Report - secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net

Report Overview

Submitted URL
secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net
IP
116.0.23.211
ASN
#38719 Dreamscape Networks Limited
Submitted
2023-01-24 05:02:49
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
secure.bwhls.com.au	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	23 kB	116.0.23.211
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	839 B	13 kB	104.17.25.14
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	784 B	56 kB	69.16.175.42
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.7 kB	93.184.220.29
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	433 B	949 B	104.18.11.207
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.33.119.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.so-net.ne.jp	780117	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.2 kB	251 kB	210.139.252.142
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	61 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ajax.aspnetcdn.com	693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	31 kB	152.199.19.160
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.163.1.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-24	medium	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/js/actions.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.3.1.slim.min.js	70 kB	2023-03-07	2024-04-24
Pretty URL code.jquery.com/jquery-3.3.1.slim.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-24 19:25:17 Times Seen8352 Hash 99b0a83cf1b0b1e2cb16041520e87641 bc5836992c0b260496ba520fe1336d499bf06eb7 dde76b9b2b90d30eb97fc81f06caa8c338c97b688cea7d2729c88f529f32fbb1 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 05:48:01 Times Seen37055594 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js IP 152.199.19.160 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 05:46:55 Times Seen106020 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	60 B	2023-03-07	2023-11-07
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-11-07 19:06:13 Times Seen11 Hash 8dd568097dedfdc5ed01da3ffd01bad6 00b1bf0614f1a5340edb6713534dfa30180b89ce d585a3e0c9ee965559bda3baaa9b11689fda8a8dc29289e2cf99bae0113afcd5 Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	1.1 kB	2023-03-07	2023-03-13
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash 4e3e1634e4f97a855f8bdc53e8a9b6a5 34b484e9664f3c08f2abdfb850b641415eb3bdec 572be3d6c5ce2e51064b5e332dd782e142ddd211b584e21beb2eddbde3fd3a05 Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	889 B	2023-03-07	2023-03-13
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash 02ea686da070965c3ced6d137f89d9b5 618d3af064dde0b6ae69d81b34546c9c28fe19fa 5db523535af942c80a313aad4c7ae47fd1290d45dcf9fca74fbed11574f5801d Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/js/actions.js	1.3 kB	2023-03-07	2023-11-27
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/js/actions.js IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-11-27 15:11:32 Times Seen22 Hash 6224e21da3d6cf2f5de0debf15e42489 a97a3034a530ad6fa3c5967fe46648dbbeaa71c4 70e85a009826725354b61dda5e78f14418a117f6d4646550d2c55c499ec64a50 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js	20 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-24 19:05:39 Times Seen7666 Hash 6b08ddc901000d51fa1f06a35518f302 bafe987c18cbe0587de3e6360e7da40a2885614b 02835066969199e9924f1332f7172a5d7e552f023a20c3d8ba03bb6c51ce5be5 Loading...

	www.so-net.ne.jp//webmail/js/run.js?1.0.17	36 kB	2023-03-07	2023-03-13
Pretty URL www.so-net.ne.jp//webmail/js/run.js?1.0.17 IP 210.139.252.142 ASN #2527 Sony Network Communications Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash 89a74ad095d63e5e260f1cf071d52f50 a12c8e3020b1102f894d94700d6c377ceb6d11d9 fd69931da27f0228866bfa2ff715c9d50fb570c83201649f23f4d8f6d9a9e818 Loading...

	www.so-net.ne.jp//common/js/so_net-util.min.js	360 B	2023-03-07	2023-03-13
Pretty URL www.so-net.ne.jp//common/js/so_net-util.min.js IP 210.139.252.142 ASN #2527 Sony Network Communications Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash 2f689f47d25ddb32bf4ebdc8a38c6bf3 b598d685fca35c4d2cf79bd162c02548da7c7846 75e9cad8399336821ee090f0efec5d9ddeef105cab6b9dc24bb1505e5a0f1531 Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-24
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-24 19:05:39 Times Seen6310 Hash ce6e785579ae4cb555c9de311d1b9271 5ef2c15b47d7290698c737676ba9c3056b45f2e8 0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339 Loading...

