Report - angle.haveid.top/

Report Overview

Submitted URL
angle.haveid.top/
IP
104.21.77.245
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-03 18:44:31
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	714 B	1.4 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	46 kB	34.120.237.76
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	722 B	3.8 kB	104.18.21.226
js.users.51.la	53024	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	2.7 kB	103.143.19.103
angle.haveid.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	292 kB	104.21.77.245
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
auctions.c.yimg.jp	266559	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.3 kB	160 kB	182.22.28.252
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.216.86.11

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-03 18:44:19	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile
2023-03-03 18:44:19	medium	Client IP	104.21.77.245	ET INFO HTTP Request to a *.top domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-03	medium	angle.haveid.top/	Malware
2023-03-03	medium	angle.haveid.top/style/js/swiper.min.js	Malware
2023-03-03	medium	angle.haveid.top/	Malware
2023-03-03	medium	angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js	Malware
2023-03-03	medium	angle.haveid.top/style/js/ofi.min.js	Malware
2023-03-03	medium	angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js	Malware
2023-03-03	medium	angle.haveid.top/style/js/jquery.min.js	Malware
2023-03-03	medium	angle.haveid.top/style/js/webs.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	angle.haveid.top/	79 B	2023-03-07	2024-04-21
Pretty URL angle.haveid.top/ IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-04-21 23:07:53 Times Seen1858 Hash b402b8742f02bbc35aaa04ac716fa443 7c8495eda515f76fa5b5ca8132bdd87159bd69f5 49ed10aeb4571121e6a10816e3715b00562bb940843b29b6ffe5748fb16388b4 Loading...

	angle.haveid.top/style/js/ofi.min.js	3.3 kB	2023-03-07	2024-04-23
Pretty URL angle.haveid.top/style/js/ofi.min.js IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:09 Last Seen2024-04-23 04:24:16 Times Seen641 Hash 82325c0d35b7a9c63a3eee37615659ce a3fb49f67fb27d5025f73f205c84e1ae0a9d9cd3 37217cfedb39356d2a0fd317e4a8ee87d225f4364e3afc7473ab5a8e7d97ec64 Loading...

	angle.haveid.top/style/js/jquery.min.js	87 kB	2023-03-07	2024-04-27
Pretty URL angle.haveid.top/style/js/jquery.min.js IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-27 02:48:47 Times Seen106433 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	angle.haveid.top/style/js/swiper.min.js	112 kB	2023-03-07	2024-04-24
Pretty URL angle.haveid.top/style/js/swiper.min.js IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:09 Last Seen2024-04-24 15:35:33 Times Seen1725 Hash cabdd76e521b31cec9589102858f42e3 c4762285287e72d38d370df6af58e658185c789c 89a305fd73b494dec3160fb0c10e80736c69f1d0a06edfa137c938e4a63d7139 Loading...

	angle.haveid.top/style/js/webs.js	1.6 kB	2023-03-07	2024-01-31
Pretty URL angle.haveid.top/style/js/webs.js IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:09 Last Seen2024-01-31 05:44:03 Times Seen173 Hash bf576696302751967f0fbd20f6c8cad7 ee378ed8d1dbbdd85caebd70b2cfd64bca1adf35 92f96e93002f55db05b5e0d8e7dfd5ce24db15e6b128c0d32271721f56c3a512 Loading...

	angle.haveid.top/	536 B	2023-03-07	2023-05-17
Pretty URL angle.haveid.top/ IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:52 Last Seen2023-05-17 23:57:22 Times Seen14 Hash 8f2a17d5183eac2f21655023d0be401c 0dc58d45174328bce8c8031d573014a1364065e0 88c4c5e5c702abd1f14075a6b25a3a1fe853d8fea5ade9827bfc6816ffcc5a41 Loading...

	js.users.51.la/21542169.js	4.9 kB	2023-03-14	2023-03-26
Pretty URL js.users.51.la/21542169.js IP 103.143.19.103 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 17:34:00 Last Seen2023-03-26 04:01:05 Times Seen2 Hash afc9ba66a28d7c54749fead47309a834 eace63c87c8c88a78622ea8f28f94a4ae1a7f084 f9d04dd6303d0ebe233c5b361d52a0fc3bb4ae931d65fcb31d27d0118aa249f6 Loading...

	angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js	94 kB	2023-03-07	2024-04-27
Pretty URL angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:21 Last Seen2024-04-27 02:03:36 Times Seen7188 Hash e1288116312e4728f98923c79b034b67 8b6babff47b8a9793f37036fd1b1a3ad41d38423 ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32 Loading...

	angle.haveid.top/	2.2 kB	2023-03-07	2024-01-25
Pretty URL angle.haveid.top/ IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:09 Last Seen2024-01-25 23:19:32 Times Seen125 Hash 5da36fefd08a21b99f9b3e2abdd4c85e 97391a91d1a3d419a1174fa3fd58de26bcacb60a 7702b1f0970ac977a0905a6e864a3d8af8fb6825904bfcc6bbd645452c618c15 Loading...

	angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js	4.3 kB	2023-03-07	2023-11-27
Pretty URL angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js IP 104.21.77.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:09 Last Seen2023-11-27 07:54:37 Times Seen146 Hash b705cf616ae4a6bdd05c855b3a3216af d9abab5e37f169efd68a5d4d0b509d222a5c424c 9a075c4c50290d2c183566d32e14146a23fa4494317ec57128e27d00e0c5a10e Loading...

HTTP Transactions (75)

URL IP Response Size

angle.haveid.top/

104.21.77.245

301 Moved Permanently

0 B

URL HTTP/1.1
angle.haveid.top/
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.top domain

HTTP Headers

GET / HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Mar 2023 18:44:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 03 Mar 2023 19:44:20 GMT
Location: https://angle.haveid.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eBjyxdYsJRhbB4c61pda80ojWz2cFXJKVXJKYnOzMSTfSx0aeC6zBkVuyr51Wko%2Ba1yEk6Hw9A%2BUnO1M4Ej1BBChsKAfFKDRdmvAlk%2BqYutxT1iuaZ%2BgHonS7e6TrLIBU9EV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2407bea878b515-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
96abc4d0be3e74da1484937a66c5ff39
357520bead07e25b52d4ca0c0c69db60cfaa0d7c
32c544ef8b8a3faaf08bdb76f8a387510037dfc15a022fd59457cf45215a6ba8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "32C544EF8B8A3FAAF08BDB76F8A387510037DFC15A022FD59457CF45215A6BA8"
Last-Modified: Thu, 02 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6649
Expires: Fri, 03 Mar 2023 20:35:10 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a39c6b0123e56e5b89743a8ad25c746e
feb61559594a73b319532dec130f10068fdf1242
d1adf9c8c7e63c33674a6af4b4111fe0ce1092d362ca4bf7c7dd00e6b6034f09

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1ADF9C8C7E63C33674A6AF4B4111FE0CE1092D362CA4BF7C7DD00E6B6034F09"
Last-Modified: Thu, 02 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8941
Expires: Fri, 03 Mar 2023 21:13:22 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Retry-After, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Mar 2023 18:13:02 GMT
content-type: application/json
age: 1879
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2383d0b67af7368d8e13a3013f4065a
cdf951e84f87d010cf40b76f7b91e82ad17f374f
5463c186f7f30f83be61e91a980c749b70089e48b234d73a6e7eeb179cfd7ee9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5463C186F7F30F83BE61E91A980C749B70089E48B234D73A6E7EEB179CFD7EE9"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14157
Expires: Fri, 03 Mar 2023 22:40:18 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: P83kOMrgKXKg/nBSi+aV93jHtUa+PiDN5rameD8BgVR+kVWjzXuCwLc5TsvPvhvgAgOzX1juXFQ=
x-amz-request-id: 3KBD9BY75EDX1Z62
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Mar 2023 18:15:55 GMT
age: 1706
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 03 Mar 2023 18:44:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f7078e830fcf14eaf0c6d96e6c9eb7ce
e8d5091f55ab5ce48c107f527c4c8a0962a16b46
9dd9964a47b621a82aba6d8220fa17d4099d45708d9fa4839a9c7d02cf1a5b8a

HTTP Headers

POST /s/gts1p5/PzPB4OdkcgU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Mar 2023 18:44:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Retry-After, Alert, Content-Length, Backoff, ETag, Content-Type, Cache-Control, Last-Modified, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Mar 2023 18:12:26 GMT
age: 1915
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
51e95d61b93964116033d39ca29d8e87
f4b94d787ce49da21c28fe7853b1a85d2b9494dc
083c886afce548aad4f54caa7f7766e38d9376d55077d4072dbddbdafa086f85

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "083C886AFCE548AAD4F54CAA7F7766E38D9376D55077D4072DBDDBDAFA086F85"
Last-Modified: Thu, 02 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3940
Expires: Fri, 03 Mar 2023 19:50:01 GMT
Date: Fri, 03 Mar 2023 18:44:21 GMT
Connection: keep-alive

push.services.mozilla.com/

34.216.86.11

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.216.86.11:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Md+mdInPnoKMg+L36NstGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S8zzj+AdH5+8FR/bXKkgI++XT34=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6777
Expires: Fri, 03 Mar 2023 20:37:20 GMT
Date: Fri, 03 Mar 2023 18:44:23 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3381 bytes)
Hash
4726917eabc29a977873ad26e264e70d
4619a0418ee08d6618ead537f31823c98f355b5a
d3c6b43d46ccff30f0003a063b6c4c78d4a782262bfdeb138e6c015555ce2dcb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3381
x-amzn-requestid: 8b89e7ab-b8b3-45cd-af3a-cc419e61f1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A-PNPFynoAMFn8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbf8ba-616bedc230d1c2b13a09beae;Sampled=0
x-amzn-remapped-date: Mon, 27 Feb 2023 00:26:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 7f5O-v2e1_OXVVveu0_kNtjOTnUAC5shUmd4JejtlrnliJsxeitcYA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 07:15:41 GMT
age: 41322
etag: "4619a0418ee08d6618ead537f31823c98f355b5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81172d5-849a-4947-895d-7b645a656f98.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9043 bytes)
Hash
4c627140fb587a52035e07a0e4849aa4
0fda39fd9db63f210a73fe14d6cb445d877303f1
ef144a10c04afa87fe3ae0c30906495f42b87678d6a5bab9ac934e8425d8ced3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81172d5-849a-4947-895d-7b645a656f98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9043
x-amzn-requestid: b198e6ac-b731-4300-ba73-0dae7c426334
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLC6CHbBIAMF59w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6401183f-4e716af671ac66683937eaca;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:42:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: YD6GO0_TJOT0OzkJ3jEz4PUuk2oIZ-JrwBZDbI5wWTA0iEdUsLy6ew==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 22:10:05 GMT
etag: "0fda39fd9db63f210a73fe14d6cb445d877303f1"
content-type: image/jpeg
age: 74058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dc93829-4f5e-47fc-82e7-abc095364d12.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5104 bytes)
Hash
780855222ea785d3000e1b40b74a487a
7a3a48fbe78936df3795ae3181534e7a6652c956
427e23d44cddf206d393500e1b2500fa9ef829c078dd953e28e9be8bf0d6a8d2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dc93829-4f5e-47fc-82e7-abc095364d12.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5104
x-amzn-requestid: 816fb8a0-1a9c-4572-bc8b-614693204c13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLC66FkjIAMFcZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64011845-4bf667bb15439fbf648be139;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:42:29 GMT
x-amz-cf-pop: HIO50-C1, YVR50-C1
x-cache: Hit from cloudfront
x-amz-cf-id: XILlhVtMYJJqMYs81udZMl6V6gLyay_XONAWJTrRcnYEC1Itv7FDXg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 9c335c5f85533b11cbfd38dc7cc60c16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 21:55:41 GMT
age: 74922
etag: "7a3a48fbe78936df3795ae3181534e7a6652c956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F080edfd7-ca45-4d02-a82e-695dc100f1bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7507 bytes)
Hash
9562ddfb26d6176ec12e8e71cc55895c
86bd68def54b0b50e6f728690b2ddf08f858bc33
b51ad98c7c8cb4b2be7af430f4a5963457661d4f13e8029a4bb2cd2ebeb00498

