s.micaerucl-jp.icu/
104.131.67.226301 Moved Permanently 303 B IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8baa137972ee66e4e8624a1540f50cc8
2f352937afc7cacc2e35310a7ae5cc6eb690842c
bfc5b8480d8907b8ae97b8278079eead04e87dbea7be8ee93a18471f4b493620
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET / HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 06 Feb 2023 03:35:51 GMT
Server: Apache
Location: https://s.micaerucl-jp.icu/
Content-Length: 303
Connection: close
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9773
Expires: Mon, 06 Feb 2023 06:18:44 GMT
Date: Mon, 06 Feb 2023 03:35:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12989
Expires: Mon, 06 Feb 2023 07:12:20 GMT
Date: Mon, 06 Feb 2023 03:35:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19718
Expires: Mon, 06 Feb 2023 09:04:29 GMT
Date: Mon, 06 Feb 2023 03:35:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 02:36:27 GMT
content-type: application/json
age: 3564
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SSjBEB6bvbPvDP9oWoJBmch5uyO+9kOty1aM56/2DdtKTdJJRs2IHLLi2Ue+5NYuyFXqlDn0EzY=
x-amz-request-id: GNP1TGG4R38DH9BY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 02:53:32 GMT
age: 2539
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 03:35:51 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0deabc286487250c7096078d37504cfe
69a7bbdbebc52d526153572599bdb9524fbbc304
e6528fab9aab09e0164e2ad0fdb59cbc89a1ff80d039c89a1e2db6b9ae52d155
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6528FAB9AAB09E0164E2AD0FDB59CBC89A1FF80D039C89A1E2DB6B9AE52D155"
Last-Modified: Sun, 05 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 09:35:51 GMT
Date: Mon, 06 Feb 2023 03:35:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 02:51:18 GMT
age: 2673
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/
104.131.67.226200 OK 4.8 kB IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (305)
Hash 700c8c7c4420e978e9ea4bd8ca0778f3
906e10e51f57fd3c5890d8aa6c2fe6f4a097eb14
3cc5c5cab1f0e390f019b3b50744d6ed6fa5ff2e8bd2df726baecf2705e97d2e
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET / HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
vary: Accept-Encoding
content-encoding: gzip
content-length: 4793
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3619
Expires: Mon, 06 Feb 2023 04:36:10 GMT
Date: Mon, 06 Feb 2023 03:35:51 GMT
Connection: keep-alive
s.micaerucl-jp.icu/skin/static/css/milogin_style.css
104.131.67.226200 OK 2.5 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/css/milogin_style.css
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text, with very long lines (364)
Hash 200dd96c840d885d139dbad3edfa8808
bb8699395f87177e4667b14cb556e8d096a68466
3a8f67b87805a2d8e4c4a155f74728fad6c4b789d4dc768bb062beadb17a08dc
Analyzer Verdict Alert openphish Micard
GET /skin/static/css/milogin_style.css HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:16 GMT
etag: "3d5e-5c39e8cadc200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2533
content-type: text/css
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/swap_image.js
104.131.67.226200 OK 713 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/swap_image.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text
Hash 120e13a2bdf4551ac700d239f6d2aba2
5a16489d9231aaa58fa76738bb9402e7a6bd5c8d
9336d49899a5307500519e4601b0765a222bdf390a4218c09bc77e23addf33e3
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/swap_image.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:22 GMT
etag: "72e-5c39e8d094f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 713
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/css/responsive.css
104.131.67.226200 OK 542 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/css/responsive.css
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text
Hash ac5ca3ec85c1e9795b32715918bdbccf
a40c0dc4f1f4b952520ec29aad722b3e7e823eab
f062ece7cbab989b688c154bef6f6e4bf65f5ff537549ce3549c5816da6883a8
Analyzer Verdict Alert openphish Micard
GET /skin/static/css/responsive.css HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:16 GMT
etag: "715-5c39e8cadc200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 542
content-type: text/css
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/responsive.js
104.131.67.226200 OK 1.0 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/responsive.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text
Hash 17156e2dac226663364aa3e2c7e7ab12
56f1767ab5266a2e3531ceb33b7b1f8efd23c73d
8e8d6c95199c0d97afd5ecaa5d51d30c0c024cd85e2ecca5109f35e64de6d16c
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/responsive.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:20 GMT
etag: "b79-5c39e8ceacb00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1031
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/milogin_common.js
104.131.67.226200 OK 908 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/milogin_common.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
Hash 4e51656a9c52642be8c34e0c1df717fe
0fffbf6c77e8129380e246f2a7a1804bd07d8be9
dae9ff3d9a6818b75ba4364522667290150581c558599d2303f0890565262556
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/milogin_common.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 13:55:20 GMT
etag: "7a1-5c3a0937a4200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 908
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/css/navi.css
104.131.67.226200 OK 18 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/css/navi.css
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text, with very long lines (10930)
Hash 2d3bf3613f2ab51c81505c9d59e088b3
95190078f516acf880f590a357ecb45a3d5b598d
abf454d12b53765a81e7e52c3eac569d39ade7c3a58f33ab9ce7182ca5669a7b
Analyzer Verdict Alert openphish Micard
GET /skin/static/css/navi.css HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:16 GMT
etag: "dd0c-5c39e8cadc200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 18102
content-type: text/css
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/css/top.css
104.131.67.226200 OK 7.1 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/css/top.css
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text
Hash 56310c78f3dcdbd0f538d274021c54af
f3acadf9b796cb630d7c1190e688cf434a830ed0
3ceacaa03e3674bd51f7f45bea408b0b0338de52b1d1f66dcf177e8054f091c8
Analyzer Verdict Alert openphish Micard
GET /skin/static/css/top.css HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:18 GMT
etag: "b0e2-5c39e8ccc4680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7065
content-type: text/css
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/jquery-1.10.2.min.js
104.131.67.226200 OK 33 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/jquery-1.10.2.min.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (32072)
Hash 7e1dc6526190c5ed10a7c46efab6308f
357183b385b66f7178a78ae0f29b318bf98715c4
4ea55c30856ac22e9991922eada0c9bc28d4f20848437da1f0ab55fe38c27bd3
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/jquery-1.10.2.min.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:22 GMT
etag: "16bb3-5c39e8d094f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 32802
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/css/menu.css
104.131.67.226200 OK 3.6 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/css/menu.css
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
Hash df1dad1219a194a04c36e6ba46da5f48
c408c02d4a8b6f7cd1e039c2362bbb9992af2416
7efa382c484dfce1e430f5261576822de5005a637f982678d5cd7ef9325e89b2
Analyzer Verdict Alert openphish Micard
GET /skin/static/css/menu.css HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:18 GMT
etag: "5ec5-5c39e8ccc4680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3570
content-type: text/css
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/css/login_navi.css
104.131.67.226200 OK 657 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/css/login_navi.css
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, Non-ISO extended-ASCII text
Hash 59d7e37d5da00994c22c808856fdbd67
3fa256da2d832ee107feb04d90234b5f96b89881
b2b83b17f22577e0756d171f65cc603b14b0fec22e86f8d65acc7aa30ead5efb
Analyzer Verdict Alert openphish Micard
GET /skin/static/css/login_navi.css HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:18 GMT
etag: "5a6-5c39e8ccc4680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 657
content-type: text/css
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/fastclick.js
104.131.67.226200 OK 7.6 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/fastclick.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (382)
Hash 7f268d547ea0a6210830047168ea5fbc
ffde7e3cc40ae65119f73430e88b2a5c62a104d3
cab872625623141f84af2227d23eaa7e566eb0f0d6b5517f2b9b7f50b8df489c
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/fastclick.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:30 GMT
etag: "656d-5c39e8d836180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7608
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/picture/icon_tp_link.png
104.131.67.226200 OK 193 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/picture/icon_tp_link.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 8685a17b3a266d6a98ba25a8756e9cfb
3484389a852645c65f4c539c4c4ffb406c2b5c59
0cd063a9f76f0b4f025da903fc4836b74248425b18065d304019161357fc38fc
Analyzer Verdict Alert openphish Micard
GET /skin/static/picture/icon_tp_link.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:22 GMT
etag: "c1-5c39e8d094f80"
accept-ranges: bytes
content-length: 193
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/correct_style.js
104.131.67.226200 OK 308 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/correct_style.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type Non-ISO extended-ASCII text
Hash 36112d9f66ddecd97a62ebf2e5139411
8410cefba27b13ea31a6ced6a20e606a9506407f
a7c9c2af4a11c5a0fcedd7394a5bd7a643115b528b1e007d8bf61b689e166c0e
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/correct_style.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:24 GMT
etag: "182-5c39e8d27d400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/picture/ab-ico_install.png
104.131.67.226200 OK 1.5 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/picture/ab-ico_install.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 92 x 108, 8-bit colormap, non-interlaced\012- data
Hash 522dacf31def9321447bc7585a342d09
ab7a1a2b27750dbf304c930407ba417e9ad14784
34c90e58be7af8f1027ee7aed85cf236d66bdc6154715ff2e3dcf92f01bdaee4
Analyzer Verdict Alert openphish Micard
GET /skin/static/picture/ab-ico_install.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:30 GMT
etag: "5af-5c39e8d836180"
accept-ranges: bytes
content-length: 1455
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/picture/footer_pmark.png
104.131.67.226200 OK 4.9 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/picture/footer_pmark.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 9895b1b620d40ddea72bb6ddead2c5bb
7d0e3db57ad4c32e1c26db24f65ca624e82f58cc
d96dbfacededff1138c3b2a87da1a11b5e6103ea445080b3fab06e6e42b62702
Analyzer Verdict Alert openphish Micard
GET /skin/static/picture/footer_pmark.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:22 GMT
etag: "1319-5c39e8d094f80"
accept-ranges: bytes
content-length: 4889
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/picture/header_logo.png
104.131.67.226200 OK 5.9 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/picture/header_logo.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 336 x 100, 8-bit colormap, non-interlaced\012- data
Hash 1faee97a70c496c6d6849d855b3c6fdf
f0615e2338da78ecf18ae0d238515998e385d86c
84b642288c907b52bf50de07059ffc93786b8ff670848ff64d4a6f2f07cedd5e
Analyzer Verdict Alert openphish Micard
GET /skin/static/picture/header_logo.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:20 GMT
etag: "16e1-5c39e8ceacb00"
accept-ranges: bytes
content-length: 5857
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/picture/ab-ico_app.png
104.131.67.226200 OK 6.6 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/picture/ab-ico_app.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 132 x 132, 8-bit colormap, non-interlaced\012- data
Hash 9ff098e3e5847e2d98f26199ab11b806
230fa16803b51fddd245c59fad97eb23d2867d60
9de0fa69cd76a64d935a4f13855b4a8df62fc223807c9133c67b5bb763fbed8d
Analyzer Verdict Alert openphish Micard
GET /skin/static/picture/ab-ico_app.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:20 GMT
etag: "19ed-5c39e8ceacb00"
accept-ranges: bytes
content-length: 6637
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/riotcontrol.js
104.131.67.226200 OK 258 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/riotcontrol.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
Hash 12294db68abc2679c6bf1cfdae512c0d
4387e9b73cfdf0335c26ebb51e8f93d31d964b5e
22b467ffc8b574d8138c59498ca739045e7cd0274e7adeb6f9dbe9c0c00a9671
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/riotcontrol.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:28 GMT
etag: "1c6-5c39e8d64dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 258
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/openwin.js
104.131.67.226200 OK 419 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/openwin.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
Hash 4569a7734e1c19deed03a1185a52723a
da947be9061f2fbf191c51a65c0adc5c36b112d1
d7af3b1b88eac87ff1d373c098181e4b3a16175cd83465de5610fc1f8c340da1
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/openwin.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:28 GMT
etag: "639-5c39e8d64dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 419
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/picture/aca6ba611c0f19653d54f44782c03cdde70dae5a.png
104.131.67.226200 OK 9.2 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/picture/aca6ba611c0f19653d54f44782c03cdde70dae5a.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 165 x 109, 8-bit/color RGBA, non-interlaced\012- data
Hash 57b669ec34c93ad4bb51548c183b9339
300c5617693910784549a7b24ea64192134803c2
9a3235c3bc3f37085ba7158b0e2c0340ada4f0d83692b2a5dfe9d043064803b0
Analyzer Verdict Alert openphish Micard
GET /skin/static/picture/aca6ba611c0f19653d54f44782c03cdde70dae5a.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:20 GMT
etag: "2419-5c39e8ceacb00"
accept-ranges: bytes
content-length: 9241
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/jquery-ui.min.js
104.131.67.226200 OK 5.1 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/jquery-ui.min.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (12925)
Hash 162532f9090a3e7c674e6bab4ec5e6a4
e484121bdf8d70542afd7d485ac8c0a4ceaf64b3
e294d9b732e9df5d86117876cc2579b23cb34752626bcb62142ddcee2fed278d
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/jquery-ui.min.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:20 GMT
etag: "331a-5c39e8ceacb00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5099
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/common.js
104.131.67.226200 OK 6.9 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/common.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
Hash 431b9ac3728d8815c89b65085d9de98f
c41633d4ee75aa5fefc80d6f225393ff5cb2d410
929df175d5be186a738ceaf9b3cc1099ee0ed0abbcc528126e19d1f4b173c13d
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/common.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 15:22:34 GMT
etag: "68c8-5c3a1cb72c280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6883
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.micaerucl-jp.icu/skin/static/js/slick.min.js
104.131.67.226200 OK 10 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/slick.min.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (32076)
Hash 7a6b74fb1418a5e7a5518d5a9fe2bb06
aef7197c8eeedcb350e55e20d07d203cc1891ad9
30d505b8d798cdf8fc55db71deb5b5e51453a33868c362886942066d6e2ab33c
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/slick.min.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:26 GMT
etag: "a3e1-5c39e8d465880-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10170
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/riot+compiler.min.js
104.131.67.226200 OK 14 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/riot+compiler.min.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
Hash b3a953ea1cdbe4bf896d5f36c822ef09
1f69d14d8b797681476e51bd9778b7a31664947b
761606adfeda5f954b7b4acc61974036274376fc37a2ca00809f5c19adedff70
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/riot+compiler.min.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:20 GMT
etag: "87e9-5c39e8ceacb00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14249
content-type: application/javascript
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/js/modernizr-custom.js
104.131.67.226200 OK 22 kB URL HTTP/2 s.micaerucl-jp.icu/skin/static/js/modernizr-custom.js
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, Unicode text, UTF-8 text, with very long lines (4676)
Hash a012ff8648d48931f87ba09418751da4
7655bbedd10b7c5df6298ec16c477319efac4611
5dde1e93177fb87bebc54cdd0ccf4892f8b92c5441540f7b80bbd1ce2d08c286
Analyzer Verdict Alert openphish Micard
fortinet Phishing
GET /skin/static/js/modernizr-custom.js HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:51 GMT
server: Apache
last-modified: Mon, 31 May 2021 12:13:10 GMT
etag: "10107-5c39f2619e180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 22445
content-type: application/javascript
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.240.54101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1QdwnMCmbmirgS/PXDtWEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: k+qH4XbY0Fk8Pz0NZdMWVy6k7Bs=
www.googletagmanager.com/gtm.js?id=GTM-WXC53D
142.250.74.168200 OK 105 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WXC53D
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (47911)
Size 105 kB (105375 bytes)
Hash a4fbecfab5a0c0c6cfb3ddffcf4e4045
632890dcf01cdacd02bc25e4bad48a05f9cfcd38
5dba115e42ac465fc0d3a2b02fe8a6828ff73a964986c215f721e48c477a95ff
GET /gtm.js?id=GTM-WXC53D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 03:35:52 GMT
expires: Mon, 06 Feb 2023 03:35:52 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 105375
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.micaerucl-jp.icu/skin/static/images/icon_big_checkbox_off.png
104.131.67.226200 OK 231 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/images/icon_big_checkbox_off.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 52 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash a921dd45a93e896221d20d4b876bad74
595f1f2a92c21cfa0a2d2a393c8a0f116e157662
73bf37d9e722618fa756c2d39cecb68945025dc9cc53a233590c63e4ea8ed205
Analyzer Verdict Alert openphish Micard
GET /skin/static/images/icon_big_checkbox_off.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/skin/static/css/milogin_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:52 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:26 GMT
etag: "e7-5c39e8d465880"
accept-ranges: bytes
content-length: 231
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/images/icon_link.png
104.131.67.226200 OK 497 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/images/icon_link.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 987eee6f967a79949be2aec10fa6a055
e1138e245a2c01f94169b6d3de5b6573286dab48
0b02d20d02f1b1d7c7021bf61ea363b11d7f2875bab268716ae2422de0d4cbe2
Analyzer Verdict Alert openphish Micard
GET /skin/static/images/icon_link.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/skin/static/css/milogin_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:52 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:28 GMT
etag: "1f1-5c39e8d64dd00"
accept-ranges: bytes
content-length: 497
content-type: image/png
X-Firefox-Spdy: h2
s.micaerucl-jp.icu/skin/static/images/icon_btn_link.png
104.131.67.226200 OK 403 B URL HTTP/2 s.micaerucl-jp.icu/skin/static/images/icon_btn_link.png
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 606db743b137d968d8e2c16c8f0296ce
a009cea38afef1e10eb25c48f29467980ee281d7
035d92657e0acd3c46d09508e1c01e06715e25174b438d6ed0f8f530fd9d620c
Analyzer Verdict Alert openphish Micard
GET /skin/static/images/icon_btn_link.png HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/skin/static/css/milogin_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 03:35:52 GMT
server: Apache
last-modified: Mon, 31 May 2021 11:30:30 GMT
etag: "193-5c39e8d836180"
accept-ranges: bytes
content-length: 403
content-type: image/png
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash f807a5eaa3bd10aef327bf6a9ba11892
dc9f3333d46dac2aad48e64994886fe24ca13e05
3000bc2146ba707e514878649a9615f75a1ac9fba1bb5efdcaff1d4835646edb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 03:35:52 GMT
Etag: "63dd0860-1d7"
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TpHbWfR0BBUs_aF4Lmfe3g0UVq-zUbCG8OqadVboRGYpXfo3OAiuzQ==
tag.contentanalytics.jp/agent.js
143.204.55.83200 OK 96 kB URL HTTP/2 tag.contentanalytics.jp/agent.js
IP 143.204.55.83:0
File type ASCII text, with very long lines (65473)
Hash e0238380eeabe6d14d768b0f7b741ad3
783029baf9ae5e7f0a503e4c2d274fd6c88e6913
5a33c294235481f05c299cdf1f0c8ebaeb9c8ba759d2d378f6063b48d597954b
GET /agent.js HTTP/1.1
Host: tag.contentanalytics.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 23:10:01 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Feb 2023 03:35:52 GMT
etag: W/"c1722e804af308ab91e2a37f275baf77"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uGQkxXRbXKJ2A0UMpOwPyiDPdFtE2r2TKM-V91-MHyXTx1bJoDR0PA==
age: 1301
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.micaerucl-jp.icu/favicon.ico
104.131.67.226404 Not Found 265 B URL HTTP/2 s.micaerucl-jp.icu/favicon.ico
IP 104.131.67.226:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 30fc8b6bdaa52d04dfc4f78abc06e2b9
f9c4d2f8f5454c110239b04a01942d9633c5045c
756fcc08e592da7e5200bb1e358972ed4d791c2a10fc78a992c930e38d671d02
Analyzer Verdict Alert openphish Micard
GET /favicon.ico HTTP/1.1
Host: s.micaerucl-jp.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Cookie: _gcl_au=1.1.1484488958.1675654596; _ga_6FVK1049C5=GS1.1.1675654595.1.0.1675654595.0.0.0; _ga=GA1.1.126574450.1675654596; _ca2=4517813b4d4940a6a57ce66376ec47f9; _cac=31a37e65a4c34f5f8ae8ea90219ab277
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Mon, 06 Feb 2023 03:35:53 GMT
server: Apache
content-length: 265
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/799744384/?random=1675654595551&cv=11&fst=1675654595551&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&auid=1484488958.1675654596&rfmt=3&fmt=4
142.250.74.98200 OK 885 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/799744384/?random=1675654595551&cv=11&fst=1675654595551&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&auid=1484488958.1675654596&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (1927), with no line terminators
Hash aebd232f5903203df0976874ed61b5a4
9b727d4ddcdd0f5bce0bcaead3ca536ef52557e1
1598772d2e9f9b5c70a79fc8ff549d1c017cb47c066c46baeea7bccde2febc0e
GET /pagead/viewthroughconversion/799744384/?random=1675654595551&cv=11&fst=1675654595551&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&auid=1484488958.1675654596&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 03:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 885
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 03:50:53 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=606181630&t=pageview&_s=1&dl=https%3A%2F%2Fs.micaerucl-jp.icu%2F&ul=en-us&de=UTF-8&dt=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACEABBAAAACAEK~&jid=1197687916&gjid=576260483&cid=126574450.1675654596&tid=UA-84938821-2&_gid=1763641518.1675654596&_r=1&_slc=1>m=45He3210n71WXC53D&cd1=no&cd17=126574450.1675654596&z=1540045585
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=606181630&t=pageview&_s=1&dl=https%3A%2F%2Fs.micaerucl-jp.icu%2F&ul=en-us&de=UTF-8&dt=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACEABBAAAACAEK~&jid=1197687916&gjid=576260483&cid=126574450.1675654596&tid=UA-84938821-2&_gid=1763641518.1675654596&_r=1&_slc=1>m=45He3210n71WXC53D&cd1=no&cd17=126574450.1675654596&z=1540045585
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=606181630&t=pageview&_s=1&dl=https%3A%2F%2Fs.micaerucl-jp.icu%2F&ul=en-us&de=UTF-8&dt=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACEABBAAAACAEK~&jid=1197687916&gjid=576260483&cid=126574450.1675654596&tid=UA-84938821-2&_gid=1763641518.1675654596&_r=1&_slc=1>m=45He3210n71WXC53D&cd1=no&cd17=126574450.1675654596&z=1540045585 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://s.micaerucl-jp.icu
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://s.micaerucl-jp.icu
date: Mon, 06 Feb 2023 03:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-6FVK1049C5>m=45je3210&_p=606181630&cid=126574450.1675654596&ul=en-us&sr=1280x1024&uaW=1&_s=1&dl=https%3A%2F%2Fs.micaerucl-jp.icu%2F&sid=1675654595&sct=1&seg=0&dt=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&en=page_view&_fv=1&_nsi=1&_ss=1&ep.is_webview_event_sc=no&ep.page_location_origin_1_100=https%3A%2F%2Fs.micaerucl-jp.icu%2F
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-6FVK1049C5>m=45je3210&_p=606181630&cid=126574450.1675654596&ul=en-us&sr=1280x1024&uaW=1&_s=1&dl=https%3A%2F%2Fs.micaerucl-jp.icu%2F&sid=1675654595&sct=1&seg=0&dt=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&en=page_view&_fv=1&_nsi=1&_ss=1&ep.is_webview_event_sc=no&ep.page_location_origin_1_100=https%3A%2F%2Fs.micaerucl-jp.icu%2F
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-6FVK1049C5>m=45je3210&_p=606181630&cid=126574450.1675654596&ul=en-us&sr=1280x1024&uaW=1&_s=1&dl=https%3A%2F%2Fs.micaerucl-jp.icu%2F&sid=1675654595&sct=1&seg=0&dt=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&en=page_view&_fv=1&_nsi=1&_ss=1&ep.is_webview_event_sc=no&ep.page_location_origin_1_100=https%3A%2F%2Fs.micaerucl-jp.icu%2F HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s.micaerucl-jp.icu
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://s.micaerucl-jp.icu
date: Mon, 06 Feb 2023 03:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scrootca2.ocsp.secomtrust.net/
23.36.77.42200 OK 1.5 kB URL HTTP/1.1 scrootca2.ocsp.secomtrust.net/
IP 23.36.77.42:0
ASN #20940 Akamai International B.V.
Hash bfef36d7e2bbe4aa828f851662776393
17040ab0725e19fd932783db4865d193a510f7bc
b5f0274e8b8532528cbd00c5546746dd3ecebecd97b242fbd12e65c32d2fa9fb
POST / HTTP/1.1
Host: scrootca2.ocsp.secomtrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Apache
Content-Type: application/ocsp-response
Last-Modified: Wed, 21 Dec 2022 05:43:00 GMT
ETag: "bfef36d7e2bbe4aa828f851662776393"
X-Powered-By: ASP.NET
Content-Length: 1533
Cache-Control: max-age=3600
Expires: Mon, 06 Feb 2023 04:35:53 GMT
Date: Mon, 06 Feb 2023 03:35:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14799
Expires: Mon, 06 Feb 2023 07:42:32 GMT
Date: Mon, 06 Feb 2023 03:35:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba57757-8c86-4311-801e-5e416095984a.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba57757-8c86-4311-801e-5e416095984a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d8c3ebd17a435401c7f9fe3b8f842be
f2106be148fea23bf961fcdb69ea4cb127aa5f3e
ee708e68414539c75ddc077e0be7b75a86fd4fc9b6c1ddd1da86d0b9aca35558
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba57757-8c86-4311-801e-5e416095984a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4442
x-amzn-requestid: 1bb3d1b3-ff58-4b0d-9a2b-c25797530c5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQG1JoAMFRtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1bb478453ececa9613e7e4a2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9U-7wtL1xaLoE87hXcnrcTp-LCseI5ne10812N_9F_arqyi703w7Ng==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:10 GMT
age: 20743
etag: "f2106be148fea23bf961fcdb69ea4cb127aa5f3e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a24cf7b2db6d65c3fe5daf78b3309ced
a3653a9a7baea412808dd91572ff21e1a505c26f
f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 20750
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tNp3KhwtaSjchn-VAo1VellQ63I1W9uIbkQ_84Y7z_4z--vGfz8PGA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:53:56 GMT
age: 20517
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27b516a4bb5fa5512a31aa8de5f9706e
03aeba4fafc64130967d3645081426f81b5f7dd1
7e5d809bf4e1b6f7f25bf604c1e5efcaf2a442ebfb53397d65820ebb1eaf754a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8845
x-amzn-requestid: 4cae7b8e-f650-4d61-9f3d-8cce7410ba1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pOKFamIAMF4gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0225a-51cd8f5b2d810ad94f52a5e3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:40:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WhhBAtYjlLj3PcIM5a-OwGIDFLeHYNF5Tg99rpTFMa326gTFJ56zBA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:21 GMT
age: 20672
etag: "03aeba4fafc64130967d3645081426f81b5f7dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb0dab387816c4b691190ec83c2f0f06
9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358
6655307747227d7905f0eca1aaefda6147e4ae443fb9fb20cdb6a336aaab5b67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8528
x-amzn-requestid: b799da5b-d52a-4d83-bdd4-9582d39d6c5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwCmAFYgIAMFjvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb159-77235f642e8a0bdb07414dcb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:01:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EN4Mi_2U_eISge5bd6JQgkg6rGJcB2cQAyhKHOZO-g_Arj6kofRo6g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 07:26:08 GMT
age: 72585
etag: "9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash bf50a733c33c474359696cc1ea5842a3
a6607b2490a611bd36644dc730b168446c86fc42
ad3990767c134105c9944e1117e4e11eb499a624826ad5710a3ed700f5f19d4b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 03:35:53 GMT
Etag: "63dd2b74-1d7"
Server: ECS (dcb/7F84)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P0KEEvJKc2cybb8Put-ZZzEdKSxgOkpWpiTqhZhHb0WpAQ29GyFUGA==
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e717762-1012-4c44-9171-7c40ae8127ca.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e717762-1012-4c44-9171-7c40ae8127ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c145b7d4f95cca98f9b942a291c9d60
967e1da2df2ce864b1c67e28099c8b161810e240
01f3a9d99b735eb512dd8a251b926eccb05a960e03056fe0a50d4bad7fc4b5b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e717762-1012-4c44-9171-7c40ae8127ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6116
x-amzn-requestid: d6d032ad-c788-4b63-aab5-fdb9f110f86a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4okcGmOoAMFp-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0214f-172d50bc478a1fac5d4442cd;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2Hl7AlAxp405wt3wk8fRiEr3xMyslJjpKXgSlyU8Hvv23HogWQFvUg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:09 GMT
age: 20684
etag: "967e1da2df2ce864b1c67e28099c8b161810e240"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ssocsp.cybertrust.ne.jp/OcspServer
153.127.216.172200 OK 1.5 kB URL HTTP/1.1 ssocsp.cybertrust.ne.jp/OcspServer
IP 153.127.216.172:0
ASN #7684 SAKURA Internet Inc.
Hash 7b642a7fc44676fbfd8a0f0e7657f826
424bfa0fcb22fce0222a5066e0fc15ae3f9acf2c
7e80f38bf5be4e7dcaa2aec8f7ba2d0f06fb8736bfeab7a5ec3c348e2b7892db
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/799744384/?random=1675654595551&cv=11&fst=1675652400000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&fmt=3&is_vtc=1&random=4147580464&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/799744384/?random=1675654595551&cv=11&fst=1675652400000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&fmt=3&is_vtc=1&random=4147580464&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/799744384/?random=1675654595551&cv=11&fst=1675652400000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&fmt=3&is_vtc=1&random=4147580464&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 03:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ssocsp.cybertrust.ne.jp/OcspServer
153.127.216.172200 OK 1.5 kB URL HTTP/1.1 ssocsp.cybertrust.ne.jp/OcspServer
IP 153.127.216.172:0
ASN #7684 SAKURA Internet Inc.
Hash d737669806b13200dbf8634b6c20acaf
354dd2cf90002904cbea1ac6a0961c8e0f494ce6
5d8b3b105400741b0c492084d0714c1c2ce74e9acdcee12394cb111f42552492
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
www.google.no/pagead/1p-user-list/799744384/?random=1675654595551&cv=11&fst=1675652400000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&fmt=3&is_vtc=1&random=4147580464&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/799744384/?random=1675654595551&cv=11&fst=1675652400000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&fmt=3&is_vtc=1&random=4147580464&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/799744384/?random=1675654595551&cv=11&fst=1675652400000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&tiba=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3&fmt=3&is_vtc=1&random=4147580464&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 03:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
infra.contentanalytics.jp/api/xpath/?project_id=8&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&domain=micaerucl-jp.icu&page_width=1268&title=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3
52.196.103.122400 Bad Request 37 B URL HTTP/2 infra.contentanalytics.jp/api/xpath/?project_id=8&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&domain=micaerucl-jp.icu&page_width=1268&title=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3
IP 52.196.103.122:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1308776b4b8c3aab6f6a8d19fa1a65dc
ecdc5736d1b6cbb4e20cb758da6ecf30d13e51b2
51444e686d8758fa9e58b524c19a7f859db5de8c49950f6c6bb759ef2518784c
GET /api/xpath/?project_id=8&url=https%3A%2F%2Fs.micaerucl-jp.icu%2F&domain=micaerucl-jp.icu&page_width=1268&title=%E3%83%9E%E3%82%A4%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB%E3%83%AD%E3%82%B0%E3%82%A4%E3%83%B3 HTTP/1.1
Host: infra.contentanalytics.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s.micaerucl-jp.icu
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Mon, 06 Feb 2023 03:35:53 GMT
content-type: application/json
content-length: 37
server: nginx
allow: GET, HEAD
x-frame-options: DENY
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://s.micaerucl-jp.icu
x-content-type-options: nosniff
referrer-policy: same-origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssocsp.cybertrust.ne.jp/OcspServer
153.127.216.172200 OK 1.5 kB URL HTTP/1.1 ssocsp.cybertrust.ne.jp/OcspServer
IP 153.127.216.172:0
ASN #7684 SAKURA Internet Inc.
Hash 7b642a7fc44676fbfd8a0f0e7657f826
424bfa0fcb22fce0222a5066e0fc15ae3f9acf2c
7e80f38bf5be4e7dcaa2aec8f7ba2d0f06fb8736bfeab7a5ec3c348e2b7892db
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
ssocsp.cybertrust.ne.jp/OcspServer
153.127.216.172200 OK 1.5 kB URL HTTP/1.1 ssocsp.cybertrust.ne.jp/OcspServer
IP 153.127.216.172:0
ASN #7684 SAKURA Internet Inc.
Hash d737669806b13200dbf8634b6c20acaf
354dd2cf90002904cbea1ac6a0961c8e0f494ce6
5d8b3b105400741b0c492084d0714c1c2ce74e9acdcee12394cb111f42552492
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
s.yjtag.jp/tag.js
143.204.55.117200 OK 13 kB IP 143.204.55.117:0
File type ASCII text, with very long lines (37537), with no line terminators
Hash 507d8733ad604684e1d05d03119c3e31
728ef6eea9e9d5754f9c3e7866f30eeb43cc712e
da665621a05d4a899efa0dca2cb137053c6e7e037a5d45b5ee7903e5bb8f314e
GET /tag.js HTTP/1.1
Host: s.yjtag.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Nov 2020 01:50:12 GMT
x-amz-version-id: pwVJ8CZ5CzxJk0oranYXZm0CJzsUHSFZ
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: gzip
date: Mon, 06 Feb 2023 00:55:31 GMT
cache-control: public, max-age=14400
etag: W/"830cee037cbd2937feb368104dc9a35f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4PfhEvfGwuagbo2r-L6zJBjCClb_z6ZdK6yQq8mNhCHXkNCvuRKN9g==
age: 9636
X-Firefox-Spdy: h2
evocsp.cybertrust.ne.jp/OcspServer
124.24.55.35200 OK 1.5 kB URL HTTP/1.1 evocsp.cybertrust.ne.jp/OcspServer
IP 124.24.55.35:0
Hash 7b65a24162ec8de07b17015f219f0c77
36814babd966699735809842fc486bd84f280ea6
49e182d37410ec6051d38da3a9a6b2ceacedb7c2d49b3c00f2d25c3724e57d4b
POST /OcspServer HTTP/1.1
Host: evocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1483
Connection: keep-alive
Keep-Alive: timeout=2
s.yimg.jp/images/listing/tool/cv/conversion.js
182.22.24.252200 OK 2.1 kB URL HTTP/2 s.yimg.jp/images/listing/tool/cv/conversion.js
IP 182.22.24.252:0
ASN #23816 Yahoo Japan Corporation
File type ASCII text, with very long lines (5916), with no line terminators
Hash 7f0c66912062f79b500f784ef684772c
593e742f13af825a35b6f53a31ff9c7f657e1577
a2fa9e94110a358da7f9597072da76a107b72ef8700a7626a21cbbb216d51bdf
GET /images/listing/tool/cv/conversion.js HTTP/1.1
Host: s.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 03:26:30 GMT
vary: Accept-Encoding
last-modified: Tue, 25 Jan 2022 16:25:04 GMT
cache-control: public, max-age=600
content-encoding: gzip
server: ATS
accept-ch: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch
permissions-policy: ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform-version=*, ch-ua-arch=*
age: 564
content-length: 2140
ats-carp-promotion: 1
x-z-chihaya: r=1
X-Firefox-Spdy: h2
ssocsp.cybertrust.ne.jp/OcspServer
153.127.216.172200 OK 1.5 kB URL HTTP/1.1 ssocsp.cybertrust.ne.jp/OcspServer
IP 153.127.216.172:0
ASN #7684 SAKURA Internet Inc.
Hash b957455abb1db5fe9d689a25e9008f05
9bd7843db3add553dd7c68916e92166aac810e98
b6930f568f026dfd7492f9b23b68c8665c0fffd2c799ab14ffb0dd92a192cf0c
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:55 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
ssocsp.cybertrust.ne.jp/OcspServer
153.127.216.172200 OK 1.5 kB URL HTTP/1.1 ssocsp.cybertrust.ne.jp/OcspServer
IP 153.127.216.172:0
ASN #7684 SAKURA Internet Inc.
Hash b957455abb1db5fe9d689a25e9008f05
9bd7843db3add553dd7c68916e92166aac810e98
b6930f568f026dfd7492f9b23b68c8665c0fffd2c799ab14ffb0dd92a192cf0c
POST /OcspServer HTTP/1.1
Host: ssocsp.cybertrust.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:35:55 GMT
Content-Type: application/ocsp-response
Content-Length: 1477
Connection: keep-alive
Keep-Alive: timeout=2
d.adlpo.com/563/1409/js/smartadlpo_v3.js
23.14.2.54200 OK 14 kB URL HTTP/1.1 d.adlpo.com/563/1409/js/smartadlpo_v3.js
IP 23.14.2.54:0
File type ASCII text, with very long lines (1909)
Hash 48ca568a57f0053c802170b62e326d9c
11b753b26b9560c08dcc712fa494a12315969c92
5c9159077162153803c2f0f3807cb4569392c433057336508cf643c63684c54f
GET /563/1409/js/smartadlpo_v3.js HTTP/1.1
Host: d.adlpo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "321eb24f8c3e138665eb19f1f61f6ece:1675324703.139184"
Last-Modified: Thu, 02 Feb 2023 07:58:02 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 06 Feb 2023 03:35:55 GMT
Content-Length: 13924
Connection: keep-alive
b97.yahoo.co.jp/pagead/conversion_async.js
182.22.30.220403 Forbidden 14 kB URL HTTP/1.1 b97.yahoo.co.jp/pagead/conversion_async.js
IP 182.22.30.220:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /pagead/conversion_async.js HTTP/1.1
Host: b97.yahoo.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 06 Feb 2023 03:35:55 GMT
Connection: close
Server: ATS
X-Z-Chihaya: r=1
X-Frame-Options: SAMEORIGIN
Content-Length: 14275
Content-Type: text/html
www2.micard.co.jp/content/dam/micard/json/www/data.json?callback=callback&_=1675654595331
23.36.79.24200 OK 0 B URL HTTP/2 www2.micard.co.jp/content/dam/micard/json/www/data.json?callback=callback&_=1675654595331
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
GET /content/dam/micard/json/www/data.json?callback=callback&_=1675654595331 HTTP/1.1
Host: www2.micard.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s.micaerucl-jp.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 6312
cache-control: max-age=3600, public
content-disposition: attachment
content-encoding: gzip
content-security-policy: frame-ancestors www.micard.co.jp www1.micard.co.jp www2.micard.co.jp preview.micard.co.jp stage.micard.co.jp ekff00st.adgroup ekff00it.adgroup
expires: Mon, 06 Feb 2023 04:35:55 GMT
server: Apache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-amz-cf-pop: MXP64-P1
x-amz-cf-id: JqAOmB6uDwZ2B2puJJTM8RuQyVJg_DVXMdq8GgTKprdP3Rmo2whHBA==
date: Mon, 06 Feb 2023 03:35:55 GMT
vary: Accept-Encoding
set-cookie: _abck=A8F468F29ADB6332BF8D5D244C724631~-1~YAAQFE8kF8jaP9KFAQAAqmbLJAlE1zpNk7TOShDQqzyYqCtBW/LoWYrZ/e2XtQ/VTV8uJ55YOA1es5hmmu6o/Ih0gfmKfPHTMglAxHtgQWHEBtdPsv0zGuFuMJltUIAWIRWiXuAQUuTMwrTqq6sdsKDUmujGTc6mBowxhuKyLQpzy27BPTI9+JAGMAbOG4TqG/KBtAewc9YWkD5IozNezrDfqi67f+xAXk+ruQBF6uplKKfzke6x+N/gmilatj24N5xpthr/C66uSiKiBKi/fhP7gVpc2NwA41wH43MjeXw5ubtbgRovC3ZyauVvDSOSo8WYYMUJHsjkWAEfy2Bgh4h2I0rGBOqoD/cKXSOXJIpXZ8Rqt5lcO6Hoi5zA9E4=~-1~-1~1675658086; Domain=.micard.co.jp; Path=/; Expires=Tue, 06 Feb 2024 03:35:55 GMT; Max-Age=31536000; Secure
ak_bmsc=644C09483DFD671148F92FE9F7BFA1A4~000000000000000000000000000000~YAAQFE8kF8naP9KFAQAAqmbLJBK0ZJvpdLzaFKtu5OG2LvCx8wJt/DYYb2C2Q/8Hz+6Dc0fvEhcxlbWULTe7GQ1XSVfNdv3IV+nLphwnINmC3fW58QNLwTpHZmmfyfLoMip8O5LxrjZyVOh7ePCqi065sd6lm5V2l5VQA10hTa4OlTYHyBE7WGA+TcGZuIqOECYoDgrpAKgBoxe88cJgHgG37dSOxa6WCC593bt4cnsmldBqr/dz5NEPqsDmSWwZNJK7cubJllVMfBgKSwOfuHveQXPZaHrdfHFMeW8zv5A75KISQKPrT0dcpoQPCRzQ/Q2IQJ2VP56LKRGhjAz7S3p54ev1msnFzY3FRnFDQQrOnbAfo2Gv5dlFMpJcjUQjcNECDPjV8dDl4F4=; Domain=.micard.co.jp; Path=/; Expires=Mon, 06 Feb 2023 05:35:54 GMT; Max-Age=7199; HttpOnly
bm_sz=11FAA6E4B70AA09C9695697332484E45~YAAQFE8kF8raP9KFAQAAqmbLJBLhrQEN7T0f+/LeJ3JnvNJL+UENjsxLktSiCVERvKEaD4pErczdzJoR1TmvOykeAS1YPQAnl/eWs1psEG1LYSdfLcF3llmwTCxWV+87Bbv0ho1f6XO5A//A3svKTb/lYkffykg6sjHteL0FNCyX715vn10vx4vu5trLBlphJ4F2D/iCYoUDdw3T6jZDwMfZ1MU67eWaU5GOao2rG4Jh/yBubQIaiyAZAMo8cWqRNrsEZ+yVA7g+YhA9oily3XVvOop0dYa4hOPDl+Eu8R3ZcNKCpg==~3687985~3747892; Domain=.micard.co.jp; Path=/; Expires=Mon, 06 Feb 2023 07:35:54 GMT; Max-Age=14399
X-Firefox-Spdy: h2