	www.so-net.ne.jp//common/hf1704/js/init.js	396 B	2023-03-07	2023-11-07
Pretty URL www.so-net.ne.jp//common/hf1704/js/init.js IP 210.139.252.142 ASN #2527 Sony Network Communications Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-11-07 19:06:14 Times Seen5 Hash df805857a7d7601ad2cd1f3cf1258551 c8862b4a105dacaf0bbf27940154d9dd9d55f273 888a45715a43fedad2a1450402e761969440920910730a9fa063754126f17b84 Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	1.9 kB	2023-03-07	2023-03-13
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash eae953aafcea215758c562937616658d 69c60e0eba428972b63e404cac0f9997f35fdee9 df35c17c635aa86905bd697fe8fa0325a17da8fe47dee87772185da8a24632ed Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	222 B	2023-03-07	2023-03-13
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash 421bfca9db3c1971002b694be74527eb 69eeff6930495afe7bc47894bebb1c79f99c1da8 5a1c81c4919f63e263c5f2675677281bb84baa56df6d5552173045b5be549c70 Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	2.6 kB	2023-03-07	2023-03-13
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash 726790f09beb8e92ac249897418d73a5 91c4919bbdfdfddc30c53680d5e03a4a34223f82 1a4a4aac03150ddb48ac65fead76e1846aafe601cac13cfc5445ef85af8f0e8f Loading...

	secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net	343 B	2023-03-07	2023-03-13
Pretty URL secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net IP 116.0.23.211 ASN #38719 Dreamscape Networks Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash d2e27652247bdb3b3d124becfc2c3ae8 d2b8e247e939b56d2d86ac860e644f323781feef f8c54ee00247f23e623aeec8c29aeb3980abdefd3ad312b142482b80e54658eb Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js	20 kB	2023-03-07	2024-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-25 04:04:00 Times Seen3621 Hash 053305c2b293c27c02523cda42962c09 556b0af7346b9e21a8eea1be8b195b563169ecd5 be483938eb34538b970684f72e312f62652e84b42b7ad86953962d1ce2217c44 Loading...

	www.so-net.ne.jp//common/ui_ver2/js/gHd_gFt2016_run.js	22 kB	2023-03-07	2023-03-13
Pretty URL www.so-net.ne.jp//common/ui_ver2/js/gHd_gFt2016_run.js IP 210.139.252.142 ASN #2527 Sony Network Communications Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2023-03-13 06:34:15 Times Seen1 Hash ff4d2d34358113923aee4f166d958bd3 a4b4fdf37f738dc2a69e118efe1d54125157f802 3a198eff27f5a0cbe6ddd51406f0fabb11a181184dec3dd6263c2f2df0112e4a Loading...

	www.so-net.ne.jp//webmail/js/jquery-2.1.4.min.js?1.0.17	84 kB	2023-03-07	2024-01-21
Pretty URL www.so-net.ne.jp//webmail/js/jquery-2.1.4.min.js?1.0.17 IP 210.139.252.142 ASN #2527 Sony Network Communications Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:06 Last Seen2024-01-21 19:18:26 Times Seen11 Hash 763b58976a3762f6fca88bc9198a6c9b a904bb083b5d145b03ae688d0d547cfc26ac4c76 73595e5236170c014eb52846294f034a87a7ee02f423b99216d3d2670a9d3caa Loading...

HTTP Transactions (53)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10152
Expires: Tue, 24 Jan 2023 07:51:50 GMT
Date: Tue, 24 Jan 2023 05:02:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9974
Expires: Tue, 24 Jan 2023 07:48:52 GMT
Date: Tue, 24 Jan 2023 05:02:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13570
Expires: Tue, 24 Jan 2023 08:48:48 GMT
Date: Tue, 24 Jan 2023 05:02:38 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 24 Jan 2023 04:42:40 GMT
content-type: application/json
age: 1198
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DI66BWKr9dhuwAeFSZrs1Qo2kplTw45ITeawESzILfHdWdmNLIDNBH+nGwLqpyNL424gQH8BuQw=
x-amz-request-id: DMV4T5XPN3F3807G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 24 Jan 2023 04:19:08 GMT
age: 2610
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 24 Jan 2023 05:02:38 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net

116.0.23.211

200 OK

20 kB

URL HTTP/1.1
secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net
IP
116.0.23.211:0
ASN
#38719 Dreamscape Networks Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (928), with CRLF line terminators
Size
20 kB (20037 bytes)
Hash
5430263ef2ef814f841b80f6472a6d9f
15eb8f42c61783c5bbd2361a7bf36f6a67951fa3
7b3eccdcff688a86af58e54c51c36108513c366ffd178630d35a0063d87068bf

HTTP Headers

GET /HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net HTTP/1.1
Host: secure.bwhls.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:38 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=60aff603d06936aea5d4a279305b88f8; path=/
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 24 Jan 2023 04:17:31 GMT
age: 2708
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js

104.17.25.14

200 OK

6.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (20322)
Size
6.5 kB (6458 bytes)
Hash
df9fe6d48e380554eb0ec9687bed3246
207263d754220200c1916edfbda262f62223ecf5
91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9

HTTP Headers

GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://secure.bwhls.com.au
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 24 Jan 2023 05:02:39 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2761760
expires: Sun, 14 Jan 2024 05:02:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=18Hlv4Xwgwdd%2BhmymV50ikGTZSuweLc5Z38a5mwzr4I1MRnr9%2BT5Ic9swXFPqATJoNB2wzbsxnX%2F0FA%2B%2FWr8i8Tqvh3l85ocUH%2F4lvoOsbppfKT8WsHdSi7VKF%2F5bF9qNCZzutse"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78e637d7a851b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js

104.17.25.14

200 OK

4.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.5 kB (4517 bytes)
Hash
e40e054c5726f042bad463e3774a2777
5c9413b72837a440b327444104830c35ae3b052c
fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8

HTTP Headers

GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 24 Jan 2023 05:02:39 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8341674
expires: Sun, 14 Jan 2024 05:02:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y1n1AJ4gIDlp6UagHO%2Fsu0ho67GsVnwAyyaOCcZ%2BvGOiQ1wM3ufLdVY9w5R0PwXTkVkseAg2%2FFP4fslFM1259Dx1VtohuzlLk781InYaGvU1XvyAkAOm0tqRQa0sHbqTumIGwstV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78e637d7bbbe1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.3.1.slim.min.js

69.16.175.42

200 OK

24 kB

URL HTTP/2
code.jquery.com/jquery-3.3.1.slim.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65247)
Size
24 kB (24038 bytes)
Hash
0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0

HTTP Headers

GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://secure.bwhls.com.au
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 24 Jan 2023 05:02:39 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CP/ovZ4GEoYBCiQ0Zjk5ZmQ4OS1mNDIxLTQ3NjctYjkxOC02NDYzNDBjNGMwYjkQ+OiCoKvU+wIaBgjvzL2eBiIMOTEuOTAuNDIuMTU0KPgPMAM4BEIWVExTX0FFU18xMjhfR0NNX1NIQTI1NlogYzdkMmI0YzQ4NGE0MTNlMTkxZGU2YWNmZjJkYjIwMDkaLAgBEiRmZjBiODBkNy00ZWY0LTQxNWUtOTNmYy1hYzcxYWY1N2I5MzQY5rsBIhgIAhIUY2RzMjMwLnNrMS5od2Nkbi5uZXQ=.EjprcGMNzU7mn2ZFup7JEEndfcWDQAMowJnowLa/N5I=
x-hw: 1674536559.dop206.sk1.t,1674536559.cds250.sk1.hn,1674536559.cds230.sk1.c
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.2.1.min.js

69.16.175.42

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 24 Jan 2023 05:02:39 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CP/ovZ4GEocBCiQyZjBjYjNmNC0zYjU2LTQ1ZTEtYTY1ZS1mMWEwMGM4OWJmZTkQ+OiCoKvU+wIaBgjvzL2eBiIMOTEuOTAuNDIuMTU0KJXEAzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkYzNiNjliYWMtNTdkNC00YjE2LTgwOGItNWFlOGJkMDVhY2YyGK3rASIYCAISFGNkczIyMi5zazEuaHdjZG4ubmV0.uLKVNusbqh5im/aNdGcV4GlXAfLPXOiy3+GimtZzwKw=
x-hw: 1674536559.dop021.sk1.t,1674536559.cds219.sk1.hn,1674536559.cds222.sk1.c
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
8d21d2558eeb388eb558037eeed4425f
be86ec7afc7ad2689070a8d3b70f8294857fe9b9
6e27735043b51d87079b1880c13e710a8cae766dd85794289bac929e2b4e5627

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6147
Cache-Control: max-age=170933
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cf4721-116"
Expires: Thu, 26 Jan 2023 04:31:32 GMT
Last-Modified: Tue, 24 Jan 2023 02:49:05 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js

152.199.19.160

200 OK

30 kB

URL HTTP/2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP
152.199.19.160:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65451)
Size
30 kB (30394 bytes)
Hash
a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66

HTTP Headers

GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 27538054
cache-control: public,max-age=31536000
content-type: application/javascript
date: Tue, 24 Jan 2023 05:02:39 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
8d21d2558eeb388eb558037eeed4425f
be86ec7afc7ad2689070a8d3b70f8294857fe9b9
6e27735043b51d87079b1880c13e710a8cae766dd85794289bac929e2b4e5627

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6147
Cache-Control: max-age=170933
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cf4721-116"
Expires: Thu, 26 Jan 2023 04:31:32 GMT
Last-Modified: Tue, 24 Jan 2023 02:49:05 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bb280016d8f12fa0a6ae86792ba89e67
53188091dab8e35ba20d2e341624777c2fb1536a
c28ed8dc9af97c7096f60030048432a41fb853e81ea91208e91493784d382bb9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2259
Cache-Control: max-age=103308
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63ce4e28-1d7"
Expires: Wed, 25 Jan 2023 09:44:27 GMT
Last-Modified: Mon, 23 Jan 2023 09:06:48 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/js/actions.js

116.0.23.211

200 OK

1.3 kB

URL HTTP/1.1
secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/js/actions.js
IP
116.0.23.211:0
ASN
#38719 Dreamscape Networks Limited

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1294 bytes)
Hash
6224e21da3d6cf2f5de0debf15e42489
a97a3034a530ad6fa3c5967fe46648dbbeaa71c4
70e85a009826725354b61dda5e78f14418a117f6d4646550d2c55c499ec64a50

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /HguW0K7GK8Kk/accessmailbox/js/actions.js HTTP/1.1
Host: secure.bwhls.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net
Cookie: PHPSESSID=60aff603d06936aea5d4a279305b88f8

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:39 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4
Last-Modified: Mon, 18 Jan 2021 20:00:58 GMT
ETag: "27b6b98-50e-5b9322e30b280"
Accept-Ranges: bytes
Content-Length: 1294
Connection: close
Content-Type: application/javascript

push.services.mozilla.com/

35.163.1.35

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.1.35:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0EMdmuQcfODaOAVRgiT/EA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: H2BrhzsSXtRNWtLHglytkq3oDho=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
287e9c9676d458e884d035e547f5fe26
e21dc393a4a3dc8b7144ef20649525f78e06098b
fe0198e6bf1118ba5694927a96d916a1cf2edf2c5e0dad3038bff1f17141bc2f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=145715
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cefca2-1d7"
Expires: Wed, 25 Jan 2023 21:31:14 GMT
Last-Modified: Mon, 23 Jan 2023 21:31:14 GMT
Server: nginx
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
287e9c9676d458e884d035e547f5fe26
e21dc393a4a3dc8b7144ef20649525f78e06098b
fe0198e6bf1118ba5694927a96d916a1cf2edf2c5e0dad3038bff1f17141bc2f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4852
Cache-Control: max-age=150567
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cefca2-1d7"
Expires: Wed, 25 Jan 2023 22:52:06 GMT
Last-Modified: Mon, 23 Jan 2023 21:31:14 GMT
Server: ECS (amb/6BBC)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
287e9c9676d458e884d035e547f5fe26
e21dc393a4a3dc8b7144ef20649525f78e06098b
fe0198e6bf1118ba5694927a96d916a1cf2edf2c5e0dad3038bff1f17141bc2f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=145715
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cefca2-1d7"
Expires: Wed, 25 Jan 2023 21:31:14 GMT
Last-Modified: Mon, 23 Jan 2023 21:31:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
287e9c9676d458e884d035e547f5fe26
e21dc393a4a3dc8b7144ef20649525f78e06098b
fe0198e6bf1118ba5694927a96d916a1cf2edf2c5e0dad3038bff1f17141bc2f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cdab2b-1d7"
Server: ECS (amb/6B86)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
287e9c9676d458e884d035e547f5fe26
e21dc393a4a3dc8b7144ef20649525f78e06098b
fe0198e6bf1118ba5694927a96d916a1cf2edf2c5e0dad3038bff1f17141bc2f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 05:02:39 GMT
Etag: "63cdab2b-1d7"
Server: ECS (amb/6BA3)
Content-Length: 471

www.so-net.ne.jp//webmail/css/webmail_pclogin.css?1.0.17

210.139.252.142

200 OK

8.6 kB

URL HTTP/1.1
www.so-net.ne.jp//webmail/css/webmail_pclogin.css?1.0.17
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
Unicode text, UTF-8 text, with very long lines (372)
Size
8.6 kB (8581 bytes)
Hash
5e71590bd3709c47a7af70ee1684a05d
fcf03ccb7fa777e8fcc7a92a0a4969b167d302d9
c6616e27a1f1d4024d26cac27af5ac26396e8edfc74ac35a004144ede6109940

HTTP Headers

GET //webmail/css/webmail_pclogin.css?1.0.17 HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Tue, 13 Sep 2022 10:22:46 GMT
Content-Type: text/css
Content-Length: 8581
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp///assets.adobedtm.com/17361013af29ef6ae83ffd4113ce414f44be89b8/satelliteLib-ea3bae92bad6869bca2ee96094be75c242840f35.js

210.139.252.142

404 Not Found

3.0 kB

URL HTTP/1.1
www.so-net.ne.jp///assets.adobedtm.com/17361013af29ef6ae83ffd4113ce414f44be89b8/satelliteLib-ea3bae92bad6869bca2ee96094be75c242840f35.js
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
3.0 kB (2956 bytes)
Hash
dbb31c0f22ea112fdff21be511381668
5e857e993c6a5722e987e5602f1480f7cd49f099
3e8621b91ef03c03cc3132c3308c96df83c293a2c121b36e3861574e0cf93428

HTTP Headers

GET ///assets.adobedtm.com/17361013af29ef6ae83ffd4113ce414f44be89b8/satelliteLib-ea3bae92bad6869bca2ee96094be75c242840f35.js HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Upgrade: h2
Connection: Upgrade, Keep-Alive
Accept-Ranges: none
Keep-Alive: timeout=5, max=70
Transfer-Encoding: chunked
Content-Type: text/html
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp//webmail/css/webmail_common.css?1.0.17

210.139.252.142

200 OK

3.0 kB

URL HTTP/1.1
www.so-net.ne.jp//webmail/css/webmail_common.css?1.0.17
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
Unicode text, UTF-8 text
Size
3.0 kB (2962 bytes)
Hash
6c3fde1a5689cdf357c0a3eac8dcce14
2c9f765277617f9b8a57c48cc0dcff13025e9264
14e9b38d9549db3c9183b6379e9432aacc9d0bfbd04eb460828aaeb1ad0a1508

HTTP Headers

GET //webmail/css/webmail_common.css?1.0.17 HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Tue, 13 Sep 2022 10:22:46 GMT
Content-Type: text/css
Content-Length: 2962
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp//common/hf1704/js/init.js

210.139.252.142

200 OK

396 B

URL HTTP/1.1
www.so-net.ne.jp//common/hf1704/js/init.js
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
396 B (396 bytes)
Hash
df805857a7d7601ad2cd1f3cf1258551
c8862b4a105dacaf0bbf27940154d9dd9d55f273
888a45715a43fedad2a1450402e761969440920910730a9fa063754126f17b84

HTTP Headers

GET //common/hf1704/js/init.js HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Fri, 03 Mar 2017 04:35:17 GMT
Accept-Ranges: none
Content-Length: 396
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp//webmail/css/style.css?1.0.17

210.139.252.142

200 OK

25 kB

URL HTTP/1.1
www.so-net.ne.jp//webmail/css/style.css?1.0.17
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
assembler source, Unicode text, UTF-8 text
Size
25 kB (25126 bytes)
Hash
d0d431babe235a87f4c8bc4573b0b521
07d4c3accb0ad89c25ee2967401be8a918a4b8e2
405221ae8179f34dc3a020060112179fa5c9ebc1be586126a1dec338110bc660

HTTP Headers

GET //webmail/css/style.css?1.0.17 HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Tue, 13 Sep 2022 10:22:46 GMT
Content-Type: text/css
Content-Length: 25126
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp//common/ui_ver2/js/gHd_gFt2016_run.js

210.139.252.142

200 OK

22 kB

URL HTTP/1.1
www.so-net.ne.jp//common/ui_ver2/js/gHd_gFt2016_run.js
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
Unicode text, UTF-8 text
Size
22 kB (21568 bytes)
Hash
ff4d2d34358113923aee4f166d958bd3
a4b4fdf37f738dc2a69e118efe1d54125157f802
3a198eff27f5a0cbe6ddd51406f0fabb11a181184dec3dd6263c2f2df0112e4a

HTTP Headers

GET //common/ui_ver2/js/gHd_gFt2016_run.js HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Thu, 05 Aug 2021 05:01:04 GMT
Accept-Ranges: none
Content-Length: 21568
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp/common/hf1704/css/rwd.css

210.139.252.142

200 OK

29 kB

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/css/rwd.css
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
29 kB (28933 bytes)
Hash
737caaf6ff5e49b8a4fc31abcbad2a24
5026117cdb4736cca7ea4b6e1b341304b69d918f
13d6929526f11d255e20522c0f9c6a970ed9dbeaedff3c7c28869e169b1fe05c

HTTP Headers

GET /common/hf1704/css/rwd.css HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 01 Nov 2022 01:00:37 GMT
Accept-Ranges: none
Content-Length: 28933
Keep-Alive: timeout=5, max=70
Content-Type: text/css
Strict-Transport-Security: max-age=31536000;includeSubDomains

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15076
Expires: Tue, 24 Jan 2023 09:13:56 GMT
Date: Tue, 24 Jan 2023 05:02:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15076
Expires: Tue, 24 Jan 2023 09:13:56 GMT
Date: Tue, 24 Jan 2023 05:02:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15076
Expires: Tue, 24 Jan 2023 09:13:56 GMT
Date: Tue, 24 Jan 2023 05:02:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F537db10d-29e3-411f-9e8e-1228776b93ff.jpeg

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F537db10d-29e3-411f-9e8e-1228776b93ff.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9612 bytes)
Hash
bc6a02bad3c4991daf4d2111d49b9f07
e3b4f6cbee09ec16208ec2764083c7588a27f26e
53be1a6caf045a78b0d31e56c8a90884e393269fe0e786176fa878d7b5493959

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F537db10d-29e3-411f-9e8e-1228776b93ff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9612
x-amzn-requestid: 25795051-e697-49f4-a33c-d2f5db89ab83
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNystHGeIAMFchA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe51-123af9fb1dd4f94162a0c373;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0xmtfjVShc5wR7RB8EDu7osehcKks5_vSlWUw3XyWneYKeNDDcJedQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:15:39 GMT
etag: "e3b4f6cbee09ec16208ec2764083c7588a27f26e"
content-type: image/jpeg
age: 24421
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.so-net.ne.jp//common/js/so_net-util.min.js

210.139.252.142

200 OK

360 B

URL HTTP/1.1
www.so-net.ne.jp//common/js/so_net-util.min.js
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
ASCII text
Size
360 B (360 bytes)
Hash
2f689f47d25ddb32bf4ebdc8a38c6bf3
b598d685fca35c4d2cf79bd162c02548da7c7846
75e9cad8399336821ee090f0efec5d9ddeef105cab6b9dc24bb1505e5a0f1531

HTTP Headers

GET //common/js/so_net-util.min.js HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Fri, 01 Jul 2016 01:01:59 GMT
Accept-Ranges: none
Content-Length: 360
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
Strict-Transport-Security: max-age=31536000;includeSubDomains

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8308 bytes)
Hash
91b2e12a39dc4f63b9d52e8800cce1f2
42d5b4b4a091778d98c351f0002d8656449d0243
d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNys5GDKoAMFdbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WZE7yDAT_YRseW7m410pGAwkWAwJ2HmuTlg2IbSvCbN20SJbmQ4Odg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:06:36 GMT
age: 24964
etag: "42d5b4b4a091778d98c351f0002d8656449d0243"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11918 bytes)
Hash
4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: ff47dd24-004f-4cc7-acfb-283b2e751f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqxwEyWoAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb580b-1e95f74b0846080f75a757f6;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntW_cYMwX6UWInGOxxPlwnV1AJh46X-hiLvwggRz9oa1Yno6jyE51g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 03:28:47 GMT
age: 5633
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffa7542f-09ef-434a-b70e-f01d4f85f536.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5390 bytes)
Hash
d10c7ff2225305bb4fef88b5e162ce89
01b2c47ee2463194e3209da8572628bc64553b90
43aa59f214eb5d6ec153e68f0e5d164be9fc2ef408efc2bddc29f223fe984721

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffa7542f-09ef-434a-b70e-f01d4f85f536.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5390
x-amzn-requestid: 293c5b91-66f2-4c09-8c43-bb2c1a80d387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNyrPEAIoAMFbVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe47-7f8a124e65873e2a69527dfb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tyGLhuKsD5FALIW6cv0k4Jd3VwK1W1nYQfv6NBcjFQ74u0RRBnQECQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 21:56:47 GMT
etag: "01b2c47ee2463194e3209da8572628bc64553b90"
content-type: image/jpeg
age: 25553
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febfe8cd9-8a38-4bff-80c1-8c58b3618c4d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10594 bytes)
Hash
3172dcbfc344029f09fec71cfa869af7
1a45d9e39cb8a2fcf5cb06bbfcf0194f1eaff2ad
e818325e9a7a516912bba892f0ff7377ee0a60d0a38afbbc7f41f8f5d7857a07

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febfe8cd9-8a38-4bff-80c1-8c58b3618c4d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: 25119c89-8b57-4f78-ba4d-6181a565fc55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNyrOG_VIAMF15w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe47-5f7fde965860cba74a51ddbf;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZM3fGgrP1P7ju8-1AFIahWbbTgZaAu3mCZyN9m_g_rw6rWHeldJhmQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 21:57:44 GMT
etag: "1a45d9e39cb8a2fcf5cb06bbfcf0194f1eaff2ad"
content-type: image/jpeg
age: 25496
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ee9090f-cd45-474d-b05a-663eab75ddc2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9158 bytes)
Hash
a9088e8181cf43fa7e77bd0c169d459e
2a06f6ea31a615ac3a1a33fb2997e8617468e6f0
d09867478b7fe952ad8919728805cdc0918d849827f5e646ad2d824f9a6911e2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ee9090f-cd45-474d-b05a-663eab75ddc2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9158
x-amzn-requestid: 27bce48a-9cab-4546-a713-33a4c42036eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNzFoEw2IAMF_eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefef0-341ee41e3ac904ee28e70f47;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dqzsjJD39H7SueW8rmB_3vreBtOxWYNHl8CpU-9jFj353yPS0ldiuw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:04:40 GMT
age: 25080
etag: "2a06f6ea31a615ac3a1a33fb2997e8617468e6f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.so-net.ne.jp//webmail/js/run.js?1.0.17

210.139.252.142

200 OK

36 kB

URL HTTP/1.1
www.so-net.ne.jp//webmail/js/run.js?1.0.17
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
Unicode text, UTF-8 text
Size
36 kB (36075 bytes)
Hash
89a74ad095d63e5e260f1cf071d52f50
a12c8e3020b1102f894d94700d6c377ceb6d11d9
fd69931da27f0228866bfa2ff715c9d50fb570c83201649f23f4d8f6d9a9e818

HTTP Headers

GET //webmail/js/run.js?1.0.17 HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Tue, 13 Sep 2022 10:22:46 GMT
Content-Type: application/javascript
Content-Length: 36075
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp//webmail/js/jquery-2.1.4.min.js?1.0.17

210.139.252.142

200 OK

84 kB

URL HTTP/1.1
www.so-net.ne.jp//webmail/js/jquery-2.1.4.min.js?1.0.17
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
ASCII text, with very long lines (32025)
Size
84 kB (84381 bytes)
Hash
763b58976a3762f6fca88bc9198a6c9b
a904bb083b5d145b03ae688d0d547cfc26ac4c76
73595e5236170c014eb52846294f034a87a7ee02f423b99216d3d2670a9d3caa

HTTP Headers

GET //webmail/js/jquery-2.1.4.min.js?1.0.17 HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:40 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Tue, 13 Sep 2022 10:22:46 GMT
Content-Type: application/javascript
Content-Length: 84381
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp/webmail/image/blank.png

210.139.252.142

200 OK

959 B

URL HTTP/1.1
www.so-net.ne.jp/webmail/image/blank.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
PNG image data, 12 x 9, 8-bit/color RGBA, non-interlaced\012- data
Size
959 B (959 bytes)
Hash
7689484d1b4d06b09dc14dac6b3f30c3
3367cca12d42532dd609164acae0f177e75f7f03
701681bb757e809a54ba962b3574fb8ba95433ae3606b235cc43a831142ef2e1

HTTP Headers

GET /webmail/image/blank.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:41 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Tue, 13 Sep 2022 10:22:46 GMT
Content-Type: image/png
Content-Length: 959
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp/common/hf1704/img/pmark.png

210.139.252.142

200 OK

8.9 kB

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/pmark.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
PNG image data, 118 x 118, 8-bit/color RGBA, non-interlaced\012- data
Size
8.9 kB (8936 bytes)
Hash
04f9fb20c81f7003fe6fb9b1ad51ea32
b8821d6c68bf1ffd5fa940c00d5ae040cd460c8a
95129765aa2102c10a8d4dbb7df48069926b1eaf8d21db8e89144f5de4e89a6a

HTTP Headers

GET /common/hf1704/img/pmark.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://secure.bwhls.com.au/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:42 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Fri, 03 Mar 2017 04:35:16 GMT
Accept-Ranges: none
Content-Length: 8936
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp/common/hf1704/img/isp.png

210.139.252.142

200 OK

8.9 kB

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/isp.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
PNG image data, 118 x 118, 8-bit/color RGBA, non-interlaced\012- data
Size
8.9 kB (8895 bytes)
Hash
8aa09bf7bce16dce99e266673b09e9b8
9a75ee0d25ac838e2acb7377e7d04dae0942649f
95c97e58c55dd3399e51380e549c0e391d65768a1fb1e656cf9fce38b3d61d2a

HTTP Headers

GET /common/hf1704/img/isp.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://secure.bwhls.com.au/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:42 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Fri, 03 Mar 2017 04:35:16 GMT
Accept-Ranges: none
Content-Length: 8895
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=31536000;includeSubDomains

www.so-net.ne.jp/common/hf1704/img/logo.png

210.139.252.142

302 Found

3.5 kB

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/logo.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
PNG image data, 182 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3538 bytes)
Hash
6bbccc53a0c472172e1dc139f10fd684
f8975eed70bd8b1cec559348878087086972b682
3d81bd1be26051a693a5b5111f996606b9034c861ffeb16637f283966487af2d

HTTP Headers

GET /common/hf1704/img/logo.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/

HTTP/1.1 302 Found
Location: https://www.so-net.ne.jp/common/hf1704/img/logo.png
Connection: close

www.so-net.ne.jp/common/hf1704/img/logo-sony.png

210.139.252.142

302 Found

1.9 kB

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/logo-sony.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
PNG image data, 139 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1929 bytes)
Hash
2ef5a2afccfbc1ffb883328a7261046d
90f28e80b0d0dee1f2bde9f2475f0a230afe4079
82df9cbcc508ac2aec7863f8bcfd63ce9b13cb1e15f93573ad5af74f046a60c0

HTTP Headers

GET /common/hf1704/img/logo-sony.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/

HTTP/1.1 302 Found
Location: https://www.so-net.ne.jp/common/hf1704/img/logo-sony.png
Connection: close

www.so-net.ne.jp/common/hf1704/img/isms.png

210.139.252.142

200 OK

7.3 kB

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/isms.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type
PNG image data, 118 x 118, 8-bit/color RGBA, non-interlaced\012- data
Size
7.3 kB (7253 bytes)
Hash
8038dfde41525f28d7793ecf44e45689
f3f549f22b97a5cd127e3b41500bf1810781eef4
5edd28f563db10a446950ad2e88f71656fe02840c6628f935a93030abd7e9bb6

HTTP Headers

GET /common/hf1704/img/isms.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://secure.bwhls.com.au/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 05:02:42 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy-Report-Only: default-src 'unsafe-eval' 'unsafe-inline' 'self' http: https: data: wss: blob: chrome-extension ; report-uri /cgi-bin/csp-reports.cgi
Last-Modified: Thu, 02 Jun 2022 01:00:02 GMT
Accept-Ranges: none
Content-Length: 7253
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=31536000;includeSubDomains

secure.bwhls.com.au/favicon.ico

116.0.23.211

404 Not Found

315 B

URL HTTP/1.1
secure.bwhls.com.au/favicon.ico
IP
116.0.23.211:0
ASN
#38719 Dreamscape Networks Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: secure.bwhls.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/HguW0K7GK8Kk/accessmailbox/login.php?email=nobody@slurpmail.net
Cookie: PHPSESSID=60aff603d06936aea5d4a279305b88f8

HTTP/1.1 404 Not Found
Date: Tue, 24 Jan 2023 05:02:42 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4
Content-Length: 315
Connection: close
Content-Type: text/html; charset=iso-8859-1

www.so-net.ne.jp/common/hf1704/img/pmark.png

210.139.252.142

302 Found

0 B

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/pmark.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/hf1704/img/pmark.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/

HTTP/1.1 302 Found
Location: https://www.so-net.ne.jp/common/hf1704/img/pmark.png
Connection: close

www.so-net.ne.jp/common/hf1704/img/isms.png

210.139.252.142

302 Found

0 B

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/isms.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/hf1704/img/isms.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/

HTTP/1.1 302 Found
Location: https://www.so-net.ne.jp/common/hf1704/img/isms.png
Connection: close

stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js

104.18.11.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://secure.bwhls.com.au
Connection: keep-alive
Referer: http://secure.bwhls.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 24 Jan 2023 05:02:39 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 11/15/2022 10:39:35
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1054
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 9c3272e351175b85aaa81e14703515d7
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78e637d818e6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.so-net.ne.jp/common/hf1704/img/isp.png

210.139.252.142

302 Found

0 B

URL HTTP/1.1
www.so-net.ne.jp/common/hf1704/img/isp.png
IP
210.139.252.142:0
ASN
#2527 Sony Network Communications Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/hf1704/img/isp.png HTTP/1.1
Host: www.so-net.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://secure.bwhls.com.au/

HTTP/1.1 302 Found
Location: https://www.so-net.ne.jp/common/hf1704/img/isp.png
Connection: close

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL