r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3640
Expires: Sat, 26 Nov 2022 22:06:36 GMT
Date: Sat, 26 Nov 2022 21:05:56 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 648
Cache-Control: max-age=135360
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 21:05:56 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:41:56 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 20:19:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2801
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4317
Expires: Sat, 26 Nov 2022 22:17:53 GMT
Date: Sat, 26 Nov 2022 21:05:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fIBhuyXLgVbhU1KsgMTqjOWcDxydreEXGgVQ4QT9NajcHYvbG+67zl5qFkFpVsCl5n86yHyN4GXcOj326m93fw==
x-amz-request-id: XNDXMXRARGG9J04R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 20:44:22 GMT
age: 1294
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 21:05:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www2.cr.mufg.jploginsf8g4d.xbadvjv.cn/
301 Moved Permanently 341 B URL HTTP/1.1 www2.cr.mufg.jploginsf8g4d.xbadvjv.cn/
IP
ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b0628a5f997f31b0517a77ccecbe9530
2fc0b7724ea0b7a2e6b310a31f0c1f21be28ade6
3b23339b37cc9d1ead7c1c77cb6d11ae6f7e61514ab2ec069eec783ce9bbe3ff
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www2.cr.mufg.jploginsf8g4d.xbadvjv.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 21:05:56 GMT
Server: Apache
Location: https://www2.cr.mufg.jploginsf8g4d.xbadvjv.cn/
Content-Length: 341
Connection: close
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 20:08:54 GMT
cache-control: public,max-age=3600
age: 3423
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1234
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 21:05:57 GMT
Last-Modified: Sat, 26 Nov 2022 20:45:23 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2a784d308db66da66a606b7ee7c7c114
a43c157452e904fa8dd74cd19cb6c9c1e7b3449c
c94bb22067e636c738c67ff871d916c25ed88f26cadc10ae0b674fb36ba14674
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C94BB22067E636C738C67FF871D916C25ED88F26CADC10AE0B674FB36BA14674"
Last-Modified: Thu, 24 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21579
Expires: Sun, 27 Nov 2022 03:05:36 GMT
Date: Sat, 26 Nov 2022 21:05:57 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q2L6+E5YVG4Az+2qG/wbMw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: khgDndFpl9qAzQtF0KjwXb3jECE=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20654
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 21:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20654
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 21:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20654
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 21:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20654
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 21:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20654
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 21:05:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 84142
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 83213
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 49952
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 57690
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
age: 81169
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2f841c6-d0f5-4b9b-9f04-4eee5f479227.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2f841c6-d0f5-4b9b-9f04-4eee5f479227.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0064a575afa520aa6c112249e7b195a
7387cf7c1f6fae78ce7df10271a0fd2504c71382
37876de2a100c65b70bfd199c8405f3ec282c45786ab08744c64592dc16b0353
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2f841c6-d0f5-4b9b-9f04-4eee5f479227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9718
x-amzn-requestid: 1b621759-18a2-491a-b44e-f23540e4228c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVC5FLbIAMFzFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813545-78dec425016dc2746242a6c7;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zWdyq64XfAJTwN2HPvv__Q2wm597cilWEJACu8vIDwKUGixYTdUL_g==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:53:21 GMT
age: 83557
etag: "7387cf7c1f6fae78ce7df10271a0fd2504c71382"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www2.cr.mufg.jploginsf8g4d.xbadvjv.cn/
301 Moved Permanently 0 B URL HTTP/2 www2.cr.mufg.jploginsf8g4d.xbadvjv.cn/
IP
ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www2.cr.mufg.jploginsf8g4d.xbadvjv.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
refresh: 1000; url=no1.jp.mp4
location: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 26 Nov 2022 21:05:57 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 4dedb6f45af63be68f09d51217f71e6d
2224e61aec07dfcdea89621d0d426cc1e0e5cec0
67b5ad33fa21ccd6b14e5f64eada04ef0d9c20d8714624d66cb6ea5ba3a28ed8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5246
Cache-Control: max-age=106854
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 21:05:59 GMT
Etag: "6381699f-1d7"
Expires: Mon, 28 Nov 2022 02:46:53 GMT
Last-Modified: Sat, 26 Nov 2022 01:19:27 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 1daa621ae87db3e597a7aee942a138c7
c4ffa58a4040e3adcbf506b856788e4716608c4e
e4872feae995cdbe40dc61593f28f8027df3daed9a37eed4295660b6fa8bc7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=94008
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 21:05:59 GMT
Etag: "63814bef-1d7"
Expires: Sun, 27 Nov 2022 23:12:47 GMT
Last-Modified: Fri, 25 Nov 2022 23:12:47 GMT
Server: nginx
Content-Length: 471
www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
200 OK 89 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (306), with CRLF, LF line terminators
Hash 8f18a1ee9a18233b7f35c910e36dcb02
0cdc0719a373f95e490b8ee5a880467e7ea132ba
c19e89dd61600095c7b8d23a9aebd258590966451959f7cb0027f1bd65047411
GET /newsplus/?cardBrand=0012&lid=news_dc HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Length: 89182
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:00 GMT
X-PUBLIS-Status: REDIRECT TO PublisRedirectUri
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
m_cardBrand=0012; expires=Mon, 31-Dec-2029 15:00:00 GMT; Max-Age=223926840; path=/newsplus/; secure
PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; path=/; secure
ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278; expires=Sat, 26-Nov-2022 21:06:30 GMT; Max-Age=30; path=/; secure
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k_-gSo-7CQAE2wURhVvHcVfIOlE89ZJy4yQHN76kMCIhBYs_MUb31w==
www2.cr.mufg.jp/newsplus/public.js
200 OK 957 B URL HTTP/1.1 www2.cr.mufg.jp/newsplus/public.js
IP
Hash 4cb5a971c148cc9c321b37099a6a57ab
c4b9a13f60514c408e0b5bf39496fb1fc6d57f00
161842cd5c9c5a02f66eb1c7eb3d04c1df8f249b2d5a464e422623b6b7f5b541
GET /newsplus/public.js HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 957
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
Last-Modified: Thu, 05 Nov 2015 03:15:41 GMT
ETag: "3bd-523c28ab07140"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AVgFFYGYOeAUGmz_uuYOktryTp4OJE_N5E8fihr_bN9y4US8HKgRzg==
www2.cr.mufg.jp/newsplus/publis.css
200 OK 102 B URL HTTP/1.1 www2.cr.mufg.jp/newsplus/publis.css
IP
Hash 66a64cf2f1b7151bc643572d231f3c2e
0dea118dfdc4e55c707cce8b29934d9e7ac54022
2250e79f46cc7c3d269a2b477ea74d48441b421eee9a74317d07c2dbf00eba48
GET /newsplus/publis.css HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 102
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
Last-Modified: Mon, 18 Jan 2021 04:36:01 GMT
ETag: "66-5b9254253acb9"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: c6zlfd4ehFmWtCfxaGrjAPGBznKplGriSmUbxti340Vw20UTLn1pvQ==
www2.cr.mufg.jp/newsplus/view_css.php?pageId=201&revision=0&mode=0&noTag=1&blockId=0&alias=_home
200 OK 7.9 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/view_css.php?pageId=201&revision=0&mode=0&noTag=1&blockId=0&alias=_home
IP
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 7f80554245f7c21373284d452ff53573
3e1d680268c1e2fb2b67c3ae1d8b25a82d38df55
97e422b899f47a864c85f2217b89a81551d0a6b0a39b0d085584c22e5274f898
GET /newsplus/view_css.php?pageId=201&revision=0&mode=0&noTag=1&blockId=0&alias=_home HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
Content-Length: 7933
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: ADRUM_BT=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3; expires=Sat, 26-Nov-2022 21:06:32 GMT; Max-Age=30; path=/; secure
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EPDFUBrYdQ6sUR4I_juiWFl42LYiE73ijH9BZHW4-bAqJqcxA6ct9A==
www2.cr.mufg.jp/newsplus/library/common/css/common_pc.css
200 OK 127 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/common/css/common_pc.css
IP
Size 127 kB (126902 bytes)
Hash 217ebe0f17a2d89c74ab1bab53830e1b
039f78501364eb645dd4c599a9d655a9c05e1fca
121363353b989a0fa21ec49ee0f8d1ed9508056bb691ef26979273d27099c4fc
GET /newsplus/library/common/css/common_pc.css HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 126902
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Wed, 29 Sep 2021 09:28:58 GMT
ETag: "1efb6-5cd1ef5acaa80"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eTo8Ij-2NWY14DYsYHaktmtXaC0xQL6hWRlJbcz--MYrX2Y9F-4jUw==
www2.cr.mufg.jp/newsplus/scripts/jquery-1.7.min.js
200 OK 94 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/scripts/jquery-1.7.min.js
IP
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 25721ced154b3a99e818431446d7506d
3f1b0e9e54af1af2db2c8a639530448723462151
ff4e4975ef403004f8fe8e59008db7ad47f54b10d84c72eb90e728d1ec9157ce
GET /newsplus/scripts/jquery-1.7.min.js HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 94020
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
Last-Modified: Thu, 04 Dec 2014 03:34:07 GMT
ETag: "16f44-5095ba1eea9c0"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E_dnB_EQHDzTKARRC_2ZE1k9tKdGf0CtTErr06RSKUyptrPLlvhH9A==
www2.cr.mufg.jp/newsplus/scripts/jquery-migrate-1.4.1.min.js
200 OK 10 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/scripts/jquery-migrate-1.4.1.min.js
IP
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
GET /newsplus/scripts/jquery-migrate-1.4.1.min.js HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 10056
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
Last-Modified: Tue, 08 Jun 2021 06:04:45 GMT
ETag: "2748-5c43aef53535d"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: em8xrSE4NPooMv5Qykl6YDh2NvPHsARJgTAsTRme1Osy5mNTuabK0g==
www2.cr.mufg.jp/newsplus/scripts/jquery_prototype.js
200 OK 5.2 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/scripts/jquery_prototype.js
IP
Hash e1444b117a0c71e12e50f325813bd5ab
569e887d4fb35b5f57c74166fca037a1685ba109
79975910e786dde3966be210c5c94201f14cd0b3c7cad7e2e627ee4e8df44290
GET /newsplus/scripts/jquery_prototype.js HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5239
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:03 GMT
Last-Modified: Mon, 14 Nov 2016 07:31:42 GMT
ETag: "1477-5413dd4c45380"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mtAAnolwDEFHqU_tU-lA_oZHMbcvQZ0FtD8hdBxXOtYMuhrQBCHQJQ==
www2.cr.mufg.jp/newsplus/library/sc/s_code.js
200 OK 93 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/sc/s_code.js
IP
File type Non-ISO extended-ASCII text, with very long lines (7267), with CRLF line terminators
Hash db1058390dcc1c818234e42e4b4344b1
154b64f9fcc1a068855fdd16419e0b93592612d2
c4819cfd4b1667e00882984835375873d9504945a81c10e28d3f180d202a1687
GET /newsplus/library/sc/s_code.js HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 92807
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:02 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Wed, 12 May 2021 02:53:12 GMT
ETag: "16a87-5c2191c84f600"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UoqX74ovVCSz2IWHCpSIWPtv_456dyr3Jkb1038jPltKiAscAi2tZw==
www2.cr.mufg.jp/newsplus/library/common/js/common_pc.js
200 OK 48 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/common/js/common_pc.js
IP
File type Unicode text, UTF-8 text, with very long lines (3267)
Hash 6c2ba4aada22cc2fe683682044ddd1ac
3ddc4fc5fc89ed769ffa5eb8b89930a73b2c29b3
bbfd6359bf53c09ce76feeef8c927541073cfd63756acb08772c417c7e0873d2
GET /newsplus/library/common/js/common_pc.js HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 47699
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:03 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Fri, 25 Jun 2021 02:01:30 GMT
ETag: "ba53-5c58d84a4b280"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Viv_pF0ESXJJmzXfaD4Sxug8ohDbWsP2hb5-X8tif7SKg_Mapfeosg==
www2.cr.mufg.jp/newsplus/library/pc/img/icon/icon_42.gif
200 OK 1.4 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/icon/icon_42.gif
IP
File type GIF image data, version 89a, 103 x 15\012- data
Hash ba6d8fd25ddf4c0edde3ab588e6c8a04
00ad0709c423a1c7a4b178c1237fa928fba78f86
d4c97131544d0bccc299d57d68cf406686723c147c96ebbf9d5a90059f801c1d
GET /newsplus/library/pc/img/icon/icon_42.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 1408
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:03 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:35 GMT
ETag: "580-4d1a305dbadc0"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B9KwztC5nCnUE-xtNRLzfz4i5i5SzI4b0_wmqVjJLS2O76ScieZ01g==
www2.cr.mufg.jp/newsplus/var/rev0/00003/29717/campaign_pc_88_54.jpg
200 OK 5.0 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/var/rev0/00003/29717/campaign_pc_88_54.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 88x54, components 3\012- data
Hash 5c689954c8a3f8cc533c517280e2060a
9ae537d75723a36873759129ac07faaa3e344adf
79b022e0c577eaca4b0ecc8cdaf820483d6fa31fb23cfe5af91ad7ece7205c74
GET /newsplus/var/rev0/00003/29717/campaign_pc_88_54.jpg HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4991
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Sat, 26 Nov 2022 14:10:21 GMT
ETag: "137f-5ee6032e33c53"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QXldDZK0cICNr_8oXFdQoj5jJd-4HEoKj9dTtpwxfqaHs3R7W4rtlA==
www2.cr.mufg.jp/newsplus/library/pc/img/top/heading_05-59.gif
200 OK 3.3 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/top/heading_05-59.gif
IP
File type GIF image data, version 89a, 704 x 33\012- data
Hash 4cc9c9128bfb8c41488e05683858deb4
8911a665babfb5abe1fa1ba7c1c0da4e92fc07b9
a831dd1230e40ab90673ce2eed1bd068cb1c91d65b94ab97041c0e35e2956eb6
GET /newsplus/library/pc/img/top/heading_05-59.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 3322
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 22 Mar 2022 15:41:57 GMT
ETag: "cfa-5dad073f45b40"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hoioWBf7hp1S39v_7YVhBpulOeeCegmX7Zzvd_MEkm1zXg9sGfxVEQ==
www2.cr.mufg.jp/newsplus/var/rev0/00003/31563/campaign_pc_88_54.jpg
200 OK 4.5 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/var/rev0/00003/31563/campaign_pc_88_54.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 88x54, components 3\012- data
Hash a2617c1ebb068ece8c45ee8d6eb4b54a
be9fade5fb530f4dd151ae5afc41fd7fdc5555ca
6bc994dd435e2acc5b7bd7142dbebb1c8eea0edcae9b93b79e00be92e1e3694f
GET /newsplus/var/rev0/00003/31563/campaign_pc_88_54.jpg HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4519
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Sat, 26 Nov 2022 15:25:33 GMT
ETag: "11a7-5ee613fd58422"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: viOJTLun5FSZ3AvkFEOR0g_BfbOmQ0BzT-vmj2l9x_YmoQx9JbtryQ==
www2.cr.mufg.jp/newsplus/library/pc/img/top/heading_03.gif
200 OK 10 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/top/heading_03.gif
IP
File type GIF image data, version 89a, 728 x 43\012- data
Hash 75a10982b88b2eb442770015d77f4468
1d1c4db2c5f9d2b2ca266f3922555487c3868a89
4326459cda5fe9e47bda6437c33a68066877be6a59c9c2e04fd9a076611aa6b8
GET /newsplus/library/pc/img/top/heading_03.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 10502
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:43 GMT
ETag: "2906-4d1a30655bfc0"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BM1c8-SGdTgEIFjZ-uMrIgrclfEVRmMw8oxhm1LEhZ9wdkktSDatKQ==
www2.cr.mufg.jp/newsplus/library/pc/img/top/heading_02.gif
200 OK 9.1 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/top/heading_02.gif
IP
File type GIF image data, version 89a, 728 x 43\012- data
Hash 899e73847bb743f204f1b1d8c899f33f
0ca07c00f4d89d63a49f61f329a434b0e09b22f3
5c8ca6018c056d8decce9598f7d84580593f1a6fe0c6fa56393cedcf2ccbd7a3
GET /newsplus/library/pc/img/top/heading_02.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 9114
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:41 GMT
ETag: "239a-4d1a306373b40"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QFfdrt-iGJPIx7zlS4w582j0C2ufPb8QgslrnrJhtxCsEOTV-0u1uQ==
www2.cr.mufg.jp/newsplus/library/pc/img/common/img_10.gif
200 OK 2.4 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/img_10.gif
IP
File type GIF image data, version 89a, 30 x 30\012- data
Hash 590e921188dcd7e42d2997dd79e9e170
15bce7cab4cc82e55370cfc8487c13d35f548022
17446674e51f8a4a4a1723e0f91b68b93a88032c23939a652cdd5357145b4797
GET /newsplus/library/pc/img/common/img_10.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 2421
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Sun, 23 Oct 2016 16:06:57 GMT
ETag: "975-53f8a76ef8a40"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: M9zKEj396gPu5qWXaUcB1yJP9CtechAjW4sH7PLKsSBQN42gUlmI9w==
www2.cr.mufg.jp/newsplus/library/pc/img/common/bg_main.jpg
200 OK 37 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/bg_main.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 172x1833, components 3\012- data
Hash 5e289d1c36e633920b8d1cba98739259
6ce81e94f55edd729ea8f82e6604892dff33b5c3
fd6becba6787e27e1e8c804f095b1002ffc8f77f5f809dde869e9bb1823001f8
GET /newsplus/library/pc/img/common/bg_main.jpg HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/view_css.php?pageId=201&revision=0&mode=0&noTag=1&blockId=0&alias=_home
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3; s_cc=true; s_fid=01E8951D93B61170-04C7E90781F97867; cf=1; s_nr=1669496763539; s_visitstart=1; sc_visit=1; sc_fs=ld; sc_fspage=https%3A%2F%2Fwww2.cr.mufg.jp%2Fnewsplus%2F%3FcardBrand%3D0012%26lid%3Dnews_dc; sc_segmsest=1669496763542; sc_segmhis=1669496763542; sc_segm=1; sc_login_flg=0; s_sq=%5B%5BB%5D%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 36894
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:41 GMT
ETag: "901e-4d1a306373b40"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B7qhiNoS_TXZ5QAZrSS2dEWXTdtaqJSH9CJefTUOwKBUyVbJLr6yog==
www2.cr.mufg.jp/newsplus/library/pc/img/common/icon_03.gif
200 OK 1.2 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/icon_03.gif
IP
File type GIF image data, version 89a, 32 x 13\012- data
Hash db7b644b27e428d09185d386a5e346e3
61640e2c32919a52083278d4636359dff1c6620c
378be771d6b1dbf12a6e13f9934264f2beb0eb14db2bb0053cf27ebb13455233
GET /newsplus/library/pc/img/common/icon_03.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 1211
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:40 GMT
ETag: "4bb-4d1a30627f900"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f2M0PMBaQaN2k4eXMIFWk9gxOIxEgF2GSkw09PKyX_TNZc93ptAtNw==
www2.cr.mufg.jp/newsplus/library/pc/img/common/img_02.gif
200 OK 353 B URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/img_02.gif
IP
File type GIF image data, version 89a, 12 x 16\012- data
Hash 9d1024331ef5413ddc335ec2112b1367
eae157481a429835b8479328eab1c864977a607f
50ac0a23448f3b175f45525b0630b7687970aa9b96e022fdf185c0e86cc6b9be
GET /newsplus/library/pc/img/common/img_02.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/library/common/css/common_pc.css
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3; s_cc=true; s_fid=01E8951D93B61170-04C7E90781F97867; cf=1; s_nr=1669496763539; s_visitstart=1; sc_visit=1; sc_fs=ld; sc_fspage=https%3A%2F%2Fwww2.cr.mufg.jp%2Fnewsplus%2F%3FcardBrand%3D0012%26lid%3Dnews_dc; sc_segmsest=1669496763542; sc_segmhis=1669496763542; sc_segm=1; sc_login_flg=0; s_sq=%5B%5BB%5D%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 353
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:39 GMT
ETag: "161-4d1a30618b6c0"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lkSV4NvFkyrscE_lrgQSsjjb5SIatfdondI34_ipVrZMWI09tJMgpg==
www2.cr.mufg.jp/newsplus/library/pc/img/top/icon_12.gif
200 OK 1.3 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/top/icon_12.gif
IP
File type GIF image data, version 89a, 10 x 10\012- data
Hash 4dd2d30253e6d8ed0f8c00d92e28035b
99ad5d62a22393ee03cbcc5fcc537b8b1ad4b67d
1862d1765a90444967bc612ef49adebc08aa46d59081dc006c78fe0c4cc02719
GET /newsplus/library/pc/img/top/icon_12.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 1260
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:04 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:42 GMT
ETag: "4ec-4d1a306467d80"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hS82srT4EvENMIkeAF1eeWhVVwHp9u2WROBw3DwJ5faonSsC06-TQA==
www2.cr.mufg.jp/newsplus/library/pc/img/common/global-nav_01.gif
200 OK 17 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/global-nav_01.gif
IP
File type GIF image data, version 89a, 980 x 83\012- data
Hash 17f194f91c5eea1579039420c160f39a
6f2ea779684881f81a7f9eec4957c562f596105d
96f80e9a45bd34444d5c41ab60298c5a634b376e39bba44accc536840602f3c2
GET /newsplus/library/pc/img/common/global-nav_01.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/library/common/css/common_pc.css
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3; s_cc=true; s_fid=01E8951D93B61170-04C7E90781F97867; cf=1; s_nr=1669496763539; s_visitstart=1; sc_visit=1; sc_fs=ld; sc_fspage=https%3A%2F%2Fwww2.cr.mufg.jp%2Fnewsplus%2F%3FcardBrand%3D0012%26lid%3Dnews_dc; sc_segmsest=1669496763542; sc_segmhis=1669496763542; sc_segm=1; sc_login_flg=0; s_sq=%5B%5BB%5D%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 17078
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Thu, 27 Nov 2014 22:00:30 GMT
ETag: "42b6-508de45c73b80"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sV4SXlFVNzZXWtNWUORmEyJqCUn13tRSi3Fz8xIiUjfqKttj1wydDg==
www2.cr.mufg.jp/newsplus/library/pc/img/common/logo_login_02.gif
200 OK 2.7 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/logo_login_02.gif
IP
File type GIF image data, version 89a, 210 x 56\012- data
Hash e58f0f6df1f22e04102811ccc3746883
5db7acc50ae0d0425e9bceb9588a119974b81f20
1b97318e7fbf14ceaa30117f56483659c9c2e518be6a9dcd438a4fd006c97d5f
GET /newsplus/library/pc/img/common/logo_login_02.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 2725
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Sun, 17 Feb 2013 15:35:37 GMT
ETag: "aa5-4d5ed5c290440"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qkn-nGen8CoYLV8h_pvpGul4ReIE_YwKNUUbvZKtEW71zveFl_wNaA==
www2.cr.mufg.jp/newsplus/library/pc/img/common/button_01.gif
200 OK 9.5 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/button_01.gif
IP
File type GIF image data, version 89a, 212 x 120\012- data
Hash 33a00603f591ecf1b27805a9c2746d7b
0acac9627086da016f3a32530282aeab1f4b3530
2f9b09ec59b000b2a3aac1de0722f87fe223de00983c9fb79053442c1d7509f0
GET /newsplus/library/pc/img/common/button_01.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/library/common/css/common_pc.css
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3; s_cc=true; s_fid=01E8951D93B61170-04C7E90781F97867; cf=1; s_nr=1669496763539; s_visitstart=1; sc_visit=1; sc_fs=ld; sc_fspage=https%3A%2F%2Fwww2.cr.mufg.jp%2Fnewsplus%2F%3FcardBrand%3D0012%26lid%3Dnews_dc; sc_segmsest=1669496763542; sc_segmhis=1669496763542; sc_segm=1; sc_login_flg=0; s_sq=%5B%5BB%5D%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 9510
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:40 GMT
ETag: "2526-4d1a30627f900"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ESGQTh4aRUwppO6AXi6JyDWYjY6RjBmKVwTwWRo_Y45rapm9bntSOg==
www2.cr.mufg.jp/newsplus/library/pc/img/common/logo_04.gif
200 OK 3.4 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/logo_04.gif
IP
File type GIF image data, version 89a, 140 x 45\012- data
Hash c76374e90a9b2a088342ecc1c47e3f5c
730b5faa358e380cade7af1792151bdacc91bbb5
f744a7fbbd7ebbef453b667c54fb4716f5edf5aa4be76b2a157f37e9310f6ad8
GET /newsplus/library/pc/img/common/logo_04.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 3355
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:38 GMT
ETag: "d1b-4d1a306097480"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4g42Stjj4Fe8B5lDCDA_rGP4BNlp7ZU8siO-3WqaSVsrVXivUfpN4g==
www2.cr.mufg.jp/newsplus/library/pc/img/common/img_11.gif
200 OK 300 B URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/img_11.gif
IP
File type GIF image data, version 89a, 28 x 20\012- data
Hash 6e5416bb3ac7b153afdcfba42c50d67e
9dc9738507e62d1e4792a0308a572ae70c90d37e
ca5e2300a471a2fad50123d88659a63db7baa7718451c8a42b9fba41a49e3238
GET /newsplus/library/pc/img/common/img_11.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 300
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 25 Dec 2012 01:13:40 GMT
ETag: "12c-4d1a30627f900"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LaXw1_3gHpCslnUAGhjYyDRwToIY47lp_YQ93BQzC5fWhq-NUsCc5w==
www2.cr.mufg.jp/newsplus/library/pc/img/common/img_cardselect.gif
200 OK 1.4 kB URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/common/img_cardselect.gif
IP
File type GIF image data, version 89a, 21 x 20\012- data
Hash ab1eb0ed778ca31b5f9755598f0c88d1
313f5cebae44db3e11b6e91892b0a144aa86fc51
945ecb446d227f05fff8b6b2912f8af69962b56d73eab6efd6913bd6f34a6a79
GET /newsplus/library/pc/img/common/img_cardselect.gif HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/library/common/css/common_pc.css
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A60%7Cg%3A480e25fa-0242-4997-979e-751a29595a69983%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A87%7Cd%3A6%7Ce%3A3; s_cc=true; s_fid=01E8951D93B61170-04C7E90781F97867; cf=1; s_nr=1669496763539; s_visitstart=1; sc_visit=1; sc_fs=ld; sc_fspage=https%3A%2F%2Fwww2.cr.mufg.jp%2Fnewsplus%2F%3FcardBrand%3D0012%26lid%3Dnews_dc; sc_segmsest=1669496763542; sc_segmhis=1669496763542; sc_segm=1; sc_login_flg=0; s_sq=%5B%5BB%5D%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 1417
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Sun, 17 Feb 2013 15:35:37 GMT
ETag: "589-4d5ed5c290440"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fAEA-oOaciHaqoU3o4-wzSMsO2YtbNgywVANVh9kYDnNvFqgkml7Cw==
www2.cr.mufg.jp/newsplus/library/pc/img/top/banner_03.jpg
200 OK 0 B URL HTTP/1.1 www2.cr.mufg.jp/newsplus/library/pc/img/top/banner_03.jpg
IP
GET /newsplus/library/pc/img/top/banner_03.jpg HTTP/1.1
Host: www2.cr.mufg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.cr.mufg.jp/newsplus/?cardBrand=0012&lid=news_dc
Cookie: m_cardBrand=0012; PHPSESSID=7dhalsp8r6uq7hgqq7f1jh0983; ADRUM_BT=R%3A0%7Cg%3A4e41f479-c3f9-4cbc-adeb-aea2daa72d63351%7Cn%3Acustomer1_ae014fbb-f5f5-4f91-8a15-bd84ef841810%7Ci%3A88%7Cd%3A564%7Ce%3A278
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 33612
Connection: keep-alive
Date: Sat, 26 Nov 2022 21:06:05 GMT
X-PUBLIS-Status: REDIRECT TO STATIC HTML FILE
Last-Modified: Tue, 22 Mar 2022 15:41:10 GMT
ETag: "834c-5dad071273180"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nB0RJOUIpReDUyxl6Gq8WeCJg-gKEiXsU2rXbi9FmV3__1Z5hily9w==
152.32.147.160
23.36.77.32
93.184.220.29
34.117.237.239