Report - nsw2u.com/page/318?list-of-japanese-enterprises

Report Overview

Visited public
2023-10-30 13:42:42
Tags
URL
nsw2u.com/page/318?list-of-japanese-enterprises
Finishing URL
nsw2u.com/page/318?list-of-japanese-enterprises
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
nsw2u.com | Page 318 of 916 | Download Switch Roms eShop NSP XCI NSZ

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
images.vfl.ru	275945	2001-02-13	2012-10-04 04:24:47	2023-10-29 16:29:40	2.6 kB	389 kB	62.173.140.199
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-10-30 12:53:55	443 B	25 kB	45.133.44.10
joathath.com	unknown	2023-04-12	2023-04-13 03:17:42	2023-10-29 05:22:59	1.9 kB	89 kB	139.45.197.242
pagead2.googlesyndication.com	101	2003-01-21	2021-02-20 16:52:05	2023-10-30 13:23:44	447 B	52 kB	142.250.74.66
i0.wp.com	3021	1997-03-28	2013-09-17 08:14:42	2023-10-30 05:11:06	5.8 kB	206 kB	192.0.77.2
www.google-analytics.com	40	2005-07-18	2012-10-03 03:04:21	2023-10-30 14:06:56	408 B	22 kB	142.250.74.46
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-10-30 05:09:55	666 B	1.4 kB	142.250.74.131
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-10-30 11:41:08	397 B	86 kB	172.64.173.31
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-10-30 05:12:51	1.4 kB	8.0 kB	104.17.25.14
i6.imageban.ru	273763	2009-03-11	2013-01-23 07:04:00	2023-10-29 22:22:34	914 B	96 kB	80.87.200.35
stats.wp.com	2711	1997-03-28	2017-01-30 06:06:59	2023-10-30 05:10:46	400 B	11 kB	192.0.76.3
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-10-30 13:03:56	461 B	8.9 kB	142.250.74.106
professionalswebcheck.com	unknown	2022-04-01	2022-04-02 00:47:29	2023-10-30 13:11:20	424 B	416 B	3.73.202.184
i4.imageban.ru	264685	2009-03-11	2014-01-16 21:56:34	2023-10-30 00:34:57	457 B	53 kB	37.230.117.113
facilitypestilent.com	unknown	2023-09-23	2023-09-23 03:46:27	2023-10-30 01:46:16	485 B	467 B	173.233.137.52
nsw2u.com	unknown	2020-12-05	2020-12-20 03:30:48	2023-10-29 14:37:13	18 kB	1.2 MB	188.114.96.1
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-10-30 05:09:43	453 B	738 B	139.45.195.8
i1.imageban.ru	272078	2009-03-11	2012-08-07 03:39:00	2023-10-30 00:34:57	457 B	53 kB	92.63.103.84
dubunwiseobjections.com	unknown	2023-09-27	2023-09-27 03:37:55	2023-10-29 22:07:52	3.3 kB	32 kB	173.233.139.164
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-10-30 12:51:58	409 B	835 B	172.67.219.12
definedbootnervous.com	unknown	2023-05-22	2023-05-22 04:09:17	2023-10-24 04:13:22	437 B	30 kB	192.243.59.12
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-10-30 13:37:24	1.3 kB	365 kB	142.250.74.168
pixel.wp.com	2545	1997-03-28	2017-01-30 06:31:40	2023-10-30 05:10:47	496 B	239 B	192.0.76.3
c0.wp.com	6988	1997-03-28	2018-09-24 17:59:05	2023-10-30 07:28:06	4.8 kB	320 kB	192.0.77.37
i7.imageban.ru	310737	2009-03-11	2021-07-28 15:57:57	2023-10-30 00:34:57	457 B	61 kB	62.109.19.95
i2.imageban.ru	262355	2009-03-11	2012-07-22 13:31:02	2023-10-29 20:32:52	930 B	99 kB	62.109.31.142
i3.imageban.ru	267915	2009-03-11	2013-12-29 17:42:32	2023-10-28 17:48:53	457 B	87 kB	82.146.61.17

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-30	medium	dubunwiseobjections.com	Sinkholed
2023-10-30	medium	dubunwiseobjections.com	Sinkholed
2023-10-30	medium	facilitypestilent.com	Sinkholed
2023-10-30	medium	joathath.com	Sinkholed
2023-10-30	medium	joathath.com	Sinkholed
2023-10-30	medium	definedbootnervous.com	Sinkholed
2023-10-30	medium	joathath.com	Sinkholed
2023-10-30	medium	dubunwiseobjections.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (64)

	URL	From	Size	First Seen	Last Seen
	c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery.min.js	ScriptElement	88 kB	2023-06-13	2025-05-07
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 23:41 Last Seen2025-05-07 14:22 Times Seen26125 Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 Loading...

	www.googletagmanager.com/gtag/js?id=G-HS5Y0K7QPG&l=dataLayer&cx=c	ScriptElement	213 kB	2023-10-30	2023-10-30
Pretty URL www.googletagmanager.com/gtag/js?id=G-HS5Y0K7QPG&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 14:42 Last Seen2023-10-30 14:42 Times Seen1 Hash feb31839dbd0bbdccb37673c7d592342 bbe8ec3f2ee076a5c85a022645c23bacfd633503 f9e1e3316b38f9aaf77fa097327e0f3e61490629555a5273cb29f089ad4684f7 Loading...

	nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.5.1	ScriptElement	5.3 kB	2023-03-12	2024-08-21
Pretty URL nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.5.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 08:01 Last Seen2024-08-21 08:54 Times Seen29 Hash 005842a52d3a52acfb2023564a25dd05 e1b64022ea15ca6d596e40c3ab04c0e83cf161d5 67c17a1fb58ba2d741009974197106d04f566ff647857d4f638bd82ec7b23079 Loading...

	cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.3.2	ScriptElement	1.9 kB	2023-03-07	2025-05-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.3.2 IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32 Last Seen2025-05-06 05:05 Times Seen982 Hash f6a3dd4ecbf227acbafcff33d68dc71d 7421115ddcd5d436b89a1fd27e0cdce5a01978e6 30b2271be76ee2dd43122d0611f8aa498b9781f4cd03904ca12e12d2e91e9421 Loading...

	nsw2u.com/wp-content/plugins/ad-inserter/js/300x250.js?ver=2.7.31	ScriptElement	23 B	2023-03-08	2024-10-06
Pretty URL nsw2u.com/wp-content/plugins/ad-inserter/js/300x250.js?ver=2.7.31 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:02 Last Seen2024-10-06 09:26 Times Seen26 Hash e509c98a0bcad0ce8e6248ac8eb31de1 ec5fe203df631088270b5f2b0b7a85498a2aeb8b 352ea4dd2d545563bef7eb0ba6d6ebfe4bc9d9e51ab00d9c925cb9e103edee63 Loading...

	banquetunarmedgrater.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL banquetunarmedgrater.com/advertisers.js IP 172.67.219.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 08:32 Times Seen4634890 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=e69db286c9c94bd98790	ScriptElement	6.1 kB	2023-03-08	2024-08-21
Pretty URL nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=e69db286c9c94bd98790 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:09 Last Seen2024-08-21 05:47 Times Seen37 Hash 91c513e6cb0146732809207176f1d769 96282536f398ce6fbc7703317718e1d464ddf43a 1767a65cf7f2309bd57b6e0a0b05c7333ddb92ff0d59493bf6d26bb2b16ff728 Loading...

	unknown	ScriptElement	3.4 kB	2023-08-13	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 04:23 Last Seen2024-08-21 08:54 Times Seen12 Hash 56707025a82573f275588f90b350d3ad f13b7c18e940908856144a8a4783f01984c5c4a7 163e5c7829763a6443786bf0b88bdf7756c6500d6394ecd344a02dd9ba947d27 Loading...

	nsw2u.com/wp-content/themes/posterpro/js/skip-link-focus-fix.js?ver=20130115	ScriptElement	588 B	2023-03-08	2025-01-24
Pretty URL nsw2u.com/wp-content/themes/posterpro/js/skip-link-focus-fix.js?ver=20130115 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:38 Last Seen2025-01-24 22:34 Times Seen69 Hash 19133a01c05f0c08dba58762e981932e b44e5153c6cb4e9e83a2559a5d6cf6c7327b5017 b2ff39ccfc80daf66110e4b104956bc70911dec5c51764de1c19422439a34ba5 Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash e9b5d8a797cb32fa84dd4ff2ca9c9154 de95372bb6d8f3079dc4b531aa7939e105c7085e 3257bff478d23cf0856195c230aa670cb53f3e226235c6d0713308f7d8f2c5ca Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js	ScriptElement	6.6 kB	2023-03-14	2025-05-07
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:30 Last Seen2025-05-07 14:22 Times Seen12765 Hash 9a4f28a615173df36cb84be2b345816e f709263841708d9e40268f24a0072ff4fe811b35 6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6 Loading...

	www.googletagmanager.com/gtag/js?id=G-V5K7GYT3S4&l=dataLayer&cx=c	ScriptElement	228 kB	2023-10-30	2023-10-30
Pretty URL www.googletagmanager.com/gtag/js?id=G-V5K7GYT3S4&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 14:42 Last Seen2023-10-30 14:42 Times Seen1 Hash 164c7086dab4ad48bee4a60c80ec7c18 290fd838122b122fc05300edf517ef5ac185f460 e0c9152a11fac594046c0062743cca007d07acb7e6571ce33e2bef20ea8e3209 Loading...

	unknown	ScriptElement	134 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash f0b1e580a119b35eb5f2edcf9e76a98e 18196244e2e0af06c929b4448ec7233f972a3c56 5606d9b14e07f47abe2b9f6e3816aee55afa48896ebcf86eab9f01d0f4d024c6 Loading...

	unknown	ScriptElement	71 B	2023-03-11	2025-05-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:05 Last Seen2025-05-06 00:28 Times Seen6 Hash f0a3252a3e820aafdc3c482b1818ddc5 0894d698f2c1c222cff5996ad13711584266c1c5 e4bc5c0ca2fb2d1374ff0df4f90581444d5702a9583fbaa7577b67c62bac3f42 Loading...

	nsw2u.com/wp-content/plugins/ad-inserter/js/sponsors.js?ver=2.7.31	ScriptElement	21 B	2023-08-13	2024-08-21
Pretty URL nsw2u.com/wp-content/plugins/ad-inserter/js/sponsors.js?ver=2.7.31 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 04:23 Last Seen2024-08-21 08:54 Times Seen24 Hash 169a5dd1261e0d434162d1af68acbbcd c18d59ed069049b012a61a8e6b958bfb25bc1b71 82b3dabc6615507ef352f36aa08a805d409e883f8024fd01fda43175b6b67b38 Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill.min.js	ScriptElement	16 kB	2023-07-22	2025-05-07
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 18:30 Last Seen2025-05-07 14:22 Times Seen9381 Hash 94dfdbe80f36b3be63ce74ff1135b996 5e05077d99e736af42b2da70e428e7f7df556dd4 4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032 Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/dist/hooks.min.js	ScriptElement	4.6 kB	2023-08-08	2025-05-09
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/dist/hooks.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25 Last Seen2025-05-09 05:45 Times Seen14830 Hash 7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596 Loading...

	nsw2u.com/page/sandbox%20eval%20code		128 B	2023-05-06	2025-05-09
Pretty URL nsw2u.com/page/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-05-09 08:24 Times Seen24342 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	unknown	EventHandler	90 B	2023-05-25	2025-05-04
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-05-25 07:37 Last Seen2025-05-04 05:46 Times Seen49 Hash 08fde8ea209fc5fc4fdb2a9c614edaf8 7b54ed7f80a3c3187c406e0c3d9ad247516a05fa ec939e7c2a87ddbb495dbe67a38c2291826a37c7c00e03f22ba7fb05d290349a Loading...

	unknown	ScriptElement	26 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 8c31977376817f7c3408a9a502304999 2d175b19c62dcd111092e5a3d771d581c1e94b33 ee0ebc8b8f22a7d06d23bd31704a836fe3f83d1a7d420b4567dd9c10a8b79490 Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/dist/url.min.js	ScriptElement	9.1 kB	2023-08-08	2025-04-25
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/dist/url.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:54 Last Seen2025-04-25 07:15 Times Seen680 Hash 16e2e46b37590d0f0b095e0dc1aaaf87 11fd26f35df888a81534699194516b5178c217a4 68355abe687cffeeefe36bc69855523ab4745d0e753f7417138f9a41259cce71 Loading...

	unknown	ScriptElement	59 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 35ec30ea97b57cbc2afd6ef07388c7e2 9226f77ba1717db74a09308024f8b8aec4d0aa36 2844b81916a7dcb268676c4f5cc2071bef6b1aee3379266072bce2381c555185 Loading...

	nsw2u.com/wp-content/themes/posterpro/js/navigation.js?ver=20120206	ScriptElement	1.4 kB	2023-03-08	2024-10-18
Pretty URL nsw2u.com/wp-content/themes/posterpro/js/navigation.js?ver=20120206 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:36 Last Seen2024-10-18 06:17 Times Seen21 Hash 754b8917481d9f5d06105927e924188d 2c679567467fadacb0ef24cfe0160563b79c7232 975fcd769077c94bff0b689fbe3ad59e461ea7c948870bd979d21ad4716ecee9 Loading...

	nsw2u.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-05-09
Pretty URL nsw2u.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:20 Times Seen31212 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	nsw2u.com/wp-content/themes/posterpro/js/tickerme.min.js?ver=1.0	ScriptElement	2.7 kB	2023-03-11	2025-05-06
Pretty URL nsw2u.com/wp-content/themes/posterpro/js/tickerme.min.js?ver=1.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:05 Last Seen2025-05-06 00:28 Times Seen11 Hash cad28f2abc42c8dbd72a2b1fe427a049 bc86b57bb5a5a2ac00782e9f55be573188945e73 3d719a604582143c9dcbe5f077095f01f0e01d40f98cc342c1aa3b6e21e9f00d Loading...

	unknown	ScriptElement	70 B	2023-03-08	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:05 Last Seen2024-08-21 08:58 Times Seen63 Hash dab1184244d47ac25667c940eff90dfc 6cd473b92e1956bd305f0056a46f18b6a4dfd80f 071ab71aea40b26ed6bb74deeb4fb203bd381f3e418588089f4a46d36b3daa07 Loading...

	cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.3.2	ScriptElement	7.9 kB	2023-03-07	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.3.2 IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-09 08:24 Times Seen5253 Hash 45bacd312d5098b4b59f563d8756c15d fa55e2cff078381e5365d95782a95a787d0b7192 3d9120fa621da6d613c1698b7014ec6bdf4620366e8f2b7b547059f4b6f6272b Loading...

	nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=be4054ef01b79af42428	ScriptElement	78 kB	2023-10-28	2024-08-20
Pretty URL nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=be4054ef01b79af42428 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:29 Last Seen2024-08-20 22:07 Times Seen6 Hash 3dc2cd33467b7c7b23b68b580f7acc6e e3571f0171f82fd21304da69f913f7df40525a06 4682dfbb65df513f1f9e15e25cde6563f95bbc2e9d4acc8b7ce610867a100e8b Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery-migrate.min.js	ScriptElement	14 kB	2023-05-09	2025-05-09
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-09 08:24 Times Seen105641 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js	ScriptElement	8.2 kB	2023-03-13	2025-05-09
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32 Last Seen2025-05-09 08:19 Times Seen29734 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	stats.wp.com/w.js?ver=202344	ScriptElement	11 kB	2023-05-15	2024-08-21
Pretty URL stats.wp.com/w.js?ver=202344 IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-15 15:42 Last Seen2024-08-21 09:42 Times Seen1419 Hash f6c87bc49e7646c7ccda489b9defc829 9003fc52b4c4014b4bd9fe2f4506440b299478b2 e97d12898ebf1039197a2a1c2f87bfe3b56f93eca2bfe60a46a1053fab7ad860 Loading...

	nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.min.js	ScriptElement	124 kB	2023-03-07	2025-05-06
Pretty URL nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57 Last Seen2025-05-06 00:28 Times Seen69 Hash 7ed39eb42c8c450b59a24bab9cfa7fae 7fdd3fee90709f703fac533b6061864fcd7ec206 35ddb1ce73a4ac4f4792b00c8b8c56cbf857910ada5e2a0183d898b01adc16bb Loading...

	unknown	ScriptElement	244 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 6b9a59e0e1d811d55fb504c9f8c70095 ff19f212f7dddb549d5d210f1a11db3c567ba227 ccd47febb88c46ff8c73f74f35df3c35f3b6d80abde7e84c15944436b62b48e5 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 08:31 Times Seen340595 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	unknown	ScriptElement	448 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 0e177a5ea6e0758af4586f04fcea1745 5e64a6dcf3abb9c3affe8168d39ed96b716fc7b6 fef84ba04753e3969074484ab8debfc039d2c2cce7ea0fc13f197d123164e393 Loading...

	nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-ajax-search.min.js?ver=5.5.3	ScriptElement	68 kB	2023-03-13	2025-05-05
Pretty URL nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-ajax-search.min.js?ver=5.5.3 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:31 Last Seen2025-05-05 15:56 Times Seen197 Hash 51480f0afb0a30743ae59a3455633c75 2b46f094cb87015fa342da2bf1767413ec5c92b5 108cd01e5eaa34e9942ca8af9f8fe70271d3a3a5028fa085c628c162c3706d2d Loading...

	nsw2u.com/wp-content/plugins/ad-inserter/js/ads.js?ver=2.7.31	ScriptElement	110 B	2023-03-08	2024-10-12
Pretty URL nsw2u.com/wp-content/plugins/ad-inserter/js/ads.js?ver=2.7.31 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:02 Last Seen2024-10-12 13:50 Times Seen32 Hash b7d8aab20ec0137a23e4ff03411bd06c bd7e901bbf5968d13abb3dee762244715541bdfe 651cbb53c3e67a452582c597784a988f2ad5db132c709c279a23ad74b9917448 Loading...

	dubunwiseobjections.com/ed/6c/a5/ed6ca5eb8abc9a864ffa39115799b641.js	ScriptElement	60 kB	2023-10-30	2023-10-30
Pretty URL dubunwiseobjections.com/ed/6c/a5/ed6ca5eb8abc9a864ffa39115799b641.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 14:42 Last Seen2023-10-30 14:42 Times Seen1 Hash 4d030994d28d53464ccdd933102cc257 2741816e723a597b8cb4601354767b3a69593368 22169ee97f24a9f5634d67b39517b1c91c10328660a4c9518ec6c0ac16f33335 Loading...

	unknown	ScriptElement	145 B	2023-05-11	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 18:42 Last Seen2024-08-21 08:54 Times Seen22 Hash a23ba5b3c2d71c61ef5b40a4b5d84a17 8732a5e5f3d3bd88ddedb1cd24c2d17363e019d0 c2ec440a15201b83bbb8914f9e52de7f4455e44a992f6ab761b5bd62f3a1045b Loading...

	c0.wp.com/c/6.3.2/wp-includes/js/dist/i18n.min.js	ScriptElement	9.4 kB	2023-08-08	2025-05-09
Pretty URL c0.wp.com/c/6.3.2/wp-includes/js/dist/i18n.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25 Last Seen2025-05-09 05:45 Times Seen13722 Hash c2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f Loading...

	unknown	ScriptElement	79 B	2023-03-07	2025-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-05-07 12:03 Times Seen635 Hash ab1b0ef42311479d7559bffd29ef8d7d ba1509057a5f82563a2b55a7379f4825fe35bcab 37bf8b4db5288941c20c28fd7c0b201d2270201a94739d64462744ffe6b52f79 Loading...

	unknown	ScriptElement	123 B	2023-03-11	2024-10-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:05 Last Seen2024-10-04 10:45 Times Seen3 Hash a30eecc59882ec82fe24ff7496d610d2 ad707ae4bc8beb55d60dd0f59f7d378cf232515e 40a4076b4332ae78e9064f33aea5a2d6ad8cbe8127713924d3521f5c923826ad Loading...

	joathath.com/tag.min.js	ScriptElement	81 kB	2023-10-27	2023-11-01
Pretty URL joathath.com/tag.min.js IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-27 12:46 Last Seen2023-11-01 02:14 Times Seen277 Hash dcdb74a84033cb062fac67d00d2131b9 de814a6a30d0a96261ace16dfe5c199140c575ca 0cc86e2557d9500456d230530757b5b333957497426d58f24f5af7d88d9ed066 Loading...

	unknown	ScriptElement	68 B	2023-03-07	2025-05-09
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:22 Times Seen24186 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	unknown	ScriptElement	294 B	2023-05-11	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 18:42 Last Seen2024-08-21 08:54 Times Seen12 Hash f73754c10536a2e729f6d06f9e7f191f f69f394a68fcebecbce2ada0f6f8a91ffc077790 06dc51e59503bfca6c59b6050f0dba624b14358f3644d81a3f6605f6586151f6 Loading...

	definedbootnervous.com/a45922fa4966955cecdffbdde5347ae5/invoke.js	ScriptElement	30 kB	2023-10-30	2023-10-30
Pretty URL definedbootnervous.com/a45922fa4966955cecdffbdde5347ae5/invoke.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 14:42 Last Seen2023-10-30 14:42 Times Seen1 Hash 0055d21477876440eb52eafa9e45a32f addce09101433088b8115e8d7ec8dfcb8b244767 567fcd80ec3f3baef90811869f904faa0ec1094f932d1a087f181cff51228f6f Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	ScriptElement	1.6 kB	2023-05-06	2025-05-09
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-05-09 08:24 Times Seen24133 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-08-25	2023-11-23
Pretty URL friendshipmale.com/sfp.js IP 172.64.173.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 12:30 Last Seen2023-11-23 01:47 Times Seen6642 Hash 2d0450888479d4ddda305bd96206b240 5b4595aab1cd3f854718e05db9be0c65a12ab2f6 44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6 Loading...

	nsw2u.com/page/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL nsw2u.com/page/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 08:31 Times Seen341396 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188	ScriptElement	701 B	2023-05-10	2025-05-06
Pretty URL nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 12:45 Last Seen2025-05-06 09:54 Times Seen3090 Hash 328b8123661abdd5f4a0c695e7aa9dcc 4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0 27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2 Loading...

	unknown	ScriptElement	187 B	2023-10-15	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 00:59 Last Seen2024-08-21 04:41 Times Seen10 Hash 91f51021b7facfc276086d27fa65c473 26171fc83df06a093b5760bb0ea2b78f9aacefee e67e7ca5672b9d50d3020a0ea25054f83a552dc00c9377e164bcc9bf34463fdf Loading...

	cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.3.2	ScriptElement	3.1 kB	2023-03-07	2025-05-04
Pretty URL cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.3.2 IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06 Last Seen2025-05-04 15:48 Times Seen326 Hash 94279a9a0c4060a96efcf1da47716f86 ea88b3fd8b01a8b86edfd0f4120cc9a834893018 d41c6733a8c4a3a7f08204de8e3d60e1d2baf17dd7f675a26830fb1047fac40a Loading...

	nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.3	ScriptElement	4.6 kB	2023-10-29	2025-05-07
Pretty URL nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.3 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-29 19:39 Last Seen2025-05-07 18:17 Times Seen752 Hash ce428a87a021e7b3f2eaf54cf42acdd8 61b07035596e0737e5bf55fb13be37b29124511a 66d0c8cbacc09ad8746e64ad28d887186d1f060f04c388c2f1102ee346120a8c Loading...

	unknown	ScriptElement	1.4 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 646521bdc890ea9a61f57aa84e307058 37524c1a0472a53acd7cafc956349b719751280b c1aaf061957b0164fd8c4648dfb072b8a273b667b6b544817c0bd419ef6eb838 Loading...

	nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.5.1	ScriptElement	2.6 kB	2023-03-25	2024-08-21
Pretty URL nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.5.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:50 Last Seen2024-08-21 08:54 Times Seen24 Hash 9c68274c21052262d9bef2672b251874 4919f3fbccaea37c7b1e1b7527d4208c3106b2dc 895b02a349918bd518d94bd7bd9dda9e8bfa45dea210148bd880c4f55b70d72b Loading...

	unknown	ScriptElement	81 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 0125f4b88f614824a87d256a345a6280 66331d039af8055e8e756fb12d8464f72a02af54 f156e604a7d0c7d954284419fb5a08bbde50ed7421d4080ad685b71184534f50 Loading...

	unknown	ScriptElement	340 B	2023-07-16	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-16 15:37 Last Seen2024-08-20 21:47 Times Seen2 Hash d32a1a6dc6b598857e4acc90e507fce0 c7ca44fe217d8fd595731274e38777830be59c2d 1037c53fda32296b220a3675ddf3a8b169d01b2a01e43f4f3f7793fc32e7e875 Loading...

	www.googletagmanager.com/gtag/js?id=UA-262573192-2	ScriptElement	190 kB	2023-10-30	2023-10-30
Pretty URL www.googletagmanager.com/gtag/js?id=UA-262573192-2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 14:42 Last Seen2023-10-30 14:42 Times Seen1 Hash acf693338d57e0333738ae791f6d879f 15358f82cf0982fb292e6421890f896c2c1c6da4 37e76da79c194e1f5e9b26736599484ae117d5765ffa92021644fd6f00e80896 Loading...

	nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=0aa4f53ecbe8911b5307	ScriptElement	7.6 kB	2023-09-23	2023-11-28
Pretty URL nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=0aa4f53ecbe8911b5307 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 16:46 Last Seen2023-11-28 22:45 Times Seen29 Hash 70c183398322d73b50b8b4abece239a9 e79dec738456aa7882ffbaf481eb13849da7c227 969eb11be3a2271857373fe0e1424232f62f24ebc4cac8cd532c35d43634c046 Loading...

	nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.core.js	ScriptElement	6.2 kB	2023-03-09	2024-10-18
Pretty URL nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.core.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:16 Last Seen2024-10-18 06:17 Times Seen18 Hash df624c8da81dfe8e2f2f558d9139d1d0 90c0e4b670c1a0ee9b772255ac970a43c30df77e d70382f3bf05e5893b55e8cd88979ca435c34e1fcadf16a14cf0c2fd56e35791 Loading...

	nsw2u.com/wp-content/plugins/ad-inserter/js/banner.js?ver=2.7.31	ScriptElement	22 B	2023-03-08	2024-10-06
Pretty URL nsw2u.com/wp-content/plugins/ad-inserter/js/banner.js?ver=2.7.31 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:02 Last Seen2024-10-06 09:26 Times Seen26 Hash 41bd53fe0ee631d5cfd895e18a53291d 9d9d3c42c53ad7f906cb083a0d2d37afb4537764 dfb2e16986e257b608b45d14396378a8f2ac6a7321c0dc2f13c66a33ec8e4a40 Loading...

	nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=a812fafe63c2ca6c059f	ScriptElement	77 kB	2023-10-28	2024-08-20
Pretty URL nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=a812fafe63c2ca6c059f IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 03:29 Last Seen2024-08-20 22:07 Times Seen11 Hash bb2bcd8e8e67be4e7407da63a5d1fcd9 932cfee6f2c001ae53f7a7de218c83e5d4079bf8 fef6a375b1c9c9d2ad495d873e86826359854782397fa62ef0dc747f51d95ea8 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d770e294ecb6b914e3848cb5973170db	6.2 kB	2024-08-20 21:47	2024-08-20 21:47
Pretty Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash d770e294ecb6b914e3848cb5973170db f1679e47a07a50ed2d2e3a4f402fc622431ae505 b3ef6cd859935aba66bab4dda373829923c06547f32b07bf3eff81d08b4ac976 Loading...

	#2 Eval - 1f4e7d14acd3e33d1782465263693704	2.1 kB	2024-08-20 21:47	2024-08-20 21:47
Pretty Observations First Seen2024-08-20 21:47 Last Seen2024-08-20 21:47 Times Seen1 Hash 1f4e7d14acd3e33d1782465263693704 c930f96b3906283e9e57a69aadf03ecb20e1355d 0cf08f4386e3676c77fd3ac04924d55f608584e72d175d0f56a1e5f02d38583c Loading...

