Overview

URL web-ib-mizuhobanky-co-jp.top/client/index.php
IP155.94.138.166
ASNASN-QUADRANET-GLOBAL
Location United States
Report completed2022-10-01 21:00:40 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/client/index.php Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/ Mizuho Bank
PhishTank
Scan Date Severity Indicator Comment
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/client/index.php Other
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/client/index.php Phishing
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/js/index.js Phishing
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/js/jquery-3.5.1.js Phishing
2022-10-01 2 web-ib-mizuhobanky-co-jp.top/js/vue.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (14)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox-settings-attachments.cdn.mozilla.net (1) 11509 2019-11-30 09:32:57 UTC 2022-10-01 11:31:41 UTC 65.9.86.129
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-01 04:59:16 UTC 23.36.76.226
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-01 04:59:16 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-01 05:00:18 UTC 34.117.237.239
mnemonic passive DNS firefox.settings.services.mozilla.com (15) 867 2020-05-27 20:08:30 UTC 2022-10-01 15:00:41 UTC 65.9.86.116
mnemonic passive DNS web-ib-mizuhobanky-co-jp.top (15) 0 2022-10-01 09:19:14 UTC 2022-10-01 18:34:36 UTC 155.94.138.166 Unknown ranking
mnemonic passive DNS shavar.services.mozilla.com (1) 3602 2017-01-30 05:00:58 UTC 2022-10-01 05:17:16 UTC 35.86.39.87
mnemonic passive DNS getpocket.cdn.mozilla.net (1) 1369 2017-08-31 07:41:15 UTC 2022-10-01 07:12:21 UTC 34.120.5.221
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-01 14:59:59 UTC 34.120.237.76
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-10-01 14:14:43 UTC 93.184.220.29
mnemonic passive DNS content-signature-2.cdn.mozilla.net (3) 1152 2020-11-03 12:26:46 UTC 2022-10-01 05:17:12 UTC 34.160.144.191
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-01 05:28:34 UTC 54.191.210.155
mnemonic passive DNS firefox.settings.services.mozilla.com (15) 867 2020-05-27 20:08:30 UTC 2022-10-01 15:00:41 UTC 65.9.86.127
mnemonic passive DNS detectportal.firefox.com (2) 1601 2017-01-30 00:03:31 UTC 2022-10-01 05:02:30 UTC 34.107.221.82


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 155.94.138.166

Date UQ / IDS / BL URL IP
2022-10-02 20:37:36 +0000
0 - 0 - 20 web-ib-mizuhobankd-co-jp.cyou/client/index.php 155.94.138.166
2022-10-01 21:00:40 +0000
0 - 0 - 20 web-ib-mizuhobanky-co-jp.top/client/index.php 155.94.138.166
2022-10-01 20:47:38 +0000
0 - 0 - 22 web-ib-mizuhobanky-co-jp.top/ 155.94.138.166
2022-09-28 03:34:41 +0000
0 - 0 - 15 web-ib-mizuhobankk-co-jp.cyou/client/index_sp.php 155.94.138.166
2022-09-25 21:58:39 +0000
0 - 0 - 3 web-ib-mizuhobanko-co-jp.top/ 155.94.138.166

Last 5 reports on ASN: ASN-QUADRANET-GLOBAL

Date UQ / IDS / BL URL IP
2022-12-10 01:06:16 +0000
0 - 0 - 1 www.orlce-co-jp.oriec.nafaad.top/ai/kal.php?i (...) 155.94.128.39
2022-12-10 00:58:36 +0000
0 - 0 - 3 www.orlco-co-jp.oreio.zlawml.top/ai/kal.php 155.94.128.39
2022-12-10 00:58:14 +0000
0 - 0 - 25 www.orlco-co-jp.oreio.wsrtjx.top/ai/kal.php 155.94.128.39
2022-12-10 00:57:57 +0000
0 - 0 - 4 www.orlco-co-jp.oreio.wohpak.top/ai/kal.php 155.94.128.39
2022-12-10 00:57:32 +0000
0 - 0 - 3 www.orlco-co-jp.oreio.xcfeqj.top/ai/kal.php 155.94.128.39

Last 2 reports on domain: web-ib-mizuhobanky-co-jp.top

Date UQ / IDS / BL URL IP
2022-10-01 21:00:40 +0000
0 - 0 - 20 web-ib-mizuhobanky-co-jp.top/client/index.php 155.94.138.166
2022-10-01 20:47:38 +0000
0 - 0 - 22 web-ib-mizuhobanky-co-jp.top/ 155.94.138.166

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-09 07:20:33 +0000
0 - 0 - 22 mizuhobonk.jp/ 157.7.174.95
2022-12-05 10:36:32 +0000
0 - 0 - 19 mizuhobank.erce13.com/ 107.150.5.63
2022-12-05 10:36:13 +0000
0 - 0 - 19 mizuhobonk.jp/ 157.7.174.95
2022-12-05 07:49:48 +0000
0 - 0 - 18 mizuhobank.erce13.com/ 107.150.5.63
2022-12-05 07:49:31 +0000
0 - 0 - 18 mizuhobonk.jp/ 157.7.174.95


JavaScript

Executed Scripts (3)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (55)


Request Response
                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Sat, 01 Oct 2022 00:55:58 GMT
Age: 72265
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Sat, 01 Oct 2022 23:03:11 GMT
Date: Sat, 01 Oct 2022 21:00:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "967B310BB60ACDBB06064A3CF9C7615745AAECAB58818CF5FF156AFD23482A88"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9259
Expires: Sat, 01 Oct 2022 23:34:43 GMT
Date: Sat, 01 Oct 2022 21:00:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E4CAB1657F3E7A3C2D219A7802955629F414AC772EA4576C30AA7A71533A10C7"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14301
Expires: Sun, 02 Oct 2022 00:58:45 GMT
Date: Sat, 01 Oct 2022 21:00:24 GMT
Connection: keep-alive

                                        
                                            GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 
Host: getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.5.221
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: paLLuaw5VZZ-WC6dBpakwZYK2kfp1C5PqQQY7UkFvwIAkHmkR-7_7w==
content-encoding: gzip
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 20:52:47 GMT
content-length: 41905
age: 457
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   41905
Md5:    6863074e137a20d24dc6ca9dfd29ff6c
Sha1:   48d14e98e3301cbe8e99fd8ae9e3355d5b5fb197
Sha256: 371af60c5ffeaa79ccecb36435fa6a967e3ff2144b1e3b935b3d372be6eb38a8
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: YtbOwM2MLz/DZQZh+VqS1knGYLfiwZ79nTtLSd2wsMKumXCRcbRwg7mGJSqxagYlI/Rpr0B/Vr0=
x-amz-request-id: 0WB94347KXW19CRH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 20:14:38 GMT
age: 2746
last-modified: Wed, 11 May 2022 19:51:39 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 01 Oct 2022 21:00:24 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.116
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 20:16:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83bc0649a33d85c1cf516bf48779a390.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: hBv7MexQWMC2vPvi1eJZPa3qTYzSOl2Uukxa7m3ff7g312DkF5cbLw==
Age: 2643


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /client/index.php HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 01 Oct 2022 21:00:24 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb; path=/
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4256


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (420), with CRLF line terminators
Size:   4256
Md5:    a61a9bcc02b6420da0359024bac7a3ae
Sha1:   350658bb2652fdb8045ab769aa86565ba2108238
Sha256: 8a6d380d758fd76ee0e04632255a8365d6de85b74f67829f0f6b63e35696d2ca

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
    - phishtank: Other
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6422
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 21:00:24 GMT
Last-Modified: Sat, 01 Oct 2022 19:13:22 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1 
Host: shavar.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         35.86.39.87
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Sat, 01 Oct 2022 21:00:24 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    29fc57841962e407cb50c1be60284bf7
Sha1:   ce968a77e2996da5eee8925182318f171ccdce47
Sha256: ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
                                        
                                            GET /css/reset.css HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:18 GMT
ETag: "3e3-5e7b1acce9280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 454


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   454
Md5:    10385a7f56a9d4f9ca0d646e59a398ee
Sha1:   3c99d67a93bb444e06df124d6aeb9cb04811d4dc
Sha256: 1cff2fd0624ec07a24d58e1b6e95ae3813d4440e776d09d5d56411d93bb0611c

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.116
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 01 Oct 2022 20:29:33 GMT
Expires: Sat, 01 Oct 2022 20:36:35 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9385401cebb473e4ed1da6c81b927c52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: GnFZ79UTRL3c3mKs4YD1OzzdCZ6tDnV1EY-dh-8qzyVthwLbU-woMg==
Age: 1852


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /css/com.css HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:31:22 GMT
ETag: "8f03-5e7b1beed3e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7036


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   7036
Md5:    f2bb31276e15c51f94b3426599ac626a
Sha1:   43d4dc4b310c6fe85e2dbd0e9ff7dcd93d668582
Sha256: a71676bf1d7b62047927b607e32219d535c6e513ebdc0aba814c6112a2a3d7ab

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /css/n00000.css HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:14 GMT
ETag: "44f-5e7b1ac918980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 369


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   369
Md5:    1575dba529726c31d3f3f1f7af4b2a1c
Sha1:   d1ad7ca54db431613cd93e35a784e43f4fe6902f
Sha256: 15832d5bfda0da6ecd95d70171ce793dd3947b6a139e56dec7340b23048a1cf2

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /js/index.js HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 06 Sep 2022 15:26:57 GMT
ETag: "378-5e803d3a67240-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 511


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   511
Md5:    a369b86316249b530a4825cf935ebfec
Sha1:   f8c6acdf8acabceffa8510736fda2325567f6d09
Sha256: d3fda543207e81e56d1afd461ecb1e4caab5dedc010dc10e122aff8fc6bea117

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2785
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 21:00:25 GMT
Last-Modified: Sat, 01 Oct 2022 20:14:00 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /img/mizuho_direct.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:36 GMT
ETag: "922-5e7b1ade13b00"
Accept-Ranges: bytes
Content-Length: 2338


--- Additional Info ---
Magic:  GIF image data, version 89a, 450 x 63\012- data
Size:   2338
Md5:    8689d3e153971df83ff149615fda56b4
Sha1:   5b6790a0912decb4a0ef9c5262f1d7c2a7b95dd5
Sha256: b9104494da55bb7d65ef8ea32f045e70ff30e9557fb2859a298f488782102544

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /img/mdirect_helpdesk.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:34 GMT
ETag: "666-5e7b1adc2b680"
Accept-Ranges: bytes
Content-Length: 1638


--- Additional Info ---
Magic:  GIF image data, version 89a, 177 x 16\012- data
Size:   1638
Md5:    f14673867c85669ec9d0c57f342e6199
Sha1:   9e7c8b3aa2ef553679e33d1e1c7e3851513a06d4
Sha256: a492961678836c31f4a5270183dbf5e9412707f62f5d1e53e2a7c6fbdedd0239

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /js/jquery-3.5.1.js HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 23 Jun 2020 07:11:14 GMT
ETag: "4638e-5a8bb10936880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   84781
Md5:    090addf86a7e57acbcb187cc8dc798fe
Sha1:   d9747a73ff709449e7f37236f2bc9086b0eda7a1
Sha256: 9090e26389795bab18a1e8b6700920bdbfa243f9165053983a48d56f22123b83

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
    - fortinet: Phishing
                                        
                                            GET /img/loginBanner.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:38 GMT
ETag: "1cac-5e7b1adffbf80"
Accept-Ranges: bytes
Content-Length: 7340


--- Additional Info ---
Magic:  GIF image data, version 89a, 530 x 60\012- data
Size:   7340
Md5:    d8e452fded4bb5ee4bde6ea4de067723
Sha1:   68b253616a9b4bb60e096fa8bd5f5be6183030a3
Sha256: a55049800b582e17e6b9dee507cb0ea207dde36bb9844dae32ca0ffafb33bc1c

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /img/md_helpdesk_tel.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:32 GMT
ETag: "36d7-5e7b1ada43200"
Accept-Ranges: bytes
Content-Length: 14039


--- Additional Info ---
Magic:  GIF image data, version 89a, 191 x 18\012- data
Size:   14039
Md5:    e2ba32eea7d661504e3957e674051d4f
Sha1:   6e784ccf5fa4179de4bb73071fde60fc7f79b433
Sha256: 73d95695ee6358f34c55a5e0d2c79bcb97b00d2cdc7d48d721b7d95a03a84da7

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Sat, 01 Oct 2022 00:55:58 GMT
Age: 72267
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1TmssKi77+/6QlQ/KXNOjA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.191.210.155
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dC8pIVV71UKLntE2XxDQf7WrOg8=

                                        
                                            GET /img/arrow02.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/css/com.css
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:26 GMT
ETag: "93-5e7b1ad48a480"
Accept-Ranges: bytes
Content-Length: 147


--- Additional Info ---
Magic:  GIF image data, version 89a, 13 x 13\012- data
Size:   147
Md5:    de05e0896413a31c01620937723a09ff
Sha1:   c34c80e8bda2207c91419c468a4ee3ea69bd0543
Sha256: 6dfd3b6fa480f22589119e3081cf8ee327419d0d7521f2532182f5ade63e663e

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /img/brandingband960.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/css/com.css
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 02 Sep 2022 13:26:28 GMT
ETag: "20db-5e7b1ad672900"
Accept-Ranges: bytes
Content-Length: 8411


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 33\012- data
Size:   8411
Md5:    297878d3d398d5e2355ee726ec868ab3
Sha1:   985f20e7634f15727f5b00e9e9d81103f9b17d1d
Sha256: 682a00b07b60a538cda48b7063e2034668497ac8b85c511cff50055394815803

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /img/info.gif HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Content-Length: 274
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   274
Md5:    04feea536c53372db691dc46db44e01f
Sha1:   1e0e3f4fe01cf5575384f8beaab43144b07668ad
Sha256: a88de545feb7f42c799632b17e57d70f67367fb99acf8fdf5c40e7926c591db4

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221664650636180%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sat, 01 Oct 2022 18:57:16 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 01 Oct 2022 20:02:05 GMT
Expires: Sat, 01 Oct 2022 20:02:05 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: atJ-j5art9-AldQhfsrWmZji2_n1Hum4ovlBDSXoFH7a16X3jtyDiA==
Age: 3501


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (22383), with no line terminators
Size:   4702
Md5:    33e4215fdc4b93bfde6fefb3ebfdc079
Sha1:   90f2993f5d7522eb0a8fcfede8d97ba2ae444d04
Sha256: 622dcfdf59b7b13ed119f0b8e316f1675eb7a147f3f02be5f408bd11b636388c
                                        
                                            GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1664498243168&_since=%221653914271178%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 30 Sep 2022 00:37:23 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sat, 01 Oct 2022 20:47:28 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: cQ4vHWc1RlJKP0JyzMFiEuhc00XcydYw3mOXsylqWEA1JUJcVfglWQ==
Age: 837


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   12628
Md5:    df1dc25bfcebc3293e9563e46f60f657
Sha1:   c7185ca340769f86354e364bf4e9086d48a70449
Sha256: 2b62745f4aeae88ef4397f79711fa60fb55149ae36dc331783d485354dafd55e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: Y+2FdugWtpGQ0RSdwk9ejCu30lAm3VxkGOiTL0nlbffGvXpaL/uOXVpQyzq19hFXIU4z2f5yXsw=
x-amz-request-id: 9J2F9562P754AEKN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 20:49:25 GMT
age: 661
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 20:16:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: WOwf_i-fN8aWvOY1VkiUTZAJ2NktMyvG1LuhMFU8ZRg9HRWmV7dPPQ==
Age: 2645


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 01 Oct 2022 21:00:26 GMT
Server: Apache
Content-Length: 274
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   274
Md5:    04feea536c53372db691dc46db44e01f
Sha1:   1e0e3f4fe01cf5575384f8beaab43144b07668ad
Sha256: a88de545feb7f42c799632b17e57d70f67367fb99acf8fdf5c40e7926c591db4

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
                                        
                                            GET /staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin HTTP/1.1 
Host: firefox-settings-attachments.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.129
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Content-Length: 795699
Connection: keep-alive
Last-Modified: Mon, 27 Jun 2022 12:39:11 GMT
x-amz-version-id: 9np1boOrxtHVWzMczpbX1a.N_ewQWHDF
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 01 Oct 2022 04:16:46 GMT
ETag: "9b95765b0e26af76116a95a966d61354"
X-Cache: Hit from cloudfront
Via: 1.1 d143bdfb7cce4cf7ec0bcf9ec13e5914.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: l41gMMF-kwdnWLCYZhXyzrlyP7IzAhuomScrLOy6z0YpQPYdh5QPvg==
Age: 60314


--- Additional Info ---
Magic:  data
Size:   795699
Md5:    9b95765b0e26af76116a95a966d61354
Sha1:   3f7c1b40fc999b83f3696f455402e49ab484b027
Sha256: 34f969c8e082310785ec4262e2d5b58c919d4de856ffc64b3467507f83ac9571
                                        
                                            GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1664582468554&_since=%221654732864402%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sat, 01 Oct 2022 00:01:08 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Cache-Control: max-age=3600
Date: Sat, 01 Oct 2022 20:32:14 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: Fe3f-yxlP8bmYV7-p3XWsZoUVrgi8wqeuvikSpELAzBUVkBigx1YPg==
Age: 1692


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (58917), with no line terminators
Size:   12184
Md5:    d3e4bc876b60d891f51ef36b82ad8fc3
Sha1:   98a2be0af244511be33642e94dc494ed55e40b02
Sha256: 9236a89d70ec9e13a3eb3fc561684a105f6694d63e1edeb07baaed03e3cf2fd8
                                        
                                            GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1664576981597&_since=%221654636467710%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 30 Sep 2022 22:29:41 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Cache-Control: max-age=3600
Date: Sat, 01 Oct 2022 20:46:20 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: 85Sc3VkWCNJq1ryO_EoDHBjDPsgQGjvWrhvPkAryUgsmjln9vH88ZQ==
Age: 846


--- Additional Info ---
Magic:  ASCII text, with very long lines (31812), with no line terminators
Size:   4522
Md5:    0a8cfe2efc6b0b24150c549ab477643e
Sha1:   ea11b76b989c1cca396d75cb40774bbd014ef689
Sha256: 86f672ecf608509aa0e411d8b80f9e4bb5c1e877040957d56a53ae69897d5ecd
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: xdfz3gn5ZJcewHLm0ukUoj16FOsEfejjFo37knaSuMek+HS4zlDtlppjE8jEoJOHyLcH0DbGLC8=
x-amz-request-id: 4BXN5V3ZERDE1VVP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 20:33:59 GMT
age: 1587
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1662044085942&_since=%221622732735407%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 01 Sep 2022 14:54:45 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Thu, 29 Sep 2022 22:27:20 GMT
Cache-Control: max-age=2592000
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: p0Hkc5sqSqEXUNCJ1t8_YJqRUlMTADL5JrEwMhftcTgaz7PldEgFGw==
Age: 176194


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (20424), with no line terminators
Size:   5859
Md5:    d5f358e1c4c24c5498506f822573411d
Sha1:   82a8bac76194d3124d20b855b59c4c3c8110f138
Sha256: 8c03f72cedd357bcf30f77be6493cbb9fea34b7faa0ab53922ba40ae6385b77f
                                        
                                            GET /v1/buckets/main/collections/password-rules/changeset?_expected=1659924409785&_since=%221652712410939%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:06:49 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cache-Control: max-age=2592000
Date: Tue, 27 Sep 2022 03:08:54 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: EvBWQmDxjdAXqed_uxOGXDsVA9cb6CCGnDMqDtRV1V5WvaMpLrnp8g==
Age: 409892


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1394), with no line terminators
Size:   825
Md5:    323f63cea1e65bcba94765be51a8cad4
Sha1:   5ae1b62bce94b3c9de5cdf0bb3d61873e0667300
Sha256: de2dfaadd3174377d4e4edb027b2abe3909fdfeb1537b4cbc1a56b700ce0be76
                                        
                                            GET /v1/buckets/main/collections/websites-with-shared-credential-backends/changeset?_expected=1659924446436&_since=%221650898092205%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:07:26 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 28 Sep 2022 05:56:18 GMT
Cache-Control: max-age=2592000
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: ir4Gv79rE5cz8QNzffTRgc-zgYEUHsV_Q2CPO4HA59EAK_YdARBh4A==
Age: 313953


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (8682), with no line terminators
Size:   3275
Md5:    a3d031972a53ce7c0335f6110586ec9c
Sha1:   4c32da8a240101524c01ec333cc53a07f1d2ebff
Sha256: e93d587a4c0e1168b7c65a904f99bcdf262a8f0d70dcc716a95e9288c2a03e86
                                        
                                            GET /v1/buckets/main/collections/search-config/changeset?_expected=1661199949574&_since=%221648132005528%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 22 Aug 2022 20:25:49 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cache-Control: max-age=2592000
Date: Sun, 25 Sep 2022 16:56:54 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: NaycMNt68omatEK-WBv3GDS2uHNNCa5tH2msl5ErypAUaxHmd3LcbA==
Age: 533013


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (14029), with no line terminators
Size:   3398
Md5:    6dcd03f5af25aeb0674bb47c0f018dae
Sha1:   f8d8e5a1f39903a3fc12e8cb3170c0459e9c834b
Sha256: 8773fca6ecf53b30d62e680323027186bf934a2dc0b4caba5e4fc7cb30d4e2a1
                                        
                                            GET /v1/buckets/main/collections/cfr/changeset?_expected=1659547595259&_since=%221653578606314%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 03 Aug 2022 17:26:35 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Sat, 01 Oct 2022 08:31:34 GMT
Cache-Control: max-age=259200
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: Ya9fZhp4MUeF75QHzUBcJQAWL09GrxyxOeDAZsvdIlR0EK1_USwrNQ==
Age: 45494


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3678), with no line terminators
Size:   1411
Md5:    198ef0717b8812aadc957d1e2ff4aafb
Sha1:   08061aca9c054ec44311c30eb09c67ee1e80fd47
Sha256: d96caf25a8a96003398ac403de9b499673bfcb56643a710f0c54433153655427
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13179
Expires: Sun, 02 Oct 2022 00:40:06 GMT
Date: Sat, 01 Oct 2022 21:00:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13179
Expires: Sun, 02 Oct 2022 00:40:06 GMT
Date: Sat, 01 Oct 2022 21:00:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13244
Expires: Sun, 02 Oct 2022 00:41:11 GMT
Date: Sat, 01 Oct 2022 21:00:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13244
Expires: Sun, 02 Oct 2022 00:41:11 GMT
Date: Sat, 01 Oct 2022 21:00:27 GMT
Connection: keep-alive

                                        
                                            GET /js/vue.js HTTP/1.1 
Host: web-ib-mizuhobanky-co-jp.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web-ib-mizuhobanky-co-jp.top/client/index.php
Cookie: PHPSESSID=fj939jiutb3gqhosgn1fkkgvrb

                                         
                                         155.94.138.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 01 Oct 2022 21:00:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Wed, 28 Apr 2021 12:12:46 GMT
ETag: "53882-5c1074be84b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  data
Size:   503
Md5:    f5e503471cc78b95c0a3e75785615e5f
Sha1:   145b1e4d850c145a78577b5d7d4fadae9658d7a4
Sha256: 61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

Alerts:
  Blocklists:
    - openphish: Mizuho Bank
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03e4f558-3c34-42eb-aa43-9896f0e6ce87.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8269
x-amzn-requestid: f2ac41dd-fd33-4803-ad29-63a9b7877af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJTcGFA_IAMFfRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333991a-36d628d17d8576972fcf6822;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 00:45:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8FdaRbtsOeuH-qLdBpgPJjdPzx_vcUeaRoAhVT3IkV0jrE1XAwRFAw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:14 GMT
age: 81853
etag: "74c20bb0c312988822deb9d46b20e4642357fbd7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8269
Md5:    574cd0b975349cc445e798136863c8a0
Sha1:   74c20bb0c312988822deb9d46b20e4642357fbd7
Sha256: 62d6448a8da1ed783761e1e966c3f03f2d9b4351e04e13e71e330e4cce465fc4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3640
x-amzn-requestid: b5f5c567-8aa9-414b-8310-cf3006711ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo1vFIwoAMF2mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb57-0f1cbcbb29287f5367a14b67;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GDkc-K5EE8VRClm1ymTQLg6vGaPliNgCox3kOk9E4d2YkCqRzEjdfg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 07:19:24 GMT
age: 49263
etag: "303c6bb672425443a15bbe22394bd1149f887904"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3640
Md5:    a9e7ba045a723120501994dea21709db
Sha1:   303c6bb672425443a15bbe22394bd1149f887904
Sha256: b1bea7212e55ec8eaf62434214a86fed7d6a990d105984d79a7fa0e793395d59
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fc3f7b5-4c80-4662-ba8b-7997bdbdb6a3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8299
x-amzn-requestid: 91eed6b6-632f-472b-93d7-4192425fcdfd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLDF0SoAMFWgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-17bb04894cc786555d693ec3;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pt23XcORl063B99HGVhjQwBrS36T7GBIAQO7StLrEH8PKIc4edxQwQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:52:55 GMT
age: 83252
etag: "2df7db53629c7adda2c0a4dfe9c17791b73a75e1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8299
Md5:    0d31a422078d02bda318c693c05a58dc
Sha1:   2df7db53629c7adda2c0a4dfe9c17791b73a75e1
Sha256: a07fe4e135b52da6dfa9d8a55684f0a3bf5f5ce52c4064c8ab37836a939902a9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: v8a69x5mDDCCx8OIqDtwfkIpGXvFybxeGtlkZWhldIbSZU6cIWPvbw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:26:32 GMT
age: 81235
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10380
Md5:    139a144f8cb04ac8aae65f4bad1473e7
Sha1:   265840b2d2fc6eb764cc6409b05deee8d77a19c2
Sha256: 6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: f0791b53-3c5f-4d94-954d-992a529ebb60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPnunF35oAMFYbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361ff6-2adb303349153ced73ccecf6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 22:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F3fk5JnJ9ZFNPan-8DuLb4kuTiYKfniBar3qNlsuqd8a0saW3sEGvQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 04:41:31 GMT
age: 58736
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10201
x-amzn-requestid: 62562627-78a8-4c17-bf6c-b2c986b9ee8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLCFH3IAMFoFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-69637d745165485171ca73b9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9wh9cCXRRlyQy8kXzSCNzMQSmac9iwgkRBrgyTtaMr6m2vXPRxVogg==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:55:26 GMT
etag: "49798c4a15545a49f3870b2a16af78dbf8e168cc"
age: 83101
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10201
Md5:    4be456dbe857580c7b4c7fca3936e04e
Sha1:   49798c4a15545a49f3870b2a16af78dbf8e168cc
Sha256: 23e42987d5e9939424d5f4e4fe0c38faf20a221732097927dd4a656199d9d315
                                        
                                            GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 682
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 26 Sep 2022 16:36:56 GMT
X-Content-Type-Options: nosniff
Date: Sat, 01 Oct 2022 20:42:13 GMT
Cache-Control: no-cache, no-store, max-age=3600
ETag: "1664210216116"
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: oIlTMV8kdNuFlWdsowc6iQgqSPcTQ7g2EptV1vDr1aGDpnVtSRCK1w==
Age: 1097


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Size:   682
Md5:    4e767b65980ef55063cce1d7f423c58e
Sha1:   f6f9756deac632f187752ff6708a2e3a71a04ebc
Sha256: 132e8f66a926b19d6a3ff32ca5bf385272b3b9be5e748cd21b9bb02a13a661e9
                                        
                                            GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Sat, 01 Oct 2022 20:56:41 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: OUJyFp5NI6EFch2ZXVS4a_PRZh9SmYRKXXuMT4csyGXANocFI8hP5g==
Age: 227


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1709), with no line terminators
Size:   959
Md5:    d68cb9cd07d27d0593a1e9708cb6aa63
Sha1:   7c549c87461cc734b0edd45de85614ae567e7b7c
Sha256: 30dcd3093be9cc38ba12010d7e925f20c989a0e2962c52d9aec6e9acfa2736a6
                                        
                                            GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1657747510534&_since=%221654266643527%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         65.9.86.127
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 13 Jul 2022 21:25:10 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cache-Control: max-age=3600
Date: Sat, 01 Oct 2022 20:29:39 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 05ec74146f636de45e985d09f62976dc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS1-C1
X-Amz-Cf-Id: Z1TV0VW6vC4S39Lk7kkbkfIuAVmwQF1kuV6NrC9PnJQdUdlfKD9rUw==
Age: 1847


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2194), with no line terminators
Size:   1080
Md5:    4286df03a653e5b403e88a8d28933306
Sha1:   8f974648aef7d271443707ce3a6eba8d9a117872
Sha256: 16e99009a0917eedd380140055d06b29d6709bd469d694d078c013f7c104367a