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F080edfd7-ca45-4d02-a82e-695dc100f1bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7507
x-amzn-requestid: d9b61fbe-db88-4902-92d2-b3d97bd7be88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLCh4FTuoAMFeIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640117a5-4ced7773195e43cd4c4f8e25;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 2KexfhAKjKH-mpGBSN3EiemXuGjVsHTfT8--Kb12Bb5cQpN_aeoC8A==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 22:07:31 GMT
age: 74212
etag: "86bd68def54b0b50e6f728690b2ddf08f858bc33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd5f51d-c165-4228-b31e-35e9516c7ad5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10504 bytes)
Hash
d7b980c564a4ca7c7b68c4716e2398db
e2b327c261d113b17053f475f2d4ef06fe5fb770
478886f4d7ac80275da33753926320384665b246f85ede4c2547aba2f724e97e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd5f51d-c165-4228-b31e-35e9516c7ad5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10504
x-amzn-requestid: ee0a1e46-71ea-4647-ba9b-b350c7ca2ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLCyvEy5oAMF8NQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64011811-7f3cecd06abd02671a7af460;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:41:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: JHTbysB2kG3MJz7_r7K3xo8C3w5P4U8Iv6ZVNpicDLcRJK4hSw1KrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 22:10:05 GMT
etag: "e2b327c261d113b17053f475f2d4ef06fe5fb770"
content-type: image/jpeg
age: 74058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdba647c7-b8d3-4043-b8c8-caba179b5589.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4371 bytes)
Hash
e6c6971746047136e4cbf0dd381a2bf1
07cb3900b31e286c0ee6ef4e6344969a5ad893b4
4f35efad14bd441063c58fff5a44e05a9497c91266ff5b4c48a9386288bbc886

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdba647c7-b8d3-4043-b8c8-caba179b5589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4371
x-amzn-requestid: 4996a003-e275-4edb-a0a3-f5d7e72cd1ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BLChFE_NoAMFYPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640117a0-31d3ea3b1e196aaa372dd016;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, YVR50-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6TMBH_aSock0V22r3Xt99HQs1N7qY65SsSyiYPrtXYAPW-l3d3lC7g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 3aed32068dbe2f7fb3a27284c9c26498.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Mar 2023 21:54:35 GMT
age: 74988
etag: "07cb3900b31e286c0ee6ef4e6344969a5ad893b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/PzPB4OdkcgU
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f7078e830fcf14eaf0c6d96e6c9eb7ce
e8d5091f55ab5ce48c107f527c4c8a0962a16b46
9dd9964a47b621a82aba6d8220fa17d4099d45708d9fa4839a9c7d02cf1a5b8a

HTTP Headers

POST /s/gts1p5/PzPB4OdkcgU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Mar 2023 18:44:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

angle.haveid.top/images/logo.png

104.21.77.245

200 OK

2.8 kB

URL HTTP/2
angle.haveid.top/images/logo.png
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 202 x 69\012- data
Size
2.8 kB (2756 bytes)
Hash
77d3f86a4ded566ce180812662449bf1
041da0cf719dd546bc597f881f17170bebc1314a
2a5e996cfcf9490197f648450c1ac90bdfe05f41891a54a5d34024266eb841ca

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 2756
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-ac4"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7Z5NWjN2Ns%2F%2Ffb1QqTSpQl%2BxtcWHPFe48AiNpfacdOpso%2FeHmRqtsfWRlXLCH2U3Bl%2BWdPmw21kayhh07fXfxS4WtzhtmI83xbJvW7o93dM66KtHLSScus26BoTH7bA645G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f20b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/stylesheet_searchtop.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/stylesheet_searchtop.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /style/css/stylesheet_searchtop.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
content-length: 0
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
etag: "632c2ca0-0"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gr%2BOMGZ3e8V1NAc4c%2FpMCoLTyHm1RY2551k7aDRItAu%2F0LyUaSMPj0ghc6BjtTaVLgvutMTxygVA287H9lC3Oj7%2B82mG1a23MJxG4rrPbWr99H3RRushIXdXeMriOnsq8RbP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da1f10b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/hader-bottom03.png

104.21.77.245

200 OK

638 B

URL HTTP/2
angle.haveid.top/images/hader-bottom03.png
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 85 x 28, 8-bit colormap, non-interlaced\012- data
Size
638 B (638 bytes)
Hash
4a4669e7211c2ea2527395fb4bdea5e8
d66fbec7d795baab4292201416d5160ca680f2a2
401e11d0524a20a3cbec26d12a3c588d2e277c6a8b092e9e036344e4571202e1

HTTP Headers

GET /images/hader-bottom03.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 638
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-27e"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ixG8ZGllOS4DX8xOnLEhlWIFa3NyFmnmlgWoMG6Ar%2BTHzCA8MzTWPPT%2FbgHG6UbYlVpDrkR8LD%2FD2Fnka%2BGdlqGE%2BAp%2FxoeV39Y93r0mlkb%2BOJv0nuXpKYU65osvSziFokrC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f25b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/bnl_mailmaga.gif

104.21.77.245

200 OK

2.2 kB

URL HTTP/2
angle.haveid.top/images/bnl_mailmaga.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 190 x 60\012- data
Size
2.2 kB (2243 bytes)
Hash
91e85c567b7ec8101077b611bf14a797
af5d4c49344532b2af2d92ee65e0f13583037a11
7c5e007a19b0b854c73f4838ebdbc35bde9d3695ceaaf306380e9879005ce783

HTTP Headers

GET /images/bnl_mailmaga.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2243
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-8c3"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yJvKmaSftOmf2vkHApH%2BTODRCPqrcTPLYH2T1sS7NTNRGS16dKZt1FrQiEN9HIRiktcxU7hegaJ6MWId8%2FTBs85bFzyGsoNnPzRS01ftDhL4RBuVTBfF2zkxDQjACDWCHdS3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f2eb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/hader-cart.png

104.21.77.245

200 OK

744 B

URL HTTP/2
angle.haveid.top/images/hader-cart.png
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 176 x 50, 8-bit colormap, non-interlaced\012- data
Size
744 B (744 bytes)
Hash
e634f70ed183e395e2e42fa8a52b4848
67964ac68f4740a5044a2650d606b7cd6ce4b4aa
21be53b0037d3e0369822dea1ea7aa6933d5a747d4e1cd236e372c908181ddd4

HTTP Headers

GET /images/hader-cart.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 744
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-2e8"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAwsla9z52DQjAURJAzN0AkmfjdwM6%2FeBWuKKaq9Md7IV5aGJR2Iu0KXDnnoKUkdTiHYblJUS70yDc4m8WZnKb0Kp3NSOQjs21c8MCUybq%2Bvxn%2BPGgnD98FOMZ%2F2%2BK81zyHY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f24b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/bn_cnp.jpg

104.21.77.245

200 OK

7.4 kB

URL HTTP/2
angle.haveid.top/images/bn_cnp.jpg
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 190x90, components 3\012- data
Size
7.4 kB (7364 bytes)
Hash
24d888e07b2b89fa5d266f7a11d7cb2a
440b43154772d33328cefbee4db4e2f284ceb8a0
4987a7ac7eb6b24aa9438ebee7822452c941134d8e6affbefded72f523c14123

HTTP Headers

GET /images/bn_cnp.jpg HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/jpeg
content-length: 7364
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-1cc4"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0w5U3jV6Yb35cKRgBJpy1Hg8%2Fkorv%2FkUliveqPbzCD9DBCOadwvhRnHvKyxHsov8u74o%2BMiaISHCV%2BcCdPh5fjmDGo40NPTKF%2FRD2RlQpF5%2BRTglh3VSbFUlgsfiUFMXN6Gy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f2fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/information.gif

104.21.77.245

200 OK

2.9 kB

URL HTTP/2
angle.haveid.top/images/information.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 190 x 40\012- data
Size
2.9 kB (2863 bytes)
Hash
817a8ff95c8037a9f73f446d9ec1d09e
3a327b9275151ed2403c6146a1feaa6670162b72
d53467cdcf2d2f69bb0063c7cf5a20d9a7f781e49e2e3124a10e3077f5b1e3f3

HTTP Headers

GET /images/information.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2863
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-b2f"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0rA1yB0yW2cYzuccrOi4auzELQDC6JpUV%2F73p%2FDAU7NnLAJFd%2F8JPyQkMdThWMgHqys5t5kc6tMzjDKnuMOd2PaRVRPE7IAwcSik4%2FqqYV5qEFljvQDoh3wmloEXhpzTg65Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f2db512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/hader-bottom04.png

104.21.77.245

200 OK

647 B

URL HTTP/2
angle.haveid.top/images/hader-bottom04.png
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 85 x 28, 8-bit colormap, non-interlaced\012- data
Size
647 B (647 bytes)
Hash
c188197d7a040fd303351965a56f55a1
456b4f2df4d870aec3b2b1355db25ccb998ee0f0
a71c4a65b8b8cf203395b52be49d21acb9f75b62195d4d19bdbd048e7a446f81

HTTP Headers

GET /images/hader-bottom04.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 647
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-287"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7jBTOO7Ebe9w55gGq3z7qmn%2BIBifL%2FrEO9ECUvU9PapY7PWtgNn6X9CiZCqOi9moRykmcwYeN4gCV5%2FTlWuG%2BbiLgbY3cTpI80UGElin0XbV4s5QvcOYsplbwMH2ToXdmLP5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f27b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/greeting01-n.gif

104.21.77.245

200 OK

2.2 kB

URL HTTP/2
angle.haveid.top/images/greeting01-n.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 190 x 50\012- data
Size
2.2 kB (2236 bytes)
Hash
7a75dc51b705c3f8a3a304cc1854ac8a
d99a51df98d146d7fe31d9c0c365c3eb2dea25aa
4b044b7304611f931df00b5a96510b250de373a98d05ac9c34d7c614e0b9d8a4

HTTP Headers

GET /images/greeting01-n.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2236
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-8bc"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XRWXHunLunPN1x7BXBKiOd5aHhV%2B87iMsKcsu0uL7eah8VZ%2BtBNNby9FTKpslxcxFzwBKlVNRl3JLjf8J4WB75wOaeaJgIGM2c9GzJAj%2BUMxhRSdpgM5hrgVsd4LLTEwlBK7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f33b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/bn_kumitate.gif

104.21.77.245

200 OK

2.4 kB

URL HTTP/2
angle.haveid.top/images/bn_kumitate.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 190 x 50\012- data
Size
2.4 kB (2436 bytes)
Hash
f9e1fff0c90b4fc9e76176c593460bc9
b0c011f54577045e4ef8f2387c019649c14e467b
cc3ddc4411d9bc3538823aff11ffdab96a35b731ee9270ff5daaa1a8b45a65c1

HTTP Headers

GET /images/bn_kumitate.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 2436
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-984"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OrWsz4ZJ%2BzIvdugalU8orgib1aSxwgzIiZJ9B8ZAKSdnpeDmegVIJaHwt%2Bt%2BLRmppI6PNup4CAvDLZ2XNZFdNuWdQp1a%2BqlwXzEtWsnXJOwtWdxspRpEVwBBkRCKCu7bZ6XV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f31b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/time.gif

104.21.77.245

200 OK

5.1 kB

URL HTTP/2
angle.haveid.top/images/time.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 357 x 77\012- data
Size
5.1 kB (5063 bytes)
Hash
2b62aff570ba45ef69c1558eb1325b32
3c64ac2ed8216e9c2537634352c2913669adc7bb
6d54402522eb86e4d3b5380ad07fff1f78aeeb01613514de6c9d371c64d30e48

HTTP Headers

GET /images/time.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 5063
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-13c7"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UW1H5HU2N%2B%2BBjTpNTkPOosRsgpoj7yjgHqeieilReDgNf0wfoAkcoPeNWlutpLEPkRLuJBxDvKQO8BmcLTijCAa4pKk649jONrwGXnghLhvN8jro4D592JvMAw7vu4YwNf5T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da4f57b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/header-cap.png

104.21.77.245

200 OK

21 kB

URL HTTP/2
angle.haveid.top/images/header-cap.png
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 492 x 77, 8-bit/color RGB, non-interlaced\012- data
Size
21 kB (20962 bytes)
Hash
85a85118be6fdc673c8d1c4b8b431ba4
8e7c0ebf17ee2ce06b1ddd22817debd363662913
57c2127d2defb8829b50b3ff506cbfd23d8a65a0d463e3c99f75822cb9ebcb4d

HTTP Headers

GET /images/header-cap.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 20962
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-51e2"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FfzBqizeoECrqSAhCNeTL2J0X%2BCNlrhYA4RRMXqgGVkh99co4VdrZcHZzpWOlNWf3YSvJFLLm9jxbSU%2BcG6OnUP9QwkpsA5tkF4r0zXeC7VxHWrQw6qGtaBPoP6omWKuTiXh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f22b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/top-ss01.gif

104.21.77.245

200 OK

32 kB

URL HTTP/2
angle.haveid.top/images/top-ss01.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 800 x 200\012- data
Size
32 kB (31877 bytes)
Hash
9b25e4c9a0aef8ad850ed48cddbbfd0d
ffbd31da4bfdbf244464e6fd9da600abda0fed80
4f1a0ec14c1f26230cacb0a14aa1bc08cf8d7ec8f5ca9501235ec46298d6fad7

HTTP Headers

GET /images/top-ss01.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 31877
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-7c85"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sUdl5%2FLQjsTRExyJxfeduCAQosayfksApnwktjx20az9Xagwj50FlrDI%2Bw4a1Dp3yZTDqRaqH0%2FLQv%2Fv3mCo2r74rOOxVVsyx%2BqMqutA9JsnXE1pB0kDvH%2B%2BlQgnfhnnc9fq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f37b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/top-bn-s.gif

104.21.77.245

200 OK

59 kB

URL HTTP/2
angle.haveid.top/images/top-bn-s.gif
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 800 x 200\012- data
Size
59 kB (58639 bytes)
Hash
7ca8013729ca67a58e3a9f1b72db806b
236a9a40a0c2a6d6939dab3c6b2ccae847035e35
89d03a052d100e21768e9786f776a9ba6e096b3559532534e3c76a2803fd8484

HTTP Headers

GET /images/top-bn-s.gif HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/gif
content-length: 58639
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-e50f"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9dKUJvldgTM2I%2B7E2Mk2kcD4wih1Qw5R1NXw2iq4YB6oSB%2FcQRrbO7PhHYzY6d3ndTnFH6SGTQ0xuXYa1ui4e4fAK7WhxpN1gCwSmvioPXSvQ1RKmrfAhsCFpuGza4zXfz8J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f3db512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/images/tore_bn.png

104.21.77.245

200 OK

116 kB

URL HTTP/2
angle.haveid.top/images/tore_bn.png
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 800 x 200, 8-bit/color RGB, non-interlaced\012- data
Size
116 kB (115656 bytes)
Hash
195871c530704235fbc57f0610cee9a0
31edb8cfb26973c6bd5a393c1e6892fb4a9d7f45
45a28257c50a04b2395aa1ec965fcc12a50b2acf015dba124d5bd405418fc579

HTTP Headers

GET /images/tore_bn.png HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: image/png
content-length: 115656
last-modified: Thu, 22 Sep 2022 09:36:31 GMT
etag: "632c2c9f-1c3c8"
expires: Sun, 02 Apr 2023 18:44:25 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eg2nZLEcbBWrWtnI5OrZBdgAhXYZP9pzvis1yfmZGVJoCayJ2iaqRbkeVUcKDHTBiPj9zdwKG0qxzz6kxs%2BreEVk4DshE5FQeqp%2Fbl4u6uQR1KI1Qxx1TUOk0mrO4E1TOEyK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da3f36b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/swiper.min.css

104.21.77.245

200 OK

4.9 kB

URL HTTP/2
angle.haveid.top/style/css/swiper.min.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19070), with CRLF line terminators
Size
4.9 kB (4859 bytes)
Hash
27ebbf9999418a7f5d8a4774126c71a7
741527bf8e55b7a4c179bd66dfa82645c49b667c
a0507bf75414cb3161423054643425289818667c83ade4cac73253828177d2e1

HTTP Headers

GET /style/css/swiper.min.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-4b93"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V0EEKQ1dOKTUdt6X6rke8y5DmuqujYVKlELwbLZBAKXFE%2BfH122OQK68cuo%2Bx3FhAU8Na8LQITUAzzu0tbrnoCD2YFxnlDnLR6Jy6%2Bun7Aet394xoYIQVjuoG84Ov51DiBxe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f18b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
1785dd3fc28257960c17dbcc44dfe68c
20f31ef3af1e4f4921886f5b44b705173ad44c73
80ade04bc9b84f4fa4ba296f13eabbda11fa22108059e3064e9b9480fca527f4

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 Mar 2023 18:44:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Mar 2023 15:58:11 GMT
ETag: "20f31ef3af1e4f4921886f5b44b705173ad44c73"
Last-Modified: Fri, 03 Mar 2023 15:58:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2938
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2407e5bf0f1c16-OSL

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0304/users/519195e8477eb86d836a235e682cf92f1f639442/i-img600x600-1651036739gwcs7x67223.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0304/users/519195e8477eb86d836a235e682cf92f1f639442/i-img600x600-1651036739gwcs7x67223.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0304/users/519195e8477eb86d836a235e682cf92f1f639442/i-img600x600-1651036739gwcs7x67223.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/50387bd16fe658f8ffdc6990e0a52e68133ecbae/i-img600x393-1664280161emxunt629647.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/50387bd16fe658f8ffdc6990e0a52e68133ecbae/i-img600x393-1664280161emxunt629647.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0309/users/50387bd16fe658f8ffdc6990e0a52e68133ecbae/i-img600x393-1664280161emxunt629647.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206080ipndmt762848.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206080ipndmt762848.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206080ipndmt762848.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1670357398hvbljj34196.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1670357398hvbljj34196.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1670357398hvbljj34196.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1671147060idsztd305879.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1671147060idsztd305879.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1671147060idsztd305879.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0311/users/d43abe2ae728896e41e1526d98661c63101922fe/i-img700x700-1669369612s3vbae206400.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0311/users/d43abe2ae728896e41e1526d98661c63101922fe/i-img700x700-1669369612s3vbae206400.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0311/users/d43abe2ae728896e41e1526d98661c63101922fe/i-img700x700-1669369612s3vbae206400.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-1626228068u6cjz86823.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-1626228068u6cjz86823.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-1626228068u6cjz86823.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0308/users/22b5a02b764c88d2a6aea59b06a72eb34d0853c8/i-img800x590-1659342807ibewbb319641.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0308/users/22b5a02b764c88d2a6aea59b06a72eb34d0853c8/i-img800x590-1659342807ibewbb319641.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0308/users/22b5a02b764c88d2a6aea59b06a72eb34d0853c8/i-img800x590-1659342807ibewbb319641.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/70c582827eab1c7e03ee21e426b12e2fb238ddd6/i-img600x600-1662971691ggq21u1533.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/70c582827eab1c7e03ee21e426b12e2fb238ddd6/i-img600x600-1662971691ggq21u1533.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0309/users/70c582827eab1c7e03ee21e426b12e2fb238ddd6/i-img600x600-1662971691ggq21u1533.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/8f8e286720d7d1701be1c547ee2431f4565719c5/i-img600x450-1671175441mlpnek754964.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/8f8e286720d7d1701be1c547ee2431f4565719c5/i-img600x450-1671175441mlpnek754964.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/8f8e286720d7d1701be1c547ee2431f4565719c5/i-img600x450-1671175441mlpnek754964.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-16262284950enjwu6792.jpg

182.22.28.252

403 Forbidden

14 kB

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-16262284950enjwu6792.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Size
14 kB (14275 bytes)
Hash
e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0207/users/becbea962f321fcfd9191a915a3f7db008cda860/i-img600x600-16262284950enjwu6792.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

js.users.51.la/21542169.js

103.143.19.103

200 OK

2.3 kB

URL HTTP/1.1
js.users.51.la/21542169.js
IP
103.143.19.103:0
ASN
#4837 CHINA UNICOM China169 Backbone

File type
ASCII text, with very long lines (4898)
Size
2.3 kB (2310 bytes)
Hash
ddaf4864b1cb9eb5087417b33be88f4b
9ce1205a13d61b2461ffabde678dc0559dcb6da8
1e5be596212988c6360bad2e6335851ccee666ba17b372ccb6706cc47661c82b

HTTP Headers

GET /21542169.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: CloudWAF
Date: Fri, 03 Mar 2023 18:44:27 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=0586941ee3608c29e36; path=/
HWWAFSESTIME=1677869064011; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
0687511f081752982cc2f8d8487ce6b9
82c85836915a158cffda05e81ed8344306551e67
c74a4a71c48d26abc5b138608f0fdd0926a0885f356f7bf9f6c7302b59f4e6c4

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 03 Mar 2023 18:44:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Mar 2023 17:09:52 GMT
ETag: "82c85836915a158cffda05e81ed8344306551e67"
Last-Modified: Fri, 03 Mar 2023 17:09:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 666
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2407ed6df51c16-OSL

angle.haveid.top/style/css/stylesheet_tm.css

104.21.77.245

200 OK

7.4 kB

URL HTTP/2
angle.haveid.top/style/css/stylesheet_tm.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (679), with CRLF line terminators
Size
7.4 kB (7368 bytes)
Hash
ea20c288f79e444641262a3ac5f15632
3b57e6f3b67b81fafa1e8abc24bc320d074ee2fb
ce247e921c84dac02fc0961e5e873ada35ba3051f19ad5780301d60dc12caeae

HTTP Headers

GET /style/css/stylesheet_tm.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-8bf9"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c5F%2BJdHLpTz51YiK2Oqfw6q760mvlJuVvu9ZofIGWC9in1yTZZ3kv3XjW%2FJRUmeeSLUc5ZW8Q0ewhqOuWJltp435eAii%2FH5bVUgqkHJ1n5LJzBFWM2gbGH4xO%2BSEHRoEXY5u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f13b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/js/swiper.min.js

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/js/swiper.min.js
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /style/js/swiper.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-1b462"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FOm26fg2641FUMDGdNeX%2FeOug9fDyrfkmE%2F7fB%2FtgmbirXfoTRWg6Kbbu7DhLxTWF4FcnsL5DwIitfRjc5jTGuPxtje2r3hJquxBZFLpDu7%2BJzd%2B4RnyJKVNNmS%2BepYYobF1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da3f3fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.top domain

HTTP Headers

GET / HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: language=jp
currency=JPY
html=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
zenid=g7kbj9lfht1nfssgs4446prcp3; path=/; domain=angle.haveid.top; HttpOnly
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
position=aW5kZXgudHBs
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CoJQfMWD96I36MnKwW3gnrjmBsVU3ECj7faUzdKEeDXzyMACF%2BhkOrY1%2BXddeOhzEq%2F3I%2FiJrUWK0ryf6oJwkExJCdp89ZNh7vYLF%2F%2B1NkLqcz8D5J%2BWj6VPd28OI3%2B1eXEz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407c0ee6db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/user-1-1-2.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/user-1-1-2.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/user-1-1-2.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
etag: W/"632c2ca0-36b"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=33cwDPbCKWTj13%2BmNXAF0gadq12ISbje4u2kzn5X2X%2FiWkx%2B5hwPyvxes2svI14m2TrufnqCpvl1i4%2BgoyH%2FfNx5%2Fau8TU5gD8a%2BcJmV4sirBVFbGC46RCv%2BVQaWhJ0xT4%2B2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da2f15b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /style/js/user-1-1-2-05d039ef31ef7fb5d04e477b3a47adc6.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-10e9"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZiWMzYlLU%2BJXkf9TlXhjlkrVhFFzLwTfJDkZdMiHcUbk0k3mTBD4ALW%2FrPcnkLrM45PRk830BJRkEQaf8jUwJGpO80%2BU4uCciLPI3qEolaXv%2B7AHS%2FycdT3u12IRBQmQaQyO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da3f43b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0310/users/8d785b07fb0068fe9714c8a3926e93bbd068ca7c/i-img1200x900-16664175668cinru967596.jpg

182.22.28.252

403 Forbidden

0 B

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0310/users/8d785b07fb0068fe9714c8a3926e93bbd068ca7c/i-img1200x900-16664175668cinru967596.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0310/users/8d785b07fb0068fe9714c8a3926e93bbd068ca7c/i-img1200x900-16664175668cinru967596.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

angle.haveid.top/style/css/stylesheet_index_home.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/stylesheet_index_home.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/stylesheet_index_home.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-9cd"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cXDFKaBp0FduhGvq%2FuKBU9CMzIP0ZLPJYgq2SjhVgSI2E%2Bg%2BX4OJjgNiEthk4xim6Wlv3HhdRUj71t3VukQiLSig3hk92g4Bziu4IkOXpQD2ad2F2caD0rZxKtdKvCkmijsW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/style_footer.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/style_footer.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/style_footer.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-b95"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J6PRKvevHLCahbcOHIKqYVP3AD%2FUfnIuorb5vkjr8XUZAb7uzz88%2F9fGKIIHUVlONNrYTRgr9BgG9yB8JNHHxcZ1PCJe2lLAiOaCHgot%2FWb8t%2BtR4XZ3M3vzYQ8wc%2FS7YiDf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f05b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/stylesheet_css_buttons.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/stylesheet_css_buttons.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/stylesheet_css_buttons.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-5d0"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u39TXGqd0Nh4B2INVWRzwx%2FX8BMZp%2FliZFsw5%2BDCSm1geuMUo3ldfcMTVKICcs9pcBwZYuK510ZQAOow2QBj7vbQ9rpmAKRca58dzRllV5o74U%2F2%2FUqf1zaCGOQMXgt3G0x3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/style_dropmenu.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/style_dropmenu.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/style_dropmenu.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
etag: W/"632c2ca0-393"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=09cedIch%2FwTScRXGF8w9X3bkgiHZSYgf7IdGGd5i5z4G6c43yFiSG5JwkbecSd3WRKX%2B7VB3PFJlgB9tUBm51tf%2BDHNVvxGwUWjYdOzk4Qp92e1DNob2DVLGOnY9yuQxdCl%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a2407da1f04b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/35fb970c6465097cced306e10519a0b5c4e58a71/i-img770x770-16631530378u54ii124050.jpg

182.22.28.252

403 Forbidden

0 B

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0309/users/35fb970c6465097cced306e10519a0b5c4e58a71/i-img770x770-16631530378u54ii124050.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0309/users/35fb970c6465097cced306e10519a0b5c4e58a71/i-img770x770-16631530378u54ii124050.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206695cduy2c351150.jpg

182.22.28.252

403 Forbidden

0 B

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206695cduy2c351150.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0312/users/4191438f06ef9af3758b603f933d8ee86d8728df/i-img800x800-1671206695cduy2c351150.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

angle.haveid.top/style/css/stylesheet_related.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/stylesheet_related.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/stylesheet_related.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-6d6"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0LUNoJmAqo%2BimknHfFmxia0LbtMGejLCJnudkksnVMRHLjBsf9GpNiDkQbkIRx%2Ft%2BgnojZL0gcTYWT7P3oogss08aWqy21rhoNiHbTO3H1wLcxnUQRLsQMceW8L7UJTpuU%2Fu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/js/ofi.min.js

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/js/ofi.min.js
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /style/js/ofi.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-cdb"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rZhliFa81XtTffwng0WoVyFFF1zGt6eiCpURGJK8EiivN9dLzlWaEt%2BUIGnH%2F%2BnHKaOB29mTC45Iqyy6hdGNwiv3QDUGgbXAyFl9xQSHfxGRfHDVcQWgasBOeVqIYGsC8SWi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f1ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/js/jscript_jquery-1.8.3.min.js
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /style/js/jscript_jquery-1.8.3.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-16dc5"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Db62OfdZ8qMUWb%2F1NqFcuk6lLCCKVbweEzoJkNW2dfmMZaftn4TiTZlBKCEiyZ0VjuDA7tpH7lqp93YUKBf0%2FjS3WWUJyk%2FOiL4abKjWDHimXFvEtQfuRjPP9KXL9e29pXNG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f2ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/js/jquery.min.js

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/js/jquery.min.js
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /style/js/jquery.min.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-1538f"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hvYEcdc3%2Fhw4dCdm36ORGni2Kg%2FHDrSjEQwpdj6ERB%2FvgoaxHXqaApu8gL3ml1%2F0y0eK4RplFIAGBCpsaPZ7ehBwA2C3M2Lr2sJJCyh9izJu36R8QJLIzD3ltDw%2Fc9UBFmkR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f1db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0202/users/a79557866047864b7d9a6ac807c6a516a3f209d1/i-img1200x900-1613984720tgeiix229909.jpg

182.22.28.252

403 Forbidden

0 B

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0202/users/a79557866047864b7d9a6ac807c6a516a3f209d1/i-img1200x900-1613984720tgeiix229909.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0202/users/a79557866047864b7d9a6ac807c6a516a3f209d1/i-img1200x900-1613984720tgeiix229909.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:26 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0307/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1658181079lmxu4e384781.jpg

182.22.28.252

403 Forbidden

0 B

URL HTTP/2
auctions.c.yimg.jp/images.auctions.yahoo.co.jp/image/dr000/auc0307/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1658181079lmxu4e384781.jpg
IP
182.22.28.252:0
ASN
#23816 Yahoo Japan Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images.auctions.yahoo.co.jp/image/dr000/auc0307/users/3fe7fe0cd5622ae4812d74a1cf780b79944926dd/i-img1200x1200-1658181079lmxu4e384781.jpg HTTP/1.1
Host: auctions.c.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 03 Mar 2023 18:44:27 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2

angle.haveid.top/style/css/stylesheet.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/stylesheet.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/stylesheet.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-2648"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u58Ho7Q0x1ZuqkA4s6pD%2Be2JRI6gUfU9zc3OAJoSEclvjF0auqZP8sz3jj9EnlF8vEPjXqDxOcJCQFWq7rMq4iaOIyumrFD%2FpTP9mDT6dOrP2LqF%2BVATwfaBNn0YGlsZ1UZl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f09b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/style_header.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/style_header.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/style_header.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-1984"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LmaUfgrF6Tu6%2Fuz9vG6y4SoxBjiRoQlwyEjGXgYLVNc13xm5yJRYTbx79K24VyD0KfdDlF8%2Bokl7pRe5mFgZag7qZ92xRoILV307JfQkczPQCV0nBrE2G%2BdIa7bdz%2BnzFqqX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f06b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/js/webs.js

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/js/webs.js
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /style/js/webs.js HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-657"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izcmmYQ4Nnekb5QP%2B3qlnJVCQKgcRiT0Oo2MwVfKcQNouN5GTm7xKJbEcr%2FNaPffAAP%2BUO0qr5DM15f5sMjPwPBLawtDQd4QkUD6PLIEuIQ4lgO5%2FGx8%2FF7mXmBalwr613V2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da2f1fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

angle.haveid.top/style/css/stylesheet_cart.css

104.21.77.245

200 OK

0 B

URL HTTP/2
angle.haveid.top/style/css/stylesheet_cart.css
IP
104.21.77.245:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style/css/stylesheet_cart.css HTTP/1.1
Host: angle.haveid.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://angle.haveid.top/
Cookie: language=jp; currency=JPY; zenid=g7kbj9lfht1nfssgs4446prcp3; position=aW5kZXgudHBs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Mar 2023 18:44:25 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:36:32 GMT
vary: Accept-Encoding
etag: W/"632c2ca0-214d"
expires: Sat, 04 Mar 2023 06:44:25 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WsSCNjCB%2BQv1rs7T%2FU6an1pTJZbMSsCPkwTQD%2BZpcQSYrA10hNywQz1R8anu91VMNBEl%2BZ9z1OexmL6EgJCYfZwmJ3KXLwoKZ7bOsRQqhFgkj9BlIv9gxK7SLB%2FyMEHW3D30"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a2407da1f0ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML