33674A6AF4B4111FE0CE1092D362CA4BF7C7DD00E6B6034F09"
Last-Modified: Thu, 02 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8941
Expires: Fri, 03 Mar 2023 21:13:22 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Retry-After, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Mar 2023 18:13:02 GMT
content-type: application/json
age: 1879
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2383d0b67af7368d8e13a3013f4065a
cdf951e84f87d010cf40b76f7b91e82ad17f374f
5463c186f7f30f83be61e91a980c749b70089e48b234d73a6e7eeb179cfd7ee9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5463C186F7F30F83BE61E91A980C749B70089E48B234D73A6E7EEB179CFD7EE9"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14157
Expires: Fri, 03 Mar 2023 22:40:18 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: P83kOMrgKXKg/nBSi+aV93jHtUa+PiDN5rameD8BgVR+kVWjzXuCwLc5TsvPvhvgAgOzX1juXFQ=
x-amz-request-id: 3KBD9BY75EDX1Z62
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Mar 2023 18:15:55 GMT
age: 1706
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Mar 2023 18:44:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU
IP 142.250.74.131:0
Hash f7078e830fcf14eaf0c6d96e6c9eb7ce
e8d5091f55ab5ce48c107f527c4c8a0962a16b46
9dd9964a47b621a82aba6d8220fa17d4099d45708d9fa4839a9c7d02cf1a5b8a
POST /s/gts1p5/PzPB4OdkcgU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Mar 2023 18:44:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Retry-After, Alert, Content-Length, Backoff, ETag, Content-Type, Cache-Control, Last-Modified, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Mar 2023 18:12:26 GMT
age: 1915
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51e95d61b93964116033d39ca29d8e87
f4b94d787ce49da21c28fe7853b1a85d2b9494dc
083c886afce548aad4f54caa7f7766e38d9376d55077d4072dbddbdafa086f85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "083C886AFCE548AAD4F54CAA7F7766E38D9376D55077D4072DBDDBDAFA086F85"
Last-Modified: Thu, 02 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3940
Expires: Fri, 03 Mar 2023 19:50:01 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive
push.services.mozilla.com/
34.216.86.11101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.86.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Md+mdInPnoKMg+L36NstGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S8zzj+AdH5+8FR/bXKkgI++XT34=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4726917eabc29a977873ad26e264e70d
4619a0418ee08d6618ead537f31823c98f355b5a
d3c6b43d46ccff30f0003a063b6c4c78d4a782262bfdeb138e6c015555ce2dcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3381
x-amzn-requestid: 8b89e7ab-b8b3-45cd-af3a-cc419e61f1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A-PNPFynoAMFn8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbf8ba-616bedc230d1c2b13a09beae;Sampled=0
x-amzn-remapped-date: Mon, 27 Feb 2023 00:26:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 7f5O-v2e1_OXVVveu0_kNtjOTnUAC5shUmd4JejtlrnliJsxeitcYA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 07:15:41 GMT
age: 41322
etag: "4619a0418ee08d6618ead537f31823c98f355b5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81172d5-849a-4947-895d-7b645a656f98.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81172d5-849a-4947-895d-7b645a656f98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c627140fb587a52035e07a0e4849aa4
0fda39fd9db63f210a73fe14d6cb445d877303f1
ef144a10c04afa87fe3ae0c30906495f42b87678d6a5bab9ac934e8425d8ced3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81172d5-849a-4947-895d-7b645a656f98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9043
x-amzn-requestid: b198e6ac-b731-4300-ba73-0dae7c426334
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLC6CHbBIAMF59w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6401183f-4e716af671ac66683937eaca;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:42:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: YD6GO0_TJOT0OzkJ3jEz4PUuk2oIZ-JrwBZDbI5wWTA0iEdUsLy6ew==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 22:10:05 GMT
etag: "0fda39fd9db63f210a73fe14d6cb445d877303f1"
content-type: image/jpeg
age: 74058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dc93829-4f5e-47fc-82e7-abc095364d12.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dc93829-4f5e-47fc-82e7-abc095364d12.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 780855222ea785d3000e1b40b74a487a
7a3a48fbe78936df3795ae3181534e7a6652c956
427e23d44cddf206d393500e1b2500fa9ef829c078dd953e28e9be8bf0d6a8d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dc93829-4f5e-47fc-82e7-abc095364d12.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5104
x-amzn-requestid: 816fb8a0-1a9c-4572-bc8b-614693204c13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLC66FkjIAMFcZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64011845-4bf667bb15439fbf648be139;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:42:29 GMT
x-amz-cf-pop: HIO50-C1, YVR50-C1
x-cache: Hit from cloudfront
x-amz-cf-id: XILlhVtMYJJqMYs81udZMl6V6gLyay_XONAWJTrRcnYEC1Itv7FDXg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 9c335c5f85533b11cbfd38dc7cc60c16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 21:55:41 GMT
age: 74922
etag: "7a3a48fbe78936df3795ae3181534e7a6652c956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F080edfd7-ca45-4d02-a82e-695dc100f1bc.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F080edfd7-ca45-4d02-a82e-695dc100f1bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9562ddfb26d6176ec12e8e71cc55895c
86bd68def54b0b50e6f728690b2ddf08f858bc33
b51ad98c7c8cb4b2be7af430f4a5963457661d4f13e8029a4bb2cd2ebeb00498
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F080edfd7-ca45-4d02-a82e-695dc100f1bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7507
x-amzn-requestid: d9b61fbe-db88-4902-92d2-b3d97bd7be88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLCh4FTuoAMFeIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640117a5-4ced7773195e43cd4c4f8e25;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 2KexfhAKjKH-mpGBSN3EiemXuGjVsHTfT8--Kb12Bb5cQpN_aeoC8A==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 22:07:31 GMT
age: 74212
etag: "86bd68def54b0b50e6f728690b2ddf08f858bc33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd5f51d-c165-4228-b31e-35e9516c7ad5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd5f51d-c165-4228-b31e-35e9516c7ad5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7b980c564a4ca7c7b68c4716e2398db
e2b327c261d113b17053f475f2d4ef06fe5fb770
478886f4d7ac80275da33753926320384665b246f85ede4c2547aba2f724e97e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd5f51d-c165-4228-b31e-35e9516c7ad5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10504
x-amzn-requestid: ee0a1e46-71ea-4647-ba9b-b350c7ca2ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLCyvEy5oAMF8NQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64011811-7f3cecd06abd02671a7af460;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:41:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: JHTbysB2kG3MJz7_r7K3xo8C3w5P4U8Iv6ZVNpicDLcRJK4hSw1KrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 22:10:05 GMT
etag: "e2b327c261d113b17053f475f2d4ef06fe5fb770"
content-type: image/jpeg
age: 74058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdba647c7-b8d3-4043-b8c8-caba179b5589.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdba647c7-b8d3-4043-b8c8-caba179b5589.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6c6971746047136e4cbf0dd381a2bf1
07cb3900b31e286c0ee6ef4e6344969a5ad893b4
4f35efad14bd441063c58fff5a44e05a9497c91266ff5b4c48a9386288bbc886
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdba647c7-b8d3-4043-b8c8-caba179b5589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4371
x-amzn-requestid: 4996a003-e275-4edb-a0a3-f5d7e72cd1ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLChFE_NoAMFYPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640117a0-31d3ea3b1e196aaa372dd016;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, YVR50-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6TMBH_aSock0V22r3Xt99HQs1N7qY65SsSyiYPrtXYAPW-l3d3lC7g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 3aed32068dbe2f7fb3a27284c9c26498.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 21:54:35 GMT
age: 74988
etag: "07cb3900b31e286c0ee6ef4e6344969a5ad893b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU
IP 142.250.74.131:0
Hash f7078e830fcf14eaf0c6d96e6c9eb7ce
e8d5091f55ab5ce48c107f527c4c8a0962a16b46
9dd9964a47b621a82aba6d8220fa17d4099d45708d9fa4839a9c7d02cf1a5b8a
POST /s/gts1p5/PzPB4OdkcgU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Mar 2023 18:44:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
angle.haveid.top/images/logo.png
104.21.77.245200 OK 2.8 kB URL HTTP/2 angle.haveid.top/images/logo.png
IP 104.21.77.245:0
File type GIF image data, version 89a, 202 x 69\012- data
Hash 77d3f86a4ded566ce180812662449bf1
041da0cf719dd546bc597f881f17170bebc1314a
2a5e996cfcf9490197f648450c1ac90bdfe05f41891a54a5d34024266eb841ca
GET /images/logo.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 2756
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-ac4"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7Z5NWjN2Ns%2F%2Ffb1QqTSpQl%2BxtcWHPFe48AiNpfacdOpso%2FeHmRqtsfWRlXLCH2U3Bl%2BWdPmw21kayhh07fXfxS4WtzhtmI83xbJvW7o93dM66KtHLSScus26BoTH7bA645G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f20b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/stylesheet_searchtop.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/stylesheet_searchtop.css
IP 104.21.77.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /style/css/stylesheet_searchtop.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
content-length: 0
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
etag: "632c2ca0-0"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gr%2BOMGZ3e8V1NAc4c%2FpMCoLTyHm1RY2551k7aDRItAu%2F0LyUaSMPj0ghc6BjtTaVLgvutMTxygVA287H9lC3Oj7%2B82mG1a23MJxG4rrPbWr99H3RRushIXdXeMriOnsq8RbP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da1f10b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/hader-bottom03.png
104.21.77.245200 OK 638 B URL HTTP/2 angle.haveid.top/images/hader-bottom03.png
IP 104.21.77.245:0
File type PNG image data, 85 x 28, 8-bit colormap, non-interlaced\012- data
Hash 4a4669e7211c2ea2527395fb4bdea5e8
d66fbec7d795baab4292201416d5160ca680f2a2
401e11d0524a20a3cbec26d12a3c588d2e277c6a8b092e9e036344e4571202e1
GET /images/hader-bottom03.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 638
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-27e"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ixG8ZGllOS4DX8xOnLEhlWIFa3NyFmnmlgWoMG6Ar%2BTHzCA8MzTWPPT%2FbgHG6UbYlVpDrkR8LD%2FD2Fnka%2BGdlqGE%2BAp%2FxoeV39Y93r0mlkb%2BOJv0nuXpKYU65osvSziFokrC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f25b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/bnl_mailmaga.gif
104.21.77.245200 OK 2.2 kB URL HTTP/2 angle.haveid.top/images/bnl_mailmaga.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 190 x 60\012- data
Hash 91e85c567b7ec8101077b611bf14a797
af5d4c49344532b2af2d92ee65e0f13583037a11
7c5e007a19b0b854c73f4838ebdbc35bde9d3695ceaaf306380e9879005ce783
GET /images/bnl_mailmaga.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2243
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-8c3"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yJvKmaSftOmf2vkHApH%2BTODRCPqrcTPLYH2T1sS7NTNRGS16dKZt1FrQiEN9HIRiktcxU7hegaJ6MWId8%2FTBs85bFzyGsoNnPzRS01ftDhL4RBuVTBfF2zkxDQjACDWCHdS3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f2eb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/hader-cart.png
104.21.77.245200 OK 744 B URL HTTP/2 angle.haveid.top/images/hader-cart.png
IP 104.21.77.245:0
File type PNG image data, 176 x 50, 8-bit colormap, non-interlaced\012- data
Hash e634f70ed183e395e2e42fa8a52b4848
67964ac68f4740a5044a2650d606b7cd6ce4b4aa
21be53b0037d3e0369822dea1ea7aa6933d5a747d4e1cd236e372c908181ddd4
GET /images/hader-cart.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 744
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-2e8"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAwsla9z52DQjAURJAzN0AkmfjdwM6%2FeBWuKKaq9Md7IV5aGJR2Iu0KXDnnoKUkdTiHYblJUS70yDc4m8WZnKb0Kp3NSOQjs21c8MCUybq%2Bvxn%2BPGgnD98FOMZ%2F2%2BK81zyHY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f24b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/bn_cnp.jpg
104.21.77.245200 OK 7.4 kB URL HTTP/2 angle.haveid.top/images/bn_cnp.jpg
IP 104.21.77.245:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 190x90, components 3\012- data
Hash 24d888e07b2b89fa5d266f7a11d7cb2a
440b43154772d33328cefbee4db4e2f284ceb8a0
4987a7ac7eb6b24aa9438ebee7822452c941134d8e6affbefded72f523c14123
GET /images/bn_cnp.jpg HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/jpeg
content-length: 7364
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-1cc4"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0w5U3jV6Yb35cKRgBJpy1Hg8%2Fkorv%2FkUliveqPbzCD9DBCOadwvhRnHvKyxHsov8u74o%2BMiaISHCV%2BcCdPh5fjmDGo40NPTKF%2FRD2RlQpF5%2BRTglh3VSbFUlgsfiUFMXN6Gy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f2fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/information.gif
104.21.77.245200 OK 2.9 kB URL HTTP/2 angle.haveid.top/images/information.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 190 x 40\012- data
Hash 817a8ff95c8037a9f73f446d9ec1d09e
3a327b9275151ed2403c6146a1feaa6670162b72
d53467cdcf2d2f69bb0063c7cf5a20d9a7f781e49e2e3124a10e3077f5b1e3f3
GET /images/information.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2863
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-b2f"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0rA1yB0yW2cYzuccrOi4auzELQDC6JpUV%2F73p%2FDAU7NnLAJFd%2F8JPyQkMdThWMgHqys5t5kc6tMzjDKnuMOd2PaRVRPE7IAwcSik4%2FqqYV5qEFljvQDoh3wmloEXhpzTg65Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f2db512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/hader-bottom04.png
104.21.77.245200 OK 647 B URL HTTP/2 angle.haveid.top/images/hader-bottom04.png
IP 104.21.77.245:0
File type PNG image data, 85 x 28, 8-bit colormap, non-interlaced\012- data
Hash c188197d7a040fd303351965a56f55a1
456b4f2df4d870aec3b2b1355db25ccb998ee0f0
a71c4a65b8b8cf203395b52be49d21acb9f75b62195d4d19bdbd048e7a446f81
GET /images/hader-bottom04.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 647
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-287"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7jBTOO7Ebe9w55gGq3z7qmn%2BIBifL%2FrEO9ECUvU9PapY7PWtgNn6X9CiZCqOi9moRykmcwYeN4gCV5%2FTlWuG%2BbiLgbY3cTpI80UGElin0XbV4s5QvcOYsplbwMH2ToXdmLP5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f27b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/greeting01-n.gif
104.21.77.245200 OK 2.2 kB URL HTTP/2 angle.haveid.top/images/greeting01-n.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 190 x 50\012- data
Hash 7a75dc51b705c3f8a3a304cc1854ac8a
d99a51df98d146d7fe31d9c0c365c3eb2dea25aa
4b044b7304611f931df00b5a96510b250de373a98d05ac9c34d7c614e0b9d8a4
GET /images/greeting01-n.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2236
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-8bc"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XRWXHunLunPN1x7BXBKiOd5aHhV%2B87iMsKcsu0uL7eah8VZ%2BtBNNby9FTKpslxcxFzwBKlVNRl3JLjf8J4WB75wOaeaJgIGM2c9GzJAj%2BUMxhRSdpgM5hrgVsd4LLTEwlBK7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f33b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/bn_kumitate.gif
104.21.77.245200 OK 2.4 kB URL HTTP/2 angle.haveid.top/images/bn_kumitate.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 190 x 50\012- data
Hash f9e1fff0c90b4fc9e76176c593460bc9
b0c011f54577045e4ef8f2387c019649c14e467b
cc3ddc4411d9bc3538823aff11ffdab96a35b731ee9270ff5daaa1a8b45a65c1
GET /images/bn_kumitate.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2436
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-984"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OrWsz4ZJ%2BzIvdugalU8orgib1aSxwgzIiZJ9B8ZAKSdnpeDmegVIJaHwt%2Bt%2BLRmppI6PNup4CAvDLZ2XNZFdNuWdQp1a%2BqlwXzEtWsnXJOwtWdxspRpEVwBBkRCKCu7bZ6XV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f31b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/time.gif
104.21.77.245200 OK 5.1 kB URL HTTP/2 angle.haveid.top/images/time.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 357 x 77\012- data
Hash 2b62aff570ba45ef69c1558eb1325b32
3c64ac2ed8216e9c2537634352c2913669adc7bb
6d54402522eb86e4d3b5380ad07fff1f78aeeb01613514de6c9d371c64d30e48
GET /images/time.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 5063
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-13c7"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UW1H5HU2N%2B%2BBjTpNTkPOosRsgpoj7yjgHqeieilReDgNf0wfoAkcoPeNWlutpLEPkRLuJBxDvKQO8BmcLTijCAa4pKk649jONrwGXnghLhvN8jro4D592JvMAw7vu4YwNf5T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da4f57b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/header-cap.png
104.21.77.245200 OK 21 kB URL HTTP/2 angle.haveid.top/images/header-cap.png
IP 104.21.77.245:0
File type PNG image data, 492 x 77, 8-bit/color RGB, non-interlaced\012- data
Hash 85a85118be6fdc673c8d1c4b8b431ba4
8e7c0ebf17ee2ce06b1ddd22817debd363662913
57c2127d2defb8829b50b3ff506cbfd23d8a65a0d463e3c99f75822cb9ebcb4d
GET /images/header-cap.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 20962
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-51e2"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FfzBqizeoECrqSAhCNeTL2J0X%2BCNlrhYA4RRMXqgGVkh99co4VdrZcHZzpWOlNWf3YSvJFLLm9jxbSU%2BcG6OnUP9QwkpsA5tkF4r0zXeC7VxHWrQw6qGtaBPoP6omWKuTiXh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f22b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/top-ss01.gif
104.21.77.245200 OK 32 kB URL HTTP/2 angle.haveid.top/images/top-ss01.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 800 x 200\012- data
Hash 9b25e4c9a0aef8ad850ed48cddbbfd0d
ffbd31da4bfdbf244464e6fd9da600abda0fed80
4f1a0ec14c1f26230cacb0a14aa1bc08cf8d7ec8f5ca9501235ec46298d6fad7
GET /images/top-ss01.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 31877
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-7c85"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sUdl5%2FLQjsTRExyJxfeduCAQosayfksApnwktjx20az9Xagwj50FlrDI%2Bw4a1Dp3yZTDqRaqH0%2FLQv%2Fv3mCo2r74rOOxVVsyx%2BqMqutA9JsnXE1pB0kDvH%2B%2BlQgnfhnnc9fq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f37b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/top-bn-s.gif
104.21.77.245200 OK 59 kB URL HTTP/2 angle.haveid.top/images/top-bn-s.gif
IP 104.21.77.245:0
File type GIF image data, version 89a, 800 x 200\012- data
Hash 7ca8013729ca67a58e3a9f1b72db806b
236a9a40a0c2a6d6939dab3c6b2ccae847035e35
89d03a052d100e21768e9786f776a9ba6e096b3559532534e3c76a2803fd8484
GET /images/top-bn-s.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 58639
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-e50f"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9dKUJvldgTM2I%2B7E2Mk2kcD4wih1Qw5R1NXw2iq4YB6oSB%2FcQRrbO7PhHYzY6d3ndTnFH6SGTQ0xuXYa1ui4e4fAK7WhxpN1gCwSmvioPXSvQ1RKmrfAhsCFpuGza4zXfz8J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f3db512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/images/tore_bn.png
104.21.77.245200 OK 116 kB URL HTTP/2 angle.haveid.top/images/tore_bn.png
IP 104.21.77.245:0
File type PNG image data, 800 x 200, 8-bit/color RGB, non-interlaced\012- data
Size 116 kB (115656 bytes)
Hash 195871c530704235fbc57f0610cee9a0
31edb8cfb26973c6bd5a393c1e6892fb4a9d7f45
45a28257c50a04b2395aa1ec965fcc12a50b2acf015dba124d5bd405418fc579
GET /images/tore_bn.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 115656
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-1c3c8"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eg2nZLEcbBWrWtnI5OrZBdgAhXYZP9pzvis1yfmZGVJoCayJ2iaqRbkeVUcKDHTBiPj9zdwKG0qxzz6kxs%2BreEVk4DshE5FQeqp%2Fbl4u6uQR1KI1Qxx1TUOk0mrO4E1TOEyK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f36b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/swiper.min.css
104.21.77.245200 OK 4.9 kB URL HTTP/2 angle.haveid.top/style/css/swiper.min.css
IP 104.21.77.245:0
File type ASCII text, with very long lines (19070), with CRLF line terminators
Hash 27ebbf9999418a7f5d8a4774126c71a7
741527bf8e55b7a4c179bd66dfa82645c49b667c
a0507bf75414cb3161423054643425289818667c83ade4cac73253828177d2e1
GET /style/css/swiper.min.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-4b93"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V0EEKQ1dOKTUdt6X6rke8y5DmuqujYVKlELwbLZBAKXFE%2BfH122OQK68cuo%2Bx3FhAU8Na8LQITUAzzu0tbrnoCD2YFxnlDnLR6Jy6%2Bun7Aet394xoYIQVjuoG84Ov51DiBxe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f18b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 1785dd3fc28257960c17dbcc44dfe68c
20f31ef3af1e4f4921886f5b44b705173ad44c73
80ade04bc9b84f4fa4ba296f13eabbda11fa22108059e3064e9b9480fca527f4
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Mar 2023 18:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Mar 2023 15:58:11 GMT
ETag: "20f31ef3af1e4f4921886f5b44b705173ad44c73"
Last-Modified: Fri, 03 Mar 2023 15:58:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2938
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2407e5bf0f1c16-OSL
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0304/users/519195e8477eb86d836a235e682cf92f1f639442/i-img600x600-1651036739gwcs7x67223.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0304/users/519195e8477eb86d836a235e682cf92f1f639442/i-img600x600-1651036739gwcs7x67223.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0304/users/519195e8477eb86d836a235e682cf92f1f639442/i-img600x600-1651036739gwcs7x67223.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/50387bd16fe658f8ffdc6990e0a52e68133ecbae/i-img600x393-1664280161emxunt629647.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/50387bd16fe658f8ffdc6990e0a52e68133ecbae/i-img600x393-1664280161emxunt629647.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0309/users/50387bd16fe658f8ffdc6990e0a52e68133ecbae/i-img600x393-1664280161emxunt629647.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206080ipndmt762848.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206080ipndmt762848.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206080ipndmt762848.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1670357398hvbljj34196.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1670357398hvbljj34196.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1670357398hvbljj34196.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1671147060idsztd305879.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1671147060idsztd305879.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1671147060idsztd305879.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0311/users/d43abe2ae728896e41e1526d98661c63101922fe/i-img700x700-1669369612s3vbae206400.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0311/users/d43abe2ae728896e41e1526d98661c63101922fe/i-img700x700-1669369612s3vbae206400.