HTTP Transactions (96)

URL IP Response Size

nsw2u.com/wp-content/plugins/chp-ads-block-detector/assets/img/icon.png

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/chp-ads-block-detector/assets/img/icon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
PNG image data, 350 x 350, 8-bit colormap, non-interlaced\012- data
Size
16 kB (15671 bytes)
Hash
134fce13c189ed0e483a1bddb6406204
eed559ac52e9731c56a1fb03eb94fc82e551bb66
723597ec6e9461e79c420faf0454170cf6f9243246a4fac3cef5f05a4b5be791

HTTP Headers

GET /wp-content/plugins/chp-ads-block-detector/assets/img/icon.png HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/png
content-length: 15671
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:29:33 GMT
cf-cache-status: HIT
age: 2312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uAduLUIzTgPKJrWU7VfNcPQgcpmUPFo3cVH26n7OAdxuPoOFu2ik9i0zfW0MPYIuKqUkt5XX5BCH9RM8KARQTX%2BAqKshFENvoCDttI0DVlXuvlWiXKe4xZZUDh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c398cb56b4-OSL
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/ad-inserter/images/ads.png

188.114.96.1

200 OK

95 B

URL GET HTTP/3
nsw2u.com/wp-content/plugins/ad-inserter/images/ads.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size
95 B (95 bytes)
Hash
71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517

HTTP Headers

GET /wp-content/plugins/ad-inserter/images/ads.png HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/png
content-length: 95
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Fri, 22 Sep 2023 09:31:12 GMT
cf-cache-status: HIT
age: 2312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2FEUJMZzsnxVhaZibCwVJZHsuRow8Vcl7r1AjPl4m04Yx8sqEPqmjOR%2FdXRBtkrNkgQ56CKbWnblr6tPqBeJ35n95HOXKayEUUvmphgvHZE7YIJDMBuY0BGvJ60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c398ce56b4-OSL
alt-svc: h3=":443"; ma=86400

i0.wp.com/images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg?ssl=1

192.0.77.2

200 OK

32 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg?ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 549x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
32 kB (31608 bytes)
Hash
3dde27351094fd110611b7099df7612d
1f8633afc647ab96114d9cd7b87b2e1bd9d73fae
f7118208621987432e4309b2429b3ca26191166ec2b5b4dfab15204958f9de33

HTTP Headers

GET /images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 31608
last-modified: Sat, 25 Mar 2023 13:28:37 GMT
expires: Tue, 25 Mar 2025 01:28:37 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5948b74d64865dea"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/game-2u.com/wp-content/uploads/2023/10/River-City-Rival-Showdown-TENOKE-PC.jpg?ssl=1

192.0.77.2

200 OK

18 kB

URL GET HTTP/2
i0.wp.com/game-2u.com/wp-content/uploads/2023/10/River-City-Rival-Showdown-TENOKE-PC.jpg?ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 241x339, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
18 kB (17978 bytes)
Hash
206b1d8dd55f65fd4e26963b017d362c
8a49b8064a96ccb127b114a90f2e80e1efba29a5
a9852c245704cdf595766b9c0ea3bc13d83ebd46e8c458d30c9d491420f32786

HTTP Headers

GET /game-2u.com/wp-content/uploads/2023/10/River-City-Rival-Showdown-TENOKE-PC.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 17978
last-modified: Thu, 26 Oct 2023 02:41:44 GMT
expires: Sat, 25 Oct 2025 14:41:44 GMT
cache-control: public, max-age=63115200
link: <https://game-2u.com/wp-content/uploads/2023/10/River-City-Rival-Showdown-TENOKE-PC.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "754d85f4c22caad8"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/nsw2u.com/wp-content/uploads/2022/07/nsw2u.png?w=216&ssl=1

192.0.77.2

200 OK

2.8 kB

URL GET HTTP/2
i0.wp.com/nsw2u.com/wp-content/uploads/2022/07/nsw2u.png?w=216&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.8 kB (2836 bytes)
Hash
948c6dc3d3c1e2e9d315418f6eabe2bf
ed06ff1f0994f3be033f22d808241d3fcca9d1e8
3a2e29960ba6130c22ce96089a7592ae91b6a0d6a11595a10daaa9662522ad0b

HTTP Headers

GET /nsw2u.com/wp-content/uploads/2022/07/nsw2u.png?w=216&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 2836
last-modified: Sat, 24 Sep 2022 18:25:42 GMT
expires: Tue, 24 Sep 2024 06:25:42 GMT
cache-control: public, max-age=63115200
link: <https://nsw2u.com/wp-content/uploads/2022/07/nsw2u.png>; rel="canonical"
x-content-type-options: nosniff
etag: "0101732b85ce3bdc"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?ssl=1

192.0.77.2

200 OK

44 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 549x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
44 kB (44016 bytes)
Hash
75c6cf85f705a0e0864e59824ab2c735
cab75b114fd4bfefe79a88008824f651801bd557
8e2a80cbd5c939e48360b46716bf1cd7598ad513f525a34ae9b2a3f549c0d18e

HTTP Headers

GET /images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 44016
last-modified: Mon, 02 Oct 2023 12:52:59 GMT
expires: Thu, 02 Oct 2025 00:52:59 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "88dd70ee97fb240b"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?ssl=1

192.0.77.2

200 OK

42 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 549x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
42 kB (42380 bytes)
Hash
d4928f7b25fded3f8d8a950e9d163f32
d3c246313c0b85eb96b9bea998baeb1c8da5a7c5
6590cb89e20fcfe488bf87db73a0a86d040513f68b0711e6456c0a0da091bce4

HTTP Headers

GET /images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 42380
last-modified: Tue, 10 Oct 2023 09:05:01 GMT
expires: Thu, 09 Oct 2025 21:05:01 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1f81867bb8a4a38b"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/game-2u.com/wp-content/uploads/2023/09/Boti-Byteland-Overclocked-TENOKE-PC.jpg?ssl=1

192.0.77.2

200 OK

15 kB

URL GET HTTP/2
i0.wp.com/game-2u.com/wp-content/uploads/2023/09/Boti-Byteland-Overclocked-TENOKE-PC.jpg?ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 241x339, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
15 kB (15182 bytes)
Hash
b9edb2f74e263daba0dd3e74c5cc9ac2
ed09b63ed94cd6befd33330691f07882e78bd815
d91ff24335563f01cd373f776bc81067b1588bac8b030450e385ea1f71320b8f

HTTP Headers

GET /game-2u.com/wp-content/uploads/2023/09/Boti-Byteland-Overclocked-TENOKE-PC.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 15182
last-modified: Thu, 26 Oct 2023 07:19:03 GMT
expires: Sat, 25 Oct 2025 19:19:03 GMT
cache-control: public, max-age=63115200
link: <https://game-2u.com/wp-content/uploads/2023/09/Boti-Byteland-Overclocked-TENOKE-PC.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ba0e9e1f747e57b5"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/game-2u.com/wp-content/uploads/2023/10/Slay-the-Princess-GoldBerg-PC.jpg?ssl=1

192.0.77.2

200 OK

19 kB

URL GET HTTP/2
i0.wp.com/game-2u.com/wp-content/uploads/2023/10/Slay-the-Princess-GoldBerg-PC.jpg?ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 241x339, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
19 kB (18850 bytes)
Hash
f574f3c632bf4a622d797e4cad6f09ce
8c10499cf291fa022077d0264d9082e1b792d2ac
4133da674b65a322b962061e4e3f4d6b2be5c4f299a4f3412aa5226d03f3ecaf

HTTP Headers

GET /game-2u.com/wp-content/uploads/2023/10/Slay-the-Princess-GoldBerg-PC.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 18850
last-modified: Wed, 25 Oct 2023 20:48:08 GMT
expires: Sat, 25 Oct 2025 08:48:08 GMT
cache-control: public, max-age=63115200
link: <https://game-2u.com/wp-content/uploads/2023/10/Slay-the-Princess-GoldBerg-PC.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1df4db5536a77312"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/ad-inserter/js/300x250.js?ver=2.7.31

188.114.96.1

200 OK

23 B

URL GET HTTP/3
nsw2u.com/wp-content/plugins/ad-inserter/js/300x250.js?ver=2.7.31
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with no line terminators
Size
23 B (23 bytes)
Hash
e509c98a0bcad0ce8e6248ac8eb31de1
ec5fe203df631088270b5f2b0b7a85498a2aeb8b
352ea4dd2d545563bef7eb0ba6d6ebfe4bc9d9e51ab00d9c925cb9e103edee63

HTTP Headers

GET /wp-content/plugins/ad-inserter/js/300x250.js?ver=2.7.31 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
content-length: 23
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=25
expires: max-age=A10368000, public
last-modified: Fri, 22 Sep 2023 09:31:13 GMT
cf-cache-status: HIT
age: 2312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2QLcMmjOk%2B5mODbqSRoC5GM1OR75ysGk8pWFsWgSNYmUulScZjA7706VTrrs%2Bktz1qWy578ohLG1VNTynYRIQlkYQGVEwA9mbEcJxpaoURG9VGLIuc%2BwZRgjeCA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c6dc2756b4-OSL
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/ad-inserter/js/banner.js?ver=2.7.31

188.114.96.1

200 OK

22 B

URL GET HTTP/3
nsw2u.com/wp-content/plugins/ad-inserter/js/banner.js?ver=2.7.31
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
41bd53fe0ee631d5cfd895e18a53291d
9d9d3c42c53ad7f906cb083a0d2d37afb4537764
dfb2e16986e257b608b45d14396378a8f2ac6a7321c0dc2f13c66a33ec8e4a40

HTTP Headers

GET /wp-content/plugins/ad-inserter/js/banner.js?ver=2.7.31 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
content-length: 22
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=24
expires: max-age=A10368000, public
last-modified: Fri, 22 Sep 2023 09:31:13 GMT
cf-cache-status: HIT
age: 2312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8dMZcRjId0mliAsy2AplukqJ5FJo61%2BOi24hBitmvIfPHRv24pnMUDPkuxrLPA06jtz0WKBTgyyXvOxUIgPKa8qh0zONTGhguKWC7LJZrFcM3NjDF4BTo99k2Zs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c6ec2d56b4-OSL
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/ad-inserter/js/sponsors.js?ver=2.7.31

188.114.96.1

200 OK

21 B

URL GET HTTP/3
nsw2u.com/wp-content/plugins/ad-inserter/js/sponsors.js?ver=2.7.31
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
169a5dd1261e0d434162d1af68acbbcd
c18d59ed069049b012a61a8e6b958bfb25bc1b71
82b3dabc6615507ef352f36aa08a805d409e883f8024fd01fda43175b6b67b38

HTTP Headers

GET /wp-content/plugins/ad-inserter/js/sponsors.js?ver=2.7.31 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
content-length: 21
cache-control: public, max-age=16070400
cf-bgj: minify
expires: max-age=A10368000, public
last-modified: Fri, 22 Sep 2023 09:31:14 GMT
cf-cache-status: HIT
age: 2312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s45oZR8G8e1ds9Lph%2BK%2B37yWEle9ykE24uVe5baj6F4mzH7pVk6DedLSVkiodz%2Bf4TyE%2BUr91O%2BmhwW8ev4Bt5twnTCe1i5%2B8CU1X1ew7WnkFbNlezRKqI0HIGc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c6ec3256b4-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.3.2

104.17.25.14

200 OK

3.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.3.2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7862)
Size
3.2 kB (3150 bytes)
Hash
45bacd312d5098b4b59f563d8756c15d
fa55e2cff078381e5365d95782a95a787d0b7192
3d9120fa621da6d613c1698b7014ec6bdf4620366e8f2b7b547059f4b6f6272b

HTTP Headers

GET /ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.3.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 3150
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-1ed1"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 389432
expires: Sat, 19 Oct 2024 13:42:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pUBDI35O8ilVmrigRJn9a3Vn02jYdorY%2FCO1sIaHOguDjmbz20HhiCuwGZpXoKSUhURreOHknfjMLFF7O1023BJihq0rn7WGq%2FeNXa9BU9Cw54Joxpffn8Zv5G1N2sA7Gsao2FJ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81e414c77dae56af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.3.2

104.17.25.14

200 OK

1.1 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.3.2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3036)
Size
1.1 kB (1101 bytes)
Hash
94279a9a0c4060a96efcf1da47716f86
ea88b3fd8b01a8b86edfd0f4120cc9a834893018
d41c6733a8c4a3a7f08204de8e3d60e1d2baf17dd7f675a26830fb1047fac40a

HTTP Headers

GET /ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.3.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 1101
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-bf7"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 208967
expires: Sat, 19 Oct 2024 13:42:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8hgReTiXDOAxKRly4GWb633gM5w8Frb1ST0zvo%2B2srOsvwaZqV%2FF3rgINN8WsdQxHBFP8GSqO3diqHyL9mmbe8Q4zCIt2Cz8ny%2BwRjfeEI6r%2FZa27vEmLgfTqERw%2F%2B7t8qdEh3l2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81e414c78dc456af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.3.2

104.17.25.14

200 OK

677 B

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.3.2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1845)
Size
677 B (677 bytes)
Hash
f6a3dd4ecbf227acbafcff33d68dc71d
7421115ddcd5d436b89a1fd27e0cdce5a01978e6
30b2271be76ee2dd43122d0611f8aa498b9781f4cd03904ca12e12d2e91e9421

HTTP Headers

GET /ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.3.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 677
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-750"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 473378
expires: Sat, 19 Oct 2024 13:42:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzPzl1HzGsZNyoKS1eWhVj%2BS6hPWfkvTw91oiMZ5np4lFrSsWgD9RIw0gpsNb644D2Tcx4Nft0T%2FizHcClDtZaA%2BT2WVIKJAi4SVTC1SxguDhbyBRP%2BqY0rH9LSgL2ygZ4HXFqvo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81e414c78dc256af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=0aa4f53ecbe8911b5307

188.114.96.1

200 OK

80 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=0aa4f53ecbe8911b5307
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (7553), with no line terminators
Size
80 kB (80298 bytes)
Hash
70c183398322d73b50b8b4abece239a9
e79dec738456aa7882ffbaf481eb13849da7c227
969eb11be3a2271857373fe0e1424232f62f24ebc4cac8cd532c35d43634c046

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.js?minify=false&ver=0aa4f53ecbe8911b5307 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
expires: max-age=A10368000, public
last-modified: Mon, 23 Oct 2023 20:17:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GjzX6obp2H0POWVXCeQ8JYDkGFCwnugoXd34450b27ToVWQ1Qvkgfjx%2FPSSuKYnWfymovG4u24k8Y7b7g1JsdBXv%2FUvJ1er1C1OC4oxNrXZriZyjWYnyAjIbi0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c9056b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=UA-262573192-2

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-262573192-2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE
ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68697 bytes)
Hash
acf693338d57e0333738ae791f6d879f
15358f82cf0982fb292e6421890f896c2c1c6da4
37e76da79c194e1f5e9b26736599484ae117d5765ffa92021644fd6f00e80896

HTTP Headers

GET /gtag/js?id=UA-262573192-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Oct 2023 13:42:22 GMT
expires: Mon, 30 Oct 2023 13:42:22 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Oct 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68697
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?resize=405%2C155&ssl=1

192.0.77.2

200 OK

7.7 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?resize=405%2C155&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 405x155, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.7 kB (7712 bytes)
Hash
1f2664d6059193e6c1a59ee7ef14d1a0
46542860abd849426ea23d66c601ff0888d735db
f685610012cd711cdf0f3f186e878030c152058d3705dd751d6048d480bc2621

HTTP Headers

GET /images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?resize=405%2C155&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 7712
last-modified: Sat, 11 Jun 2022 22:08:00 GMT
expires: Tue, 11 Jun 2024 10:08:00 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "416c01d7e07bbbbf"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.5.1

188.114.96.1

200 OK

4.4 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.5.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (833)
Size
4.4 kB (4356 bytes)
Hash
005842a52d3a52acfb2023564a25dd05
e1b64022ea15ca6d596e40c3ab04c0e83cf161d5
67c17a1fb58ba2d741009974197106d04f566ff647857d4f638bd82ec7b23079

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.5.1 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=8005
expires: max-age=A10368000, public
last-modified: Fri, 20 Oct 2023 08:20:23 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CW%2BVMHjigo0HpZKqi%2BaEHk7nfpoASkgSWCaKSq7wPMp6Pb7F26rDyC%2FgcXr0FZEgEikea6dfnL9P4M2bdKMRfk1VYsx70nPrgERvT8Q9Fsq9dUan7YCwa6IxlRw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c8956b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/ad-inserter/js/ads.js?ver=2.7.31

188.114.96.1

200 OK

440 B

URL GET HTTP/3
nsw2u.com/wp-content/plugins/ad-inserter/js/ads.js?ver=2.7.31
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with no line terminators
Size
440 B (440 bytes)
Hash
b7d8aab20ec0137a23e4ff03411bd06c
bd7e901bbf5968d13abb3dee762244715541bdfe
651cbb53c3e67a452582c597784a988f2ad5db132c709c279a23ad74b9917448

HTTP Headers

GET /wp-content/plugins/ad-inserter/js/ads.js?ver=2.7.31 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=112
expires: max-age=A10368000, public
last-modified: Fri, 22 Sep 2023 09:31:13 GMT
cf-cache-status: HIT
age: 2312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IFYTEeSAoKkkvyyaBgyA1dACYE7xwoNql8L%2FAqpyNNEooem0CJg%2F08nx9sLUrmBOngF4rVeyOlTwCzvewQYcFWF9jQsp2BO%2BHZmmzt1zheJfCOdyc2MDpDy7fxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c72c6f56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google-analytics.com/analytics.js

142.250.74.46

200 OK

21 kB

URL GET HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.46:443
ASN
#15169 GOOGLE

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE
ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT

File type
ASCII text, with very long lines (2343)
Size
21 kB (20994 bytes)
Hash
575b5480531da4d14e7453e2016fe0bc
e5c5f3134fe29e60b591c87ea85951f0aea36ee1
de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20994
date: Mon, 30 Oct 2023 13:14:19 GMT
expires: Mon, 30 Oct 2023 15:14:19 GMT
cache-control: public, max-age=7200
age: 1684
last-modified: Mon, 12 Jun 2023 18:23:07 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-V5K7GYT3S4&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-V5K7GYT3S4&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE
ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT

File type
ASCII text, with very long lines (5788)
Size
81 kB (80700 bytes)
Hash
164c7086dab4ad48bee4a60c80ec7c18
290fd838122b122fc05300edf517ef5ac185f460
e0c9152a11fac594046c0062743cca007d07acb7e6571ce33e2bef20ea8e3209

HTTP Headers

GET /gtag/js?id=G-V5K7GYT3S4&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Oct 2023 13:42:23 GMT
expires: Mon, 30 Oct 2023 13:42:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80700
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188

188.114.96.1

200 OK

77 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (701), with no line terminators
Size
77 kB (77178 bytes)
Hash
328b8123661abdd5f4a0c695e7aa9dcc
4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0
27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
expires: max-age=A10368000, public
last-modified: Mon, 23 Oct 2023 20:17:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uBE3%2BPuQDCAk0PS9mcm%2Fi0kngtgRxrnBvb4fROYyK35sfSh5czokyR1G%2BJtEPXyVKePup85X3YQuy6V%2F%2BjqzxiwpdHEc9ZaoZCS28douyWXYHFjflZ0yH5z4bJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c76ca956b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.5.1

188.114.96.1

200 OK

42 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.5.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (439)
Size
42 kB (41515 bytes)
Hash
9c68274c21052262d9bef2672b251874
4919f3fbccaea37c7b1e1b7527d4208c3106b2dc
895b02a349918bd518d94bd7bd9dda9e8bfa45dea210148bd880c4f55b70d72b

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.5.1 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=3949
expires: max-age=A10368000, public
last-modified: Fri, 20 Oct 2023 08:20:23 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jVm%2B13JKEhdvEAUo9APRmtfqofMrrCEpVk0JgxntbhJOzAS1r9hBTXPO%2F37bxb3qhXfy1iv4keSd1kr62hiTva%2BhVk7ReKX7tC0t%2BWJj%2BERpzI6Vjihl61vkd7c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c72c7556b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

professionalswebcheck.com/stats

3.73.202.184

200 OK

40 B

URL GET HTTP/2
professionalswebcheck.com/stats
IP
3.73.202.184:443
ASN
#16509 AMAZON-02

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
bffb94163582689b30a91eb64682e265
20a1a3c3c11e043afca5c28067527cc49f319448
f22c8e609f304f02df441c4a2cea22873291918307fba9e3d8e720614acd6255

HTTP Headers

GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsw2u.com
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://nsw2u.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b91585c4-d67f-4dc0-8e23-d3ad82386c25:1:1; expires=Thu, 27 Oct 2033 13:42:24 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.8420819822569598

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.8420819822569598
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.8420819822569598 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js

192.0.77.37

200 OK

28 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (8171), with no line terminators
Size
28 kB (27816 bytes)
Hash
dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4

HTTP Headers

GET /c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e006d61b9fc4b3c2ebb071cb53144a47
fe66575767a764b718897d29004e2811d04f1ac3
b14db9107429512959f0b2d3bc72692baf38168abf195040d95203eba0a643dd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 13:42:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js

142.250.74.66

200 OK

51 kB

URL GET HTTP/2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
142.250.74.66:443
ASN
#15169 GOOGLE

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint82:04:97:04:31:A3:2D:AA:4C:8E:5F:C5:17:F2:BA:95:62:13:A6:FD
ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT

File type
ASCII text, with very long lines (3968)
Size
51 kB (51073 bytes)
Hash
939b6e4cad16bf82580ee2d20fb2ee8e
8fe06e99acc8133ad4fe4807fa7cb122cab73d1d
286812bd4c375780d199347100b5ae8eebf64b3b180e63e06d792fa700a559b5

HTTP Headers

GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsw2u.com
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 30 Oct 2023 13:42:24 GMT
expires: Mon, 30 Oct 2023 13:42:24 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7080782093090252717
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51073
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?w=1280&resize=1280&ssl=1

192.0.77.2

200 OK

7.7 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?w=1280&resize=1280&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 405x155, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.7 kB (7712 bytes)
Hash
1f2664d6059193e6c1a59ee7ef14d1a0
46542860abd849426ea23d66c601ff0888d735db
f685610012cd711cdf0f3f186e878030c152058d3705dd751d6048d480bc2621

HTTP Headers

GET /images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?w=1280&resize=1280&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: image/webp
content-length: 7712
last-modified: Sun, 19 Feb 2023 09:06:57 GMT
expires: Tue, 18 Feb 2025 21:06:57 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "95d72d4081ab31e0"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e006d61b9fc4b3c2ebb071cb53144a47
fe66575767a764b718897d29004e2811d04f1ac3
b14db9107429512959f0b2d3bc72692baf38168abf195040d95203eba0a643dd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Oct 2023 13:42:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill.min.js

192.0.77.37

200 OK

5.7 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (16142), with no line terminators
Size
5.7 kB (5719 bytes)
Hash
94dfdbe80f36b3be63ce74ff1135b996
5e05077d99e736af42b2da70e428e7f7df556dd4
4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032

HTTP Headers

GET /c/6.3.2/wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=496b00be21e64e0499b31deebf633dd4

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=496b00be21e64e0499b31deebf633dd4
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
6518b7993705357fb25636698649c51a
78d2a4e4aff37b444ee9aa9548dc06adcdcf063b
63f56db6bd41d50e9a219e16218ccf36048c9c23e625e49660251dd812b61398

HTTP Headers

GET /gid.js?userId=496b00be21e64e0499b31deebf633dd4 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsw2u.com
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://nsw2u.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=496b00be21e64e0499b31deebf633dd4; expires=Tue, 29 Oct 2024 13:42:25 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

images.vfl.ru/ii/1692466089/24d36bc8/38995517.jpg

62.173.140.199

200 OK

67 kB

URL GET HTTP/1.1
images.vfl.ru/ii/1692466089/24d36bc8/38995517.jpg
IP
62.173.140.199:443
ASN
#34300 Internet-Cosmos LLC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.vfl.ru
FingerprintD9:F0:63:03:03:30:7F:C2:7F:42:0C:BB:FC:94:2E:0B:8F:53:F3:04
ValidityThu, 05 Oct 2023 07:19:50 GMT - Wed, 03 Jan 2024 07:19:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.9], baseline, precision 8, 432x700, components 3\012- data
Size
67 kB (66636 bytes)
Hash
81eb51e7c3a0df2a962b5b00d61669ff
42c531b818a0bc7e01c602c8668f21065d8cd67d
9ee994cfc66772056b1ae42f4012412d4a9f49fc8250c2c22153e54caed7b965

HTTP Headers

GET /ii/1692466089/24d36bc8/38995517.jpg HTTP/1.1
Host: images.vfl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: image/jpeg
Content-Length: 66636
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Sat, 19 Aug 2023 17:28:09 GMT
ETag: "64e0fba9-1044c"
Expires: Wed, 29 Nov 2023 13:42:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

images.vfl.ru/ii/1697025199/2d40d0fc/39033877.jpg

62.173.140.199

200 OK

71 kB

URL GET HTTP/1.1
images.vfl.ru/ii/1697025199/2d40d0fc/39033877.jpg
IP
62.173.140.199:443
ASN
#34300 Internet-Cosmos LLC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.vfl.ru
FingerprintD9:F0:63:03:03:30:7F:C2:7F:42:0C:BB:FC:94:2E:0B:8F:53:F3:04
ValidityThu, 05 Oct 2023 07:19:50 GMT - Wed, 03 Jan 2024 07:19:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.10], baseline, precision 8, 432x700, components 3\012- data
Size
71 kB (70673 bytes)
Hash
c9578ce1b30a7957a4f58916181545c1
5edd16bdbdd4c4caacd7ba9408b15b01bbb765fe
881c108606af7bdf549477962370e9b2e17f1473a875354f37a09c634e34d492

HTTP Headers

GET /ii/1697025199/2d40d0fc/39033877.jpg HTTP/1.1
Host: images.vfl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: image/jpeg
Content-Length: 70673
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Wed, 11 Oct 2023 11:53:19 GMT
ETag: "65268caf-11411"
Expires: Wed, 29 Nov 2023 13:42:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

images.vfl.ru/ii/1696499345/2d834ce4/39025715.jpg

62.173.140.199

200 OK

46 kB

URL GET HTTP/1.1
images.vfl.ru/ii/1696499345/2d834ce4/39025715.jpg
IP
62.173.140.199:443
ASN
#34300 Internet-Cosmos LLC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.vfl.ru
FingerprintD9:F0:63:03:03:30:7F:C2:7F:42:0C:BB:FC:94:2E:0B:8F:53:F3:04
ValidityThu, 05 Oct 2023 07:19:50 GMT - Wed, 03 Jan 2024 07:19:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.10], baseline, precision 8, 432x700, components 3\012- data
Size
46 kB (45689 bytes)
Hash
d54f3e961e843224381b52420787300b
b24ff4dd6ff0b3c210ac80ccec30d1612bfb2c70
230c8719f7ff0cd67d89b8c5052dcc864b6c7ebbb62bf2ec21228af727652049

HTTP Headers

GET /ii/1696499345/2d834ce4/39025715.jpg HTTP/1.1
Host: images.vfl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: image/jpeg
Content-Length: 45689
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Thu, 05 Oct 2023 09:49:05 GMT
ETag: "651e8691-b279"
Expires: Wed, 29 Nov 2023 13:42:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

images.vfl.ru/ii/1694604934/0d07e435/39009949.jpg

62.173.140.199

200 OK

57 kB

URL GET HTTP/1.1
images.vfl.ru/ii/1694604934/0d07e435/39009949.jpg
IP
62.173.140.199:443
ASN
#34300 Internet-Cosmos LLC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.vfl.ru
FingerprintD9:F0:63:03:03:30:7F:C2:7F:42:0C:BB:FC:94:2E:0B:8F:53:F3:04
ValidityThu, 05 Oct 2023 07:19:50 GMT - Wed, 03 Jan 2024 07:19:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.9], baseline, precision 8, 432x700, components 3\012- data
Size
57 kB (56936 bytes)
Hash
1b3e32337bbde3922e0e9f72aa72002d
100b45332c71a4eb2e6c66d6de40bcc83f29c989
e67f85bbe57ff956ee312dda7de903700030b79bb4ef76d09c192a5da9a33751

HTTP Headers

GET /ii/1694604934/0d07e435/39009949.jpg HTTP/1.1
Host: images.vfl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: image/jpeg
Content-Length: 56936
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Wed, 13 Sep 2023 11:35:34 GMT
ETag: "65019e86-de68"
Expires: Wed, 29 Nov 2023 13:42:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

images.vfl.ru/ii/1696606849/450212ed/39028293.jpg

62.173.140.199

200 OK

86 kB

URL GET HTTP/1.1
images.vfl.ru/ii/1696606849/450212ed/39028293.jpg
IP
62.173.140.199:443
ASN
#34300 Internet-Cosmos LLC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.vfl.ru
FingerprintD9:F0:63:03:03:30:7F:C2:7F:42:0C:BB:FC:94:2E:0B:8F:53:F3:04
ValidityThu, 05 Oct 2023 07:19:50 GMT - Wed, 03 Jan 2024 07:19:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.10], baseline, precision 8, 432x700, components 3\012- data
Size
86 kB (85525 bytes)
Hash
f31e59ed8b4014e8c240b752b138ca58
92fe10034473f9c1939631c2c50642bfa521bf0f
2e559285efef0bb13f7cb134710ea244f456a76074859562fff2cd86952aed87

HTTP Headers

GET /ii/1696606849/450212ed/39028293.jpg HTTP/1.1
Host: images.vfl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: image/jpeg
Content-Length: 85525
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Fri, 06 Oct 2023 15:40:49 GMT
ETag: "65202a81-14e15"
Expires: Wed, 29 Nov 2023 13:42:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

images.vfl.ru/ii/1692466506/8e093ade/38995519.jpg

62.173.140.199

200 OK

62 kB

URL GET HTTP/1.1
images.vfl.ru/ii/1692466506/8e093ade/38995519.jpg
IP
62.173.140.199:443
ASN
#34300 Internet-Cosmos LLC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.vfl.ru
FingerprintD9:F0:63:03:03:30:7F:C2:7F:42:0C:BB:FC:94:2E:0B:8F:53:F3:04
ValidityThu, 05 Oct 2023 07:19:50 GMT - Wed, 03 Jan 2024 07:19:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 5.0.9], baseline, precision 8, 432x700, components 3\012- data
Size
62 kB (61571 bytes)
Hash
f5ca0775d6b4c6d61ccb84d080eab5b3
71044f9bb69af45e4f171cf7e7c0ff3c9bcdfb1f
a968f61a9dcb9774217eee6c6298381b912ef95f00d273c551485c5d73930696

HTTP Headers

GET /ii/1692466506/8e093ade/38995519.jpg HTTP/1.1
Host: images.vfl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: image/jpeg
Content-Length: 61571
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Sat, 19 Aug 2023 17:35:06 GMT
ETag: "64e0fd4a-f083"
Expires: Wed, 29 Nov 2023 13:42:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

i7.imageban.ru/out/2022/04/23/7f5b7597da69485a6b83658391635c8d.jpg

62.109.19.95

200 OK

61 kB

URL GET HTTP/2
i7.imageban.ru/out/2022/04/23/7f5b7597da69485a6b83658391635c8d.jpg
IP
62.109.19.95:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
61 kB (60645 bytes)
Hash
90a029e5afc2be8b8084ce2755ba6332
ce817142b7e157a1c07bd08b41e3ee4b7cddc1a5
9bce0f1e7fe775c1a7e65117d4069b34f317bfaabd5a43a64d2aff240aed7473

HTTP Headers

GET /out/2022/04/23/7f5b7597da69485a6b83658391635c8d.jpg HTTP/1.1
Host: i7.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 60645
last-modified: Sat, 23 Apr 2022 17:52:24 GMT
etag: "62643cd8-ece5"
accept-ranges: bytes
X-Firefox-Spdy: h2

i1.imageban.ru/out/2022/04/24/ff3046e9d3836c4058c9eae2dce9e1cc.jpg

92.63.103.84

200 OK

52 kB

URL GET HTTP/2
i1.imageban.ru/out/2022/04/24/ff3046e9d3836c4058c9eae2dce9e1cc.jpg
IP
92.63.103.84:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
52 kB (52383 bytes)
Hash
3bdf37542ec4912976f988f33d5f8c73
46c869454c13598e08f5df20969c156f5a1f2560
aa73a02e6711101972be16b9741d1721d8e9350f7e4a3098fba3afc2d1dd8bf4

HTTP Headers

GET /out/2022/04/24/ff3046e9d3836c4058c9eae2dce9e1cc.jpg HTTP/1.1
Host: i1.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 52383
last-modified: Sun, 24 Apr 2022 17:51:46 GMT
etag: "62658e32-cc9f"
accept-ranges: bytes
X-Firefox-Spdy: h2

c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js

192.0.77.37

200 OK

41 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (6607), with no line terminators
Size
41 kB (41433 bytes)
Hash
9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6

HTTP Headers

GET /c/6.3.2/wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 15:56:37 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

173.233.139.164

307 Temporary Redirect

0 B

URL GET HTTP/1.1
dubunwiseobjections.com/watch.691039297423.js?key=a45922fa4966955cecdffbdde5347ae5&kw=%5B%22nsw2u%22%2C%22com%22%2C%22page%22%2C%22318%22%2C%22of%22%2C%22916%22%2C%22download%22%2C%22switch%22%2C%22roms%22%2C%22eshop%22%2C%22nsp%22%2C%22xci%22%2C%22nsz%22%5D&refer=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&tz=0&dev=e&res=14.2079&uuid=b91585c4-d67f-4dc0-8e23-d3ad82386c25%3A1%3A1
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectdubunwiseobjections.com
FingerprintED:B1:07:AA:E0:2A:8A:CC:41:E5:C9:3A:82:27:39:D1:78:72:60:C8
ValidityWed, 27 Sep 2023 00:36:54 GMT - Tue, 26 Dec 2023 00:36:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.691039297423.js?key=a45922fa4966955cecdffbdde5347ae5&kw=%5B%22nsw2u%22%2C%22com%22%2C%22page%22%2C%22318%22%2C%22of%22%2C%22916%22%2C%22download%22%2C%22switch%22%2C%22roms%22%2C%22eshop%22%2C%22nsp%22%2C%22xci%22%2C%22nsz%22%5D&refer=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&tz=0&dev=e&res=14.2079&uuid=b91585c4-d67f-4dc0-8e23-d3ad82386c25%3A1%3A1 HTTP/1.1
Host: dubunwiseobjections.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsw2u.com
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nsw2u.com
Access-Control-Allow-Origin: https://nsw2u.com
Access-Control-Allow-Credentials: true
Location: https://dubunwiseobjections.com/watch.691039297423.js?key=a45922fa4966955cecdffbdde5347ae5&kw=%5B%22nsw2u%22%2C%22com%22%2C%22page%22%2C%22318%22%2C%22of%22%2C%22916%22%2C%22download%22%2C%22switch%22%2C%22roms%22%2C%22eshop%22%2C%22nsp%22%2C%22xci%22%2C%22nsz%22%5D&refer=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&tz=0&dev=e&res=14.2079&uuid=b91585c4-d67f-4dc0-8e23-d3ad82386c25%3A1%3A1&shu=4a3722f364b3678963bdbc29d3766ce6ab067edd25a189c89ed9d520f889b882f176de8159db4f15655bdec114ea8ada9081e56ae8fa7d27b52ed90c1c25b153b43e2a96f3ffb74cb63d05d3b6c76bb7791bfae8ca1e5d491ed6cdca82f6&pst=1698673405&rmtc=t
Set-Cookie: u_pl=19067264; expires=Tue, 31 Oct 2023 13:42:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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_bGlzdC1vZi1qYXBhbmVzZS1lbnRlcnByaXNlcyJ9fQ.Ebi9jhObes7-cJhMZrda8DCTdfFRNEKvRbB_VpvdNOI; expires=Mon, 30 Oct 2023 13:43:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f8b23dc7f06f680684fc459231e3c04c
Strict-Transport-Security: max-age=0; includeSubdomains

i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?w=500&resize=500&ssl=1

192.0.77.2

200 OK

7.7 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?w=500&resize=500&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 405x155, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.7 kB (7712 bytes)
Hash
1f2664d6059193e6c1a59ee7ef14d1a0
46542860abd849426ea23d66c601ff0888d735db
f685610012cd711cdf0f3f186e878030c152058d3705dd751d6048d480bc2621

HTTP Headers

GET /images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?w=500&resize=500&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/webp
content-length: 7712
last-modified: Sun, 19 Feb 2023 09:06:19 GMT
expires: Tue, 18 Feb 2025 21:06:19 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6b02d3dbdaa697a7"
vary: Accept
x-nc: HIT arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

dubunwiseobjections.com/ed/6c/a5/ed6ca5eb8abc9a864ffa39115799b641.js

192.243.59.12

200 OK

24 kB

URL GET HTTP/1.1
dubunwiseobjections.com/ed/6c/a5/ed6ca5eb8abc9a864ffa39115799b641.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectdubunwiseobjections.com
FingerprintED:B1:07:AA:E0:2A:8A:CC:41:E5:C9:3A:82:27:39:D1:78:72:60:C8
ValidityWed, 27 Sep 2023 00:36:54 GMT - Tue, 26 Dec 2023 00:36:53 GMT

File type
ASCII text, with very long lines (60312), with no line terminators
Size
24 kB (23534 bytes)
Hash
4d030994d28d53464ccdd933102cc257
2741816e723a597b8cb4601354767b3a69593368
22169ee97f24a9f5634d67b39517b1c91c10328660a4c9518ec6c0ac16f33335

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ed/6c/a5/ed6ca5eb8abc9a864ffa39115799b641.js HTTP/1.1
Host: dubunwiseobjections.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2660-layer=0; expires=Wed, 01 Nov 2023 13:42:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 911f6f405c2ccd4c22f5e29b1b0b4243
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

i2.imageban.ru/out/2022/04/23/0bbde698e0e34f60b16c948fa58527cc.jpg

62.109.31.142

200 OK

61 kB

URL GET HTTP/2
i2.imageban.ru/out/2022/04/23/0bbde698e0e34f60b16c948fa58527cc.jpg
IP
62.109.31.142:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
61 kB (60796 bytes)
Hash
1f97fcaf2ea503b33e96541583f655fd
83599975719ac11127ead4c35ba877a75e1d907c
e6974f21b86d58f2ffb703246a919287e2e0f3114b53b0363169ad0702881810

HTTP Headers

GET /out/2022/04/23/0bbde698e0e34f60b16c948fa58527cc.jpg HTTP/1.1
Host: i2.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 60796
last-modified: Sat, 23 Apr 2022 13:01:00 GMT
etag: "6263f88c-ed7c"
accept-ranges: bytes
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.css?minify=false&ver=ae1ab3cfcf7670b1d705

188.114.96.1

200 OK

7.1 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.css?minify=false&ver=ae1ab3cfcf7670b1d705
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (36440), with no line terminators
Size
7.1 kB (7145 bytes)
Hash
7205f6e674e7f2458865a4bc7f6cf46c
14a9f2d49c01887071b1f0db50e5fd2dc0a41d43
af0d2f48723c06363029ec969a3f46378181c59f5ad8576328b995d87a733f6d

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.css?minify=false&ver=ae1ab3cfcf7670b1d705 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Cookie: _ga_HS5Y0K7QPG=GS1.1.1698673344.1.0.1698673344.0.0.0; _ga=GA1.1.1451035406.1698673344; _ga_V5K7GYT3S4=GS1.1.1698673344.1.0.1698673344.0.0.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: text/css
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=36458
expires: max-age=A10368000, public
last-modified: Mon, 23 Oct 2023 20:17:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XEQ7kG5r5BOHKuNXos3QkGz82A7Kh68ruyDgcZTN5uzNXjFF1jquxl%2F%2BPtugoVx19d3nxgRbJUOwjeoRSqRSjlcP397bbJ66Xl6BGJAuZbpXuO78ubHchPuMxjA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414d4e88656b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i6.imageban.ru/out/2022/04/22/f8a66695798cf6e89e004e78e0038140.jpg

80.87.200.35

200 OK

55 kB

URL GET HTTP/2
i6.imageban.ru/out/2022/04/22/f8a66695798cf6e89e004e78e0038140.jpg
IP
80.87.200.35:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
55 kB (54741 bytes)
Hash
ee4a40f4421b5a6b98c55a1bdab7bccb
73d0bd7e7af9e506c02bb1f72ff7b62bb9c3b1a8
e18f11856bbe9e28ae7ab218533058512cb8e30b1f5dc20751230ca141fc5f4f

HTTP Headers

GET /out/2022/04/22/f8a66695798cf6e89e004e78e0038140.jpg HTTP/1.1
Host: i6.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 54741
last-modified: Fri, 22 Apr 2022 14:50:18 GMT
etag: "6262c0aa-d5d5"
accept-ranges: bytes
X-Firefox-Spdy: h2

i4.imageban.ru/out/2022/04/22/4059fbd5efd5710c54cdd7ee19ce6016.jpg

37.230.117.113

200 OK

53 kB

URL GET HTTP/2
i4.imageban.ru/out/2022/04/22/4059fbd5efd5710c54cdd7ee19ce6016.jpg
IP
37.230.117.113:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
53 kB (52617 bytes)
Hash
c8f705a961673ab0517f99923a62a1cd
e01b5a5df9ee0984a7d053b3b1ea0ee6a80d058a
71fb19e25b8072363daed955505af7eb97771709fa083e160049eafd50d09ab9

HTTP Headers

GET /out/2022/04/22/4059fbd5efd5710c54cdd7ee19ce6016.jpg HTTP/1.1
Host: i4.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 52617
last-modified: Fri, 22 Apr 2022 14:55:52 GMT
etag: "6262c1f8-cd89"
accept-ranges: bytes
X-Firefox-Spdy: h2

i3.imageban.ru/out/2022/04/22/c8f5c1437c730db61b167e0c9fcf25e0.jpg

82.146.61.17

200 OK

87 kB

URL GET HTTP/2
i3.imageban.ru/out/2022/04/22/c8f5c1437c730db61b167e0c9fcf25e0.jpg
IP
82.146.61.17:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
87 kB (86785 bytes)
Hash
7105ddc103ff10712d502bb34e19c6cb
816718e27761f3f121395abb98da75cdc3ea5ca6
7617807c0a196c80bde941f3cae6292590c8c8469357785d7dc7db1b14a5e199

HTTP Headers

GET /out/2022/04/22/c8f5c1437c730db61b167e0c9fcf25e0.jpg HTTP/1.1
Host: i3.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 86785
last-modified: Fri, 22 Apr 2022 17:33:17 GMT
etag: "6262e6dd-15301"
accept-ranges: bytes
X-Firefox-Spdy: h2

i6.imageban.ru/out/2022/04/22/f2f3cd70fe58e431e5eab15098aa2b17.jpg

80.87.200.35

200 OK

41 kB

URL GET HTTP/2
i6.imageban.ru/out/2022/04/22/f2f3cd70fe58e431e5eab15098aa2b17.jpg
IP
80.87.200.35:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
41 kB (41014 bytes)
Hash
8b16ba7c36719927d94fb017edbf062a
a794a6e10061fb2bde799bc25bdd71bd22828679
7fd0e1ef1578dd6f553e268591b70cfffd76c967f4d48c9943a7f6f213a3efac

HTTP Headers

GET /out/2022/04/22/f2f3cd70fe58e431e5eab15098aa2b17.jpg HTTP/1.1
Host: i6.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 41014
last-modified: Fri, 22 Apr 2022 17:37:12 GMT
etag: "6262e7c8-a036"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg

45.133.44.10

200 OK

25 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint62:DE:BA:BA:30:E9:EE:15:E9:24:B9:C5:BF:E1:7E:39:8B:20:E5:42
ValiditySun, 24 Sep 2023 23:04:02 GMT - Sat, 23 Dec 2023 23:04:01 GMT

File type
JPEG image data, baseline, precision 8, 320x50, components 3\012- data
Size
25 kB (24714 bytes)
Hash
d465d02b90e928dfd9d9846e102a9dac
22f7333777bec813bd9a7b870913a2b79b6d2fe4
e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd

HTTP Headers

GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Wed, 01 Nov 2023 13:42:25 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

banquetunarmedgrater.com/advertisers.js

172.67.219.12

200 OK

0 B

URL GET HTTP/2
banquetunarmedgrater.com/advertisers.js
IP
172.67.219.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint77:2B:76:51:D0:51:70:02:2E:BF:B7:9B:02:8B:5A:A4:91:FA:0B:9E
ValidityMon, 11 Sep 2023 08:34:11 GMT - Sun, 10 Dec 2023 08:34:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 45904ef68433c7b1cb7bdf4f4992fe6b
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 30 Oct 2023 13:42:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sICbeAASUosMN7iSlWiHOP6VvJ2Z82PecFC5hNfo9kp%2BDzGuE6OjAokQNbAElyCRaESi22XQRanB8pfAc1DkxaB7XRG2JPSBdXjYz1gq3o5CCrO48xMskJxmwA1T1yrir4Z9PhfioB2ANyk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414db28520b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

facilitypestilent.com/pixel/purst?dl=0&th=0&sc=0&rs=4604&rd=4604&fd=1020&bv=23.10.v.29&tmpl=70

173.233.137.52

200 OK

0 B

URL GET HTTP/1.1
facilitypestilent.com/pixel/purst?dl=0&th=0&sc=0&rs=4604&rd=4604&fd=1020&bv=23.10.v.29&tmpl=70
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectfacilitypestilent.com
Fingerprint42:46:45:8C:52:C9:7F:D5:30:8D:B2:FD:C3:91:45:A7:62:B7:DE:B4
ValiditySat, 23 Sep 2023 00:45:55 GMT - Fri, 22 Dec 2023 00:45:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=4604&rd=4604&fd=1020&bv=23.10.v.29&tmpl=70 HTTP/1.1
Host: facilitypestilent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 30 Oct 2023 13:42:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

nsw2u.com/wp-content/plugins/add-search-to-menu/public/css/ivory-ajax-search.min.css?ver=5.5.3

188.114.96.1

200 OK

8.1 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/add-search-to-menu/public/css/ivory-ajax-search.min.css?ver=5.5.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (8145), with no line terminators
Size
8.1 kB (8143 bytes)
Hash
734068ce5268bc23a7506f3e9e9f5d41
acf53910826dc6702a5fb8f2bf6aab44b17f4886
2dd5b45b7df3d954548b70324f5730bf593bcdab6dac3632cc19ac119e8912a8

HTTP Headers

GET /wp-content/plugins/add-search-to-menu/public/css/ivory-ajax-search.min.css?ver=5.5.3 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Fri, 27 Oct 2023 19:43:57 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WBTFqvwAVY1KxVQh4k101iFrMSadAVLPIDDb%2FLCZ8Mvrity4zNIdWnn3g%2F2xLnkc2Mfmvr%2Bn%2FsNL3kK%2FwpAzfXCmDMZSIkDu8TJ9th%2BmxFk7%2FKx7aOk4yxxiwyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c398cd56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-HS5Y0K7QPG&l=dataLayer&cx=c

142.250.74.168

200 OK

213 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-HS5Y0K7QPG&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE
ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT

File type
ASCII text, with very long lines (4179)
Size
213 kB (213437 bytes)
Hash
feb31839dbd0bbdccb37673c7d592342
bbe8ec3f2ee076a5c85a022645c23bacfd633503
f9e1e3316b38f9aaf77fa097327e0f3e61490629555a5273cb29f089ad4684f7

HTTP Headers

GET /gtag/js?id=G-HS5Y0K7QPG&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Oct 2023 13:42:23 GMT
expires: Mon, 30 Oct 2023 13:42:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76829
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

nsw2u.com/wp-content/themes/posterpro/js/navigation.js?ver=20120206

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/js/navigation.js?ver=20120206
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (1413), with no line terminators
Size
1.4 kB (1406 bytes)
Hash
fb7fedcbc4898509446641bf9fd08189
374a4aa4443cc7d7fe9cdc45c1c7d723cd259f64
61ee64c9534a923b25e7faa8542df84482423ee82601c3c6fca192063f975e47

HTTP Headers

GET /wp-content/themes/posterpro/js/navigation.js?ver=20120206 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=2279
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e%2BZkDiGDcqTfNONrhRL8%2BuKpHO45RfNnpCNaZzzk9kwRh7hduPq6MxcSNFNR3zl44mcjiD5UhfO%2BVkynOyAxU9OMRrgSq1Ta4bZtcvnqYyPvSLtDsbefWUwJB7A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c8f56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

joathath.com/5/3812660/?oo=1&aab=1

139.45.197.242

200 OK

2.7 kB

URL GET HTTP/2
joathath.com/5/3812660/?oo=1&aab=1
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectjoathath.com
Fingerprint50:21:4D:D6:AE:63:1F:5B:D5:76:5A:59:87:C9:DC:D3:F7:D7:CC:F1
ValidityTue, 19 Sep 2023 05:21:46 GMT - Mon, 18 Dec 2023 05:21:45 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2989), with no line terminators
Size
2.7 kB (2749 bytes)
Hash
c15754d212a5eb34f1aeda4009ce5525
9ad799d29e5cbc0a068039936659bc23591e0bf4
79b0c10c7bbafeb5a1ed874f3197cb1e22fe9f7236f476cbd1dce9a393f7ade8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/3812660/?oo=1&aab=1 HTTP/1.1
Host: joathath.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsw2u.com
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: application/json
x-trace-id: 4f7c109da3c5739c369b8aa429ac44c0
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://nsw2u.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=496b00be21e64e0499b31deebf633dd4; expires=Tue, 29 Oct 2024 13:42:24 GMT; path=/; secure; SameSite=None
oaidts=1698673344; expires=Tue, 29 Oct 2024 13:42:24 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

nsw2u.com/wp-content/themes/posterpro/css/custom.css?ver=6.3.2

188.114.96.1

200 OK

54 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/css/custom.css?ver=6.3.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text
Size
54 kB (54179 bytes)
Hash
088b874777c07a4e1e5e49f645fda3c0
01822b6c1ff03151c0c3da75a797d2616732d50e
50d630aef628134b2f0f51040a472dd4eb1112fa3e96e5fbbf09b16b5e8b07d0

HTTP Headers

GET /wp-content/themes/posterpro/css/custom.css?ver=6.3.2 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pakvhsSrcVm9lpdHhus73KhsDDaQ%2Fol6WqpXgPEH%2B9jcHB%2F7x9%2BF78ehkRoJXpcumMRcAV2MFc33e7UcNnB1CQNBnWVfb4ihSvQPs%2FV9GP1BXe%2FmZsxP8ZRdZIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c368a356b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/themes/posterpro/style.css?ver=6.3.2

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/style.css?ver=6.3.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (312)
Size
14 kB (13890 bytes)
Hash
6ab95f4cba22beb912c47fc24c57bb88
c807d75822c7065aa79602bcc1e9b03624ab693b
869b14ba37dcd97b87b1edf83caa3f2fb15c2bbe00ee240442259f7cae81af95

HTTP Headers

GET /wp-content/themes/posterpro/style.css?ver=6.3.2 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qm5nLgRp%2BTKHEbP%2BYQGhagw%2B9ewNtZyOoA3L1E64hJfKdzd0gjy%2ByY%2BcvYyHgxvaUwuMff7GnehlyQFa%2BPWOuuyUK4GmM9Bd0IIAjJTtUylM6f7xYctwBKczRRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c3588c56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-ajax-search.min.js?ver=5.5.3

188.114.96.1

200 OK

68 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-ajax-search.min.js?ver=5.5.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type

Size
68 kB (67604 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/add-search-to-menu/public/js/ivory-ajax-search.min.js?ver=5.5.3 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Fri, 27 Oct 2023 19:43:57 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eIneMM4oLcfsyAPdK0z1gdDnrQaaKuKTET%2BJLcD7XchCxlUo5qI0UgP83r0uaTsVv%2B6Vc3oPn6X5vkWPdlYkMd00Kfnx4sAxjMqY2H8g855fKR5LRRwOZljtI94%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c72c7256b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.core.js

188.114.96.1

200 OK

6.2 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.core.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (6226), with no line terminators
Size
6.2 kB (6191 bytes)
Hash
321164d87fc8518009a6486a0090c547
b74dbdae6d36388be2631415b8024257c374a969
0bf8b102a09469a034a25023c219681a4c5e2eee57906832a56279cd41c96272

HTTP Headers

GET /wp-content/themes/posterpro/foundation/js/foundation.core.js HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=13696
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sVkSp%2Fn6vQuHjFsPu4O9A69bw5JEp0MuEov3mUxDoNwRw5MVe89jpifdPv3jUR8yMC44%2Bv3zzJOJ93AQp9Ptzji7RTrmlGBgTXiZ11hAkpUmvJ5o5aKBtbprZUI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c8d56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

88 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87482 bytes)
Hash
ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164

HTTP Headers

GET /c/6.3.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 26 May 2023 11:33:35 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/page/318?list-of-japanese-enterprises

188.114.96.1

200 OK

296 kB

URL User Request GET HTTP/2
nsw2u.com/page/318?list-of-japanese-enterprises
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type

Size
296 kB (296304 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /page/318?list-of-japanese-enterprises HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:21 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.20
link: <https://nsw2u.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jhop7zGdLONB9t%2BflE1%2BZLfvAOxD4QPab8Iacg0b5R8pzgw1ZpTcVmbC2aQOoYTaCoA1YaxJ%2Ft0TBoF%2BUzcKPDJxy6rBe2sCZa8ST%2Btc0pHb2IbPX4Mcn9SQUpw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414bd8a01568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/css/lazyload.css?ver=4.5.1

188.114.96.1

200 OK

181 B

URL GET HTTP/3
nsw2u.com/wp-content/plugins/featured-image-from-url/includes/html/css/lazyload.css?ver=4.5.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with no line terminators
Size
181 B (181 bytes)
Hash
2b1417b2c8b1f76a0616ff553bf38296
d84080cdc7bd11cf7c56c306c42476c1d53e0554
0b94682b8ee56671ee8d7cd5c49de744ec21d7d5d036ce9d4007a8899037f418

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/css/lazyload.css?ver=4.5.1 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=399
expires: max-age=A10368000, public
last-modified: Fri, 20 Oct 2023 08:20:23 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AnxAIrj9OJcVbWiAcSKlhLgCrTEmJC%2BloaNfVnREqHUNqIpcY%2BXay4g1opvLNo8hlS3nKKameRALUBz1gs%2BCOX5ru%2BxFfWK40p%2FAONhUUT6oNTy1DQZirrkAi3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c398cc56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

c0.wp.com/c/6.3.2/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

4.2 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
4.2 kB (4186 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

HTTP Headers

GET /c/6.3.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.3

188.114.96.1

200 OK

4.6 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (4844), with no line terminators
Size
4.6 kB (4580 bytes)
Hash
0c25d30efd4aa460ab9922a3bcfb8c42
6522ee0dc866d20cd8d11109932d9d80a48a3db7
36de60ec7c408ce665901d0e775647c744c39969c0bada78d156819eeeedf103

HTTP Headers

GET /wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.3 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Fri, 27 Oct 2023 19:43:57 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=viXWtViZH%2B4alm8Je%2BdDF6NmgoqsctaudohewfEFhXViUTrpnLRb%2FvM5SZcfzJQPYGVqnr873zgZDyePgxew88qa4VkOJzZjUoRahJrYdhzZ%2FXvfPpsacLJKaCk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c8b56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/themes/posterpro/js/skip-link-focus-fix.js?ver=20130115

188.114.96.1

200 OK

588 B

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/js/skip-link-focus-fix.js?ver=20130115
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (590), with no line terminators
Size
588 B (588 bytes)
Hash
072681a33ce7210615bd105a4a4ad160
de2827a281b89704e5d34e16dd29527302437d07
ca2b92d6682e943ae7db0898c6221cd9b25a002626fdf43ef49db19a764f29a5

HTTP Headers

GET /wp-content/themes/posterpro/js/skip-link-focus-fix.js?ver=20130115 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=880
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LvADQZkJ0tfhTusA7hcrPsq2aDjHh7MVmVrRTGXD8jzWvv3OS8A6XYfiLxeXLr9ZWMcK%2BfTouKMD%2BYLTxNqD8TEYtP2O%2FDmQ69zz8uSLVk0lttKy87qhUrkBBwA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c8e56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i0.wp.com/nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png?fit=32%2C32&ssl=1

