cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js
200 OK 1.7 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hash 60669862b7c39ecb3283b1faa9563a07
f9b1d545cf4c85ddda753ff9609ede569d92b31f
874cad10027313f3620a770d4a338369833ed5b3913f0793cb8500361b19e6ea
GET /npm/lazyload@2.0.0-rc.2/lazyload.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.0.0-rc.2
x-jsd-version-type: version
etag: W/"162a-+bHVRc9Mhd3adT/5YJ7eVp2Ssx8"
content-encoding: br
accept-ranges: bytes
date: Sat, 02 Dec 2023 23:20:16 GMT
age: 22674030
x-served-by: cache-fra-eddf8230063-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1734
X-Firefox-Spdy: h2
mangahentai.xyz/images/icons/icon-96x96.png
200 OK 4.2 kB URL GET HTTP/3 mangahentai.xyz/images/icons/icon-96x96.png
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f5b215e64c06983388d059121b2dea5
5b3a46b6ba168b4aba1434c22c812b509473679e
157b0e22a4b22966756594016119352bca6ffc05f640bf7cfac25559e84ea4b8
GET /images/icons/icon-96x96.png HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/os-simptoons-6
Cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 23:20:16 GMT
content-type: image/png
last-modified: Thu, 16 Nov 2023 21:21:46 GMT
accept-ranges: bytes
content-length: 4178
date: Sat, 02 Dec 2023 23:20:16 GMT
server: LiteSpeed
mangahentai.xyz/css/app.css?v=1.8
200 OK 267 kB URL GET HTTP/3 mangahentai.xyz/css/app.css?v=1.8
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
Size 267 kB (267179 bytes)
Hash c6d79637973a9d4590c53acdd638abfd
5be773895633524a0d2253e46ff0c2d8085aeff6
8e4f2d1a9bc171d26ce50f8614552b0345d2d78c32eaed994b91f5039409b65d
GET /css/app.css?v=1.8 HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/os-simptoons-6
Cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 23:20:16 GMT
content-type: text/css
last-modified: Thu, 16 Nov 2023 21:20:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 267179
date: Sat, 02 Dec 2023 23:20:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
www.googletagmanager.com/gtag/js?id=G-20TCPJKKWX
200 OK 86 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-20TCPJKKWX
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3034)
Hash d69e630bf2ef23477cadf6ee7195540e
323c33d751e62cd473879dcb92c5272d643007cd
75cd6f9b5f46b7f795a466e2d6a70e8beda88540d663e04a856633682c9d12dd
GET /gtag/js?id=G-20TCPJKKWX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 23:20:16 GMT
expires: Sat, 02 Dec 2023 23:20:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.imgur.com/EzNQDNH.png
200 OK 493 B IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 1641 x 1920, 1-bit colormap, non-interlaced\012- data
Hash e02aad2f77d0c9e10e962d1bcb9965b3
e29b9fb998e9e1745ad78ebee02683cf245386e1
296568a0db7227c70595a269d10a8fda3b9f87c403e26d6bf6efd31c0ba53638
GET /EzNQDNH.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 12 Apr 2021 04:32:40 GMT
etag: "e02aad2f77d0c9e10e962d1bcb9965b3"
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: XveLc9QuttPxceRSPV4VAK-siImP_58VBBaPE5qV4zkKVUgLxYK1Aw==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 02 Dec 2023 23:20:16 GMT
age: 2131560
x-served-by: cache-iad-kiad7000103-IAD, cache-hel1410025-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 1755, 1
x-timer: S1701559216.370362,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 493
X-Firefox-Spdy: h2
mangahentai.xyz/js/app.js?v=1.8
200 OK 125 kB URL GET HTTP/3 mangahentai.xyz/js/app.js?v=1.8
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
File type ASCII text, with very long lines (338)
Size 125 kB (125086 bytes)
Hash 62bfa9e50fe885d2146d8924edb0f385
26ccc8f7670e61f18aae726a6d408f4efa856032
c8f1a3c0ca284683bd13884f897db4e1ecca120d6b1f617a8ea121103145edd9
GET /js/app.js?v=1.8 HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/os-simptoons-6
Cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Thu, 16 Nov 2023 21:21:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 125086
date: Sat, 02 Dec 2023 23:20:16 GMT
server: LiteSpeed
mangahentai.xyz/encrypt.min.js
200 OK 5.2 kB URL GET HTTP/3 mangahentai.xyz/encrypt.min.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
File type ASCII text, with very long lines (548)
Hash 92bbe3ab8c699d94470bdf3fcd5f132e
457b159ae33d009d686d480e1f5e947139abcd4a
0ee9e2d91bc4219299ab4237de0af93764228f3d2cdb2deb2ba82efd4f26e1c1
GET /encrypt.min.js HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/os-simptoons-6
Cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Thu, 16 Nov 2023 21:21:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5174
date: Sat, 02 Dec 2023 23:20:16 GMT
server: LiteSpeed
i.imgur.com/ttDPAmO.gif
200 OK 131 kB IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type GIF image data, version 89a, 600 x 900\012- data
Size 131 kB (130873 bytes)
Hash 86b268da32d97c4d86431a25de5f4ef2
f36e66f416b077245e5b945334bec51fef97c88d
e2db3024327b21f894b64d9680e9d695f4e203ae7dfeec1924ea6a9e054fd982
GET /ttDPAmO.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
last-modified: Tue, 10 Jan 2023 21:09:37 GMT
etag: "86b268da32d97c4d86431a25de5f4ef2"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: meEHdMXpwCzJEw4SL6JZDUwfJnnEeEU4txmOJZ9zcrpb310XatfXpA==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 02 Dec 2023 23:20:16 GMT
age: 3407806
x-served-by: cache-iad-kiad7000140-IAD, cache-hel1410025-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 2707, 1
x-timer: S1701559217.545585,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 130873
X-Firefox-Spdy: h2
inbdmaza.com/tVyTP9hPpT4M6u/55640
200 OK 25 B URL GET HTTP/1.1 inbdmaza.com/tVyTP9hPpT4M6u/55640
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectinbdmaza.com
FingerprintE8:4B:A5:F0:7B:C8:0A:E2:D4:18:CA:1A:3F:EE:85:72:E7:EB:EB:DF
ValidityThu, 09 Nov 2023 23:34:07 GMT - Wed, 07 Feb 2024 23:34:06 GMT
File type ASCII text, with no line terminators
Hash f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a
GET /tVyTP9hPpT4M6u/55640 HTTP/1.1
Host: inbdmaza.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 02 Dec 2023 23:20:16 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWXVBJ%2BEAHqFVQXz0Za%2FgIyntH6wL7aZU0NtLTPRtMvlNJgiCqLpFuGYp4k9R414NvJGs5fKhfmRNUz8JRkPfvvTtc8MFa3Gll86LfiKf4LDMwvnOrwmOIxlyWnbSKipwt6u%2F5mzsZhKkvRNGFUjnXUwF8t7ZbSFXxUiMmAn5STsa7NcuxId1iDmr96zNnkOGyC5VXF4jf9NG7cvyiIizsswC3Fwm4Qfr5k6rLEQ6OqEI4SsOUngarftGrmg5e3sB7KS6f%2F97HG%2BcIVO0aklIrX8n9wNBjE5s; expires=Sun, 03-Dec-2023 23:20:16 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 03-Dec-2023 23:20:16 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
dansanttina.com/rlSZ3vwyz9D0UbGGg/64429
200 OK 20 B URL GET HTTP/1.1 dansanttina.com/rlSZ3vwyz9D0UbGGg/64429
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectdansanttina.com
Fingerprint85:29:51:C7:C7:93:26:25:0B:07:54:80:46:BB:B5:33:BE:1A:90:6C
ValidityFri, 13 Oct 2023 23:03:38 GMT - Thu, 11 Jan 2024 23:03:37 GMT
File type gzip compressed data, from Unix\012- data
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /rlSZ3vwyz9D0UbGGg/64429 HTTP/1.1
Host: dansanttina.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 02 Dec 2023 23:20:16 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWXVBJ%2BEAHqFVQXz0Za%2FgIyntH6wL7aZU0NtLTPRtMvlNJgiCqLpFuGYp4k9R414NvJGs5fKhfmRNUz8JRkPfvvTtc8MFa3Gll86LfiKf4LDMwvnOrwmOIxlyWnbSKipwt6u%2F5mzsZhKkvRNGFUjnXUwF8t7ZbSFXxUiMmAn5STsa7NcuxId1iDmr96zNnkOGyC5VXF4jf9NG7cvyiIizsswC3Fwm4Qfr5k6rLEQ6OqEI4SsOUngarftGrmg5e3sB7KS6f%2F97HG%2BcIVO0aklIrX8n9wNBjE5s; expires=Sun, 03-Dec-2023 23:20:16 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 03-Dec-2023 23:20:16 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
js.wpadmngr.com/static/adManager.js
200 OK 1.7 kB URL GET HTTP/2 js.wpadmngr.com/static/adManager.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectjs.wpadmngr.com
FingerprintAC:C2:DC:B6:95:8A:52:42:68:CB:0F:19:3F:56:A9:E9:1F:E6:04:8C
ValiditySun, 12 Nov 2023 03:01:15 GMT - Sat, 10 Feb 2024 03:01:14 GMT
File type ASCII text, with very long lines (1665), with no line terminators
Hash 2a29c5acb0fc65ed50dacb7313e485c1
847b7b64ab9670add2f33fd7f8820af555638ce7
1ed066add64e032c8b360784601e748093234deeb3fce412d535ec60735f1fc0
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 1665
server: nginx/1.18.0
last-modified: Tue, 28 Nov 2023 12:19:41 GMT
etag: "6565dadd-681"
expires: Sat, 02 Dec 2023 23:25:16 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
pl16215790.profitablegatetocontent.com/45a0c3771b857c25103cda286d8f661f/invoke.js
200 OK 9.3 kB URL GET HTTP/1.1 pl16215790.profitablegatetocontent.com/45a0c3771b857c25103cda286d8f661f/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectprofitablegatetocontent.com
Fingerprint33:FB:21:6F:EE:B3:75:B9:43:72:5D:F0:9F:E9:79:8E:57:62:75:38
ValidityFri, 27 Oct 2023 06:31:10 GMT - Thu, 25 Jan 2024 06:31:09 GMT
File type Unicode text, UTF-8 text, with very long lines (25095), with no line terminators
Hash dc1e497587c53b1c651e8fbb1217f525
43dcf9af04ca09edafe9214cbc78e6a75029a63e
1c1ceca7b379a70a802655d7c43c5cb6dbace19efb7814125cd5e662d56c6df0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /45a0c3771b857c25103cda286d8f661f/invoke.js HTTP/1.1
Host: pl16215790.profitablegatetocontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c8f00602bdc3defd0a86dddddcd9dd2d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl16215661.highcpmrevenuenetwork.com/6f/b0/9f/6fb09fe8197395758fdd748ee2a21cf8.js
200 OK 23 kB URL GET HTTP/1.1 pl16215661.highcpmrevenuenetwork.com/6f/b0/9f/6fb09fe8197395758fdd748ee2a21cf8.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecthighcpmrevenuenetwork.com
FingerprintEE:67:85:23:95:09:5B:1B:88:45:C2:65:23:64:81:DD:65:D4:15:14
ValidityThu, 19 Oct 2023 06:40:46 GMT - Wed, 17 Jan 2024 06:40:45 GMT
File type ASCII text, with very long lines (59724), with no line terminators
Hash 3bc58040ee45ac8e6552cfc496cccd87
4b6fc54ec1412ca31cdb1e017d1db71bf9c33d37
0a5f2b3135df945bf740cf9b63d08061a51970b9c79dc2e7ca1d398da5d954fb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /6f/b0/9f/6fb09fe8197395758fdd748ee2a21cf8.js HTTP/1.1
Host: pl16215661.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e0e0d52904fb48d66d5107ba790e48f5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl16215809.profitablegatetocontent.com/b3/21/82/b321823d26b85a8e2c041413c0ede9e5.js
200 OK 15 kB URL GET HTTP/1.1 pl16215809.profitablegatetocontent.com/b3/21/82/b321823d26b85a8e2c041413c0ede9e5.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectprofitablegatetocontent.com
Fingerprint33:FB:21:6F:EE:B3:75:B9:43:72:5D:F0:9F:E9:79:8E:57:62:75:38
ValidityFri, 27 Oct 2023 06:31:10 GMT - Thu, 25 Jan 2024 06:31:09 GMT
File type ASCII text, with very long lines (42763), with no line terminators
Hash 97cc6a2f2e96cbf77b1e778927547d5f
4f317d1d8884b4c053fe5086ee525a8ceb57f43a
6dcb02aecac4a259b170cd9a0d843edc6a34e2175277d23ddcbfb2be4c8cc89d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /b3/21/82/b321823d26b85a8e2c041413c0ede9e5.js HTTP/1.1
Host: pl16215809.profitablegatetocontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c03b73490f73e1479e39d027f43ac85a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
a.realsrv.com/nativeads-v2.js
200 OK 13 kB URL GET HTTP/2 a.realsrv.com/nativeads-v2.js
IP
ASN #60068 Datacamp Limited
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
Fingerprint33:54:4D:F8:0E:E4:00:D3:20:90:CA:61:C8:CC:4D:D5:CB:BB:83:57
ValidityThu, 05 Oct 2023 15:34:07 GMT - Wed, 03 Jan 2024 15:34:06 GMT
File type gzip compressed data, from Unix\012- data
Hash b3f017ea1e75d7826d46bbe0b595ff02
36ffb87d6a45091ebcfa1125c9cbc03a8f7557c4
347a83ae8903d732b70bf8724504da4672c6e8ca199eb3b35f4f835217066431
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:16 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6bb4324d11390cf5846f680a86f"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Thu, 30 Nov 2023 17:52:39 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3rCEAAAwBuUwKAQH3CQAAAAwB1GY4nAH31AAAAA
x-77-nzt-ray: af585630218c8771b0bb6b6508f43616
x-accel-expires: @1701561395
x-accel-date: 1701550596
x-77-cache: HIT
x-77-age: 8841
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 9, 8620
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?native-settings=1&idzone=4513768&cookieconsent=true&&p=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6
200 OK 20 B URL GET HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=4513768&cookieconsent=true&&p=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
Fingerprint33:54:4D:F8:0E:E4:00:D3:20:90:CA:61:C8:CC:4D:D5:CB:BB:83:57
ValidityThu, 05 Oct 2023 15:34:07 GMT - Wed, 03 Jan 2024 15:34:06 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /splash.php?native-settings=1&idzone=4513768&cookieconsent=true&&p=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 02 Dec 2023 23:20:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash fd5e177e214a8ad853f930612454f67f
5caa4612aa1085add8d970e1ce3e3b2b5a1ec0ce
198fa1fb801bed80734854346e48d3970239396116e46b3b52866687f14ca8eb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:17 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://mangahentai.xyz
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
images2.imgbox.com/08/f4/bm56QMOg_o.jpg
200 OK 16 kB URL GET HTTP/1.1 images2.imgbox.com/08/f4/bm56QMOg_o.jpg
IP
ASN #30880 SpaceDump IT AB
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoGetSSL
Subject*.imgbox.com
FingerprintC6:95:D3:4F:93:91:25:67:D4:E7:4F:4F:27:C3:8A:CC:7E:6F:D4:92
ValidityFri, 20 Oct 2023 00:00:00 GMT - Tue, 19 Nov 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x487, components 3\012- data
Hash 620df72dffe97a56fd68ed9ba99a5e56
9decdbec00333542ae17d3c3ff574b67446a16b5
45c662e934800c76fa65f78edce2525365bf5ecd5104655124cd6d71a2408f08
GET /08/f4/bm56QMOg_o.jpg HTTP/1.1
Host: images2.imgbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.14.2
date: Sat, 02 Dec 2023 23:20:17 GMT
content-type: image/jpeg
content-length: 16349
last-modified: Mon, 20 Mar 2023 16:32:45 GMT
etag: "3fdd-5f7577a064540"
expires: Tue, 02 Apr 2024 12:44:27 GMT
cache-control: max-age=10502666
x-cache: HIT
x-whom: srv1535
accept-ranges: bytes
images2.imgbox.com/9a/a9/ZH4WP3zo_o.jpg
200 OK 20 kB URL GET HTTP/1.1 images2.imgbox.com/9a/a9/ZH4WP3zo_o.jpg
IP
ASN #30880 SpaceDump IT AB
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoGetSSL
Subject*.imgbox.com
FingerprintC6:95:D3:4F:93:91:25:67:D4:E7:4F:4F:27:C3:8A:CC:7E:6F:D4:92
ValidityFri, 20 Oct 2023 00:00:00 GMT - Tue, 19 Nov 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 250x350, components 3\012- data
Hash b51297da868be1f59a9d26617fa30635
c81e66e7f12f709e50c2806626bfebc9bd87360a
3233a7c8bd921a7a989edf8c5ef10a2013f924ed30376aaabc5bbc037316abbc
GET /9a/a9/ZH4WP3zo_o.jpg HTTP/1.1
Host: images2.imgbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.22.1
date: Sat, 02 Dec 2023 23:20:17 GMT
content-type: image/jpeg
content-length: 20279
last-modified: Mon, 20 Mar 2023 15:11:39 GMT
etag: "4f37-5f75657fd00c0"
expires: Mon, 01 Apr 2024 19:34:19 GMT
cache-control: max-age=10440842
x-cache: MISS
x-whom: srv1583
accept-ranges: bytes
valleymuchunnecessary.com/pixel/purst?dl=0&th=0&sc=0&rs=1623&rd=1623&fd=920&bv=23.11.v.9&tmpl=70
200 OK 0 B URL GET HTTP/1.1 valleymuchunnecessary.com/pixel/purst?dl=0&th=0&sc=0&rs=1623&rd=1623&fd=920&bv=23.11.v.9&tmpl=70
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectvalleymuchunnecessary.com
FingerprintE6:89:AC:87:F9:1A:E8:9F:CF:E6:9F:83:C5:C6:2F:00:E5:D8:BA:3C
ValidityTue, 28 Nov 2023 10:55:17 GMT - Mon, 26 Feb 2024 10:55:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1623&rd=1623&fd=920&bv=23.11.v.9&tmpl=70 HTTP/1.1
Host: valleymuchunnecessary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
images2.imgbox.com/38/7b/vuNqscaM_o.jpg
200 OK 95 kB URL GET HTTP/1.1 images2.imgbox.com/38/7b/vuNqscaM_o.jpg
IP
ASN #30880 SpaceDump IT AB
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoGetSSL
Subject*.imgbox.com
FingerprintC6:95:D3:4F:93:91:25:67:D4:E7:4F:4F:27:C3:8A:CC:7E:6F:D4:92
ValidityFri, 20 Oct 2023 00:00:00 GMT - Tue, 19 Nov 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1300x150, components 3\012- data
Hash 3f2d05a360dc37ebb7a078266ff61a35
52725fc69a9bde22ae4fdfd005cdfb33aadb51f9
b2540a888e87b83cec82be314ae08681a9d52779c90c049317f697c03489f2ab
GET /38/7b/vuNqscaM_o.jpg HTTP/1.1
Host: images2.imgbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:17 GMT
content-type: image/jpeg
content-length: 94820
last-modified: Mon, 20 Mar 2023 16:23:17 GMT
etag: "17264-5f757582b4740"
expires: Mon, 01 Apr 2024 19:34:19 GMT
cache-control: max-age=10440842
x-cache: MISS
x-whom: srv1535
accept-ranges: bytes
scammereating.com/90c758dd35d9ee2136ede7fe065d5ff1/invoke.js
200 OK 11 kB URL GET HTTP/1.1 scammereating.com/90c758dd35d9ee2136ede7fe065d5ff1/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subject*.scammereating.com
Fingerprint71:79:6E:7D:F2:E5:65:CE:48:CB:D6:E4:7C:08:AA:CF:3C:03:60:70
ValiditySat, 25 Nov 2023 06:55:55 GMT - Fri, 23 Feb 2024 06:55:54 GMT
File type exported SGML document, ASCII text, with very long lines (29613), with no line terminators
Hash f2172ad36e94cd00cdb8f0ac6c352392
aded66a2d851f7d6aa8ac328d53323158999ac17
806583a45c26ece0023ff2e14e1aec98704678c9c03f2232664fd085add2acce
GET /90c758dd35d9ee2136ede7fe065d5ff1/invoke.js HTTP/1.1
Host: scammereating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0404b05d546b35d74f03bb5c14e56bc2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cataloguerepetition.com/ntv.json?key=45a0c3771b857c25103cda286d8f661f&vstc=4
200 OK 18 kB URL GET HTTP/1.1 cataloguerepetition.com/ntv.json?key=45a0c3771b857c25103cda286d8f661f&vstc=4
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (18160), with no line terminators
Hash 2e73e0088c79f12d6b37421ddf05cc13
232c892250e6d236eef0dff22d7de81368a91203
83d9cc5eff911e444a460f9a03e35433e216ba884a4d4575c0d9cf464ddf4b29
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ntv.json?key=45a0c3771b857c25103cda286d8f661f&vstc=4 HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: application/json
Content-Length: 18182
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangahentai.xyz
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16115291; expires=Sun, 03 Dec 2023 23:20:18 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 03 Dec 2023 23:20:18 GMT; secure; SameSite=None
uncs=1; expires=Sun, 03 Dec 2023 23:20:18 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sun, 03 Dec 2023 23:20:18 GMT; secure; SameSite=None
uncs49=1; expires=Sun, 03 Dec 2023 23:20:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e79011a816d04aca6de5a35246ed804
Strict-Transport-Security: max-age=0; includeSubdomains
scammereating.com/88a314e0646d0d08f1798a55866fe972/invoke.js
200 OK 11 kB URL GET HTTP/1.1 scammereating.com/88a314e0646d0d08f1798a55866fe972/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subject*.scammereating.com
Fingerprint71:79:6E:7D:F2:E5:65:CE:48:CB:D6:E4:7C:08:AA:CF:3C:03:60:70
ValiditySat, 25 Nov 2023 06:55:55 GMT - Fri, 23 Feb 2024 06:55:54 GMT
File type exported SGML document, ASCII text, with very long lines (29625), with no line terminators
Hash e07692d57b4330756b5086afe554d780
fed9797f7ae75cc5f7560d23b0643855cb6fba70
a4aec338ed2d5a18d7fb8d2297b611afb6905c1684e7873d641ab3a33b16de6a
GET /88a314e0646d0d08f1798a55866fe972/invoke.js HTTP/1.1
Host: scammereating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4cb9bf175cfa8fe02559785a29c5a71b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXseLe1ERxIsMeFHQSff8ZGbcw%2Bq6rgRjkv2RHDxVd1VPyqmuaqu6pydzCi7KHkfwoJ463yQb1PUnngQRpLOXJSDsgEgO5uhFT667R5GeHRh9UN97r753%2BL5X9eFueko8pPRk4y09ElLSpVbNrT6%2FKRTTma2uXat6bs09V90Uarl5rjoswQxe9txWzX2h%2BgYP%2Bnqp7nqu67le9ZIwPNTDpRkLEd%2FqerWuW2vWa16riaH5f29TB5Y6YINT8iQEmz66decQIiigom8vcttPdPzi61EqaaINBuzgbdVXOlOIFmVoHITqYD4NbaeEfHIGWh3MHUAP9koH8MWUOL968NXBXCb8wf5Dpb4EV%2FDZWWSDAlwWELRAoK9DsLsECBjW1qGim2vaZHT7IUtLdkoqD%2B5BZFNS%2Be0pqOjrC1IMq1e1TBOhlcUwzCGGBUSvQJweIRk5ENkRguR9CPYzWXqwChXtrVupIVg%2Bcy9EAREWkHwMah2k5REO0tBBGjuI2EmVtrqh67ZDP2w0Os0gCBqNIGh1llmLNZqd0EUalPLGSOIxAjlGYHYQmx30xUd3Nycw6U%2BwWzksc2CTKXEu72DAcmScILMEGSXIBEGWEGSDfJ9JW7f5TSZt6nvzXJ%2FnRj7RSW%2BX7uukxxUBNePd%2BJQ8MVvP%2Fd%2FfQZ%2BfVJst6gaNdtvzO612UG95biNgtN5ZZp1wedkLYUUOYc%2FMHI%2FElDxNfkEspuTMxkvw6RGsPEIgHgdNPdBs0q67oFuTZsfFSH0TUdWjW1wlVNSG2yMwnSNOKki2nV15Sp6ZSXnl9l%2FgwfH5wz8%2BePb7y38iMDlik%2BNdcZugJ29MruiM7F3RmSWH63EiIjGi5SteTWjCH%2FniTb6dacNWLtrx568GJVGWt65xm6xSxYTqWfLlBcEYN5e0CTj5ccVucn8jtVsXUqPSeHXjtUsrUWy4tUKrAlRMCSneQyCm5Ow%2F8eyHPme%2FgjAFTJojSo%2FJPCB0gSDegY0X%2Bq0mMHIx48cOsjSfmLq%2FuJSCQPJFT%2F0c9j%2B9v6h37Q30TAU0uQ4V5RiYHAOZg8oxbPrYJInN8fk7n5bxGXxZmfjSVPZ8aeTHs%2BWWcK%2BEv0u4DytOqrwVuiF369wPu37Ypi7rhs2uT7seb%2Fst6iGxU97%2F4bt%2FAQAA%2F%2F8BAAD%2F%2F%2FYZZ52IBAAA
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXseLe1ERxIsMeFHQSff8ZGbcw%2Bq6rgRjkv2RHDxVd1VPyqmuaqu6pydzCi7KHkfwoJ463yQb1PUnngQRpLOXJSDsgEgO5uhFT667R5GeHRh9UN97r753%2BL5X9eFueko8pPRk4y09ElLSpVbNrT6%2FKRTTma2uXat6bs09V90Uarl5rjoswQxe9txWzX2h%2BgYP%2Bnqp7nqu67le9ZIwPNTDpRkLEd%2FqerWuW2vWa16riaH5f29TB5Y6YINT8iQEmz66decQIiigom8vcttPdPzi61EqaaINBuzgbdVXOlOIFmVoHITqYD4NbaeEfHIGWh3MHUAP9koH8MWUOL968NXBXCb8wf5Dpb4EV%2FDZWWSDAlwWELRAoK9DsLsECBjW1qGim2vaZHT7IUtLdkoqD%2B5BZFNS%2Be0pqOjrC1IMq1e1TBOhlcUwzCGGBUSvQJweIRk5ENkRguR9CPYzWXqwChXtrVupIVg%2Bcy9EAREWkHwMah2k5REO0tBBGjuI2EmVtrqh67ZDP2w0Os0gCBqNIGh1llmLNZqd0EUalPLGSOIxAjlGYHYQmx30xUd3Nycw6U%2BwWzksc2CTKXEu72DAcmScILMEGSXIBEGWEGSDfJ9JW7f5TSZt6nvzXJ%2FnRj7RSW%2BX7uukxxUBNePd%2BJQ8MVvP%2Fd%2FfQZ%2BfVJst6gaNdtvzO612UG95biNgtN5ZZp1wedkLYUUOYc%2FMHI%2FElDxNfkEspuTMxkvw6RGsPEIgHgdNPdBs0q67oFuTZsfFSH0TUdWjW1wlVNSG2yMwnSNOKki2nV15Sp6ZSXnl9l%2FgwfH5wz8%2BePb7y38iMDlik%2BNdcZugJ29MruiM7F3RmSWH63EiIjGi5SteTWjCH%2FniTb6dacNWLtrx568GJVGWt65xm6xSxYTqWfLlBcEYN5e0CTj5ccVucn8jtVsXUqPSeHXjtUsrUWy4tUKrAlRMCSneQyCm5Ow%2F8eyHPme%2FgjAFTJojSo%2FJPCB0gSDegY0X%2Bq0mMHIx48cOsjSfmLq%2FuJSCQPJFT%2F0c9j%2B9v6h37Q30TAU0uQ4V5RiYHAOZg8oxbPrYJInN8fk7n5bxGXxZmfjSVPZ8aeTHs%2BWWcK%2BEv0u4DytOqrwVuiF369wPu37Ypi7rhs2uT7seb%2Fst6iGxU97%2F4bt%2FAQAA%2F%2F8BAAD%2F%2F%2FYZZ52IBAAA
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXseLe1ERxIsMeFHQSff8ZGbcw%2Bq6rgRjkv2RHDxVd1VPyqmuaqu6pydzCi7KHkfwoJ463yQb1PUnngQRpLOXJSDsgEgO5uhFT667R5GeHRh9UN97r753%2BL5X9eFueko8pPRk4y09ElLSpVbNrT6%2FKRTTma2uXat6bs09V90Uarl5rjoswQxe9txWzX2h%2BgYP%2Bnqp7nqu67le9ZIwPNTDpRkLEd%2FqerWuW2vWa16riaH5f29TB5Y6YINT8iQEmz66decQIiigom8vcttPdPzi61EqaaINBuzgbdVXOlOIFmVoHITqYD4NbaeEfHIGWh3MHUAP9koH8MWUOL968NXBXCb8wf5Dpb4EV%2FDZWWSDAlwWELRAoK9DsLsECBjW1qGim2vaZHT7IUtLdkoqD%2B5BZFNS%2Be0pqOjrC1IMq1e1TBOhlcUwzCGGBUSvQJweIRk5ENkRguR9CPYzWXqwChXtrVupIVg%2Bcy9EAREWkHwMah2k5REO0tBBGjuI2EmVtrqh67ZDP2w0Os0gCBqNIGh1llmLNZqd0EUalPLGSOIxAjlGYHYQmx30xUd3Nycw6U%2BwWzksc2CTKXEu72DAcmScILMEGSXIBEGWEGSDfJ9JW7f5TSZt6nvzXJ%2FnRj7RSW%2BX7uukxxUBNePd%2BJQ8MVvP%2Fd%2FfQZ%2BfVJst6gaNdtvzO612UG95biNgtN5ZZp1wedkLYUUOYc%2FMHI%2FElDxNfkEspuTMxkvw6RGsPEIgHgdNPdBs0q67oFuTZsfFSH0TUdWjW1wlVNSG2yMwnSNOKki2nV15Sp6ZSXnl9l%2FgwfH5wz8%2BePb7y38iMDlik%2BNdcZugJ29MruiM7F3RmSWH63EiIjGi5SteTWjCH%2FniTb6dacNWLtrx568GJVGWt65xm6xSxYTqWfLlBcEYN5e0CTj5ccVucn8jtVsXUqPSeHXjtUsrUWy4tUKrAlRMCSneQyCm5Ow%2F8eyHPme%2FgjAFTJojSo%2FJPCB0gSDegY0X%2Bq0mMHIx48cOsjSfmLq%2FuJSCQPJFT%2F0c9j%2B9v6h37Q30TAU0uQ4V5RiYHAOZg8oxbPrYJInN8fk7n5bxGXxZmfjSVPZ8aeTHs%2BWWcK%2BEv0u4DytOqrwVuiF369wPu37Ypi7rhs2uT7seb%2Fst6iGxU97%2F4bt%2FAQAA%2F%2F8BAAD%2F%2F%2FYZZ52IBAAA HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 99b8cceea1663409ec6fefb42717e465
Strict-Transport-Security: max-age=0; includeSubdomains
cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2BtTuZ%2F%2BeeiIogXGfCSgM52z8fOjDlEY4wE4%2B7mQ%2Fagl%2Bqu6tlyqqvaqu7p2TktBiU3R%2FCgnnrf7GZRF%2BN6EkSQ3lzCgpABkT24Ry96Mm6OIj0ZWP1B%2FT7q%2FQ7vvaoPN9Mj4iGlhytv6pGQki60am717KpQTGe2unSz6rk193x1VajF5vnqsExm8JLntmruuerrPOjrhbrrua7netXLwvBQDxdmKES82%2FVqXbfWrNe8VhND89%2FZpg4sdcAGR%2BQpCDb939r9PYiggIq%2BucRtP9HxC69FqaSJNhiwnbdUX%2BlMITppQ%2BMgVDvzbWg7JeTTU9BqZ64AerBVKoAvpsT5xYOvduY04Q%2B2HzP1JbiCz84gGxTgsoCgBQJ9C4I9IEDAsLQMFd1Z0iaj649RWqJTUnn0ECKbksqvT0NFX1%2BUYli9oWWaCK0shmEOMSwgegXidB%2FJyIHI9hEk70Own8jCo6tQ0daylRqC5TP1QhQQYQHJx6DWQVoe4SANHaSxg4gdVmmrG7puO%2FTDRqPTDIKg0QiCVmeRtVij2QldpEFJb4wkHiOQYwRmA7HZQF98%2FGB1ApP%2BCLuWwzIHNpkS59oGBixHxgkyS5BRgkwQZAlBNsi3mbR1m99h0qa%2BN6%2F1eW3kE530Num2TnpcEVAz3oyPyJMze45%2Fext9flhttqgbNNptz%2B%2B02kG95bmNgNF6Z5F1wsVFL4QVOYQ9NVM8ElPyDPkZsZiSUysvwqf7sHIfgXgCNPVAs0m77oKuTZodFyN1N6KqR9e4SqioDddHYDpHnFSQrDub8og8O6Py8r2%2FwIODC3u%2Ff%2FDcd9f%2BQGByxCbHu%2BIeQU%2FenlzXGdm6rjNL9pbjRERiRMtXvJHQhJ%2F%2B8g2%2BnmnDrlyy4y9eCUqgbHdvcptcpYoJ1bPkq4uCMW4uaxNw8sMVu8r9ldSuXUyNSuOrK69evhLFhlsrtCpAxZSQ4j0EYkrO%2FB3Pfujz9i6EKWDSHFF6QOYBoQsE8QZsfHBh9%2Bxx8dE752A1gZEnO358GlmaT0zdP7mUgkDyk5n6Oey%2FZv%2Bk37S30TMV0OQWVJRjYHIMZA4qx7Dp%2FydJbA4u3P%2BsjM%2Fhy8rEl6ay5UsjPynN%2FbNMD2c2l%2BkYVhxWeSt0Q%2B7WuR92%2FbBNXdYNm12fdj3e9lvUQ2KnvP%2F9t%2F8AAAD%2F%2FwEAAP%2F%2FjAC5sYgEAAA%3D
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2BtTuZ%2F%2BeeiIogXGfCSgM52z8fOjDlEY4wE4%2B7mQ%2Fagl%2Bqu6tlyqqvaqu7p2TktBiU3R%2FCgnnrf7GZRF%2BN6EkSQ3lzCgpABkT24Ry96Mm6OIj0ZWP1B%2FT7q%2FQ7vvaoPN9Mj4iGlhytv6pGQki60am717KpQTGe2unSz6rk193x1VajF5vnqsExm8JLntmruuerrPOjrhbrrua7netXLwvBQDxdmKES82%2FVqXbfWrNe8VhND89%2FZpg4sdcAGR%2BQpCDb939r9PYiggIq%2BucRtP9HxC69FqaSJNhiwnbdUX%2BlMITppQ%2BMgVDvzbWg7JeTTU9BqZ64AerBVKoAvpsT5xYOvduY04Q%2B2HzP1JbiCz84gGxTgsoCgBQJ9C4I9IEDAsLQMFd1Z0iaj649RWqJTUnn0ECKbksqvT0NFX1%2BUYli9oWWaCK0shmEOMSwgegXidB%2FJyIHI9hEk70Own8jCo6tQ0daylRqC5TP1QhQQYQHJx6DWQVoe4SANHaSxg4gdVmmrG7puO%2FTDRqPTDIKg0QiCVmeRtVij2QldpEFJb4wkHiOQYwRmA7HZQF98%2FGB1ApP%2BCLuWwzIHNpkS59oGBixHxgkyS5BRgkwQZAlBNsi3mbR1m99h0qa%2BN6%2F1eW3kE530Num2TnpcEVAz3oyPyJMze45%2Fext9flhttqgbNNptz%2B%2B02kG95bmNgNF6Z5F1wsVFL4QVOYQ9NVM8ElPyDPkZsZiSUysvwqf7sHIfgXgCNPVAs0m77oKuTZodFyN1N6KqR9e4SqioDddHYDpHnFSQrDub8og8O6Py8r2%2FwIODC3u%2Ff%2FDcd9f%2BQGByxCbHu%2BIeQU%2FenlzXGdm6rjNL9pbjRERiRMtXvJHQhJ%2F%2B8g2%2BnmnDrlyy4y9eCUqgbHdvcptcpYoJ1bPkq4uCMW4uaxNw8sMVu8r9ldSuXUyNSuOrK69evhLFhlsrtCpAxZSQ4j0EYkrO%2FB3Pfujz9i6EKWDSHFF6QOYBoQsE8QZsfHBh9%2Bxx8dE752A1gZEnO358GlmaT0zdP7mUgkDyk5n6Oey%2FZv%2Bk37S30TMV0OQWVJRjYHIMZA4qx7Dp%2FydJbA4u3P%2BsjM%2Fhy8rEl6ay5UsjPynN%2FbNMD2c2l%2BkYVhxWeSt0Q%2B7WuR92%2FbBNXdYNm12fdj3e9lvUQ2KnvP%2F9t%2F8AAAD%2F%2FwEAAP%2F%2FjAC5sYgEAAA%3D
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2BtTuZ%2F%2BeeiIogXGfCSgM52z8fOjDlEY4wE4%2B7mQ%2Fagl%2Bqu6tlyqqvaqu7p2TktBiU3R%2FCgnnrf7GZRF%2BN6EkSQ3lzCgpABkT24Ry96Mm6OIj0ZWP1B%2FT7q%2FQ7vvaoPN9Mj4iGlhytv6pGQki60am717KpQTGe2unSz6rk193x1VajF5vnqsExm8JLntmruuerrPOjrhbrrua7netXLwvBQDxdmKES82%2FVqXbfWrNe8VhND89%2FZpg4sdcAGR%2BQpCDb939r9PYiggIq%2BucRtP9HxC69FqaSJNhiwnbdUX%2BlMITppQ%2BMgVDvzbWg7JeTTU9BqZ64AerBVKoAvpsT5xYOvduY04Q%2B2HzP1JbiCz84gGxTgsoCgBQJ9C4I9IEDAsLQMFd1Z0iaj649RWqJTUnn0ECKbksqvT0NFX1%2BUYli9oWWaCK0shmEOMSwgegXidB%2FJyIHI9hEk70Own8jCo6tQ0daylRqC5TP1QhQQYQHJx6DWQVoe4SANHaSxg4gdVmmrG7puO%2FTDRqPTDIKg0QiCVmeRtVij2QldpEFJb4wkHiOQYwRmA7HZQF98%2FGB1ApP%2BCLuWwzIHNpkS59oGBixHxgkyS5BRgkwQZAlBNsi3mbR1m99h0qa%2BN6%2F1eW3kE530Num2TnpcEVAz3oyPyJMze45%2Fext9flhttqgbNNptz%2B%2B02kG95bmNgNF6Z5F1wsVFL4QVOYQ9NVM8ElPyDPkZsZiSUysvwqf7sHIfgXgCNPVAs0m77oKuTZodFyN1N6KqR9e4SqioDddHYDpHnFSQrDub8og8O6Py8r2%2FwIODC3u%2Ff%2FDcd9f%2BQGByxCbHu%2BIeQU%2FenlzXGdm6rjNL9pbjRERiRMtXvJHQhJ%2F%2B8g2%2BnmnDrlyy4y9eCUqgbHdvcptcpYoJ1bPkq4uCMW4uaxNw8sMVu8r9ldSuXUyNSuOrK69evhLFhlsrtCpAxZSQ4j0EYkrO%2FB3Pfujz9i6EKWDSHFF6QOYBoQsE8QZsfHBh9%2Bxx8dE752A1gZEnO358GlmaT0zdP7mUgkDyk5n6Oey%2FZv%2Bk37S30TMV0OQWVJRjYHIMZA4qx7Dp%2FydJbA4u3P%2BsjM%2Fhy8rEl6ay5UsjPynN%2FbNMD2c2l%2BkYVhxWeSt0Q%2B7WuR92%2FbBNXdYNm12fdj3e9lvUQ2KnvP%2F9t%2F8AAAD%2F%2FwEAAP%2F%2FjAC5sYgEAAA%3D HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2ea36c529ba9587169a9f89a0be66f92
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/9b/47/fb/9b47fb4316ad611bd932807c02c26cff/1683356991.png
200 OK 139 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/9b/47/fb/9b47fb4316ad611bd932807c02c26cff/1683356991.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 139 kB (139050 bytes)
Hash b5095853b4c6e16acd9d238c51c479ff
b7436311ee33f668d8a71e1300a60a4e11ff32e4
b47522a109caa660ee05c5278f3ffc9eecd1d290b4132b6388d5677f9ea372a7
GET /si/9b/47/fb/9b47fb4316ad611bd932807c02c26cff/1683356991.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:18 GMT
content-type: image/png
content-length: 139050
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:10:00 GMT
etag: "6455fd48-21f2a"
expires: Mon, 04 Dec 2023 23:20:18 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/e7/65/91/e76591885426335875f96fec271ab416/1683357009.png
200 OK 118 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/e7/65/91/e76591885426335875f96fec271ab416/1683357009.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 118 kB (118147 bytes)
Hash 42aa625f7b89a3d77b9fe771f1f1d3c3
9b3d290a8eba25e0c882692bc11c9c3ef4e52dbd
e85910c5985368e86dd68b62ca341599e65a4950383aa0a99e9336eecc47e122
GET /si/e7/65/91/e76591885426335875f96fec271ab416/1683357009.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:18 GMT
content-type: image/png
content-length: 118147
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:10:21 GMT
etag: "6455fd5d-1cd83"
expires: Mon, 04 Dec 2023 23:20:18 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 156 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size 156 kB (155460 bytes)
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:17 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d29c040f4be78a9b6f3ca73ec7972ea7
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 02 Dec 2023 23:20:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UTmEuJM5A0G0jQ62AbSnQL7eO5cpV8BwHK7jABK0khAHC2MxiXGxxgQz8TYVcZ7jK5rlVoO2DAdD5X4VYlGTZATkxBvyMIXxd9maH5wNkYKoJbGP2egfRJ5VWW0z1cRiz7HCLZo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cb3fc7fd95b-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/3c/a6/9a/3ca69a4ec5579fd98f5bf2c32dc4bf0c/1683357000.png
200 OK 156 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/3c/a6/9a/3ca69a4ec5579fd98f5bf2c32dc4bf0c/1683357000.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 156 kB (155511 bytes)
Hash 4e4f25622c983e074eb908d4c15724bc
80f165b39dc08ebc204b390db0f7a3718b422a3d
12801ac20be4a4587a27149f756dd3123c9ba5d9555d73792a5c64df90bc4c05
GET /si/3c/a6/9a/3ca69a4ec5579fd98f5bf2c32dc4bf0c/1683357000.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:18 GMT
content-type: image/png
content-length: 155511
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:10:08 GMT
etag: "6455fd50-25f77"
expires: Mon, 04 Dec 2023 23:20:18 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitXseLe1ERxIsMeFHQSff8ZCbuYXVdI8GYZH8kB0%2FVVd2Tcqqr2qru6cmcgouyxxE8qKfOm2SDuujGkyCCdPayBIQdEMnBHL3oyXX3KNKTgdEP6vup9x3ee1Uf76anxENKTzbe0UMhJV1o1dzqi5tCcZ3Z6tr1qufW3AvVTaEWmxeqgzKZ%2Fque26q5L1XfClhPL9Rdz3U916suCxOEerAwRSHi20tebcmtNes1r9XEwPx%2FtqkDSx3w%2Fil5GoJPHt%2B6dwjBCqjozuXA9hIdv%2FxmlEqaaIM%2BP3hX9ZTOFKJ5GxoHoTqYbUPbCSGfnYNWBzMF0P29UgF8MSHOrx58dTCjCb%2B%2Ff8bUlwgUfH4eWb9AIAsIWoDpGxD8PgEYx9o6VHRrTZuMbp%2BhtEQnpPLoAUQ2IZXfnoGKvrkkxaB6Tcs0EVpZDMIcYlBAdAvE6RGSoQORHYElH0Lwn8nCo1WoaG%2FdSg3B86l6IQqIsIAMRqDWQVoe4SANHaSxg4ifVGlrKXTdduiHjUanyRhrNBhrdRZ5izeandBFykp6IyTxCEyOwMwOYrODnvjk%2FuYYJv0JdiuH5Q5sMiHOlR30eY4sIMgsQUYJMkGQJQRZP9%2Fn0tZtfotLm%2FrerNZntZGPddLdpfs66QaKgJrRbnxKnpra8%2FD399ALTqrNFnVZo932%2FE6rzeotz20wTuudRd4JFxe9EFbkEPbcVPFQTMiz5BfEYkLObbwCnx7ByiMw8SRo6oFm43bdBd0aNzsuhurbiKou3QpUQkVtsD0E1znipIJk29mVp%2BS5KZXX7j5EwI4vHv7x0fPfX%2FkTzOSITY73xV2Crrw5vqozsndVZ5YcrseJiMSQlq94LaFJ8NhXbwfbmTZ85bIdffk6K4GyvX09sMkqVVyoriVfXxKcB2ZZGxaQH1fsZuBvpHbrUmpUGq9uvLG8EsUmsFZoVYCKCSHFB2BiQs7%2FE09%2F6Av2DoQpYNIcUXpMZgGhC7B4Bzae87eawMj5jh9XkKX52NT9%2BaUUBDKYz9TPYf8z%2B%2FN%2B195E11RAkxtQUY6%2BydGXOagcwaZPjJPYHF%2B893kZX8CXlbEvTWXPl0Z%2BWpr7V5kelOnvM6%2BtOKm2vGbQ8TttxrkfMO61641Ow3XrnDfbS4G3hMROgt4P3%2F0LAAD%2F%2FwEAAP%2F%2FxAXBzYgEAAA%3D
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitXseLe1ERxIsMeFHQSff8ZCbuYXVdI8GYZH8kB0%2FVVd2Tcqqr2qru6cmcgouyxxE8qKfOm2SDuujGkyCCdPayBIQdEMnBHL3oyXX3KNKTgdEP6vup9x3ee1Uf76anxENKTzbe0UMhJV1o1dzqi5tCcZ3Z6tr1qufW3AvVTaEWmxeqgzKZ%2Fque26q5L1XfClhPL9Rdz3U916suCxOEerAwRSHi20tebcmtNes1r9XEwPx%2FtqkDSx3w%2Fil5GoJPHt%2B6dwjBCqjozuXA9hIdv%2FxmlEqaaIM%2BP3hX9ZTOFKJ5GxoHoTqYbUPbCSGfnYNWBzMF0P29UgF8MSHOrx58dTCjCb%2B%2Ff8bUlwgUfH4eWb9AIAsIWoDpGxD8PgEYx9o6VHRrTZuMbp%2BhtEQnpPLoAUQ2IZXfnoGKvrkkxaB6Tcs0EVpZDMIcYlBAdAvE6RGSoQORHYElH0Lwn8nCo1WoaG%2FdSg3B86l6IQqIsIAMRqDWQVoe4SANHaSxg4ifVGlrKXTdduiHjUanyRhrNBhrdRZ5izeandBFykp6IyTxCEyOwMwOYrODnvjk%2FuYYJv0JdiuH5Q5sMiHOlR30eY4sIMgsQUYJMkGQJQRZP9%2Fn0tZtfotLm%2FrerNZntZGPddLdpfs66QaKgJrRbnxKnpra8%2FD399ALTqrNFnVZo932%2FE6rzeotz20wTuudRd4JFxe9EFbkEPbcVPFQTMiz5BfEYkLObbwCnx7ByiMw8SRo6oFm43bdBd0aNzsuhurbiKou3QpUQkVtsD0E1znipIJk29mVp%2BS5KZXX7j5EwI4vHv7x0fPfX%2FkTzOSITY73xV2Crrw5vqozsndVZ5YcrseJiMSQlq94LaFJ8NhXbwfbmTZ85bIdffk6K4GyvX09sMkqVVyoriVfXxKcB2ZZGxaQH1fsZuBvpHbrUmpUGq9uvLG8EsUmsFZoVYCKCSHFB2BiQs7%2FE09%2F6Av2DoQpYNIcUXpMZgGhC7B4Bzae87eawMj5jh9XkKX52NT9%2BaUUBDKYz9TPYf8z%2B%2FN%2B195E11RAkxtQUY6%2BydGXOagcwaZPjJPYHF%2B893kZX8CXlbEvTWXPl0Z%2BWpr7V5kelOnvM6%2BtOKm2vGbQ8TttxrkfMO61641Ow3XrnDfbS4G3hMROgt4P3%2F0LAAD%2F%2FwEAAP%2F%2FxAXBzYgEAAA%3D
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitXseLe1ERxIsMeFHQSff8ZCbuYXVdI8GYZH8kB0%2FVVd2Tcqqr2qru6cmcgouyxxE8qKfOm2SDuujGkyCCdPayBIQdEMnBHL3oyXX3KNKTgdEP6vup9x3ee1Uf76anxENKTzbe0UMhJV1o1dzqi5tCcZ3Z6tr1qufW3AvVTaEWmxeqgzKZ%2Fque26q5L1XfClhPL9Rdz3U916suCxOEerAwRSHi20tebcmtNes1r9XEwPx%2FtqkDSx3w%2Fil5GoJPHt%2B6dwjBCqjozuXA9hIdv%2FxmlEqaaIM%2BP3hX9ZTOFKJ5GxoHoTqYbUPbCSGfnYNWBzMF0P29UgF8MSHOrx58dTCjCb%2B%2Ff8bUlwgUfH4eWb9AIAsIWoDpGxD8PgEYx9o6VHRrTZuMbp%2BhtEQnpPLoAUQ2IZXfnoGKvrkkxaB6Tcs0EVpZDMIcYlBAdAvE6RGSoQORHYElH0Lwn8nCo1WoaG%2FdSg3B86l6IQqIsIAMRqDWQVoe4SANHaSxg4ifVGlrKXTdduiHjUanyRhrNBhrdRZ5izeandBFykp6IyTxCEyOwMwOYrODnvjk%2FuYYJv0JdiuH5Q5sMiHOlR30eY4sIMgsQUYJMkGQJQRZP9%2Fn0tZtfotLm%2FrerNZntZGPddLdpfs66QaKgJrRbnxKnpra8%2FD399ALTqrNFnVZo932%2FE6rzeotz20wTuudRd4JFxe9EFbkEPbcVPFQTMiz5BfEYkLObbwCnx7ByiMw8SRo6oFm43bdBd0aNzsuhurbiKou3QpUQkVtsD0E1znipIJk29mVp%2BS5KZXX7j5EwI4vHv7x0fPfX%2FkTzOSITY73xV2Crrw5vqozsndVZ5YcrseJiMSQlq94LaFJ8NhXbwfbmTZ85bIdffk6K4GyvX09sMkqVVyoriVfXxKcB2ZZGxaQH1fsZuBvpHbrUmpUGq9uvLG8EsUmsFZoVYCKCSHFB2BiQs7%2FE09%2F6Av2DoQpYNIcUXpMZgGhC7B4Bzae87eawMj5jh9XkKX52NT9%2BaUUBDKYz9TPYf8z%2B%2FN%2B195E11RAkxtQUY6%2BydGXOagcwaZPjJPYHF%2B893kZX8CXlbEvTWXPl0Z%2BWpr7V5kelOnvM6%2BtOKm2vGbQ8TttxrkfMO61641Ow3XrnDfbS4G3hMROgt4P3%2F0LAAD%2F%2FwEAAP%2F%2FxAXBzYgEAAA%3D HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c899aec87cc73a6481f5537804fe4c8e
Strict-Transport-Security: max-age=0; includeSubdomains
wheelstweakautopsy.com/watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 wheelstweakautopsy.com/watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectwheelstweakautopsy.com
FingerprintB2:CE:A2:D8:17:60:33:09:8B:BA:D4:22:02:20:69:8C:0A:96:89:EE
ValidityTue, 28 Nov 2023 10:40:50 GMT - Mon, 26 Feb 2024 10:40:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1 HTTP/1.1
Host: wheelstweakautopsy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangahentai.xyz
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Credentials: true
Location: https://wheelstweakautopsy.com/watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=b7e6b512a5ed449ba67b582c479b55a2d698dbb66eb3c9a2733f4daaff974b8cf75c341886982694826db4a9274387340991e5cfb61df60cbcea466e54aa97e65193fb75d8bc4b030624acbff16f8117b38ef1ea53d5872d1425db322c64d8f8ed9423&pst=1701559278&rmtc=t
Set-Cookie: u_pl=16115304; expires=Sun, 03 Dec 2023 23:20:18 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.c5CcMTrEbju__eydW2p7LonMKs3FLRwl5fioVGVOzh8; expires=Sat, 02 Dec 2023 23:21:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6f97b7742a0bdafa388068037275e0ea
Strict-Transport-Security: max-age=0; includeSubdomains
cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjuPFXFQE8SIDXhR0tnt%2BdmbMIRpjJLjubn5kD56qu6pny6muaqu6p2fntBiUHEfwoJ563%2BxmUYNmPQkiSG8uYUHIgMge3KMXPRmTo0jPDox%2BUN9Pve%2Fw3qv6eCc9IR5Serz%2Bjh4JKelSq%2BZWX9wQiunMVlevVz235p6rbgi13DxXHZbJDF713FbNfan6Fg%2F6eqnueq7ruV71kjA81MOlGQoR3%2B56ta5ba9ZrXquJofn%2FbFMHljpggxPyNASbPr557wAiKKCiOxe57Sc6fvnNKJU00QYDtv%2Bu6iudKUSLNjQOQrU%2F34a2U0I%2BOwOt9ucKoAe7pQL4YkqcXz34an9OE%2F5g75SpL8EVfHYW2aAAlwUELRDoGxDsPgEChtU1qOjWqjYZ3TpFaYlOSeXRA4hsSiq%2FPQMVfXNBimH1mpZpIrSyGIY5xLCA6BWI00MkIwciO0SQfAjBfiZLj1agot01KzUEy2fqhSggwgKSj0Gtg7Q8wkEaOkhjBxE7rtJWN3TdduiHjUanGQRBoxEErc4ya7FGsxO6SIOS3hhJPEYgxwjMNmKzjb745P7GBCb9CXYzh2UObDIlzpVtDFiOjBNkliCjBJkgyBKCbJDvMWnrNr%2FFpE19b17r89rIJzrp7dA9nfS4IqBmvBOfkKdm9jz8%2FT30%2BXG12aJu0Gi3Pb%2FTagf1luc2AkbrnWXWCZeXvRBW5BD2zEzxSEzJs%2BQXxGJKzqy%2FAp8ewspDBOJJ0NQDzSbtugu6OWl2XIzUtxFVPbrJVUJFbbg1AtM54qSCZMvZkSfkuRmV1%2B4%2BBA%2BOzh%2F88dHz31%2F5E4HJEZsc74u7BD15c3JVZ2T3qs4sOViLExGJES1f8VpCE%2F7YV2%2FzrUwbdvmiHX%2F5elACZXv7OrfJClVMqJ4lX18QjHFzSZuAkx8v2w3ur6d280JqVBqvrL9x6XIUG26t0KoAFVNCig8QiCk5%2B088%2B6Ev2DsQpoBJc0TpEZkHhC4QxNuw8YK%2F1QRGLnb8uIIszSem7i8upSCQfDFTP4f9z%2Bwv%2Bh17Ez1TAU1uQEU5BibHQOagcgybPjFJYnN0%2Ft7nZXwBX1YmvjSVXV8a%2BWlp7l9lelCmv0%2B9tuK4yluhG3K3zv2w64dt6rJu2Oz6tOvxtt%2BiHhI75f0fvvsXAAD%2F%2FwEAAP%2F%2F0A1PK4gEAAA%3D
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjuPFXFQE8SIDXhR0tnt%2BdmbMIRpjJLjubn5kD56qu6pny6muaqu6p2fntBiUHEfwoJ563%2BxmUYNmPQkiSG8uYUHIgMge3KMXPRmTo0jPDox%2BUN9Pve%2Fw3qv6eCc9IR5Serz%2Bjh4JKelSq%2BZWX9wQiunMVlevVz235p6rbgi13DxXHZbJDF713FbNfan6Fg%2F6eqnueq7ruV71kjA81MOlGQoR3%2B56ta5ba9ZrXquJofn%2FbFMHljpggxPyNASbPr557wAiKKCiOxe57Sc6fvnNKJU00QYDtv%2Bu6iudKUSLNjQOQrU%2F34a2U0I%2BOwOt9ucKoAe7pQL4YkqcXz34an9OE%2F5g75SpL8EVfHYW2aAAlwUELRDoGxDsPgEChtU1qOjWqjYZ3TpFaYlOSeXRA4hsSiq%2FPQMVfXNBimH1mpZpIrSyGIY5xLCA6BWI00MkIwciO0SQfAjBfiZLj1agot01KzUEy2fqhSggwgKSj0Gtg7Q8wkEaOkhjBxE7rtJWN3TdduiHjUanGQRBoxEErc4ya7FGsxO6SIOS3hhJPEYgxwjMNmKzjb745P7GBCb9CXYzh2UObDIlzpVtDFiOjBNkliCjBJkgyBKCbJDvMWnrNr%2FFpE19b17r89rIJzrp7dA9nfS4IqBmvBOfkKdm9jz8%2FT30%2BXG12aJu0Gi3Pb%2FTagf1luc2AkbrnWXWCZeXvRBW5BD2zEzxSEzJs%2BQXxGJKzqy%2FAp8ewspDBOJJ0NQDzSbtugu6OWl2XIzUtxFVPbrJVUJFbbg1AtM54qSCZMvZkSfkuRmV1%2B4%2BBA%2BOzh%2F88dHz31%2F5E4HJEZsc74u7BD15c3JVZ2T3qs4sOViLExGJES1f8VpCE%2F7YV2%2FzrUwbdvmiHX%2F5elACZXv7OrfJClVMqJ4lX18QjHFzSZuAkx8v2w3ur6d280JqVBqvrL9x6XIUG26t0KoAFVNCig8QiCk5%2B088%2B6Ev2DsQpoBJc0TpEZkHhC4QxNuw8YK%2F1QRGLnb8uIIszSem7i8upSCQfDFTP4f9z%2Bwv%2Bh17Ez1TAU1uQEU5BibHQOagcgybPjFJYnN0%2Ft7nZXwBX1YmvjSVXV8a%2BWlp7l9lelCmv0%2B9tuK4yluhG3K3zv2w64dt6rJu2Oz6tOvxtt%2BiHhI75f0fvvsXAAD%2F%2FwEAAP%2F%2F0A1PK4gEAAA%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjuPFXFQE8SIDXhR0tnt%2BdmbMIRpjJLjubn5kD56qu6pny6muaqu6p2fntBiUHEfwoJ563%2BxmUYNmPQkiSG8uYUHIgMge3KMXPRmTo0jPDox%2BUN9Pve%2Fw3qv6eCc9IR5Serz%2Bjh4JKelSq%2BZWX9wQiunMVlevVz235p6rbgi13DxXHZbJDF713FbNfan6Fg%2F6eqnueq7ruV71kjA81MOlGQoR3%2B56ta5ba9ZrXquJofn%2FbFMHljpggxPyNASbPr557wAiKKCiOxe57Sc6fvnNKJU00QYDtv%2Bu6iudKUSLNjQOQrU%2F34a2U0I%2BOwOt9ucKoAe7pQL4YkqcXz34an9OE%2F5g75SpL8EVfHYW2aAAlwUELRDoGxDsPgEChtU1qOjWqjYZ3TpFaYlOSeXRA4hsSiq%2FPQMVfXNBimH1mpZpIrSyGIY5xLCA6BWI00MkIwciO0SQfAjBfiZLj1agot01KzUEy2fqhSggwgKSj0Gtg7Q8wkEaOkhjBxE7rtJWN3TdduiHjUanGQRBoxEErc4ya7FGsxO6SIOS3hhJPEYgxwjMNmKzjb745P7GBCb9CXYzh2UObDIlzpVtDFiOjBNkliCjBJkgyBKCbJDvMWnrNr%2FFpE19b17r89rIJzrp7dA9nfS4IqBmvBOfkKdm9jz8%2FT30%2BXG12aJu0Gi3Pb%2FTagf1luc2AkbrnWXWCZeXvRBW5BD2zEzxSEzJs%2BQXxGJKzqy%2FAp8ewspDBOJJ0NQDzSbtugu6OWl2XIzUtxFVPbrJVUJFbbg1AtM54qSCZMvZkSfkuRmV1%2B4%2BBA%2BOzh%2F88dHz31%2F5E4HJEZsc74u7BD15c3JVZ2T3qs4sOViLExGJES1f8VpCE%2F7YV2%2FzrUwbdvmiHX%2F5elACZXv7OrfJClVMqJ4lX18QjHFzSZuAkx8v2w3ur6d280JqVBqvrL9x6XIUG26t0KoAFVNCig8QiCk5%2B088%2B6Ev2DsQpoBJc0TpEZkHhC4QxNuw8YK%2F1QRGLnb8uIIszSem7i8upSCQfDFTP4f9z%2Bwv%2Bh17Ez1TAU1uQEU5BibHQOagcgybPjFJYnN0%2Ft7nZXwBX1YmvjSVXV8a%2BWlp7l9lelCmv0%2B9tuK4yluhG3K3zv2w64dt6rJu2Oz6tOvxtt%2BiHhI75f0fvvsXAAD%2F%2FwEAAP%2F%2F0A1PK4gEAAA%3D HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 31de9888c9724a330bcad81ce1a193a9
Strict-Transport-Security: max-age=0; includeSubdomains
mangahentai.xyz/livewire/livewire.js?id=54d078b2ce39327a1702
200 OK 42 kB URL GET HTTP/3 mangahentai.xyz/livewire/livewire.js?id=54d078b2ce39327a1702
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
File type Unicode text, UTF-8 text, with very long lines (54550)
Hash 469c78754f3193e947f4f688f21a6146
5629e27d2bcad323d8f5378aff8387eee66cb7af
5fba42a016e326e62e8bc3d69c73bbfafbf461dbbd46689abe5ee657ec57087c
GET /livewire/livewire.js?id=54d078b2ce39327a1702 HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/os-simptoons-6
Cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
expires: Mon, 02 Dec 2024 23:20:16 GMT
cache-control: max-age=31536000, public
last-modified: Thu, 16 Nov 2023 21:21:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 23:20:16 GMT
server: LiteSpeed
cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXseLe1ERxIsMeFHQSff8ZCbuYTWukWBMsj%2BSg6fqqu5JOdVVbVX39GROwUXZ4wge1FPnm2SDuv7EkyCCdPayBIQdEMnBHL3oyXX3KNKzA6MP6nvv1fcO3%2FeqPtxLz4iHlJ5uvqWHQkq60Kq51ee3hOI6s9X1a1XPrbkXqltCLTYvVAclmP7LntuquS9U3whYTy%2FUXc91PderrggThHqwMGUh4ltLXm3JrTXrNa%2FVxMD8v7epA0sd8P4ZeRKCTx7dvnMEwQqo6NtLge0lOn7x9SiVNNEGfX74tuopnSlE8zI0DkJ1OJuGthNCPjkHrQ5nDqD7%2B6UD%2BGJCnF89%2BOpwJhN%2B%2F%2BChUl8iUPD5eWT9AoEsIGgBpq9D8LsEYBzrG1DRzXVtMrrzkKUlOyGVB%2Fcgsgmp%2FPYUVPT1shSD6lUt00RoZTEIc4hBAdEtEKfHSIYORHYMlrwPwX8mCw%2FWoKL9DSs1BM%2Bn7oUoIMICMhiBWgdpeYSDNHSQxg4iflqlraXQdduhHzYanSZjrNFgrNVZ5C3eaHZCFykr5Y2QxCMwOQIzu4jNLnrio7tbY5j0J9jtHJY7sMmEOJd30ec5soAgswQZJcgEQZYQZP38gEtbt%2FlNLm3qe7Ncn%2BVGPtZJd48e6KQbKAJqRnvxGXliup77v7%2BDXnBabbaoyxrttud3Wm1Wb3lug3Fa7yzyTri46IWwIoew56aOh2JCnia%2FIBYTcm7zJfj0GFYeg4nHQVMPNBu36y7o9rjZcTFU30RUdel2oBIqaoOdIbjOEScVJDvOnjwjz0ylvHL7LwTs5OLRHx88%2B%2F3lP8FMjtjkeFfcJujKG%2BMrOiP7V3RmydFGnIhIDGn5ilcTmgSPfPFmsJNpw1cv2dHnr7KSKMtb1wKbrFHFhepa8uWy4DwwK9qwgPy4arcCfzO128upUWm8tvnaymoUm8BaoVUBKiaEFO%2BBiQk5%2F088%2FaHP2a8gTAGT5ojSEzILCF2Axbuw8Vy%2F1QRGzmf82EGW5mNT9%2BeXUhDIYN5TP4f9T%2B%2FP6z17A11TAU2uQ0U5%2BiZHX%2BagcgSbPjZOYnNy8c6nZXwGX1bGvjSVfV8a%2BfF0uSXcK%2BHvEu7DitNqy2sGHb%2FTZpz7AeNeu97oNFy3znmzvRR4S0jsJOj98N2%2FAAAA%2F%2F8BAAD%2F%2F%2BIR6XuIBAAA
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXseLe1ERxIsMeFHQSff8ZCbuYTWukWBMsj%2BSg6fqqu5JOdVVbVX39GROwUXZ4wge1FPnm2SDuv7EkyCCdPayBIQdEMnBHL3oyXX3KNKzA6MP6nvv1fcO3%2FeqPtxLz4iHlJ5uvqWHQkq60Kq51ee3hOI6s9X1a1XPrbkXqltCLTYvVAclmP7LntuquS9U3whYTy%2FUXc91PderrggThHqwMGUh4ltLXm3JrTXrNa%2FVxMD8v7epA0sd8P4ZeRKCTx7dvnMEwQqo6NtLge0lOn7x9SiVNNEGfX74tuopnSlE8zI0DkJ1OJuGthNCPjkHrQ5nDqD7%2B6UD%2BGJCnF89%2BOpwJhN%2B%2F%2BChUl8iUPD5eWT9AoEsIGgBpq9D8LsEYBzrG1DRzXVtMrrzkKUlOyGVB%2Fcgsgmp%2FPYUVPT1shSD6lUt00RoZTEIc4hBAdEtEKfHSIYORHYMlrwPwX8mCw%2FWoKL9DSs1BM%2Bn7oUoIMICMhiBWgdpeYSDNHSQxg4iflqlraXQdduhHzYanSZjrNFgrNVZ5C3eaHZCFykr5Y2QxCMwOQIzu4jNLnrio7tbY5j0J9jtHJY7sMmEOJd30ec5soAgswQZJcgEQZYQZP38gEtbt%2FlNLm3qe7Ncn%2BVGPtZJd48e6KQbKAJqRnvxGXliup77v7%2BDXnBabbaoyxrttud3Wm1Wb3lug3Fa7yzyTri46IWwIoew56aOh2JCnia%2FIBYTcm7zJfj0GFYeg4nHQVMPNBu36y7o9rjZcTFU30RUdel2oBIqaoOdIbjOEScVJDvOnjwjz0ylvHL7LwTs5OLRHx88%2B%2F3lP8FMjtjkeFfcJujKG%2BMrOiP7V3RmydFGnIhIDGn5ilcTmgSPfPFmsJNpw1cv2dHnr7KSKMtb1wKbrFHFhepa8uWy4DwwK9qwgPy4arcCfzO128upUWm8tvnaymoUm8BaoVUBKiaEFO%2BBiQk5%2F088%2FaHP2a8gTAGT5ojSEzILCF2Axbuw8Vy%2F1QRGzmf82EGW5mNT9%2BeXUhDIYN5TP4f9T%2B%2FP6z17A11TAU2uQ0U5%2BiZHX%2BagcgSbPjZOYnNy8c6nZXwGX1bGvjSVfV8a%2BfF0uSXcK%2BHvEu7DitNqy2sGHb%2FTZpz7AeNeu97oNFy3znmzvRR4S0jsJOj98N2%2FAAAA%2F%2F8BAAD%2F%2F%2BIR6XuIBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXseLe1ERxIsMeFHQSff8ZCbuYTWukWBMsj%2BSg6fqqu5JOdVVbVX39GROwUXZ4wge1FPnm2SDuv7EkyCCdPayBIQdEMnBHL3oyXX3KNKzA6MP6nvv1fcO3%2FeqPtxLz4iHlJ5uvqWHQkq60Kq51ee3hOI6s9X1a1XPrbkXqltCLTYvVAclmP7LntuquS9U3whYTy%2FUXc91PderrggThHqwMGUh4ltLXm3JrTXrNa%2FVxMD8v7epA0sd8P4ZeRKCTx7dvnMEwQqo6NtLge0lOn7x9SiVNNEGfX74tuopnSlE8zI0DkJ1OJuGthNCPjkHrQ5nDqD7%2B6UD%2BGJCnF89%2BOpwJhN%2B%2F%2BChUl8iUPD5eWT9AoEsIGgBpq9D8LsEYBzrG1DRzXVtMrrzkKUlOyGVB%2Fcgsgmp%2FPYUVPT1shSD6lUt00RoZTEIc4hBAdEtEKfHSIYORHYMlrwPwX8mCw%2FWoKL9DSs1BM%2Bn7oUoIMICMhiBWgdpeYSDNHSQxg4iflqlraXQdduhHzYanSZjrNFgrNVZ5C3eaHZCFykr5Y2QxCMwOQIzu4jNLnrio7tbY5j0J9jtHJY7sMmEOJd30ec5soAgswQZJcgEQZYQZP38gEtbt%2FlNLm3qe7Ncn%2BVGPtZJd48e6KQbKAJqRnvxGXliup77v7%2BDXnBabbaoyxrttud3Wm1Wb3lug3Fa7yzyTri46IWwIoew56aOh2JCnia%2FIBYTcm7zJfj0GFYeg4nHQVMPNBu36y7o9rjZcTFU30RUdel2oBIqaoOdIbjOEScVJDvOnjwjz0ylvHL7LwTs5OLRHx88%2B%2F3lP8FMjtjkeFfcJujKG%2BMrOiP7V3RmydFGnIhIDGn5ilcTmgSPfPFmsJNpw1cv2dHnr7KSKMtb1wKbrFHFhepa8uWy4DwwK9qwgPy4arcCfzO128upUWm8tvnaymoUm8BaoVUBKiaEFO%2BBiQk5%2F088%2FaHP2a8gTAGT5ojSEzILCF2Axbuw8Vy%2F1QRGzmf82EGW5mNT9%2BeXUhDIYN5TP4f9T%2B%2FP6z17A11TAU2uQ0U5%2BiZHX%2BagcgSbPjZOYnNy8c6nZXwGX1bGvjSVfV8a%2BfF0uSXcK%2BHvEu7DitNqy2sGHb%2FTZpz7AeNeu97oNFy3znmzvRR4S0jsJOj98N2%2FAAAA%2F%2F8BAAD%2F%2F%2BIR6XuIBAAA HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 240d4d8fe1c29e4315f74e24226034a8
Strict-Transport-Security: max-age=0; includeSubdomains
cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitjuPFvagI4kUGvCjopHt%2BMhP3sLqukWBMsj%2BSg6fqqu5JOdVVbVX39GROwUXZ4wge1FPnTbJBXVbjSRBBOntZAsIOiORgjl705Lp7FOnZgdEP6vup9x3ee1Uf76VnxENKTzff0UMhJV1s1dzqi1tCcZ3Z6vq1qufW3PPVLaGWmuergzKZ%2Fque26q5L1XfClhPL9Zdz3U916uuCBOEerA4RSHiW8tebdmtNes1r9XEwPx%2FtqkDSx3w%2Fhl5GoJPHt%2B%2BewTBCqjo20uB7SU6fvnNKJU00QZ9fviu6imdKUTzNjQOQnU424a2E0I%2BW4BWhzMF0P39UgF8MSHOrx58dTijCb9%2F8IipLxEo%2BPwcsn6BQBYQtADT1yH4PQIwjvUNqOjmujYZ3XmE0hKdkMrD%2BxDZhFR%2BewYqun1RikH1qpZpIrSyGIQ5xKCA6BaI02MkQwciOwZLPoTgP5PFh2tQ0f6GlRqC51P1QhQQYQEZjECtg7Q8wkEaOkhjBxE%2FrdLWcui67dAPG41OkzHWaDDW6izxFm80O6GLlJX0RkjiEZgcgZldxGYXPfHJva0xTPoT7HYOyx3YZEKcy7vo8xxZQJBZgowSZIIgSwiyfn7Apa3b%2FCaXNvW9Wa3PaiMf66S7Rw900g0UATWjvfiMPDW158Hv76EXnFabLeqyRrvt%2BZ1Wm9VbnttgnNY7S7wTLi15IazIIezCVPFQTMiz5BfEYkIWNl%2BBT49h5TGYeBI09UCzcbvugm6Pmx0XQ%2FVNRFWXbgcqoaI22BmC6xxxUkGy4%2BzJM%2FLclMprd%2B4jYCcXjv746PnvL%2F8JZnLEJsf74g5BV94YX9EZ2b%2BiM0uONuJERGJIy1e8mtAkeOyrt4OdTBu%2BesmOvnydlUDZ3roW2GSNKi5U15KvLwrOA7OiDQvIj6t2K%2FA3U7t9MTUqjdc231hZjWITWCu0KkDFhJDiAzAxIef%2Biac%2F9AV7G8IUMGmOKD0hs4DQBVi8CxvP%2BVtNYOR8x48XkKX52NT9%2BaUUBDKYz9TPYf8z%2B%2FN%2Bz95A11RAk%2BtQUY6%2BydGXOagcwaZPjJPYnFy4%2B3kZX8CXlbEvTWXfl0Z%2BWpr719ThMv1dpgew4rTa8ppBx%2B%2B0Ged%2BwLjXrjc6Ddetc95sLwfeMhI7CXo%2FfPcvAAAA%2F%2F8BAAD%2F%2F0gbom6IBAAA
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitjuPFvagI4kUGvCjopHt%2BMhP3sLqukWBMsj%2BSg6fqqu5JOdVVbVX39GROwUXZ4wge1FPnTbJBXVbjSRBBOntZAsIOiORgjl705Lp7FOnZgdEP6vup9x3ee1Uf76VnxENKTzff0UMhJV1s1dzqi1tCcZ3Z6vq1qufW3PPVLaGWmuergzKZ%2Fque26q5L1XfClhPL9Zdz3U916uuCBOEerA4RSHiW8tebdmtNes1r9XEwPx%2FtqkDSx3w%2Fhl5GoJPHt%2B%2BewTBCqjo20uB7SU6fvnNKJU00QZ9fviu6imdKUTzNjQOQnU424a2E0I%2BW4BWhzMF0P39UgF8MSHOrx58dTijCb9%2F8IipLxEo%2BPwcsn6BQBYQtADT1yH4PQIwjvUNqOjmujYZ3XmE0hKdkMrD%2BxDZhFR%2BewYqun1RikH1qpZpIrSyGIQ5xKCA6BaI02MkQwciOwZLPoTgP5PFh2tQ0f6GlRqC51P1QhQQYQEZjECtg7Q8wkEaOkhjBxE%2FrdLWcui67dAPG41OkzHWaDDW6izxFm80O6GLlJX0RkjiEZgcgZldxGYXPfHJva0xTPoT7HYOyx3YZEKcy7vo8xxZQJBZgowSZIIgSwiyfn7Apa3b%2FCaXNvW9Wa3PaiMf66S7Rw900g0UATWjvfiMPDW158Hv76EXnFabLeqyRrvt%2BZ1Wm9VbnttgnNY7S7wTLi15IazIIezCVPFQTMiz5BfEYkIWNl%2BBT49h5TGYeBI09UCzcbvugm6Pmx0XQ%2FVNRFWXbgcqoaI22BmC6xxxUkGy4%2BzJM%2FLclMprd%2B4jYCcXjv746PnvL%2F8JZnLEJsf74g5BV94YX9EZ2b%2BiM0uONuJERGJIy1e8mtAkeOyrt4OdTBu%2BesmOvnydlUDZ3roW2GSNKi5U15KvLwrOA7OiDQvIj6t2K%2FA3U7t9MTUqjdc231hZjWITWCu0KkDFhJDiAzAxIef%2Biac%2F9AV7G8IUMGmOKD0hs4DQBVi8CxvP%2BVtNYOR8x48XkKX52NT9%2BaUUBDKYz9TPYf8z%2B%2FN%2Bz95A11RAk%2BtQUY6%2BydGXOagcwaZPjJPYnFy4%2B3kZX8CXlbEvTWXfl0Z%2BWpr719ThMv1dpgew4rTa8ppBx%2B%2B0Ged%2BwLjXrjc6Ddetc95sLwfeMhI7CXo%2FfPcvAAAA%2F%2F8BAAD%2F%2F0gbom6IBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitjuPFvagI4kUGvCjopHt%2BMhP3sLqukWBMsj%2BSg6fqqu5JOdVVbVX39GROwUXZ4wge1FPnTbJBXVbjSRBBOntZAsIOiORgjl705Lp7FOnZgdEP6vup9x3ee1Uf76VnxENKTzff0UMhJV1s1dzqi1tCcZ3Z6vq1qufW3PPVLaGWmuergzKZ%2Fque26q5L1XfClhPL9Zdz3U916uuCBOEerA4RSHiW8tebdmtNes1r9XEwPx%2FtqkDSx3w%2Fhl5GoJPHt%2B%2BewTBCqjo20uB7SU6fvnNKJU00QZ9fviu6imdKUTzNjQOQnU424a2E0I%2BW4BWhzMF0P39UgF8MSHOrx58dTijCb9%2F8IipLxEo%2BPwcsn6BQBYQtADT1yH4PQIwjvUNqOjmujYZ3XmE0hKdkMrD%2BxDZhFR%2BewYqun1RikH1qpZpIrSyGIQ5xKCA6BaI02MkQwciOwZLPoTgP5PFh2tQ0f6GlRqC51P1QhQQYQEZjECtg7Q8wkEaOkhjBxE%2FrdLWcui67dAPG41OkzHWaDDW6izxFm80O6GLlJX0RkjiEZgcgZldxGYXPfHJva0xTPoT7HYOyx3YZEKcy7vo8xxZQJBZgowSZIIgSwiyfn7Apa3b%2FCaXNvW9Wa3PaiMf66S7Rw900g0UATWjvfiMPDW158Hv76EXnFabLeqyRrvt%2BZ1Wm9VbnttgnNY7S7wTLi15IazIIezCVPFQTMiz5BfEYkIWNl%2BBT49h5TGYeBI09UCzcbvugm6Pmx0XQ%2FVNRFWXbgcqoaI22BmC6xxxUkGy4%2BzJM%2FLclMprd%2B4jYCcXjv746PnvL%2F8JZnLEJsf74g5BV94YX9EZ2b%2BiM0uONuJERGJIy1e8mtAkeOyrt4OdTBu%2BesmOvnydlUDZ3roW2GSNKi5U15KvLwrOA7OiDQvIj6t2K%2FA3U7t9MTUqjdc231hZjWITWCu0KkDFhJDiAzAxIef%2Biac%2F9AV7G8IUMGmOKD0hs4DQBVi8CxvP%2BVtNYOR8x48XkKX52NT9%2BaUUBDKYz9TPYf8z%2B%2FN%2Bz95A11RAk%2BtQUY6%2BydGXOagcwaZPjJPYnFy4%2B3kZX8CXlbEvTWXfl0Z%2BWpr719ThMv1dpgew4rTa8ppBx%2B%2B0Ged%2BwLjXrjc6Ddetc95sLwfeMhI7CXo%2FfPcvAAAA%2F%2F8BAAD%2F%2F0gbom6IBAAA HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e42ef3c4896e21f904f4b8b090bcb155
Strict-Transport-Security: max-age=0; includeSubdomains
cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkxR%2Bt3p3%2F5b8XFUG8yICXXdBJ93xkJu5hdV1XgjHJfkgOeqmu6p6UU13VVnVPT%2BYUXJS9OYIH9dR5k2xQg2s8CSJIZy9LQNgBkRzM0YueXLNHkZ4diP6gfh%2F1fof3XtWHW%2Bkx8ZDSo9U39VBISedaNbd6fk0orjNbXb5Z9dyae7G6JtR882J1UCbTf8lzWzX3QvX1gPX0XN31XNdzvepVYYJQD%2BamKES8t%2BDVFtxas17zWk0MzH9nmzqw1AHvH5OnIPjkf%2Bv39yFYARV9cyWwvUTHL7wWpZIm2qDPd99SPaUzhei0DY2DUO3OtqHthJBPz0Cr3ZkC6P52qQC%2BmBDnFw%2B%2B2p3RhN%2FfeczUlwgUfH4OWb9AIAsIWoDpWxD8AQEYx%2FIKVHRnWZuMbjxGaYlOSOXRQ4hsQiq%2FPg0VfX1ZikH1hpZpIrSyGIQ5xKCA6BaI0wMkQwciOwBL3ofgP5G5R0tQ0faKlRqC51P1QhQQYQEZjECtg7Q8wkEaOkhjBxE%2FqtLWQui67dAPG41OkzHWaDDW6szzFm80O6GLlJX0RkjiEZgcgZlNxGYTPfHxg7UxTPoj7HoOyx3YZEKca5vo8xxZQJBZgowSZIIgSwiyfr7Dpa3b%2FA6XNvW9Wa3PaiMf66S7RXd00g0UATWjrfiYPDm15%2BS3t9ELjqrNFnVZo932%2FE6rzeotz20wTuuded4J5%2Be9EFbkEPbMVPFQTMgz5GfEYkLOrL4Inx7AygMw8QRo6oFm43bdBV0fNzsuhupuRFWXrgcqoaI22BiC6xxxUkGy4WzJY%2FLslMrL9%2F5CwA4v7f%2F%2BwXPfXfsDzOSITY53xT2Crrw9vq4zsn1dZ5bsr8SJiMSQlq94I6FJcPbLN4KNTBu%2BeMWOvniFlUDZ7t0MbLJEFReqa8lXlwXngbmqDQvID4t2LfBXU7t%2BOTUqjZdWX726GMUmsFZoVYCKCSHFe2BiQs79HU9%2F6PP2LoQpYNIcUXpIZgGhC7B4EzY%2BvLR3%2FqT46J0LsJrAyNMdPz6LLM3Hpu6fXkpBIIPTmfo57L9m%2F7TfsrfRNRXQ5BZUlKNvcvRlDipHsOn%2Fx0lsDi%2Fd%2F6yMz%2BHLytiXprLtSyM%2FKc39s0wPpzaX6QRWHFVbXjPo%2BJ0249wPGPfa9Uan4bp1zpvthcBbQGInQe%2F7b%2F8BAAD%2F%2FwEAAP%2F%2FmAg3V4gEAAA%3D
200 OK 7 B URL GET HTTP/1.1 cataloguerepetition.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkxR%2Bt3p3%2F5b8XFUG8yICXXdBJ93xkJu5hdV1XgjHJfkgOeqmu6p6UU13VVnVPT%2BYUXJS9OYIH9dR5k2xQg2s8CSJIZy9LQNgBkRzM0YueXLNHkZ4diP6gfh%2F1fof3XtWHW%2Bkx8ZDSo9U39VBISedaNbd6fk0orjNbXb5Z9dyae7G6JtR882J1UCbTf8lzWzX3QvX1gPX0XN31XNdzvepVYYJQD%2BamKES8t%2BDVFtxas17zWk0MzH9nmzqw1AHvH5OnIPjkf%2Bv39yFYARV9cyWwvUTHL7wWpZIm2qDPd99SPaUzhei0DY2DUO3OtqHthJBPz0Cr3ZkC6P52qQC%2BmBDnFw%2B%2B2p3RhN%2FfeczUlwgUfH4OWb9AIAsIWoDpWxD8AQEYx%2FIKVHRnWZuMbjxGaYlOSOXRQ4hsQiq%2FPg0VfX1ZikH1hpZpIrSyGIQ5xKCA6BaI0wMkQwciOwBL3ofgP5G5R0tQ0faKlRqC51P1QhQQYQEZjECtg7Q8wkEaOkhjBxE%2FqtLWQui67dAPG41OkzHWaDDW6szzFm80O6GLlJX0RkjiEZgcgZlNxGYTPfHxg7UxTPoj7HoOyx3YZEKca5vo8xxZQJBZgowSZIIgSwiyfr7Dpa3b%2FA6XNvW9Wa3PaiMf66S7RXd00g0UATWjrfiYPDm15%2BS3t9ELjqrNFnVZo932%2FE6rzeotz20wTuuded4J5%2Be9EFbkEPbMVPFQTMgz5GfEYkLOrL4Inx7AygMw8QRo6oFm43bdBV0fNzsuhupuRFWXrgcqoaI22BiC6xxxUkGy4WzJY%2FLslMrL9%2F5CwA4v7f%2F%2BwXPfXfsDzOSITY53xT2Crrw9vq4zsn1dZ5bsr8SJiMSQlq94I6FJcPbLN4KNTBu%2BeMWOvniFlUDZ7t0MbLJEFReqa8lXlwXngbmqDQvID4t2LfBXU7t%2BOTUqjZdWX726GMUmsFZoVYCKCSHFe2BiQs79HU9%2F6PP2LoQpYNIcUXpIZgGhC7B4EzY%2BvLR3%2FqT46J0LsJrAyNMdPz6LLM3Hpu6fXkpBIIPTmfo57L9m%2F7TfsrfRNRXQ5BZUlKNvcvRlDipHsOn%2Fx0lsDi%2Fd%2F6yMz%2BHLytiXprLtSyM%2FKc39s0wPpzaX6QRWHFVbXjPo%2BJ0249wPGPfa9Uan4bp1zpvthcBbQGInQe%2F7b%2F8BAAD%2F%2FwEAAP%2F%2FmAg3V4gEAAA%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkxR%2Bt3p3%2F5b8XFUG8yICXXdBJ93xkJu5hdV1XgjHJfkgOeqmu6p6UU13VVnVPT%2BYUXJS9OYIH9dR5k2xQg2s8CSJIZy9LQNgBkRzM0YueXLNHkZ4diP6gfh%2F1fof3XtWHW%2Bkx8ZDSo9U39VBISedaNbd6fk0orjNbXb5Z9dyae7G6JtR882J1UCbTf8lzWzX3QvX1gPX0XN31XNdzvepVYYJQD%2BamKES8t%2BDVFtxas17zWk0MzH9nmzqw1AHvH5OnIPjkf%2Bv39yFYARV9cyWwvUTHL7wWpZIm2qDPd99SPaUzhei0DY2DUO3OtqHthJBPz0Cr3ZkC6P52qQC%2BmBDnFw%2B%2B2p3RhN%2FfeczUlwgUfH4OWb9AIAsIWoDpWxD8AQEYx%2FIKVHRnWZuMbjxGaYlOSOXRQ4hsQiq%2FPg0VfX1ZikH1hpZpIrSyGIQ5xKCA6BaI0wMkQwciOwBL3ofgP5G5R0tQ0faKlRqC51P1QhQQYQEZjECtg7Q8wkEaOkhjBxE%2FqtLWQui67dAPG41OkzHWaDDW6szzFm80O6GLlJX0RkjiEZgcgZlNxGYTPfHxg7UxTPoj7HoOyx3YZEKca5vo8xxZQJBZgowSZIIgSwiyfr7Dpa3b%2FA6XNvW9Wa3PaiMf66S7RXd00g0UATWjrfiYPDm15%2BS3t9ELjqrNFnVZo932%2FE6rzeotz20wTuuded4J5%2Be9EFbkEPbMVPFQTMgz5GfEYkLOrL4Inx7AygMw8QRo6oFm43bdBV0fNzsuhupuRFWXrgcqoaI22BiC6xxxUkGy4WzJY%2FLslMrL9%2F5CwA4v7f%2F%2BwXPfXfsDzOSITY53xT2Crrw9vq4zsn1dZ5bsr8SJiMSQlq94I6FJcPbLN4KNTBu%2BeMWOvniFlUDZ7t0MbLJEFReqa8lXlwXngbmqDQvID4t2LfBXU7t%2BOTUqjZdWX726GMUmsFZoVYCKCSHFe2BiQs79HU9%2F6PP2LoQpYNIcUXpIZgGhC7B4EzY%2BvLR3%2FqT46J0LsJrAyNMdPz6LLM3Hpu6fXkpBIIPTmfo57L9m%2F7TfsrfRNRXQ5BZUlKNvcvRlDipHsOn%2Fx0lsDi%2Fd%2F6yMz%2BHLytiXprLtSyM%2FKc39s0wPpzaX6QRWHFVbXjPo%2BJ0249wPGPfa9Uan4bp1zpvthcBbQGInQe%2F7b%2F8BAAD%2F%2FwEAAP%2F%2FmAg3V4gEAAA%3D HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 696eab8fd5cdd7a858f71f084ad61904
Strict-Transport-Security: max-age=0; includeSubdomains
boundsinflectioncustom.com/watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 boundsinflectioncustom.com/watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectboundsinflectioncustom.com
FingerprintA6:53:9B:E3:1B:0A:C8:5C:D1:39:D7:56:14:14:6A:EC:C2:6D:13:6B
ValidityTue, 28 Nov 2023 08:06:28 GMT - Mon, 26 Feb 2024 08:06:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1 HTTP/1.1
Host: boundsinflectioncustom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:19 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangahentai.xyz
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Credentials: true
Location: https://boundsinflectioncustom.com/watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=a52514c5b1bc26330334d611f35b84fc2f5b4256410fa4493ba5d2ad227ec5f915266ba220f2cb220a8c6ac7874e890b54b2ceef0ffecbd181546d76db15760a2d8a67254ed6383c9bbf2e7d6ad8a29eba993ee10d422c7f75b9b9e38beb0e4c37&pst=1701559279&rmtc=t
Set-Cookie: u_pl=16115327; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.LhcTKXAX5xLd02UA00WmbpzS20LtEc14UoHZksvr3MU; expires=Sat, 02 Dec 2023 23:21:19 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b17ab93100d18014b1ae645f04e2930e
Strict-Transport-Security: max-age=0; includeSubdomains
js.capndr.com/advertising.js
200 OK 0 B URL GET HTTP/2 js.capndr.com/advertising.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectjs.capndr.com
FingerprintD9:9C:A9:BD:64:40:4E:C3:80:FB:C1:63:4D:D6:8F:A9:F7:83:AC:F4
ValidityTue, 24 Oct 2023 01:02:38 GMT - Mon, 22 Jan 2024 01:02:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Sat, 02 Dec 2023 23:25:19 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
wheelstweakautopsy.com/watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=b7e6b512a5ed449ba67b582c479b55a2d698dbb66eb3c9a2733f4daaff974b8cf75c341886982694826db4a9274387340991e5cfb61df60cbcea466e54aa97e65193fb75d8bc4b030624acbff16f8117b38ef1ea53d5872d1425db322c64d8f8ed9423&pst=1701559278&rmtc=t
200 OK 2.5 kB URL GET HTTP/1.1 wheelstweakautopsy.com/watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=b7e6b512a5ed449ba67b582c479b55a2d698dbb66eb3c9a2733f4daaff974b8cf75c341886982694826db4a9274387340991e5cfb61df60cbcea466e54aa97e65193fb75d8bc4b030624acbff16f8117b38ef1ea53d5872d1425db322c64d8f8ed9423&pst=1701559278&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectwheelstweakautopsy.com
FingerprintB2:CE:A2:D8:17:60:33:09:8B:BA:D4:22:02:20:69:8C:0A:96:89:EE
ValidityTue, 28 Nov 2023 10:40:50 GMT - Mon, 26 Feb 2024 10:40:49 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (3143)
Hash 18828168da8aa8d6a585c93bbdd2abd4
0cd51f6ad0f2fd817c19d549a14957fce19218b3
d20c006c3596720dbfaf1bc77fa6c64c70fdfd050c9791f1c21b71ffd5feb84d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1481346450955.js?key=90c758dd35d9ee2136ede7fe065d5ff1&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=b7e6b512a5ed449ba67b582c479b55a2d698dbb66eb3c9a2733f4daaff974b8cf75c341886982694826db4a9274387340991e5cfb61df60cbcea466e54aa97e65193fb75d8bc4b030624acbff16f8117b38ef1ea53d5872d1425db322c64d8f8ed9423&pst=1701559278&rmtc=t HTTP/1.1
Host: wheelstweakautopsy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
Referer: https://mangahentai.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16115304; ain=eyJhbGciOiJIUzI1NiJ9.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.c5CcMTrEbju__eydW2p7LonMKs3FLRwl5fioVGVOzh8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangahentai.xyz
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1; expires=Sat, 09 Dec 2023 23:20:19 GMT; secure; SameSite=None
iprc166ce1f21f3612981e3e28b8141dd58e=3569681; expires=Sun, 03 Dec 2023 03:20:19 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
uncs=1; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
uncs5=1; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 87bf599922d0d24a6cb396764b5bb7b9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
boundsinflectioncustom.com/watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=a52514c5b1bc26330334d611f35b84fc2f5b4256410fa4493ba5d2ad227ec5f915266ba220f2cb220a8c6ac7874e890b54b2ceef0ffecbd181546d76db15760a2d8a67254ed6383c9bbf2e7d6ad8a29eba993ee10d422c7f75b9b9e38beb0e4c37&pst=1701559279&rmtc=t
200 OK 2.1 kB URL GET HTTP/1.1 boundsinflectioncustom.com/watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=a52514c5b1bc26330334d611f35b84fc2f5b4256410fa4493ba5d2ad227ec5f915266ba220f2cb220a8c6ac7874e890b54b2ceef0ffecbd181546d76db15760a2d8a67254ed6383c9bbf2e7d6ad8a29eba993ee10d422c7f75b9b9e38beb0e4c37&pst=1701559279&rmtc=t
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectboundsinflectioncustom.com
FingerprintA6:53:9B:E3:1B:0A:C8:5C:D1:39:D7:56:14:14:6A:EC:C2:6D:13:6B
ValidityTue, 28 Nov 2023 08:06:28 GMT - Mon, 26 Feb 2024 08:06:27 GMT
File type HTML document, ASCII text, with very long lines (2563)
Hash 03ae8582b9f42d22302c5a697d6875cd
9cf5c50c63003df4a6a6440b7725af669453afde
738b9c94af4a88aed35b2f4af5d8816a661d1939d0529e4f4f6ff795953dcdc5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.537028408160.js?key=88a314e0646d0d08f1798a55866fe972&kw=%5B%22%E2%96%B7%22%2C%22os%22%2C%22simptoons%22%2C%226%22%2C%22-%22%2C%22mangahentai%22%2C%22xyz%22%5D&refer=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&tz=0&dev=e&res=14.3095&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1&shu=a52514c5b1bc26330334d611f35b84fc2f5b4256410fa4493ba5d2ad227ec5f915266ba220f2cb220a8c6ac7874e890b54b2ceef0ffecbd181546d76db15760a2d8a67254ed6383c9bbf2e7d6ad8a29eba993ee10d422c7f75b9b9e38beb0e4c37&pst=1701559279&rmtc=t HTTP/1.1
Host: boundsinflectioncustom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
Referer: https://mangahentai.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16115327; ain=eyJhbGciOiJIUzI1NiJ9.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.LhcTKXAX5xLd02UA00WmbpzS20LtEc14UoHZksvr3MU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangahentai.xyz
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1; expires=Sat, 09 Dec 2023 23:20:19 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
uncs=1; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
pdhtkv26=true; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
uncs26=1; expires=Sun, 03 Dec 2023 23:20:19 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f517550da64fc31da857b7afd4b0f2fa
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
na.nawpush.com/tags/9234?version_name=b
200 OK 1.1 kB URL GET HTTP/2 na.nawpush.com/tags/9234?version_name=b
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectna.nawpush.com
Fingerprint73:8E:D9:E1:D0:7F:5B:63:BD:6A:8D:47:8E:04:38:3F:5F:49:91:2B
ValidityWed, 29 Nov 2023 03:00:42 GMT - Tue, 27 Feb 2024 03:00:41 GMT
File type JSON data\012- , ASCII text, with very long lines (1122), with no line terminators
Hash ff2eabbfa148d22de76602095dac7729
3f0721db7b8880da949d2693bab1e26e26520125
b6079a58a35bcea3f0f4b2ad887fd99d330c5dc924625c881d7167a0febccbbc
GET /tags/9234?version_name=b HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: application/json
content-length: 1122
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: EXPIRED
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.m.js
200 OK 83 kB URL GET HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectjs.wpadmngr.com
FingerprintAC:C2:DC:B6:95:8A:52:42:68:CB:0F:19:3F:56:A9:E9:1F:E6:04:8C
ValiditySun, 12 Nov 2023 03:01:15 GMT - Sat, 10 Feb 2024 03:01:14 GMT
File type gzip compressed data, from Unix\012- data
Hash 3bd7660f19c0ad584c0c5565f1a4edc5
af5a7bb79f73dcd592f05a76a172147cd8056630
94a5255930e7963d61e630cb4402977b11f24ef9f87216bdd8c58719eb2e825c
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:18 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 28 Nov 2023 12:01:41 GMT
etag: W/"6565d6a5-288d5"
content-encoding: gzip
expires: Sat, 02 Dec 2023 23:25:18 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
mangahentai.xyz/images/icons/icon-512x512.png
200 OK 48 kB URL GET HTTP/3 mangahentai.xyz/images/icons/icon-512x512.png
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash f6f2654ebebb219001e210af3ae2e659
534cea44333733f81391ad388a59551a48db69e0
598d556a9e688d639b0be78d1e0a2ec8af7dc0da51b84766807a5d0fc9bd6f44
GET /images/icons/icon-512x512.png HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/os-simptoons-6
Cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1; pp_main_6fb09fe8197395758fdd748ee2a21cf8=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=cataloguerepetition.com; _ga_20TCPJKKWX=GS1.1.1701559224.1.0.1701559224.0.0.0; _ga=GA1.1.1608583716.1701559224
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 23:20:19 GMT
content-type: image/png
last-modified: Thu, 16 Nov 2023 21:21:46 GMT
accept-ranges: bytes
content-length: 47495
date: Sat, 02 Dec 2023 23:20:19 GMT
server: LiteSpeed
friendshipmale.com/sfp.js
200 OK 75 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d0973d854a61ec36ca6efc18f542eb88
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 02 Dec 2023 23:20:18 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4CRPqbk1XVMHKzqW0gSHx%2FeiO398c%2FPW1KFoThZCTRE1yC8FQLDU7wD0GhNQjWe0XxzeS0zgBUD5S38BtZPFbFd%2FOnuZGLJ8Gh478J2f9Nz5wVziAJCzZW%2F4m%2F7pTX6z6usa0DQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cbdc95fd902-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 6466786cb658bebcdaf019b13ca77401
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 02 Dec 2023 23:20:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8R0qTRku2g0fW5jCGy%2FSOBpjXggY6vQQNT2BodfnFG4pT3b6qD%2B5EOf0o8O6cAm806ffDxsUQyj%2BF542yg3z2Lc9znjI8bKotLlS70Ts10MJUJdWP9hYSHsRytqV7R%2Fc52Fm86fNEPSmReU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc30d0756aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png
200 OK 145 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 145 kB (145012 bytes)
Hash 620dee7dda3ab0a55fef5e66735e48e1
c03458e7950bed758e4352ec7a78bb434a3164b1
8552142726040854ba6a1d57037aa513e8cb424e3e5b96f017fb742f7c9255c3
GET /cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: image/png
content-length: 145012
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 09:52:06 GMT
etag: "62e10ac6-23674"
expires: Mon, 04 Dec 2023 23:20:19 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/07/43/56/0743565c37f2bec84291b53965b42594/1682513333.jpg
200 OK 24 kB URL GET HTTP/2 cdn.cloudimagesb.com/bi/07/43/56/0743565c37f2bec84291b53965b42594/1682513333.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2], baseline, precision 8, 300x250, components 3\012- data
Hash 6d5b8dfa9aa0299346dc72bb01aedc0e
ac5324b333cb7ebd5371eeaaa7685042537ef186
b73d6e073d10238f8c334bd5d405be77bcb3e0b6097c55d3af9da41937077e78
GET /bi/07/43/56/0743565c37f2bec84291b53965b42594/1682513333.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: image/jpeg
content-length: 24473
server: nginx/1.21.6
last-modified: Wed, 26 Apr 2023 12:49:01 GMT
etag: "64491dbd-5f99"
expires: Mon, 04 Dec 2023 23:20:19 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
notification.tubecup.net/tags?tag_id=9234&timezone_olson=UTC&version_name=b
204 No Content 0 B URL GET HTTP/2 notification.tubecup.net/tags?tag_id=9234&timezone_olson=UTC&version_name=b
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?tag_id=9234&timezone_olson=UTC&version_name=b HTTP/1.1
Host: notification.tubecup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:20 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
prematuresam.com/sbar.json?key=b321823d26b85a8e2c041413c0ede9e5&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1
200 OK 4.1 kB URL GET HTTP/1.1 prematuresam.com/sbar.json?key=b321823d26b85a8e2c041413c0ede9e5&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectprematuresam.com
FingerprintD1:BC:B4:98:A1:F5:79:44:08:07:76:0B:42:5B:37:31:DB:41:7A:35
ValidityTue, 28 Nov 2023 08:05:20 GMT - Mon, 26 Feb 2024 08:05:19 GMT
File type JSON data\012- , ASCII text, with very long lines (6109), with no line terminators
Hash 279a165e5b08502f0ef98f98cab7c5e0
0511b72ca39358abba7086864a40a15a1467efa4
10ef7087e651904ae7d2b28249621272abda6285440dd46e4008b2b464b6fe7b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=b321823d26b85a8e2c041413c0ede9e5&uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941%3A1%3A1 HTTP/1.1
Host: prematuresam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:20 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangahentai.xyz
Access-Control-Allow-Origin: https://mangahentai.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16115310; expires=Sun, 03 Dec 2023 23:20:20 GMT; secure; SameSite=None
uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1; expires=Sat, 09 Dec 2023 23:20:20 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 03 Dec 2023 23:20:20 GMT; secure; SameSite=None
uncs=1; expires=Sun, 03 Dec 2023 23:20:20 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 03 Dec 2023 23:20:20 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 03 Dec 2023 23:20:20 GMT; secure; SameSite=None
slecb321823d26b85a8e2c041413c0ede9e5=[4691078]; expires=Sat, 02 Dec 2023 23:20:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c99b6aff5c838535e6e4051a721093ab
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
unseenreport.com/pxf.gif?uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=6fb09fe8197395758fdd748ee2a21cf8&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=6fb09fe8197395758fdd748ee2a21cf8&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=6fb09fe8197395758fdd748ee2a21cf8&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:20 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4685d8c2844ae1b29847d27930951654
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=b321823d26b85a8e2c041413c0ede9e5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=b321823d26b85a8e2c041413c0ede9e5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=c8d10c26-8ca8-441c-a7a8-cbd60be05941&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=b321823d26b85a8e2c041413c0ede9e5&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:20 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 68cee6d19f07b83159bb585ad003c265
Strict-Transport-Security: max-age=0; includeSubdomains
prematuresam.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxReuTvZ3%2BYmiIqgHYQ6CCu5s90zP7oxBFmNMCMZkTaJ7tf71bLnVVW1V9%2FTsXgwGQo4T9OCx95tN1j9BDXgTicx6kQVhRyTswT0K3gQxN0FmdmDxQdV7r753%2BL6v3o2t4pBEKOjBylt2U2lNF1r1sPbiqjLClr528WotCuvhqdqqMovxqVp%2FcrneK1HYqocv1c5Jvm4XGmEUhlEY1c4qJxPbX5iiUNndTlTvhPW4UY9aMfruv70vAngaQPQOyZNQYvy%2FtZ%2FuQfERTPrNGenXc5u9%2FEZaaJpbh57YecesG1sapMdl4gIkZmc2DevHhHx6AtbszBTA9rYnCsDUmAQPIjCzM6MJ1rt9xJRpSAMmHkHZG0HqERQdgdvrUGKfAFzg4iWY9M5F60q6cYTSCTomcw%2F%2FgirHZO63p2DSr05r1a9dsbrIlTUe%2FaSC6o%2BguiNkxS7yzQCq3AXPP4ISP5OFhxdg0u1LXlsocfA8b4so5I3F%2BTan7fk4jvg8XaLtec7EYshk2OrE0dQipUZQyQhaDkB9gGJyVIAiCVBkAVJxUKOtThKGSwlLms12zDlvNjlvtRdFSzTjdhKi4BMNA%2BTZAFwPwN01ZO4a1tWt%2FdUhXPED%2FFoFL07C52MSvP0heqJCKQlKT1BSglIRlDlB2atuC%2B0bvrojtC9YNMuNWW5WQ5t3t%2Bhtm3elIaBusJUdkiemHv79u8G6PKixZiNqN5qiscjaLdqWDR7GURw1eSiF7MgWvKqg%2FImp4k01Jk%2BTX5GpMTmxMg9Gd%2BH1Lrh6HLR4DrQcLjVC0LVh3A6xab5OqenSNWlyqur9jU0IWyHL55BvBFv6kDw7pXLukxuQfG%2F5n2z44P%2BvfgDuKmSuwvvqR4Kuvjm8bEuyfdmWnty7lOUqVZt08tVXcprLuS%2FelBuldeL8GT%2F4%2FDU%2BASbl3avS5xeoEcp0PfnytBJCurPWcUm%2BP%2B9XJVsp%2FNrpwpkiu7Dy%2Btnzaeak98qaEajaf%2B8%2BuBqTR%2B8sT5f4hc%2FuQ7kRXFEhLfbILKDsLnh2DT7bW%2F7jsXfnnvm4gLcETh%2FPsCxAWVRD12DHj1oRaHncU1bBy2MLmNy7%2F%2BcRtuVvousC0Pw6TFqh5yr0dAWqB%2FDFyWGeub3lX5rTANPBkGkXbDPt9K0ja706qMlWEiYybEiWdFiyREPRSeIOo51ILrEWjZD7sVz%2F7tt%2FAQAA%2F%2F8BAAD%2F%2F8qK7FicBAAA
200 OK 7 B URL GET HTTP/1.1 prematuresam.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxReuTvZ3%2BYmiIqgHYQ6CCu5s90zP7oxBFmNMCMZkTaJ7tf71bLnVVW1V9%2FTsXgwGQo4T9OCx95tN1j9BDXgTicx6kQVhRyTswT0K3gQxN0FmdmDxQdV7r753%2BL6v3o2t4pBEKOjBylt2U2lNF1r1sPbiqjLClr528WotCuvhqdqqMovxqVp%2FcrneK1HYqocv1c5Jvm4XGmEUhlEY1c4qJxPbX5iiUNndTlTvhPW4UY9aMfruv70vAngaQPQOyZNQYvy%2FtZ%2FuQfERTPrNGenXc5u9%2FEZaaJpbh57YecesG1sapMdl4gIkZmc2DevHhHx6AtbszBTA9rYnCsDUmAQPIjCzM6MJ1rt9xJRpSAMmHkHZG0HqERQdgdvrUGKfAFzg4iWY9M5F60q6cYTSCTomcw%2F%2FgirHZO63p2DSr05r1a9dsbrIlTUe%2FaSC6o%2BguiNkxS7yzQCq3AXPP4ISP5OFhxdg0u1LXlsocfA8b4so5I3F%2BTan7fk4jvg8XaLtec7EYshk2OrE0dQipUZQyQhaDkB9gGJyVIAiCVBkAVJxUKOtThKGSwlLms12zDlvNjlvtRdFSzTjdhKi4BMNA%2BTZAFwPwN01ZO4a1tWt%2FdUhXPED%2FFoFL07C52MSvP0heqJCKQlKT1BSglIRlDlB2atuC%2B0bvrojtC9YNMuNWW5WQ5t3t%2Bhtm3elIaBusJUdkiemHv79u8G6PKixZiNqN5qiscjaLdqWDR7GURw1eSiF7MgWvKqg%2FImp4k01Jk%2BTX5GpMTmxMg9Gd%2BH1Lrh6HLR4DrQcLjVC0LVh3A6xab5OqenSNWlyqur9jU0IWyHL55BvBFv6kDw7pXLukxuQfG%2F5n2z44P%2BvfgDuKmSuwvvqR4Kuvjm8bEuyfdmWnty7lOUqVZt08tVXcprLuS%2FelBuldeL8GT%2F4%2FDU%2BASbl3avS5xeoEcp0PfnytBJCurPWcUm%2BP%2B9XJVsp%2FNrpwpkiu7Dy%2Btnzaeak98qaEajaf%2B8%2BuBqTR%2B8sT5f4hc%2FuQ7kRXFEhLfbILKDsLnh2DT7bW%2F7jsXfnnvm4gLcETh%2FPsCxAWVRD12DHj1oRaHncU1bBy2MLmNy7%2F%2BcRtuVvousC0Pw6TFqh5yr0dAWqB%2FDFyWGeub3lX5rTANPBkGkXbDPt9K0ja706qMlWEiYybEiWdFiyREPRSeIOo51ILrEWjZD7sVz%2F7tt%2FAQAA%2F%2F8BAAD%2F%2F8qK7FicBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectprematuresam.com
FingerprintD1:BC:B4:98:A1:F5:79:44:08:07:76:0B:42:5B:37:31:DB:41:7A:35
ValidityTue, 28 Nov 2023 08:05:20 GMT - Mon, 26 Feb 2024 08:05:19 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxReuTvZ3%2BYmiIqgHYQ6CCu5s90zP7oxBFmNMCMZkTaJ7tf71bLnVVW1V9%2FTsXgwGQo4T9OCx95tN1j9BDXgTicx6kQVhRyTswT0K3gQxN0FmdmDxQdV7r753%2BL6v3o2t4pBEKOjBylt2U2lNF1r1sPbiqjLClr528WotCuvhqdqqMovxqVp%2FcrneK1HYqocv1c5Jvm4XGmEUhlEY1c4qJxPbX5iiUNndTlTvhPW4UY9aMfruv70vAngaQPQOyZNQYvy%2FtZ%2FuQfERTPrNGenXc5u9%2FEZaaJpbh57YecesG1sapMdl4gIkZmc2DevHhHx6AtbszBTA9rYnCsDUmAQPIjCzM6MJ1rt9xJRpSAMmHkHZG0HqERQdgdvrUGKfAFzg4iWY9M5F60q6cYTSCTomcw%2F%2FgirHZO63p2DSr05r1a9dsbrIlTUe%2FaSC6o%2BguiNkxS7yzQCq3AXPP4ISP5OFhxdg0u1LXlsocfA8b4so5I3F%2BTan7fk4jvg8XaLtec7EYshk2OrE0dQipUZQyQhaDkB9gGJyVIAiCVBkAVJxUKOtThKGSwlLms12zDlvNjlvtRdFSzTjdhKi4BMNA%2BTZAFwPwN01ZO4a1tWt%2FdUhXPED%2FFoFL07C52MSvP0heqJCKQlKT1BSglIRlDlB2atuC%2B0bvrojtC9YNMuNWW5WQ5t3t%2Bhtm3elIaBusJUdkiemHv79u8G6PKixZiNqN5qiscjaLdqWDR7GURw1eSiF7MgWvKqg%2FImp4k01Jk%2BTX5GpMTmxMg9Gd%2BH1Lrh6HLR4DrQcLjVC0LVh3A6xab5OqenSNWlyqur9jU0IWyHL55BvBFv6kDw7pXLukxuQfG%2F5n2z44P%2BvfgDuKmSuwvvqR4Kuvjm8bEuyfdmWnty7lOUqVZt08tVXcprLuS%2FelBuldeL8GT%2F4%2FDU%2BASbl3avS5xeoEcp0PfnytBJCurPWcUm%2BP%2B9XJVsp%2FNrpwpkiu7Dy%2Btnzaeak98qaEajaf%2B8%2BuBqTR%2B8sT5f4hc%2FuQ7kRXFEhLfbILKDsLnh2DT7bW%2F7jsXfnnvm4gLcETh%2FPsCxAWVRD12DHj1oRaHncU1bBy2MLmNy7%2F%2BcRtuVvousC0Pw6TFqh5yr0dAWqB%2FDFyWGeub3lX5rTANPBkGkXbDPt9K0ja706qMlWEiYybEiWdFiyREPRSeIOo51ILrEWjZD7sVz%2F7tt%2FAQAA%2F%2F8BAAD%2F%2F8qK7FicBAAA HTTP/1.1
Host: prematuresam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115310; uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:20 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3d9fd1cdf5116333c2357c99bb3c0c3b
Strict-Transport-Security: max-age=0; includeSubdomains
fp.metricswpsh.com/fp?tag_id=9234
204 No Content 0 B URL OPTIONS HTTP/1.1 fp.metricswpsh.com/fp?tag_id=9234
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=9234 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mangahentai.xyz/
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 02 Dec 2023 23:20:20 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://mangahentai.xyz
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
ntvpforever.com/keywords
200 OK 0 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /keywords HTTP/1.1
Host: ntvpforever.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mangahentai.xyz/
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:20 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
aba744c125.df4a3bc10a.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI0MzA5MDIzODYyOTM3OTc3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6OTIzNCwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjoxLjI0LCJpc192MiI6MSwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiIlRTIlOTYlQjclMkNPUyUyQ1NJTVBUT09OUyUyQzYlMkNNYW5nYWhlbnRhaS54eXolMkNMZWVyJTJDT1MlMkNTSU1QVE9PTlMlMkM2JTJDJUUzJTgwJTkwTWFuZ2ElMkNIZW50YWklMkMlRTIlOTYlQjclMkNFc3BhJUMzJUIxb2wlRTMlODAlOTElRTIlOUMlODUlMkNTaW4lMkNDZW5zdXJhJTJDZGVzY2FyZ2FyJTJDcG9yJTJDTWVnYSUyQ01hbmdhaGVudGFpLnh5eiJ9
200 OK 0 B URL GET HTTP/2 aba744c125.df4a3bc10a.com/in/track?data=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
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectaba744c125.df4a3bc10a.com
Fingerprint00:DB:99:EF:9E:F9:25:63:DC:E2:3D:B5:B4:08:55:1A:9B:88:2A:2E
ValidityWed, 29 Nov 2023 02:50:21 GMT - Tue, 27 Feb 2024 02:50:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI0MzA5MDIzODYyOTM3OTc3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6OTIzNCwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjoxLjI0LCJpc192MiI6MSwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiIlRTIlOTYlQjclMkNPUyUyQ1NJTVBUT09OUyUyQzYlMkNNYW5nYWhlbnRhaS54eXolMkNMZWVyJTJDT1MlMkNTSU1QVE9PTlMlMkM2JTJDJUUzJTgwJTkwTWFuZ2ElMkNIZW50YWklMkMlRTIlOTYlQjclMkNFc3BhJUMzJUIxb2wlRTMlODAlOTElRTIlOUMlODUlMkNTaW4lMkNDZW5zdXJhJTJDZGVzY2FyZ2FyJTJDcG9yJTJDTWVnYSUyQ01hbmdhaGVudGFpLnh5eiJ9 HTTP/1.1
Host: aba744c125.df4a3bc10a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
ntvpforever.com/keywords
200 OK 23 B IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 65d0afba0bead34449208b194a9b46d5
60f8d00f2c07a39ab577920353b8746ea57aca82
2cc97755cb4083122228167f0b24643331f580dee787a4ad73c152f365cbf34b
POST /keywords HTTP/1.1
Host: ntvpforever.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 220
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: application/json
content-length: 23
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=9234
204 No Content 58 B URL OPTIONS HTTP/1.1 fp.metricswpsh.com/fp?tag_id=9234
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
File type JSON data\012- , ASCII text
Hash 49cb75c0da6be8cc97daea0ae2498649
1dd230c3f22a2308b9c091fe1e952b5e8d44bc88
3f61f6927c8c29196e623750a164dcd6895cc2dc3a592ccc5d755b3d4d407841
POST /fp?tag_id=9234 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 23169
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 02 Dec 2023 23:20:20 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://mangahentai.xyz
Set-Cookie: id=2064833206463652978; Expires=Sun, 01 Dec 2024 23:20:20 GMT; Secure; SameSite=None
Vary: Origin
cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/img/button.png
200 OK 9.9 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/img/button.png
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 374 x 158, 8-bit colormap, non-interlaced\012- data
Hash 820ad88853e09bfa31ecc6dfd93c07ec
c8d408a8618a825a5111c51a6fe2e30f4d53098c
948bc0c4bd13d058c1c64f903453f928ecfdcd87686eebe6f9a73618e24d4bbd
GET /sb/interstitial/games/hentai-heroes/main/8/img/button.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: image/png
content-length: 9865
last-modified: Thu, 19 Oct 2023 16:12:57 GMT
etag: "65315589-2689"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2148952
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ySSf7QyFkXeyiQOVF7G8g5YWzQ0mSyFRzr70By7m%2FigdIWdp8DY0KIxewcq5w3wbn1m66MpHu%2FKqOxFZY7sw7VMewyt8xv4QZPB9%2F82usQGpEVh16k5tTf87b9vkrJgw0w9jxLjaN06L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc9aa0d6525-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
nereserv.com/in/dip?site=native-push&wl=1&event_id=5416a045-d446-45a4-90c2-6b98d8b7353e&subid=1215704199&sid=4101855050&spot_id=8014&created_at=2023-12-02&timezone=0&ver=8.121.0&is_native=1
200 OK 0 B URL GET HTTP/2 nereserv.com/in/dip?site=native-push&wl=1&event_id=5416a045-d446-45a4-90c2-6b98d8b7353e&subid=1215704199&sid=4101855050&spot_id=8014&created_at=2023-12-02&timezone=0&ver=8.121.0&is_native=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=1&event_id=5416a045-d446-45a4-90c2-6b98d8b7353e&subid=1215704199&sid=4101855050&spot_id=8014&created_at=2023-12-02&timezone=0&ver=8.121.0&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:20 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
d834c8bfc5.e468aaeee7.com/in/multy
204 No Content 0 B URL OPTIONS HTTP/2 d834c8bfc5.e468aaeee7.com/in/multy
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecte468aaeee7.com
Fingerprint3B:06:B4:71:EE:50:A9:82:72:BC:54:2D:34:D4:0B:23:5F:5F:0E:69
ValidityWed, 29 Nov 2023 03:01:52 GMT - Tue, 27 Feb 2024 03:01:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /in/multy HTTP/1.1
Host: d834c8bfc5.e468aaeee7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mangahentai.xyz/
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.20.1
date: Sat, 02 Dec 2023 23:20:20 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/js/script.js
200 OK 1.5 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/js/script.js
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash f06aedc6f9c35062ffcf1d5ad7b6e574
47f1ec30faf80f0958036aea330d22d4ea6bd994
f6ae8744b3f2b2f8865fff018810c62b9bb82ffb3224d0e958ff2cdcec3d2026
GET /sb/interstitial/games/hentai-heroes/main/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 16:13:00 GMT
etag: W/"6531558c-f3f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OSbprKIomPKkbbMamHaWWeEKuU9heajcg0k0IR5MnU47DObjF3G8EcM7tIximQxYunsjFqqVfYmqx7lLpbXjbxbwLUs6Q4dB0s0BBWZG5jaFls4bALHTgkmuHVB89vpNkh09qt6PDXfX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc99cb2638e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp2ZZklDClMDDQ4E9VSjHR4k7XnFO0ezSFSVVuIjy8tqJ0TX9NBFoJd4_wTf-7upTX-hec3V
302 Found 397 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp2ZZklDClMDDQ4E9VSjHR4k7XnFO0ezSFSVVuIjy8tqJ0TX9NBFoJd4_wTf-7upTX-hec3V
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (395)
Hash 4fe8ccfa86207e93b71ace419d7899f5
93375a12228044b4b9cb453028ae09ac46f67d00
2799f7041944384b636cc8bd2841a35295ecc12ee261adf788d449c79f85afc6
GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp2ZZklDClMDDQ4E9VSjHR4k7XnFO0ezSFSVVuIjy8tqJ0TX9NBFoJd4_wTf-7upTX-hec3V HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:e301hqr3bQ-Xerc5Wuzk6oEM_UNnHA:2Y-ICVDSSwTicVxa;Path=/;Expires=Mon, 01-Dec-2025 23:20:21 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 23:20:21 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1kFwHN1K4aaJGhPpOtAlmQl-yisvl14t8cBp9us9khGYMoJVTosOviiLlvaAYsOyu1W2e1&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-603469745%3A1701559221218212&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-0XuvBirL98xiKlS6UOLN_w' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 397
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d834c8bfc5.e468aaeee7.com/in/multy
204 No Content 3.7 kB URL OPTIONS HTTP/2 d834c8bfc5.e468aaeee7.com/in/multy
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecte468aaeee7.com
Fingerprint3B:06:B4:71:EE:50:A9:82:72:BC:54:2D:34:D4:0B:23:5F:5F:0E:69
ValidityWed, 29 Nov 2023 03:01:52 GMT - Tue, 27 Feb 2024 03:01:51 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (30408), with no line terminators
Hash cd4cf5bb99ad404e0d4c5c28526ebb8e
29bf20468531c7be85a552012817630e8c412772
79432a2dfa748fa5c38a538448de3ccde2f1f7e6509bda891001ea3d1654305a
POST /in/multy HTTP/1.1
Host: d834c8bfc5.e468aaeee7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1752
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 02 Dec 2023 23:20:21 GMT
content-type: application/json
content-length: 3692
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
d834c8bfc5.e468aaeee7.com/in/show/?tag_ab=b&site_id=318014&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&refdom=mangahentai.xyz&auction_time=1701559220&subid=1215704199&sid=4101855050&tcid=0&ver=8.121.0&ver_c=&spot_id=8014&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-02&iabcat=IAB25&keywords=hentai&user_fp=1424822565830209327&score=78.46321418941125&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1215704199%26spot_id%3D8014%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fmangahentai.xyz%252Fos-simptoons-6%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&url=https%3A%2F%2Fs.viiqxpnb.com%2Fh%2F1411%2Fm22uuqov6b4vv257wopho44vusrzre5vwf3uuwscozaeamdvezctzzf447fhcbj72bl4wso3klv3ex7uk3cms562gpzpf6gqydpnhcjhtbfcbalwm6retzev5dnvbrsm5km7323s6vqibfgw26xy7nmrxfw4asklzn2w6bah4zfgvpsrgzgvq64hifyikybtrjyhbudtq2bps3oyjcby3sdmrjfyxrxf2vi6itszjwhubo6qt74hpet37fzke3khtrjuvslfyonojy2q3bdhf4jsk5uxgz3sirafwacaijggasl7ljzviyt2pfkugxlspvxpqrtsweze7d2ou5dxbdlgelzho6oyovhp4q3n6bhnhk46vndfvlsjjknjdokojcvj22tjorbbuktydc3hqiuhihcfdhnznhdwzf5xkgqehjndh23vszzufudrawykimiecmkjpeehexbwpn6ferajfz4gm7zacjqag5lje4zhkrhvmaz7u4ersl7ut5sepdwusxwwuzky6srx6z7evbrullxzk35toosozs6j4hnols4yn6sg6lrdhukqohtqm54sslqfebhggnjneusrahqsk4aachjzly7acnsdn45skxanaq4scpbyaepcaxign4gta5yzd4rumhcbhf3bgjqheudq6irnlqkagpbnn5yhgelkk52gwitdomlukvybielbyycapugcox3fon4aees3p5xckpjafq5fe4djobtherkbkucuuq2kmveh4xtv5rkgeuzepv7hw7depr5ecyidpnwxyzdtincvwakaivulze7777vnxm6swfqf73m6ucge2ad2qpauvcvtkcjim4rsw34336kxfdfnf2otlivybifkr5gcavlklv5yipcxj4wcgnybj5gr2hytcy3rciqlfamdcithdehbo5lyx5hwu4ldqk5pn32rpfch2yzkusbha4fnwvuwxfv5udzvibwh75zg6sccomjysmaf7mlehb37pf6mojchdbsbu6ropaquwslbo7etvblj%3Fu%3D&icons=d9ilPNWsMVn4u5OBTie-1WJKRAy-zPvcWS9n3EzmUJAur6jxMHraj4eFaJnLz7tqggQtC7pWRtGcY8IN9W043qcS1pLAkGWNOBbfhI0nS8wNlaC3vePckhXLc2FaurQjnFC8Xsxu8J7np8G3DVM3LwOkzldOW0xOPnrNG9KXUe2JNdKCZA&ext_cid=0&px_id=538014&min_cpm=0.07168113508515161&out_id=1&campaign_type=lq-pop&aid=412&cid=14080&uniq=&mid=8672326329158460626&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.07855108349506956&cpm=0&verify_hash=b7dfe3ac955382277401316e00484972&is_native=2&real_bid=0.0012753971330167284&original_bid_usd=0.001385999941859395&original_bid=0.001385999941859395&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=89,4,27,93,108,0&need_redirect_show=0&applied_features=coef_099,main-skins-settings&show_count=1&expiration_timestamp=1701645620&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&site=native-push-adult&price=0.001385999941859395&hostname=auc-inpage-hz-9-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000001385999941859395&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.04&cpa=78477354-c62d-4603-bc10-58736994486d
200 OK 0 B URL GET HTTP/2 d834c8bfc5.e468aaeee7.com/in/show/?tag_ab=b&site_id=318014&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&refdom=mangahentai.xyz&auction_time=1701559220&subid=1215704199&sid=4101855050&tcid=0&ver=8.121.0&ver_c=&spot_id=8014&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-02&iabcat=IAB25&keywords=hentai&user_fp=1424822565830209327&score=78.46321418941125&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1215704199%26spot_id%3D8014%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fmangahentai.xyz%252Fos-simptoons-6%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&url=https%3A%2F%2Fs.viiqxpnb.com%2Fh%2F1411%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%3Fu%3D&icons=d9ilPNWsMVn4u5OBTie-1WJKRAy-zPvcWS9n3EzmUJAur6jxMHraj4eFaJnLz7tqggQtC7pWRtGcY8IN9W043qcS1pLAkGWNOBbfhI0nS8wNlaC3vePckhXLc2FaurQjnFC8Xsxu8J7np8G3DVM3LwOkzldOW0xOPnrNG9KXUe2JNdKCZA&ext_cid=0&px_id=538014&min_cpm=0.07168113508515161&out_id=1&campaign_type=lq-pop&aid=412&cid=14080&uniq=&mid=8672326329158460626&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.07855108349506956&cpm=0&verify_hash=b7dfe3ac955382277401316e00484972&is_native=2&real_bid=0.0012753971330167284&original_bid_usd=0.001385999941859395&original_bid=0.001385999941859395&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=89,4,27,93,108,0&need_redirect_show=0&applied_features=coef_099,main-skins-settings&show_count=1&expiration_timestamp=1701645620&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&site=native-push-adult&price=0.001385999941859395&hostname=auc-inpage-hz-9-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000001385999941859395&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.04&cpa=78477354-c62d-4603-bc10-58736994486d
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecte468aaeee7.com
Fingerprint3B:06:B4:71:EE:50:A9:82:72:BC:54:2D:34:D4:0B:23:5F:5F:0E:69
ValidityWed, 29 Nov 2023 03:01:52 GMT - Tue, 27 Feb 2024 03:01:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/show/?tag_ab=b&site_id=318014&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&refdom=mangahentai.xyz&auction_time=1701559220&subid=1215704199&sid=4101855050&tcid=0&ver=8.121.0&ver_c=&spot_id=8014&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-02&iabcat=IAB25&keywords=hentai&user_fp=1424822565830209327&score=78.46321418941125&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1215704199%26spot_id%3D8014%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fmangahentai.xyz%252Fos-simptoons-6%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&url=https%3A%2F%2Fs.viiqxpnb.com%2Fh%2F1411%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%3Fu%3D&icons=d9ilPNWsMVn4u5OBTie-1WJKRAy-zPvcWS9n3EzmUJAur6jxMHraj4eFaJnLz7tqggQtC7pWRtGcY8IN9W043qcS1pLAkGWNOBbfhI0nS8wNlaC3vePckhXLc2FaurQjnFC8Xsxu8J7np8G3DVM3LwOkzldOW0xOPnrNG9KXUe2JNdKCZA&ext_cid=0&px_id=538014&min_cpm=0.07168113508515161&out_id=1&campaign_type=lq-pop&aid=412&cid=14080&uniq=&mid=8672326329158460626&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.07855108349506956&cpm=0&verify_hash=b7dfe3ac955382277401316e00484972&is_native=2&real_bid=0.0012753971330167284&original_bid_usd=0.001385999941859395&original_bid=0.001385999941859395&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=89,4,27,93,108,0&need_redirect_show=0&applied_features=coef_099,main-skins-settings&show_count=1&expiration_timestamp=1701645620&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&site=native-push-adult&price=0.001385999941859395&hostname=auc-inpage-hz-9-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000001385999941859395&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.04&cpa=78477354-c62d-4603-bc10-58736994486d HTTP/1.1
Host: d834c8bfc5.e468aaeee7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 02 Dec 2023 23:20:21 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
d834c8bfc5.e468aaeee7.com/in/show/?tag_ab=b&site_id=318014&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&refdom=mangahentai.xyz&auction_time=1701559220&subid=1215704199&sid=4101855050&tcid=0&ver=8.121.0&ver_c=&spot_id=8014&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-02&iabcat=IAB25&keywords=hentai&user_fp=1424822565830209327&score=78.46321418941125&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1215704199%26spot_id%3D8014%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fmangahentai.xyz%252Fos-simptoons-6%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=1987990505&crtid=8840c255a3299de731c5e603ad255b05&url=https%3A%2F%2Fyyyjqi.xyz%2Fdsp%2Fph%2Fclcm%3Faid%3D1942870180322820684%26mid%3D0%26t%3D1701559220%26s%3D983116%26sid%3D1689&icons=ZqCT3cs62whkZegiJQisWMlmzAOfMxIw9eaj3t3LQ7j1dG1NZYFwhvkL5GWFbwzmPDduAE4GNM7pf2qOCqBQelGpiaVPwFfPzhLPRcQXfopuHTcpuHIkQcfGL5jBPrGmt6RbwfWi7JwKSmSdQ2gIHS-CXWbaKAmgRqwwwJpCPqWQ7U5KG3U&ext_cid=0&px_id=738014&min_cpm=0.0027856159235091103&out_id=0&campaign_type=hq&aid=108&cid=13478&uniq=d5c1157ca6f775e4a4ad0aabd3844c51953cc62c5e5feaaa102202b426d3ad40&mid=8672326329158460626&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.003733771224264758&cpm=0&verify_hash=5c24a05a75112f97164c2d4d87ef296c&is_native=1&real_bid=0.00156&original_bid_usd=0.00156&original_bid=0.00156&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=108,0,4,83,90,106,98&need_redirect_show=0&applied_features=coef_099,main-skins-settings&show_count=1&expiration_timestamp=1701645620&image_url=https%3A%2F%2Fi.wmgtr.com%2Fcim%2F_5cADRqZ0-9sqYP0OGml2GwedWq04J-n.png&site=native-push-adult&price=0.00156&hostname=auc-inpage-hz-9-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.0000015599999999999999&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.04&cpa=ccf03c20-dded-4925-8d7c-e42d20b2fe4d
200 OK 0 B URL GET HTTP/2 d834c8bfc5.e468aaeee7.com/in/show/?tag_ab=b&site_id=318014&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&refdom=mangahentai.xyz&auction_time=1701559220&subid=1215704199&sid=4101855050&tcid=0&ver=8.121.0&ver_c=&spot_id=8014&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-02&iabcat=IAB25&keywords=hentai&user_fp=1424822565830209327&score=78.46321418941125&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1215704199%26spot_id%3D8014%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fmangahentai.xyz%252Fos-simptoons-6%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=1987990505&crtid=8840c255a3299de731c5e603ad255b05&url=https%3A%2F%2Fyyyjqi.xyz%2Fdsp%2Fph%2Fclcm%3Faid%3D1942870180322820684%26mid%3D0%26t%3D1701559220%26s%3D983116%26sid%3D1689&icons=ZqCT3cs62whkZegiJQisWMlmzAOfMxIw9eaj3t3LQ7j1dG1NZYFwhvkL5GWFbwzmPDduAE4GNM7pf2qOCqBQelGpiaVPwFfPzhLPRcQXfopuHTcpuHIkQcfGL5jBPrGmt6RbwfWi7JwKSmSdQ2gIHS-CXWbaKAmgRqwwwJpCPqWQ7U5KG3U&ext_cid=0&px_id=738014&min_cpm=0.0027856159235091103&out_id=0&campaign_type=hq&aid=108&cid=13478&uniq=d5c1157ca6f775e4a4ad0aabd3844c51953cc62c5e5feaaa102202b426d3ad40&mid=8672326329158460626&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.003733771224264758&cpm=0&verify_hash=5c24a05a75112f97164c2d4d87ef296c&is_native=1&real_bid=0.00156&original_bid_usd=0.00156&original_bid=0.00156&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=108,0,4,83,90,106,98&need_redirect_show=0&applied_features=coef_099,main-skins-settings&show_count=1&expiration_timestamp=1701645620&image_url=https%3A%2F%2Fi.wmgtr.com%2Fcim%2F_5cADRqZ0-9sqYP0OGml2GwedWq04J-n.png&site=native-push-adult&price=0.00156&hostname=auc-inpage-hz-9-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.0000015599999999999999&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.04&cpa=ccf03c20-dded-4925-8d7c-e42d20b2fe4d
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecte468aaeee7.com
Fingerprint3B:06:B4:71:EE:50:A9:82:72:BC:54:2D:34:D4:0B:23:5F:5F:0E:69
ValidityWed, 29 Nov 2023 03:01:52 GMT - Tue, 27 Feb 2024 03:01:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/show/?tag_ab=b&site_id=318014&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=hq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fmangahentai.xyz%2Fos-simptoons-6&refdom=mangahentai.xyz&auction_time=1701559220&subid=1215704199&sid=4101855050&tcid=0&ver=8.121.0&ver_c=&spot_id=8014&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-02&iabcat=IAB25&keywords=hentai&user_fp=1424822565830209327&score=78.46321418941125&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1215704199%26spot_id%3D8014%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fmangahentai.xyz%252Fos-simptoons-6%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=1987990505&crtid=8840c255a3299de731c5e603ad255b05&url=https%3A%2F%2Fyyyjqi.xyz%2Fdsp%2Fph%2Fclcm%3Faid%3D1942870180322820684%26mid%3D0%26t%3D1701559220%26s%3D983116%26sid%3D1689&icons=ZqCT3cs62whkZegiJQisWMlmzAOfMxIw9eaj3t3LQ7j1dG1NZYFwhvkL5GWFbwzmPDduAE4GNM7pf2qOCqBQelGpiaVPwFfPzhLPRcQXfopuHTcpuHIkQcfGL5jBPrGmt6RbwfWi7JwKSmSdQ2gIHS-CXWbaKAmgRqwwwJpCPqWQ7U5KG3U&ext_cid=0&px_id=738014&min_cpm=0.0027856159235091103&out_id=0&campaign_type=hq&aid=108&cid=13478&uniq=d5c1157ca6f775e4a4ad0aabd3844c51953cc62c5e5feaaa102202b426d3ad40&mid=8672326329158460626&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.003733771224264758&cpm=0&verify_hash=5c24a05a75112f97164c2d4d87ef296c&is_native=1&real_bid=0.00156&original_bid_usd=0.00156&original_bid=0.00156&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=108,0,4,83,90,106,98&need_redirect_show=0&applied_features=coef_099,main-skins-settings&show_count=1&expiration_timestamp=1701645620&image_url=https%3A%2F%2Fi.wmgtr.com%2Fcim%2F_5cADRqZ0-9sqYP0OGml2GwedWq04J-n.png&site=native-push-adult&price=0.00156&hostname=auc-inpage-hz-9-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.0000015599999999999999&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.04&cpa=ccf03c20-dded-4925-8d7c-e42d20b2fe4d HTTP/1.1
Host: d834c8bfc5.e468aaeee7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 02 Dec 2023 23:20:21 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
prematuresam.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxReuTvZ3%2BYmiIqgHYQ6CCu5s%2F5vdHoMsxpgQjMmaRPdqdVXNbLnVVW1V9%2FTsXgwGQo4T9OCx95tN1j9BDXgTicx6kQVhRyTswT0K3gQxN0FmdmDxQdV7r753%2BL6v3o2t8pAEKOnByltmUypFF1pNv%2FHiqtTcVK5x8Woj8Jv%2Bqcaq1IvxqUZ%2FctneK4HfavovNc4Jtm4WQj%2Fw%2FcAPGmelFR3TX5iikPnddtBs%2B804bAatGH37396VHhz1wHuH5ElIPv7f2k%2F3INkIOvvmjHDrhclffiMrFS2MRY%2FvvKPXtak0suOyYz109M5sGsaNCfn0BIzemSmA6W1PFCCVY%2BI9CJDqnRlNpL3bR0xTBaGR8kdQ9UYQagRJR2DmOiTfJwDjuHgJOrtz0diKbhyhdIKOydzDvyCrMZn77Sno7KvTSvYbV4wqC2m0Q79TQ%2FZHkN0R8nIXxaYHWe2CFR9B8p%2FJwsML0Nn2JacMJD94niU88Fm4OJ8wmszHccDm6RJN5lnKF%2F1U%2BK12HEwtknIE2RlBiQGo81BOjvRQdjyUuYeMHzRoq93x%2FaVO2omiJGaMRRFjrWSRt3gUJx0fJZtoGKDIB2BqAGavIbfXsC5v7a8OYcsf4NZqOH4SrhgT7%2B0P0eM1KkFQOYKKElSSoCoIql59mysXuvoOV65Mg1kOZzmqh6bobtHbpugKTUDtYCs%2FJE9MPfz7d411cdBIozBIwoiHi2nSookImR8HcRAxX3DRFi04WUO6E1PFm3JMnia%2FIpdjcmJlHindhVO7YPJx0PI50Gq4FPqga8M48bGpv86o7tI1oQsqm%2F2NTXBTIy%2FmUGx4W%2BqQPDulcu6TGxBsb%2FmffPjg%2F69%2BAGZr5LbG%2B%2FJHgq66ObxsKrJ92VSO3LuUFzKTm3Ty1VcKWoi5L94UG5Wx%2FPwZN%2Fj8NTYBJuXdq8IVF6jmUncd%2BfK05FzYs8YyQb4%2F71ZFulK6tdOl1WV%2BYeX1s%2Bez3ArnpNEjULn%2F3n0wOSaP3lmeLvELn92HtCPYskZW7pFZQJpdsPwaXL63%2FMdj784983EJZwisOp5Jcw9VWQ9tmB4%2FKkmgxHFP0xpOHFuQir37fx5hW%2B4mutYDLa5DZzV6tkZP1aBqAFeeHBa53Vv%2BJZoGUuUNU2W97VRZdevIWicPGq0gFkmaLDHOU8F4sBRGSeT7IefxUlsEbRRuLNa%2F%2B%2FZfAAAA%2F%2F8BAAD%2F%2F96CYr6cBAAA
200 OK 7 B URL GET HTTP/1.1 prematuresam.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxReuTvZ3%2BYmiIqgHYQ6CCu5s%2F5vdHoMsxpgQjMmaRPdqdVXNbLnVVW1V9%2FTsXgwGQo4T9OCx95tN1j9BDXgTicx6kQVhRyTswT0K3gQxN0FmdmDxQdV7r753%2BL6v3o2t8pAEKOnByltmUypFF1pNv%2FHiqtTcVK5x8Woj8Jv%2Bqcaq1IvxqUZ%2FctneK4HfavovNc4Jtm4WQj%2Fw%2FcAPGmelFR3TX5iikPnddtBs%2B804bAatGH37396VHhz1wHuH5ElIPv7f2k%2F3INkIOvvmjHDrhclffiMrFS2MRY%2FvvKPXtak0suOyYz109M5sGsaNCfn0BIzemSmA6W1PFCCVY%2BI9CJDqnRlNpL3bR0xTBaGR8kdQ9UYQagRJR2DmOiTfJwDjuHgJOrtz0diKbhyhdIKOydzDvyCrMZn77Sno7KvTSvYbV4wqC2m0Q79TQ%2FZHkN0R8nIXxaYHWe2CFR9B8p%2FJwsML0Nn2JacMJD94niU88Fm4OJ8wmszHccDm6RJN5lnKF%2F1U%2BK12HEwtknIE2RlBiQGo81BOjvRQdjyUuYeMHzRoq93x%2FaVO2omiJGaMRRFjrWSRt3gUJx0fJZtoGKDIB2BqAGavIbfXsC5v7a8OYcsf4NZqOH4SrhgT7%2B0P0eM1KkFQOYKKElSSoCoIql59mysXuvoOV65Mg1kOZzmqh6bobtHbpugKTUDtYCs%2FJE9MPfz7d411cdBIozBIwoiHi2nSookImR8HcRAxX3DRFi04WUO6E1PFm3JMnia%2FIpdjcmJlHindhVO7YPJx0PI50Gq4FPqga8M48bGpv86o7tI1oQsqm%2F2NTXBTIy%2FmUGx4W%2BqQPDulcu6TGxBsb%2FmffPjg%2F69%2BAGZr5LbG%2B%2FJHgq66ObxsKrJ92VSO3LuUFzKTm3Ty1VcKWoi5L94UG5Wx%2FPwZN%2Fj8NTYBJuXdq8IVF6jmUncd%2BfK05FzYs8YyQb4%2F71ZFulK6tdOl1WV%2BYeX1s%2Bez3ArnpNEjULn%2F3n0wOSaP3lmeLvELn92HtCPYskZW7pFZQJpdsPwaXL63%2FMdj784983EJZwisOp5Jcw9VWQ9tmB4%2FKkmgxHFP0xpOHFuQir37fx5hW%2B4mutYDLa5DZzV6tkZP1aBqAFeeHBa53Vv%2BJZoGUuUNU2W97VRZdevIWicPGq0gFkmaLDHOU8F4sBRGSeT7IefxUlsEbRRuLNa%2F%2B%2FZfAAAA%2F%2F8BAAD%2F%2F96CYr6cBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectprematuresam.com
FingerprintD1:BC:B4:98:A1:F5:79:44:08:07:76:0B:42:5B:37:31:DB:41:7A:35
ValidityTue, 28 Nov 2023 08:05:20 GMT - Mon, 26 Feb 2024 08:05:19 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxReuTvZ3%2BYmiIqgHYQ6CCu5s%2F5vdHoMsxpgQjMmaRPdqdVXNbLnVVW1V9%2FTsXgwGQo4T9OCx95tN1j9BDXgTicx6kQVhRyTswT0K3gQxN0FmdmDxQdV7r753%2BL6v3o2t8pAEKOnByltmUypFF1pNv%2FHiqtTcVK5x8Woj8Jv%2Bqcaq1IvxqUZ%2FctneK4HfavovNc4Jtm4WQj%2Fw%2FcAPGmelFR3TX5iikPnddtBs%2B804bAatGH37396VHhz1wHuH5ElIPv7f2k%2F3INkIOvvmjHDrhclffiMrFS2MRY%2FvvKPXtak0suOyYz109M5sGsaNCfn0BIzemSmA6W1PFCCVY%2BI9CJDqnRlNpL3bR0xTBaGR8kdQ9UYQagRJR2DmOiTfJwDjuHgJOrtz0diKbhyhdIKOydzDvyCrMZn77Sno7KvTSvYbV4wqC2m0Q79TQ%2FZHkN0R8nIXxaYHWe2CFR9B8p%2FJwsML0Nn2JacMJD94niU88Fm4OJ8wmszHccDm6RJN5lnKF%2F1U%2BK12HEwtknIE2RlBiQGo81BOjvRQdjyUuYeMHzRoq93x%2FaVO2omiJGaMRRFjrWSRt3gUJx0fJZtoGKDIB2BqAGavIbfXsC5v7a8OYcsf4NZqOH4SrhgT7%2B0P0eM1KkFQOYKKElSSoCoIql59mysXuvoOV65Mg1kOZzmqh6bobtHbpugKTUDtYCs%2FJE9MPfz7d411cdBIozBIwoiHi2nSookImR8HcRAxX3DRFi04WUO6E1PFm3JMnia%2FIpdjcmJlHindhVO7YPJx0PI50Gq4FPqga8M48bGpv86o7tI1oQsqm%2F2NTXBTIy%2FmUGx4W%2BqQPDulcu6TGxBsb%2FmffPjg%2F69%2BAGZr5LbG%2B%2FJHgq66ObxsKrJ92VSO3LuUFzKTm3Ty1VcKWoi5L94UG5Wx%2FPwZN%2Fj8NTYBJuXdq8IVF6jmUncd%2BfK05FzYs8YyQb4%2F71ZFulK6tdOl1WV%2BYeX1s%2Bez3ArnpNEjULn%2F3n0wOSaP3lmeLvELn92HtCPYskZW7pFZQJpdsPwaXL63%2FMdj784983EJZwisOp5Jcw9VWQ9tmB4%2FKkmgxHFP0xpOHFuQir37fx5hW%2B4mutYDLa5DZzV6tkZP1aBqAFeeHBa53Vv%2BJZoGUuUNU2W97VRZdevIWicPGq0gFkmaLDHOU8F4sBRGSeT7IefxUlsEbRRuLNa%2F%2B%2FZfAAAA%2F%2F8BAAD%2F%2F96CYr6cBAAA HTTP/1.1
Host: prematuresam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115310; uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:21 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bd86146148fcdc2699935f55e30a8eaf
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/css/animate.css
200 OK 4.8 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/css/animate.css
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a
GET /sb/interstitial/games/hentai-heroes/main/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 16:12:56 GMT
etag: W/"65315588-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=svT%2Bgna7wz4roEQcGbhRokNfj%2BurbcmhAY3XjgF00l8zRptmJzU%2Bg80Lezx97SYdrv6NdMfRKTYxTNLLveDwfmPy25aPfyVhswI%2F7PLE9lZJmA8rVhqcvh45aq%2FvGCfxlnV%2Fcv9ks95V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc98cac638e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/css/style.css
200 OK 1.5 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/css/style.css
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash 557c0926d0e3e54bc6740f4986353a92
077be1fd5ad2de339c0c121c4a3c30ed91fbbc32
39085561aabf95993548b91b139b647f6e6b4332fd045ada6ff2c075990e8ebe
GET /sb/interstitial/games/hentai-heroes/main/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 16:12:56 GMT
etag: W/"65315588-958"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WsW5G1Tvr%2BJaIbZHk9ocVk01uwiIOm05bY15P2pNIQus6Rs4igcsLgPYMGgd58m8VdYXeDhd3eDa5u%2BLQ8fXxldRWDQRY8Bj6l0t9nmxdIMJ3vFcr98G8W5WlJ1%2BBVlYMpntYUt%2FR4eU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc98cad638e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/img/close.svg
200 OK 1.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/img/close.svg
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Hash 0e2235e70c5d45defff6d4f958efd6c2
a3b54b1d2e285bf511980d1dc920d8831b5eeb3a
9457de0168c27aabaab60abbf72b737625da31f5cafe528ba2e56b57d6b38d1c
GET /sb/interstitial/games/hentai-heroes/main/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: image/svg+xml
last-modified: Thu, 19 Oct 2023 16:12:58 GMT
etag: W/"6531558a-49d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1543066
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=odQvZMyJ7%2BWqYoYcks8Jvh%2F9KXT3xprqIAz%2BWOR4mLEgzrF%2FD4B%2BtdIk4NZHzUtA2kb2gxsupgM4VynGH44qpYgm08BuTkrc7APgA7PkC%2By3gH01IeRJUOShTy4o6cHK1%2FPQ4lNY1Rig"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc99a0b6525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/img/bg.jpg
200 OK 376 kB URL GET HTTP/3 cdn.creative-bars1.com/sb/interstitial/games/hentai-heroes/main/8/img/bg.jpg
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 376 kB (375458 bytes)
Hash 65b98e31f2a22bfc2ae827300f514b93
8d66b3140eaabf1eff5990961d013af5e948df5a
6ea2b64aa9ed05099682f877c6f257d5ebc03814c5910a9dc91a3eae94bf6879
GET /sb/interstitial/games/hentai-heroes/main/8/img/bg.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 02 Dec 2023 23:20:21 GMT
content-type: image/jpeg
content-length: 375458
last-modified: Thu, 19 Oct 2023 16:13:01 GMT
etag: "6531558d-5baa2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1618493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XdiRnBWxK5jkbdp3s%2F%2B4LyuT05btME0swtPsPqBin2vEPw6bXamPEsxnXAJLUphMwr9tEz8gPuJ1Hc3mtrkfXVYv6XTUjXIH2Guu7mea8pXwc%2FtN93atksvNrQQCsonxywxWzwxmtaws"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74ccf58b04190-LHR
alt-svc: h3=":443"; ma=86400
prematuresam.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 prematuresam.com/pixel/sbs?c=1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectprematuresam.com
FingerprintD1:BC:B4:98:A1:F5:79:44:08:07:76:0B:42:5B:37:31:DB:41:7A:35
ValidityTue, 28 Nov 2023 08:05:20 GMT - Mon, 26 Feb 2024 08:05:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: prematuresam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115310; uid_id2=c8d10c26-8ca8-441c-a7a8-cbd60be05941:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 02 Dec 2023 23:20:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:4JSgRYgg_snwNzhSnKszet-eXtk6ww:lIkleuFgYs-1MgV2; Expires=Mon, 01-Dec-2025 23:20:21 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 23:20:21 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp2ZZklDClMDDQ4E9VSjHR4k7XnFO0ezSFSVVuIjy8tqJ0TX9NBFoJd4_wTf-7upTX-hec3V
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-0xaCPodEMqvSL8zwXHtk6w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.wpushsdk.com/npc/sdk/wpu/npush.m.js
200 OK 554 kB URL GET HTTP/2 js.wpushsdk.com/npc/sdk/wpu/npush.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectjs.wpushsdk.com
Fingerprint15:3F:1F:B8:65:77:7B:9F:2B:69:1C:0A:B6:FC:26:B1:2E:31:2F:C0
ValidityMon, 13 Nov 2023 07:01:13 GMT - Sun, 11 Feb 2024 07:01:12 GMT
Size 554 kB (554094 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wpu/npush.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 30 Nov 2023 09:44:58 GMT
etag: W/"6568599a-8746e"
content-encoding: gzip
expires: Sat, 02 Dec 2023 23:25:20 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
200 OK 790 B URL GET HTTP/2 static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65156a660e465299370ebd90d84aa461
12ff60b17f579a77e42a8be7b6b1892fc71be33d
e3b2784385cd128d5a6dfdec7f4be2147d6b57fa66c1a36c61c085aaf27f9e18
GET /creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:21 GMT
content-type: image/webp
content-length: 790
last-modified: Tue, 24 Nov 2020 14:20:43 GMT
etag: "5fbd16bb-316"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
i.wmgtr.com/cic/xDttaxdlFkBBOmf_uPOIr7p27FM4xVNY.png
200 OK 21 kB URL GET HTTP/2 i.wmgtr.com/cic/xDttaxdlFkBBOmf_uPOIr7p27FM4xVNY.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecti.wmgtr.com
FingerprintEC:B5:1E:3E:A4:6B:92:23:E2:9E:1E:FC:99:58:59:8E:23:DD:C1:25
ValidityMon, 23 Oct 2023 00:02:20 GMT - Sun, 21 Jan 2024 00:02:19 GMT
File type GIF image data, version 89a, 192 x 192\012- data
Hash 14b2f0e71a0940fd06e2de26575ec30a
5ebb2d596026f0f4a7be513d6db4e53dcd8103d1
f0ff7bd798cc16469c59fbcd59d614cb7c0c9791cc458f4a969d1a7a2ae61093
GET /cic/xDttaxdlFkBBOmf_uPOIr7p27FM4xVNY.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:21 GMT
content-type: image/gif
server: nginx/1.19.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
cache-control: max-age=82800
expires: Sun, 03 Dec 2023 22:20:21 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
images2.imgbox.com/f4/01/a1OKHmZb_o.jpg
200 OK 32 kB URL GET HTTP/1.1 images2.imgbox.com/f4/01/a1OKHmZb_o.jpg
IP
ASN #30880 SpaceDump IT AB
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoGetSSL
Subject*.imgbox.com
FingerprintC6:95:D3:4F:93:91:25:67:D4:E7:4F:4F:27:C3:8A:CC:7E:6F:D4:92
ValidityFri, 20 Oct 2023 00:00:00 GMT - Tue, 19 Nov 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 250x350, components 3\012- data
Hash c9c21608745dab4e8610a03b6b9b0061
f1341961a1dc62cea61aebf2967369509ec1ea19
2ad9a84542900021aaea7fd5b6c125e86d91742e443cd9775c7838ef79286856
GET /f4/01/a1OKHmZb_o.jpg HTTP/1.1
Host: images2.imgbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.14.2
date: Sat, 02 Dec 2023 23:20:19 GMT
content-type: image/jpeg
content-length: 32402
last-modified: Mon, 20 Mar 2023 16:23:11 GMT
etag: "7e92-5f75757cfb9c0"
expires: Thu, 04 Apr 2024 16:56:40 GMT
cache-control: max-age=10690581
x-cache: MISS
x-whom: srv1535
accept-ranges: bytes
static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.04&cpa=83e151e7-4292-4605-9012-6dc0851df737
200 OK 790 B URL GET HTTP/2 static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.04&cpa=83e151e7-4292-4605-9012-6dc0851df737
IP
ASN #24940 Hetzner Online GmbH
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65156a660e465299370ebd90d84aa461
12ff60b17f579a77e42a8be7b6b1892fc71be33d
e3b2784385cd128d5a6dfdec7f4be2147d6b57fa66c1a36c61c085aaf27f9e18
GET /creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.04&cpa=83e151e7-4292-4605-9012-6dc0851df737 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:21 GMT
content-type: image/webp
content-length: 790
last-modified: Tue, 24 Nov 2020 14:20:43 GMT
etag: "5fbd16bb-316"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
storage.multstorage.com/log/count.html
200 OK 882 B URL GET HTTP/2 storage.multstorage.com/log/count.html
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectmultstorage.com
Fingerprint1F:90:8C:BB:6B:B0:99:41:3A:23:DF:A4:57:1A:25:0F:88:BA:C6:DE
ValidityMon, 20 Nov 2023 10:07:51 GMT - Sun, 18 Feb 2024 10:07:50 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (919), with no line terminators
Hash 053b1fe641da8057571d40ebaf1624ab
09b2648b7d08c84621298f0b939cea5170a65022
6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4
GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: 62bc220bdfdd4119561aef257b90fb42
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3tRu5HtzvTUCiFx0kjDfKxxjriSjZIiKjFIi8EBMTARFL0%2FkAc%2BcE9vWYoZFhYVdF9Ue24Qk2vg9hNgsC2QTw9BkHJFQzl%2BJ8xkPK8Ho%2FL7tATUh7SiNKO%2Fubt1xFdRks%2FxJNY8oK6ejNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82f74cc7abe6712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 6.8 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (7013), with no line terminators
Hash 49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 02 Dec 2023 23:20:20 GMT
date: Sat, 02 Dec 2023 23:20:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/interstitial/games/hentai-heroes/main/8/index.html
200 OK 1.2 kB URL GET HTTP/2 cdn.yourwebbars.com/sb/interstitial/games/hentai-heroes/main/8/index.html
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1310), with no line terminators
Hash e3b4395490a66f24e4461eea7481e495
18a3479d01e1a5dec50eb78d998fbad56a8b72ee
88718b8db2865c0e2f96730d4e2925b79005f0e68ceed052120b356655e69f99
GET /sb/interstitial/games/hentai-heroes/main/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangahentai.xyz
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:20 GMT
content-type: text/html
last-modified: Thu, 19 Oct 2023 16:12:54 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 463790
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n4GnXuKaLGVnWZbnnEJNoV14Vbmrj%2B2HBzjODAl%2BUByuFbRFEencbZGQ7XmV%2BGN0tDujLvOwJdj7escfX7gAf2%2Ff7goUBNtH%2ByRan87gSxdwOeyOjV7ap%2FOxBwu5CzhKpWoRjVU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f74cc7c85cb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
i.wmgtr.com/cim/_5cADRqZ0-9sqYP0OGml2GwedWq04J-n.png
200 OK 958 kB URL GET HTTP/2 i.wmgtr.com/cim/_5cADRqZ0-9sqYP0OGml2GwedWq04J-n.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjecti.wmgtr.com
FingerprintEC:B5:1E:3E:A4:6B:92:23:E2:9E:1E:FC:99:58:59:8E:23:DD:C1:25
ValidityMon, 23 Oct 2023 00:02:20 GMT - Sun, 21 Jan 2024 00:02:19 GMT
File type GIF image data, version 89a, 492 x 328\012- data
Size 958 kB (957716 bytes)
Hash d970acd680bdbcdd1c0112b20e8ed48e
bbd04c65c76ab564aef66de781fb43ff865bc605
6ba59bfec64405c3002861d83d120dc78b0887d96800ac63ad9609c22216c36f
GET /cim/_5cADRqZ0-9sqYP0OGml2GwedWq04J-n.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:21 GMT
content-type: image/gif
server: nginx/1.19.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
cache-control: max-age=82800
expires: Sun, 03 Dec 2023 22:20:21 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1kFwHN1K4aaJGhPpOtAlmQl-yisvl14t8cBp9us9khGYMoJVTosOviiLlvaAYsOyu1W2e1&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-603469745%3A1701559221218212&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1kFwHN1K4aaJGhPpOtAlmQl-yisvl14t8cBp9us9khGYMoJVTosOviiLlvaAYsOyu1W2e1&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-603469745%3A1701559221218212&theme=glif
IP
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1kFwHN1K4aaJGhPpOtAlmQl-yisvl14t8cBp9us9khGYMoJVTosOviiLlvaAYsOyu1W2e1&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-603469745%3A1701559221218212&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 23:20:21 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-BhlKyeNQIvA99nxYLDPANQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitXseLuagI4kUGvCjobPf87MyYQzTGSHDd3fzIHjxVd1XPllNd1VZ1T8%2FOaTEoOY7gQT31vtnNooboehJEkN5cwoKQAZE9uEcvejImR5GeDIx%2BUN9Pve%2Fw3qv6eDc9JR5SerLxjh4JKelyq%2BZWX9wUiunMVteuVT235p6tbgq10jxbHZbJDF713FbNfan6Fg%2F6ernueq7ruV71ojA81MPlGQoR3%2Bp6ta5ba9ZrXquJofn%2FbFMHljpgg1PyNASbPr519xAiKKCiby9w2090%2FPKbUSppog0G7OBd1Vc6U4gWbWgchOpgvg1tp4R8tgStDuYKoAd7pQL4YkqcXz346mBOE%2F5g%2FxFTX4Ir%2BOwMskEBLgsIWiDQ1yHYPQIEDGvrUNHNNW0yuv0IpSU6JZWH9yGyKan89gxUdPu8FMPqVS3TRGhlMQxziGEB0SsQp0dIRg5EdoQg%2BRCC%2FUyWH65CRXvrVmoIls%2FUC1FAhAUkH4NaB2l5hIM0dJDGDiJ2UqWtbui67dAPG41OMwiCRiMIWp0V1mKNZid0kQYlvTGSeIxAjhGYHcRmB33xyb3NCUz6E%2BxWDssc2GRKnMs7GLAcGSfILEFGCTJBkCUE2SDfZ9LWbX6TSZv63rzW57WRT3TS26X7OulxRUDNeDc%2BJU%2FN7Hnw%2B3vo85Nqs0XdoNFue36n1Q7qLc9tBIzWOyusE66seCGsyCHs0kzxSEzJs%2BQXxGJKljZegU%2BPYOURAvEkaOqBZpN23QXdmjQ7Lkbqm4iqHt3iKqGiNtwegekccVJBsu3sylPy3IzKa3fugwfH5w7%2F%2BOj57y%2F%2FicDkiE2O98Udgp68MbmiM7J3RWeWHK7HiYjEiJaveDWhCX%2Fsq7f5dqYNu3TBjr98PSiBsr11jdtklSomVM%2BSr88Lxri5qE3AyY%2BX7Cb3N1K7dT41Ko1XN964eCmKDbdWaFWAiikhxQcIxJSc%2BSee%2FdAX7G0IU8CkOaL0mMwDQhcI4h3YeMHfagIjFzt%2BvIQszSem7i8upSCQfDFTP4f9z%2Bwv%2Bl17Az1TAU2uQ0U5BibHQOagcgybPjFJYnN87u7nZXwBX1YmvjSVPV8a%2BWlp7l8zh8v0d5kewIqTKm%2BFbsjdOvfDrh%2B2qcu6YbPr067H236LekjslPd%2F%2BO5fAAAA%2F%2F8BAAD%2F%2F1wTLIiIBAAA
200 OK 0 B URL GET HTTP/1.1 cataloguerepetition.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitXseLuagI4kUGvCjobPf87MyYQzTGSHDd3fzIHjxVd1XPllNd1VZ1T8%2FOaTEoOY7gQT31vtnNooboehJEkN5cwoKQAZE9uEcvejImR5GeDIx%2BUN9Pve%2Fw3qv6eDc9JR5SerLxjh4JKelyq%2BZWX9wUiunMVteuVT235p6tbgq10jxbHZbJDF713FbNfan6Fg%2F6ernueq7ruV71ojA81MPlGQoR3%2Bp6ta5ba9ZrXquJofn%2FbFMHljpgg1PyNASbPr519xAiKKCiby9w2090%2FPKbUSppog0G7OBd1Vc6U4gWbWgchOpgvg1tp4R8tgStDuYKoAd7pQL4YkqcXz346mBOE%2F5g%2FxFTX4Ir%2BOwMskEBLgsIWiDQ1yHYPQIEDGvrUNHNNW0yuv0IpSU6JZWH9yGyKan89gxUdPu8FMPqVS3TRGhlMQxziGEB0SsQp0dIRg5EdoQg%2BRCC%2FUyWH65CRXvrVmoIls%2FUC1FAhAUkH4NaB2l5hIM0dJDGDiJ2UqWtbui67dAPG41OMwiCRiMIWp0V1mKNZid0kQYlvTGSeIxAjhGYHcRmB33xyb3NCUz6E%2BxWDssc2GRKnMs7GLAcGSfILEFGCTJBkCUE2SDfZ9LWbX6TSZv63rzW57WRT3TS26X7OulxRUDNeDc%2BJU%2FN7Hnw%2B3vo85Nqs0XdoNFue36n1Q7qLc9tBIzWOyusE66seCGsyCHs0kzxSEzJs%2BQXxGJKljZegU%2BPYOURAvEkaOqBZpN23QXdmjQ7Lkbqm4iqHt3iKqGiNtwegekccVJBsu3sylPy3IzKa3fugwfH5w7%2F%2BOj57y%2F%2FicDkiE2O98Udgp68MbmiM7J3RWeWHK7HiYjEiJaveDWhCX%2Fsq7f5dqYNu3TBjr98PSiBsr11jdtklSomVM%2BSr88Lxri5qE3AyY%2BX7Cb3N1K7dT41Ko1XN964eCmKDbdWaFWAiikhxQcIxJSc%2BSee%2FdAX7G0IU8CkOaL0mMwDQhcI4h3YeMHfagIjFzt%2BvIQszSem7i8upSCQfDFTP4f9z%2Bwv%2Bl17Az1TAU2uQ0U5BibHQOagcgybPjFJYnN87u7nZXwBX1YmvjSVPV8a%2BWlp7l8zh8v0d5kewIqTKm%2BFbsjdOvfDrh%2B2qcu6YbPr067H236LekjslPd%2F%2BO5fAAAA%2F%2F8BAAD%2F%2F1wTLIiIBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcataloguerepetition.com
FingerprintB3:DE:C2:BD:E6:F8:36:51:6B:91:43:96:13:4F:F1:C1:C1:ED:D9:01
ValidityTue, 28 Nov 2023 07:50:15 GMT - Mon, 26 Feb 2024 07:50:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitXseLuagI4kUGvCjobPf87MyYQzTGSHDd3fzIHjxVd1XPllNd1VZ1T8%2FOaTEoOY7gQT31vtnNooboehJEkN5cwoKQAZE9uEcvejImR5GeDIx%2BUN9Pve%2Fw3qv6eDc9JR5SerLxjh4JKelyq%2BZWX9wUiunMVteuVT235p6tbgq10jxbHZbJDF713FbNfan6Fg%2F6ernueq7ruV71ojA81MPlGQoR3%2Bp6ta5ba9ZrXquJofn%2FbFMHljpgg1PyNASbPr519xAiKKCiby9w2090%2FPKbUSppog0G7OBd1Vc6U4gWbWgchOpgvg1tp4R8tgStDuYKoAd7pQL4YkqcXz346mBOE%2F5g%2FxFTX4Ir%2BOwMskEBLgsIWiDQ1yHYPQIEDGvrUNHNNW0yuv0IpSU6JZWH9yGyKan89gxUdPu8FMPqVS3TRGhlMQxziGEB0SsQp0dIRg5EdoQg%2BRCC%2FUyWH65CRXvrVmoIls%2FUC1FAhAUkH4NaB2l5hIM0dJDGDiJ2UqWtbui67dAPG41OMwiCRiMIWp0V1mKNZid0kQYlvTGSeIxAjhGYHcRmB33xyb3NCUz6E%2BxWDssc2GRKnMs7GLAcGSfILEFGCTJBkCUE2SDfZ9LWbX6TSZv63rzW57WRT3TS26X7OulxRUDNeDc%2BJU%2FN7Hnw%2B3vo85Nqs0XdoNFue36n1Q7qLc9tBIzWOyusE66seCGsyCHs0kzxSEzJs%2BQXxGJKljZegU%2BPYOURAvEkaOqBZpN23QXdmjQ7Lkbqm4iqHt3iKqGiNtwegekccVJBsu3sylPy3IzKa3fugwfH5w7%2F%2BOj57y%2F%2FicDkiE2O98Udgp68MbmiM7J3RWeWHK7HiYjEiJaveDWhCX%2Fsq7f5dqYNu3TBjr98PSiBsr11jdtklSomVM%2BSr88Lxri5qE3AyY%2BX7Cb3N1K7dT41Ko1XN964eCmKDbdWaFWAiikhxQcIxJSc%2BSee%2FdAX7G0IU8CkOaL0mMwDQhcI4h3YeMHfagIjFzt%2BvIQszSem7i8upSCQfDFTP4f9z%2Bwv%2Bl17Az1TAU2uQ0U5BibHQOagcgybPjFJYnN87u7nZXwBX1YmvjSVPV8a%2BWlp7l8zh8v0d5kewIqTKm%2BFbsjdOvfDrh%2B2qcu6YbPr067H236LekjslPd%2F%2BO5fAAAA%2F%2F8BAAD%2F%2F1wTLIiIBAAA HTTP/1.1
Host: cataloguerepetition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Cookie: u_pl=16115291; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 02 Dec 2023 23:20:18 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d59c825f53a75d5f1222145ce475a143
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/f5/1a/51/f51a5127fdcd4dba8257a50bc502162f/1683356981.png
200 OK 128 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/f5/1a/51/f51a5127fdcd4dba8257a50bc502162f/1683356981.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 128 kB (128338 bytes)
Hash 2e213fca84ea9e780c6bf1c25ec75b61
d8fc9898a7bc1031b1d4c350c0d827ce424e17d5
c4cc2ce592d14c491c0430f3a6263e489a680b75ffecf97f6fde10f96ba6a9dd
GET /si/f5/1a/51/f51a5127fdcd4dba8257a50bc502162f/1683356981.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangahentai.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 23:20:18 GMT
content-type: image/png
content-length: 128338
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:09:51 GMT
etag: "6455fd3f-1f552"
expires: Mon, 04 Dec 2023 23:20:18 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
mangahentai.xyz/os-simptoons-6
200 OK 130 kB URL User Request GET HTTP/2 mangahentai.xyz/os-simptoons-6
IP
Certificate IssuerLet's Encrypt
Subjectmangahentai.xyz
Fingerprint47:31:35:B0:39:B3:BE:A3:4E:C6:5A:94:A2:C0:4C:9C:F0:E2:A6:4F
ValiditySat, 28 Oct 2023 19:42:53 GMT - Fri, 26 Jan 2024 19:42:52 GMT
Size 130 kB (130344 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /os-simptoons-6 HTTP/1.1
Host: mangahentai.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6ImlaUWd3Um82YTdaQ2creTFJdnVHYkE9PSIsInZhbHVlIjoiaStOSzhTREpwZk84SVA0QXF2YW9Pb0ZWMXluOUplcFFrVGZtN2FrQk1UVThLQ1ZSUnF2WXhmZXlNK2JkOUtta29ZUTBIRE9ubGQzcWpxdzlDY29zUUhwZFJ6cytzMWNsUjI3bUNKcmF4bGJYMENrM2M0eTFmaWZwY05rb0ZyTHIiLCJtYWMiOiJjMmM0MjM4MGEzOWYxM2FlODllZGUyZTE2ZGU1MTgzNzZlZDc3ZjlmYjBiYTg4NDY4MDk1Yjc5OTEyYzIwYWU1In0%3D; expires=Sun, 03-Dec-2023 01:20:15 GMT; Max-Age=7200; path=/; samesite=lax; secure
mangahentaixyz_session=eyJpdiI6Ikd6a3M3bkF4eWdxWWRRckJIa0hQYlE9PSIsInZhbHVlIjoibkFOR29jcytLQzI4MGd1VCtrZVJGVmQwYklsVUV2Q05qakEzL1ZvZVp1OFNQSGlKTWR2UWRNbEMycWZsci84MUg4ZlhjUG5EM1BxYXZKa3MyVENvNnhqUzZnK2k0VGVGK3BYajZjRm9UcDJHYjB6LzhkcWhycm1PSWZqa2x5bkYiLCJtYWMiOiIzN2UxZTA3ZTVlMWI4NmNkYjcwNjhjNTdlNWExNGVkM2I4ZDZkNGQ4NjhkZjk3YzRjYTJhM2M2YWExYzVkNTI2In0%3D; expires=Sun, 03-Dec-2023 01:20:15 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 23:20:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
yyyjqi.xyz/dsp/ph/icm?aid=1942870180322820684&mid=0&sid=1689&t=1701559220&subid=738014&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.04&cpa=edbc2fb9-c25a-4624-a8ab-2918a533b0be
302 Found 21 kB URL GET HTTP/2 yyyjqi.xyz/dsp/ph/icm?aid=1942870180322820684&mid=0&sid=1689&t=1701559220&subid=738014&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.04&cpa=edbc2fb9-c25a-4624-a8ab-2918a533b0be
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://mangahentai.xyz/os-simptoons-6
Certificate IssuerLet's Encrypt
Subjectyyyjqi.xyz
Fingerprint98:13:F2:1E:0A:0D:EB:55:33:A4:DF:94:01:47:37:42:CB:40:71:88
ValidityTue, 31 Oct 2023 00:49:27 GMT - Mon, 29 Jan 2024 00:49:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/ph/icm?aid=1942870180322820684&mid=0&sid=1689&t=1701559220&subid=738014&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&st=0.04&cpa=edbc2fb9-c25a-4624-a8ab-2918a533b0be HTTP/1.1
Host: yyyjqi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0
date: Sat, 02 Dec 2023 23:20:21 GMT
content-length: 0
accept-ch: Sec-CH-UA-Platform-Version
location: https://i.wmgtr.com/cic/xDttaxdlFkBBOmf_uPOIr7p27FM4xVNY.png
X-Firefox-Spdy: h2
94.242.50.161
151.101.244.193
45.133.44.52
104.21.86.121
88.198.204.168
95.211.229.247
185.162.87.201
212.63.223.227