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0311/users/d43abe2ae728896e41e1526d98661c63101922fe/i-img700x700-1669369612s3vbae206400.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-1626228068u6cjz86823.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-1626228068u6cjz86823.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-1626228068u6cjz86823.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0308/users/22b5a02b764c88d2a6aea59b06a72eb34d0853c8/i-img800x590-1659342807ibewbb319641.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0308/users/22b5a02b764c88d2a6aea59b06a72eb34d0853c8/i-img800x590-1659342807ibewbb319641.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0308/users/22b5a02b764c88d2a6aea59b06a72eb34d0853c8/i-img800x590-1659342807ibewbb319641.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/70c582827eab1c7e03ee21e426b12e2fb238ddd6/i-img600x600-1662971691ggq21u1533.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/70c582827eab1c7e03ee21e426b12e2fb238ddd6/i-img600x600-1662971691ggq21u1533.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0309/users/70c582827eab1c7e03ee21e426b12e2fb238ddd6/i-img600x600-1662971691ggq21u1533.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/8f8e286720d7d1701be1c547ee2431f4565719c5/i-img600x450-1671175441mlpnek754964.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/8f8e286720d7d1701be1c547ee2431f4565719c5/i-img600x450-1671175441mlpnek754964.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/8f8e286720d7d1701be1c547ee2431f4565719c5/i-img600x450-1671175441mlpnek754964.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-16262284950enjwu6792.jpg
182.22.28.252403 Forbidden 14 kB URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-16262284950enjwu6792.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-16262284950enjwu6792.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
js.users.51.la/21542169.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21542169.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash ddaf4864b1cb9eb5087417b33be88f4b
9ce1205a13d61b2461ffabde678dc0559dcb6da8
1e5be596212988c6360bad2e6335851ccee666ba17b372ccb6706cc47661c82b
GET /21542169.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Fri, 03 Mar 2023 18:44:27 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=0586941ee3608c29e36; path=/
HWWAFSESTIME=1677869064011; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 0687511f081752982cc2f8d8487ce6b9
82c85836915a158cffda05e81ed8344306551e67
c74a4a71c48d26abc5b138608f0fdd0926a0885f356f7bf9f6c7302b59f4e6c4
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Mar 2023 18:44:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Mar 2023 17:09:52 GMT
ETag: "82c85836915a158cffda05e81ed8344306551e67"
Last-Modified: Fri, 03 Mar 2023 17:09:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 666
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2407ed6df51c16-OSL
angle.haveid.top/style/css/stylesheet_tm.css
104.21.77.245200 OK 7.4 kB URL HTTP/2 angle.haveid.top/style/css/stylesheet_tm.css
IP 104.21.77.245:0
File type ASCII text, with very long lines (679), with CRLF line terminators
Hash ea20c288f79e444641262a3ac5f15632
3b57e6f3b67b81fafa1e8abc24bc320d074ee2fb
ce247e921c84dac02fc0961e5e873ada35ba3051f19ad5780301d60dc12caeae
GET /style/css/stylesheet_tm.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-8bf9"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c5F%2BJdHLpTz51YiK2Oqfw6q760mvlJuVvu9ZofIGWC9in1yTZZ3kv3XjW%2FJRUmeeSLUc5ZW8Q0ewhqOuWJltp435eAii%2FH5bVUgqkHJ1n5LJzBFWM2gbGH4xO%2BSEHRoEXY5u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f13b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/js/swiper.min.js
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/js/swiper.min.js
IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
GET /style/js/swiper.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-1b462"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FOm26fg2641FUMDGdNeX%2FeOug9fDyrfkmE%2F7fB%2FtgmbirXfoTRWg6Kbbu7DhLxTWF4FcnsL5DwIitfRjc5jTGuPxtje2r3hJquxBZFLpDu7%2BJzd%2B4RnyJKVNNmS%2BepYYobF1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da3f3fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/
104.21.77.245200 OK 0 B IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: language=jp
currency=JPY
html=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
zenid=g7kbj9lfht1nfssgs4446prcp3; path=/; domain=angle.haveid.top; HttpOnly
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CoJQfMWD96I36MnKwW3gnrjmBsVU3ECj7faUzdKEeDXzyMACF%2BhkOrY1%2BXddeOhzEq%2F3I%2FiJrUWK0ryf6oJwkExJCdp89ZNh7vYLF%2F%2B1NkLqcz8D5J%2BWj6VPd28OI3%2B1eXEz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407c0ee6db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/user-1-1-2.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/user-1-1-2.css
IP 104.21.77.245:0
GET /style/css/user-1-1-2.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
etag: W/"632c2ca0-36b"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=33cwDPbCKWTj13%2BmNXAF0gadq12ISbje4u2kzn5X2X%2FiWkx%2B5hwPyvxes2svI14m2TrufnqCpvl1i4%2BgoyH%2FfNx5%2Fau8TU5gD8a%2BcJmV4sirBVFbGC46RCv%2BVQaWhJ0xT4%2B2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f15b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js
IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
GET /style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-10e9"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZiWMzYlLU%2BJXkf9TlXhjlkrVhFFzLwTfJDkZdMiHcUbk0k3mTBD4ALW%2FrPcnkLrM45PRk830BJRkEQaf8jUwJGpO80%2BU4uCciLPI3qEolaXv%2B7AHS%2FycdT3u12IRBQmQaQyO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da3f43b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0310/users/8d785b07fb0068fe9714c8a3926e93bbd068ca7c/i-img1200x900-16664175668cinru967596.jpg
182.22.28.252403 Forbidden 0 B URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0310/users/8d785b07fb0068fe9714c8a3926e93bbd068ca7c/i-img1200x900-16664175668cinru967596.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
GET /images.auctions.yahoo.co.jp/image/dr000/auc0310/users/8d785b07fb0068fe9714c8a3926e93bbd068ca7c/i-img1200x900-16664175668cinru967596.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
angle.haveid.top/style/css/stylesheet_index_home.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/stylesheet_index_home.css
IP 104.21.77.245:0
GET /style/css/stylesheet_index_home.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-9cd"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cXDFKaBp0FduhGvq%2FuKBU9CMzIP0ZLPJYgq2SjhVgSI2E%2Bg%2BX4OJjgNiEthk4xim6Wlv3HhdRUj71t3VukQiLSig3hk92g4Bziu4IkOXpQD2ad2F2caD0rZxKtdKvCkmijsW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/style_footer.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/style_footer.css
IP 104.21.77.245:0
GET /style/css/style_footer.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-b95"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J6PRKvevHLCahbcOHIKqYVP3AD%2FUfnIuorb5vkjr8XUZAb7uzz88%2F9fGKIIHUVlONNrYTRgr9BgG9yB8JNHHxcZ1PCJe2lLAiOaCHgot%2FWb8t%2BtR4XZ3M3vzYQ8wc%2FS7YiDf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f05b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/stylesheet_css_buttons.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/stylesheet_css_buttons.css
IP 104.21.77.245:0
GET /style/css/stylesheet_css_buttons.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-5d0"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u39TXGqd0Nh4B2INVWRzwx%2FX8BMZp%2FliZFsw5%2BDCSm1geuMUo3ldfcMTVKICcs9pcBwZYuK510ZQAOow2QBj7vbQ9rpmAKRca58dzRllV5o74U%2F2%2FUqf1zaCGOQMXgt3G0x3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/style_dropmenu.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/style_dropmenu.css
IP 104.21.77.245:0
GET /style/css/style_dropmenu.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
etag: W/"632c2ca0-393"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=09cedIch%2FwTScRXGF8w9X3bkgiHZSYgf7IdGGd5i5z4G6c43yFiSG5JwkbecSd3WRKX%2B7VB3PFJlgB9tUBm51tf%2BDHNVvxGwUWjYdOzk4Qp92e1DNob2DVLGOnY9yuQxdCl%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da1f04b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/35fb970c6465097cced306e10519a0b5c4e58a71/i-img770x770-16631530378u54ii124050.jpg
182.22.28.252403 Forbidden 0 B URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/35fb970c6465097cced306e10519a0b5c4e58a71/i-img770x770-16631530378u54ii124050.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
GET /images.auctions.yahoo.co.jp/image/dr000/auc0309/users/35fb970c6465097cced306e10519a0b5c4e58a71/i-img770x770-16631530378u54ii124050.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206695cduy2c351150.jpg
182.22.28.252403 Forbidden 0 B URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206695cduy2c351150.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206695cduy2c351150.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
angle.haveid.top/style/css/stylesheet_related.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/stylesheet_related.css
IP 104.21.77.245:0
GET /style/css/stylesheet_related.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-6d6"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0LUNoJmAqo%2BimknHfFmxia0LbtMGejLCJnudkksnVMRHLjBsf9GpNiDkQbkIRx%2Ft%2BgnojZL0gcTYWT7P3oogss08aWqy21rhoNiHbTO3H1wLcxnUQRLsQMceW8L7UJTpuU%2Fu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/js/ofi.min.js
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/js/ofi.min.js
IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
GET /style/js/ofi.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-cdb"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rZhliFa81XtTffwng0WoVyFFF1zGt6eiCpURGJK8EiivN9dLzlWaEt%2BUIGnH%2F%2BnHKaOB29mTC45Iqyy6hdGNwiv3QDUGgbXAyFl9xQSHfxGRfHDVcQWgasBOeVqIYGsC8SWi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f1ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js
IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
GET /style/js/jscript_jquery-1.8.3.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-16dc5"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Db62OfdZ8qMUWb%2F1NqFcuk6lLCCKVbweEzoJkNW2dfmMZaftn4TiTZlBKCEiyZ0VjuDA7tpH7lqp93YUKBf0%2FjS3WWUJyk%2FOiL4abKjWDHimXFvEtQfuRjPP9KXL9e29pXNG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f2ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/js/jquery.min.js
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/js/jquery.min.js
IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
GET /style/js/jquery.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-1538f"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hvYEcdc3%2Fhw4dCdm36ORGni2Kg%2FHDrSjEQwpdj6ERB%2FvgoaxHXqaApu8gL3ml1%2F0y0eK4RplFIAGBCpsaPZ7ehBwA2C3M2Lr2sJJCyh9izJu36R8QJLIzD3ltDw%2Fc9UBFmkR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f1db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0202/users/a79557866047864b7d9a6ac807c6a516a3f209d1/i-img1200x900-1613984720tgeiix229909.jpg
182.22.28.252403 Forbidden 0 B URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0202/users/a79557866047864b7d9a6ac807c6a516a3f209d1/i-img1200x900-1613984720tgeiix229909.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
GET /images.auctions.yahoo.co.jp/image/dr000/auc0202/users/a79557866047864b7d9a6ac807c6a516a3f209d1/i-img1200x900-1613984720tgeiix229909.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0307/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1658181079lmxu4e384781.jpg
182.22.28.252403 Forbidden 0 B URL HTTP/2 auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0307/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1658181079lmxu4e384781.jpg
IP 182.22.28.252:0
ASN #23816 Yahoo Japan Corporation
GET /images.auctions.yahoo.co.jp/image/dr000/auc0307/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1658181079lmxu4e384781.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
angle.haveid.top/style/css/stylesheet.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/stylesheet.css
IP 104.21.77.245:0
GET /style/css/stylesheet.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-2648"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u58Ho7Q0x1ZuqkA4s6pD%2Be2JRI6gUfU9zc3OAJoSEclvjF0auqZP8sz3jj9EnlF8vEPjXqDxOcJCQFWq7rMq4iaOIyumrFD%2FpTP9mDT6dOrP2LqF%2BVATwfaBNn0YGlsZ1UZl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f09b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/style_header.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/style_header.css
IP 104.21.77.245:0
GET /style/css/style_header.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-1984"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LmaUfgrF6Tu6%2Fuz9vG6y4SoxBjiRoQlwyEjGXgYLVNc13xm5yJRYTbx79K24VyD0KfdDlF8%2Bokl7pRe5mFgZag7qZ92xRoILV307JfQkczPQCV0nBrE2G%2BdIa7bdz%2BnzFqqX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f06b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/js/webs.js
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/js/webs.js
IP 104.21.77.245:0
Analyzer Verdict Alert fortinet Malware
GET /style/js/webs.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-657"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izcmmYQ4Nnekb5QP%2B3qlnJVCQKgcRiT0Oo2MwVfKcQNouN5GTm7xKJbEcr%2FNaPffAAP%2BUO0qr5DM15f5sMjPwPBLawtDQd4QkUD6PLIEuIQ4lgO5%2FGx8%2FF7mXmBalwr613V2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f1fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
angle.haveid.top/style/css/stylesheet_cart.css
104.21.77.245200 OK 0 B URL HTTP/2 angle.haveid.top/style/css/stylesheet_cart.css
IP 104.21.77.245:0
GET /style/css/stylesheet_cart.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-214d"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WsSCNjCB%2BQv1rs7T%2FU6an1pTJZbMSsCPkwTQD%2BZpcQSYrA10hNywQz1R8anu91VMNBEl%2BZ9z1OexmL6EgJCYfZwmJ3KXLwoKZ7bOsRQqhFgkj9BlIv9gxK7SLB%2FyMEHW3D30"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2