192.0.77.2

200 OK

374 B

URL GET HTTP/2
i0.wp.com/nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png?fit=32%2C32&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
374 B (374 bytes)
Hash
43df8a9873aa31bb000672a677ac1640
4c1bcd8c3a797217d375df16b4bcab2d6a2763a3
d865b1c06cbff014e7c47cf5afb4332de4c95a537f86074e001b577c50aef07d

HTTP Headers

GET /nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 374
last-modified: Sat, 24 Sep 2022 18:25:44 GMT
expires: Tue, 24 Sep 2024 06:25:44 GMT
cache-control: public, max-age=63115200
link: <https://nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png>; rel="canonical"
x-content-type-options: nosniff
etag: "9a9a255d155ea6c0"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

joathath.com/?rb=Vk0WFmhAGAnzUVn-sp6ZrTXnSb1m6iLsnef-mESlUCTvsxKJaReEa0yzOhh4Pnrmw99Y9W4nRYyCE_HVnI-WYX2qlcomUpq68SxgPOl90l_5vR0E0WdDWKDk9dgVSoLuWVTjCTf5f7tA_C1tyP_7rZZB7gkr3_N6hM4RaPtdEORqIEhvOBb0nC-_oLxOti1YdrVGSUPZiHPcTH5HNToSeA%3D%3D&request_ab2=0&zoneid=3812660&js_build=iclick-v1.615.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.615.0&bs=e879685f-e97e-4b7a-9c53-b7801d019a99&userId=496b00be21e64e0499b31deebf633dd4&m=link

139.45.197.242

200 OK

2.2 kB

URL GET HTTP/2
joathath.com/?rb=Vk0WFmhAGAnzUVn-sp6ZrTXnSb1m6iLsnef-mESlUCTvsxKJaReEa0yzOhh4Pnrmw99Y9W4nRYyCE_HVnI-WYX2qlcomUpq68SxgPOl90l_5vR0E0WdDWKDk9dgVSoLuWVTjCTf5f7tA_C1tyP_7rZZB7gkr3_N6hM4RaPtdEORqIEhvOBb0nC-_oLxOti1YdrVGSUPZiHPcTH5HNToSeA%3D%3D&request_ab2=0&zoneid=3812660&js_build=iclick-v1.615.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.615.0&bs=e879685f-e97e-4b7a-9c53-b7801d019a99&userId=496b00be21e64e0499b31deebf633dd4&m=link
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectjoathath.com
Fingerprint50:21:4D:D6:AE:63:1F:5B:D5:76:5A:59:87:C9:DC:D3:F7:D7:CC:F1
ValidityTue, 19 Sep 2023 05:21:46 GMT - Mon, 18 Dec 2023 05:21:45 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2239), with no line terminators
Size
2.2 kB (2209 bytes)
Hash
4dc18d681ff607e8854f93ff48eefda8
5167ab110eb13eccfcec651bccbeb2c30dc47360
1ba2fc4886ec842862070c8c23b382a618a4546b1c603addb6ce0b11528d8a21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=Vk0WFmhAGAnzUVn-sp6ZrTXnSb1m6iLsnef-mESlUCTvsxKJaReEa0yzOhh4Pnrmw99Y9W4nRYyCE_HVnI-WYX2qlcomUpq68SxgPOl90l_5vR0E0WdDWKDk9dgVSoLuWVTjCTf5f7tA_C1tyP_7rZZB7gkr3_N6hM4RaPtdEORqIEhvOBb0nC-_oLxOti1YdrVGSUPZiHPcTH5HNToSeA%3D%3D&request_ab2=0&zoneid=3812660&js_build=iclick-v1.615.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.615.0&bs=e879685f-e97e-4b7a-9c53-b7801d019a99&userId=496b00be21e64e0499b31deebf633dd4&m=link HTTP/1.1
Host: joathath.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nsw2u.com/
Origin: https://nsw2u.com
DNT: 1
Connection: keep-alive
Cookie: OAID=496b00be21e64e0499b31deebf633dd4; oaidts=1698673344
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: application/json
x-trace-id: f2d02f3f76f1e7e2633be64778c202a4
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://nsw2u.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=496b00be21e64e0499b31deebf633dd4; expires=Tue, 29 Oct 2024 13:42:25 GMT; path=/; secure; SameSite=None
oaidts=1698673345; expires=Tue, 29 Oct 2024 13:42:25 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Mon, 06 Nov 2023 13:42:25 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.173.31

200 OK

86 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.173.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85471 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ac0a730ac81fde3f561a51974810ae86
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 30 Oct 2023 13:42:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4s%2B%2F%2B9ZW%2F1NNLei92vwFXigPDRxcvKwJNVLo443Myz6GvudeTl25Nc36FBZAvvE%2BKtBszFVMEz7fBF8XY%2FIONL8%2FdoG%2Fpfjk3Ge5C1IRU4jmB7j%2B%2FQt3wJEWnWZZE3HJtJWQWmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414da9cb0d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nsw2u.com/wp-content/themes/posterpro/js/tickerme.min.js?ver=1.0

188.114.96.1

200 OK

2.7 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/js/tickerme.min.js?ver=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2882), with no line terminators
Size
2.7 kB (2728 bytes)
Hash
1f6d024818a2d204e13c3cdf928a18b4
308379e96d2bcd7642ea6d7f86d021f4287999c8
273ae6a31ccc6f39f505d74bbbb80eccaa444894d4a5c4259d1dfe34875ff7e9

HTTP Headers

GET /wp-content/themes/posterpro/js/tickerme.min.js?ver=1.0 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i5mDcQbbkjM8ujYmDRlV%2F3qSajfQhKeHK5JEW9UMrmuOcs3Fny7E06igdCTWyZ26KnQBUNWSZia%2FVpvHmBPdjeGg8VBXiM9XfVR26Oh1JUiPov4xzLmfnI4ge1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c76caa56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=e69db286c9c94bd98790

188.114.96.1

200 OK

6.1 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=e69db286c9c94bd98790
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (6157), with no line terminators
Size
6.1 kB (6061 bytes)
Hash
e7449a226f5312bd708d8da7b58e5e7d
3c19856aa027a9aaac3acb2993e10f0d4d1e2308
f1f2791d31a9895d53c9dbbc8f3fadaf5b9cb2418fde2fe41553fb441ca9ab13

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-assets/build/i18n-loader.js?minify=true&ver=e69db286c9c94bd98790 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Mon, 23 Oct 2023 20:17:42 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=euY7t2BAnWOCwEm9tk6%2F8AAL4lkSKbUS0fuWCwx%2F6sOmNNJdeo5QwzKltsgFnv5JPVD%2BHWergSKcId6gkSHxb9K6XaQTBq%2B8bxbpz9FoaF1UNPoYpEJKFv9Xpss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c76cab56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

14 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /c/6.3.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/themes/posterpro/css/ticker-style.css?ver=6.3.2

188.114.96.1

200 OK

1.1 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/css/ticker-style.css?ver=6.3.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (1182), with no line terminators
Size
1.1 kB (1137 bytes)
Hash
1065362b5481cf16c0ce5fe372d8fd42
58a2b40a12372474fac5c943a8e1058ab22758a7
04de59649f68067ef2c804524ce4a530e41d0c38e518ffc2fc1c2e75d68908a4

HTTP Headers

GET /wp-content/themes/posterpro/css/ticker-style.css?ver=6.3.2 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Es4M%2FJu%2FNNzZSM5YWqCktEoXmtYctKXP8gfytGJBclIeo8fpbI5yaHQ7%2FDAj2MkbPM8JuPDLlQvhBjYxhSJEulwB%2BDjmqI21MPpFIALpucZRaYnddxaHZtu9c5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c368a256b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

c0.wp.com/c/6.3.2/wp-includes/js/dist/hooks.min.js

192.0.77.37

200 OK

4.6 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/dist/hooks.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (4704), with no line terminators
Size
4.6 kB (4627 bytes)
Hash
414c8462f6209b4905f767c8ba5c787d
a80b8b79908e6cdf11648f810e707a75c859cda3
007c3734a3f7737d74061ab5b96905dcb14ba1f88e7a6df55364b9d9573e3ce1

HTTP Headers

GET /c/6.3.2/wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png?fit=192%2C192&ssl=1

192.0.77.2

200 OK

2.6 kB

URL GET HTTP/2
i0.wp.com/nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png?fit=192%2C192&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.6 kB (2568 bytes)
Hash
513677192f138c2aba3a3847c320f723
7ce5b67d80a2c2dedf8685b08547bcc8bf012f99
d60495bc835271423ec6445708aceb3a068ed6f2ebfd796a86c9f9e134ca1788

HTTP Headers

GET /nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: image/webp
content-length: 2568
last-modified: Sat, 24 Sep 2022 18:28:57 GMT
expires: Tue, 24 Sep 2024 06:28:57 GMT
cache-control: public, max-age=63115200
link: <https://nsw2u.com/wp-content/uploads/2022/07/cropped-nintendo-switch-logo.png>; rel="canonical"
x-content-type-options: nosniff
etag: "deb437b05941c6de"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.3.2/wp-includes/js/dist/i18n.min.js

192.0.77.37

200 OK

9.4 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/dist/i18n.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (9729), with no line terminators
Size
9.4 kB (9445 bytes)
Hash
3597d2da73a2e3de74981fcc5ecbfce4
94f7e899ca4635c129e8285579b3f0e38cf19730
080a50955b97dc50d39c296cc22e8d02f07a3cfcc58d3127d93466e281514637

HTTP Headers

GET /c/6.3.2/wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 28 Jun 2023 20:08:46 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

definedbootnervous.com/a45922fa4966955cecdffbdde5347ae5/invoke.js

192.243.59.12

200 OK

30 kB

URL GET HTTP/1.1
definedbootnervous.com/a45922fa4966955cecdffbdde5347ae5/invoke.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectdefinedbootnervous.com
FingerprintFE:CF:3A:96:3E:47:C4:AA:55:62:56:91:23:16:FC:0A:94:CC:D9:DC
ValidityTue, 19 Sep 2023 06:24:07 GMT - Mon, 18 Dec 2023 06:24:06 GMT

File type
exported SGML document, ASCII text, with very long lines (29682), with no line terminators
Size
30 kB (29682 bytes)
Hash
0055d21477876440eb52eafa9e45a32f
addce09101433088b8115e8d7ec8dfcb8b244767
567fcd80ec3f3baef90811869f904faa0ec1094f932d1a087f181cff51228f6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a45922fa4966955cecdffbdde5347ae5/invoke.js HTTP/1.1
Host: definedbootnervous.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Oct 2023 13:42:24 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f055a1f8a3535b9b15c9513d11c9fc7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

c0.wp.com/c/6.3.2/wp-includes/js/dist/url.min.js

192.0.77.37

200 OK

9.1 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/dist/url.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (10357), with no line terminators
Size
9.1 kB (9079 bytes)
Hash
93d89333b0ea716b0dded414b6fd690e
bea26f3b7bf556a03bf81259459154e5728de2cb
acab68f8aa0636ce9058f6bf3d72d59dede88fb7111dd75532dcbd572ecb8722

HTTP Headers

GET /c/6.3.2/wp-includes/js/dist/url.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Jun 2023 14:24:19 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.3

188.114.96.1

200 OK

6.6 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (6646), with no line terminators
Size
6.6 kB (6640 bytes)
Hash
ba493f7f72f491035b9bde3c1b51c422
6911f0904c2b12b95132416c9fc2ce5a9364848e
554e78fa94b558a557664cf4cbf5d62f95ae1eac1b1fad184123ce22178ff1b5

HTTP Headers

GET /wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.3 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Fri, 27 Oct 2023 19:43:57 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XawVDprmDHUAmetG3zdOu3v0iLiNGUWBi7XiA%2FcsHcJ7PtCvUu1e2toTkZPKeRMONTeXvjQdOYk9faNFDMlcdMJjtTlyws77I93NGy0CpAc08347sVrWEXcevxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c3588856b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
nsw2u.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
last-modified: Tue, 24 Oct 2023 17:54:11 GMT
etag: W/"653804c3-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hadTDkwsnJut%2BLmMfBpOeKamJjJsxQj6nzo8fVB5EE%2FJUaZiMNses%2FDgRcE96IC1KjPvEMnGh3BJ96ZrrTrjNKf%2ByPlsYw50Y0DNkXsJx8RkirJQk21Uy9MYcBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c3a8d256b4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 01 Nov 2023 13:42:22 GMT
cache-control: max-age=172800, public
content-encoding: gzip

nsw2u.com/page/318?list-of-japanese-enterprises

188.114.96.1

200 OK

0 B

URL HEAD HTTP/3
nsw2u.com/page/318?list-of-japanese-enterprises
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /page/318?list-of-japanese-enterprises HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Cookie: _ga_HS5Y0K7QPG=GS1.1.1698673344.1.0.1698673344.0.0.0; _ga=GA1.1.1451035406.1698673344; _ga_V5K7GYT3S4=GS1.1.1698673344.1.0.1698673344.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.20
link: <https://nsw2u.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQq8E%2BSyi0e3Cc0jj4o52bXOMZ20bZMEnbLbE1w6pbIvNCsDiKXCy3vRGYu9JI6cyZsNAxAxh0H2%2Fx5VRlqqswa5LRNi2jX0d1DxAKQQtjtv973P%2BsW4PndbnTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414d3ffd956b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

c0.wp.com/c/6.3.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

11 kB

URL GET HTTP/2
c0.wp.com/c/6.3.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
11 kB (11256 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

HTTP Headers

GET /c/6.3.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/themes/posterpro/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

188.114.96.1

200 OK

77 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/themes/posterpro/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/wp-content/themes/posterpro/font-awesome/css/font-awesome.min.css?ver=6.3.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/font-woff2
content-length: 77160
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
cf-cache-status: HIT
age: 1999
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GLYMwNec0u9Odch0VU8K%2BsxQWTsDkvjjIL%2BfSaMs0DANdu55ryzas5jRgcWuI9EBZOOsW3AUQQqeBvJx8V568B0LYqNuGrz1sKHZS4gSMNJY%2FKbhkAeLdxJXR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81e414c7ed1156b4-OSL
alt-svc: h3=":443"; ma=86400

c0.wp.com/p/jetpack/12.7.1/css/jetpack.css

192.0.77.37

200 OK

101 kB

URL GET HTTP/2
c0.wp.com/p/jetpack/12.7.1/css/jetpack.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type

Size
101 kB (100602 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/jetpack/12.7.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 23 Oct 2023 18:21:34 GMT
content-encoding: br
expires: Tue, 29 Oct 2024 13:42:22 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.wp.com/w.js?ver=202344

192.0.76.3

200 OK

11 kB

URL GET HTTP/2
stats.wp.com/w.js?ver=202344
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint95:BC:E9:E5:77:EA:A7:DE:2E:30:01:1E:65:1D:21:13:4F:16:69:37
ValidityMon, 14 Nov 2022 00:00:00 GMT - Fri, 15 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (10778), with no line terminators
Size
11 kB (10778 bytes)
Hash
f6c87bc49e7646c7ccda489b9defc829
9003fc52b4c4014b4bd9fe2f4506440b299478b2
e97d12898ebf1039197a2a1c2f87bfe3b56f93eca2bfe60a46a1053fab7ad860

HTTP Headers

GET /w.js?ver=202344 HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/10813-1684461103132.7104
content-encoding: br
expires: Mon, 28 Oct 2024 22:44:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

nsw2u.com/wp-content/themes/posterpro/foundation/css/foundation.min.css?ver=6.3.2

188.114.96.1

200 OK

72 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/foundation/css/foundation.min.css?ver=6.3.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type

Size
72 kB (71949 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/posterpro/foundation/css/foundation.min.css?ver=6.3.2 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e8wxaHnUyPkQHptGQ7AXPpys80ISArWxe6NVjkXL4iujiUndAOOweGB9DTWIZBMvfGpB8cRjaak2usD3ueV1Zr1m7BzAZoOwIwZuyYWxMnGYH5DVv2dwjQWp%2F7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c368a056b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=be4054ef01b79af42428

188.114.96.1

200 OK

78 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=be4054ef01b79af42428
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type

Size
78 kB (78524 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.chunk-main-payload.js?minify=false&ver=be4054ef01b79af42428 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Cookie: _ga_HS5Y0K7QPG=GS1.1.1698673344.1.0.1698673344.0.0.0; _ga=GA1.1.1451035406.1698673344; _ga_V5K7GYT3S4=GS1.1.1698673344.1.0.1698673344.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=79073
expires: max-age=A10368000, public
last-modified: Mon, 23 Oct 2023 20:17:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9OgQjV5XAU36jCtYYHpKYfaLRssnwd3gY0NG5NC%2BEoHnzY%2FL2eAor1HS5FIJWNPqqR67PYsVnMWjFwxJRqBaO3D03BGGjzU1N8JMT6FPiwcWZZ1f3rtE23zhr%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414d4e88856b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/themes/posterpro/font-awesome/css/font-awesome.min.css?ver=6.3.2

188.114.96.1

200 OK

31 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/font-awesome/css/font-awesome.min.css?ver=6.3.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /wp-content/themes/posterpro/font-awesome/css/font-awesome.min.css?ver=6.3.2 HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yq1J601xKyhsxaPg%2FapADCJOh9CZbN8e5en%2BENdpFCG2HiLMPuHZlup3uHZycZVJQLVv%2BXK6zz8QeW8yURp5arT5TWnKokMyA%2FyHmV4yORMmrgvtNdYrt9jz8CE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c3689456b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=a812fafe63c2ca6c059f

188.114.96.1

200 OK

77 kB

URL GET HTTP/3
nsw2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=a812fafe63c2ca6c059f
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type

Size
77 kB (77225 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-search/build/instant-search/jp-search.defaultVendors.js?minify=false&ver=a812fafe63c2ca6c059f HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Cookie: _ga_HS5Y0K7QPG=GS1.1.1698673344.1.0.1698673344.0.0.0; _ga=GA1.1.1451035406.1698673344; _ga_V5K7GYT3S4=GS1.1.1698673344.1.0.1698673344.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
cf-bgj: minify
cf-polished: origSize=77230
expires: max-age=A10368000, public
last-modified: Mon, 23 Oct 2023 20:17:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u21X0nhGXFKaPrmAmMruST9%2BT7yxaoHbOp6mPBKs6xquF%2FqkOSTu40jEU%2B%2FmJOq5x%2BDKrOiL4Q9FodXRRGJdpzGTQVjp3PvReT%2FYaLoo%2B%2FgtP9waD0heMloR1Y4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414d4e88156b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i2.imageban.ru/out/2022/04/23/d53bd0d665ae7930de95c053946f54e0.jpg

62.109.31.142

200 OK

38 kB

URL GET HTTP/2
i2.imageban.ru/out/2022/04/23/d53bd0d665ae7930de95c053946f54e0.jpg
IP
62.109.31.142:443
ASN
#29182 JSC IOT

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGlobalSign nv-sa
Subject*.imageban.ru
FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96
ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 700x700, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.10], baseline, precision 8, 432x700, components 3\012- data
Size
38 kB (37703 bytes)
Hash
26f322a697504825db1572649657a677
a6593adc0966a42c2197a1bfb7e804454bdec26f
f5492890ee8e44ef763e1e764ce212909cb7d0eafc5cdbdb80134e6b1aad47bd

HTTP Headers

GET /out/2022/04/23/d53bd0d665ae7930de95c053946f54e0.jpg HTTP/1.1
Host: i2.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 30 Oct 2023 13:42:25 GMT
content-type: image/jpeg
content-length: 37703
last-modified: Sat, 23 Apr 2022 15:34:04 GMT
etag: "62641c6c-9347"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans%3A100%2C300%2C400%2C700&ver=6.3.2

142.250.74.106

200 OK

8.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A100%2C300%2C400%2C700&ver=6.3.2
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
ASCII text, with very long lines (8472), with no line terminators
Size
8.3 kB (8256 bytes)
Hash
3f5613f7160c3b6638dbbe32b93f8e97
62d3566bc0e2a74456c2bebb6d280be511402791
5d5d0961816e9953501ec925709e8c23de9e3add0dd57ccbc3f4402a0f53207c

HTTP Headers

GET /css?family=Open+Sans%3A100%2C300%2C400%2C700&ver=6.3.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Oct 2023 13:42:22 GMT
date: Mon, 30 Oct 2023 13:42:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

joathath.com/tag.min.js

139.45.197.242

200 OK

81 kB

URL GET HTTP/2
joathath.com/tag.min.js
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectjoathath.com
Fingerprint50:21:4D:D6:AE:63:1F:5B:D5:76:5A:59:87:C9:DC:D3:F7:D7:CC:F1
ValidityTue, 19 Sep 2023 05:21:46 GMT - Mon, 18 Dec 2023 05:21:45 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
81 kB (80790 bytes)
Hash
dcdb74a84033cb062fac67d00d2131b9
de814a6a30d0a96261ace16dfe5c199140c575ca
0cc86e2557d9500456d230530757b5b333957497426d58f24f5af7d88d9ed066

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: joathath.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 30 Oct 2023 13:42:24 GMT
content-type: text/javascript; charset=utf-8
content-length: 25495
content-encoding: br
x-trace-id: 291a3a1b018190103871428365a9dbba
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 27 Oct 2023 10:27:27 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.min.js

188.114.96.1

200 OK

124 kB

URL GET HTTP/3
nsw2u.com/wp-content/themes/posterpro/foundation/js/foundation.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectnsw2u.com
FingerprintF3:56:5A:DF:95:E2:A8:CF:9E:B7:3F:B3:5B:E6:CA:39:3C:E0:F4:8E
ValiditySun, 08 Oct 2023 01:00:13 GMT - Sat, 06 Jan 2024 01:00:12 GMT

File type
ASCII text, with very long lines (32024)
Size
124 kB (123510 bytes)
Hash
7ed39eb42c8c450b59a24bab9cfa7fae
7fdd3fee90709f703fac533b6061864fcd7ec206
35ddb1ce73a4ac4f4792b00c8b8c56cbf857910ada5e2a0183d898b01adc16bb

HTTP Headers

GET /wp-content/themes/posterpro/foundation/js/foundation.min.js HTTP/1.1
Host: nsw2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nsw2u.com/page/318?list-of-japanese-enterprises
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 30 Oct 2023 13:42:22 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 15 Jul 2023 09:45:22 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qDpXEWA0P9U4%2FgvklnExvjszByWFrQiu3EzeX5DljclDtrJDwb2Zv1OKS5x5rLQiBZGyk6RFP9N5PD4637yxz5SrgoZ10PmkvTxbIMDL%2BKuMudRymf5StY5PJZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81e414c74c8c56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dubunwiseobjections.com/watch.691039297423.js?key=a45922fa4966955cecdffbdde5347ae5&kw=%5B%22nsw2u%22%2C%22com%22%2C%22page%22%2C%22318%22%2C%22of%22%2C%22916%22%2C%22download%22%2C%22switch%22%2C%22roms%22%2C%22eshop%22%2C%22nsp%22%2C%22xci%22%2C%22nsz%22%5D&refer=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&tz=0&dev=e&res=14.2079&uuid=b91585c4-d67f-4dc0-8e23-d3ad82386c25%3A1%3A1&shu=4a3722f364b3678963bdbc29d3766ce6ab067edd25a189c89ed9d520f889b882f176de8159db4f15655bdec114ea8ada9081e56ae8fa7d27b52ed90c1c25b153b43e2a96f3ffb74cb63d05d3b6c76bb7791bfae8ca1e5d491ed6cdca82f6&pst=1698673405&rmtc=t

173.233.139.164

200 OK

3.5 kB

URL GET HTTP/1.1
dubunwiseobjections.com/watch.691039297423.js?key=a45922fa4966955cecdffbdde5347ae5&kw=%5B%22nsw2u%22%2C%22com%22%2C%22page%22%2C%22318%22%2C%22of%22%2C%22916%22%2C%22download%22%2C%22switch%22%2C%22roms%22%2C%22eshop%22%2C%22nsp%22%2C%22xci%22%2C%22nsz%22%5D&refer=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&tz=0&dev=e&res=14.2079&uuid=b91585c4-d67f-4dc0-8e23-d3ad82386c25%3A1%3A1&shu=4a3722f364b3678963bdbc29d3766ce6ab067edd25a189c89ed9d520f889b882f176de8159db4f15655bdec114ea8ada9081e56ae8fa7d27b52ed90c1c25b153b43e2a96f3ffb74cb63d05d3b6c76bb7791bfae8ca1e5d491ed6cdca82f6&pst=1698673405&rmtc=t
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://nsw2u.com/page/318?list-of-japanese-enterprises
Certificate
IssuerLet's Encrypt
Subjectdubunwiseobjections.com
FingerprintED:B1:07:AA:E0:2A:8A:CC:41:E5:C9:3A:82:27:39:D1:78:72:60:C8
ValidityWed, 27 Sep 2023 00:36:54 GMT - Tue, 26 Dec 2023 00:36:53 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (3553), with no line terminators
Size
3.5 kB (3525 bytes)
Hash
fe2964747f50a420adcaa53bfdd6982b
4b0dd82d8d2fc34d19dad73a863ad5f81ff1736f
a745ed484e4bbd7a21f134306a2d6822ca559b4a6b16e8e3c300fe62acbb273b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.691039297423.js?key=a45922fa4966955cecdffbdde5347ae5&kw=%5B%22nsw2u%22%2C%22com%22%2C%22page%22%2C%22318%22%2C%22of%22%2C%22916%22%2C%22download%22%2C%22switch%22%2C%22roms%22%2C%22eshop%22%2C%22nsp%22%2C%22xci%22%2C%22nsz%22%5D&refer=https%3A%2F%2Fnsw2u.com%2Fpage%2F318%3Flist-of-japanese-enterprises&tz=0&dev=e&res=14.2079&uuid=b91585c4-d67f-4dc0-8e23-d3ad82386c25%3A1%3A1&shu=4a3722f364b3678963bdbc29d3766ce6ab067edd25a189c89ed9d520f889b882f176de8159db4f15655bdec114ea8ada9081e56ae8fa7d27b52ed90c1c25b153b43e2a96f3ffb74cb63d05d3b6c76bb7791bfae8ca1e5d491ed6cdca82f6&pst=1698673405&rmtc=t HTTP/1.1
Host: dubunwiseobjections.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nsw2u.com
Referer: https://nsw2u.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=19067264; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxOTA2NzI2NCwiayI6ImE0NTkyMmZhNDk2Njk1NWNlY2RmZmJkZGU1MzQ3YWU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNDQ5ODA3LCJwaWQiOjE2MjY3OCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjozMiwicHQiOjQsInBrIjoibWh2ZzFhbXRhIiwiY3BrcyI6eyAiMjgiOiJlZDZjYTVlYjhhYmM5YTg2NGZmYTM5MTE1Nzk5YjY0MSIsIjI5IjoiM2EyMjZhNjY0MGE2NDQ2ZGJjN2NkYzk2ZWNjNmIzZTgifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjE3OTA4ODk0OCwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMjQzODYsImJuIjoiRmlyZWZveCIsImJ2IjoiMTExLjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9uc3cydS5jb20vcGFnZS8zMTg_bGlzdC1vZi1qYXBhbmVzZS1lbnRlcnByaXNlcyJ9fQ.Ebi9jhObes7-cJhMZrda8DCTdfFRNEKvRbB_VpvdNOI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 30 Oct 2023 13:42:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nsw2u.com
Access-Control-Allow-Origin: https://nsw2u.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b91585c4-d67f-4dc0-8e23-d3ad82386c25:1:1; expires=Mon, 06 Nov 2023 13:42:25 GMT; secure; SameSite=None
iprc08898898744f3865941b79d950beaadd=3570421; expires=Mon, 30 Oct 2023 17:42:25 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 31 Oct 2023 13:42:25 GMT; secure; SameSite=None
uncs=1; expires=Tue, 31 Oct 2023 13:42:25 GMT; secure; SameSite=None
pdhtkv32=true; expires=Tue, 31 Oct 2023 13:42:25 GMT; secure; SameSite=None
uncs32=1; expires=Tue, 31 Oct 2023 13:42:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b5eb3ca991cd6255fe986ac027b3249e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (64)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN