Report - www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/

Report Overview

Submitted URL
www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/
IP
172.67.206.175
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-13 14:11:41
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
s3t3d2y8.afcdn.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	145 kB	185.76.9.18
u3y8v8u4.aucdn.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	461 B	1.9 MB	185.76.9.18
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	598 B	710 B	142.251.1.157
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
a.realsrv.com	10080	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	78 kB	205.185.216.42
c0.wp.com	6988	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	48 kB	192.0.77.37
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	43 kB	142.250.74.72
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
limurol.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	1.8 kB	62.122.171.6
www.hentaiasmr.moe	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	944 B	1.4 kB	172.67.206.175
cuddlethehyena.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	62.122.171.6
pixel.wp.com	2545	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508 B	9.3 kB	192.0.76.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	797 B	93.184.220.29
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.33.119.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
stats.wp.com	2711	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	356 B	192.0.76.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	325 B	1.6 kB	143.204.55.27
syndication.realsrv.com	9112	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.6 kB	22 kB	95.211.229.248
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	363 B	21 kB	142.250.74.174

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-13	medium	cuddlethehyena.com	Sinkholed
2022-09-13	medium	limurol.com	Sinkholed
2022-09-13	medium	limurol.com	Sinkholed
2022-09-13	medium	cuddlethehyena.com	Sinkholed
2022-09-13	medium	cuddlethehyena.com	Sinkholed

JavaScript (41)

	URL	Size	First Seen	Last Seen
	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	1.4 kB	2023-03-07	2024-04-26
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2024-04-26 10:44:14 Times Seen708 Hash 4c08d8c2ce8faf62e5d66e8364a6d881 ab090a0c6e7ce35c8da2a1c82ff36d0f8a2572d5 f7f5f6e9cf00e218439b997c3e68cd435dfa97bae7c751a7f715ecdb3dddba9f Loading...

	www.hentaiasmr.moe/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-27 05:28:30 Times Seen55103 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	www.hentaiasmr.moe/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1663070400	42 kB	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1663070400 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash f547072a91e095492bcab34912f6071c 2b3f19178e77b5d31463c358abef543282be73ce db302213a8a2638fecd241d7c771c3b3d0efabe05e1d9cde38f7aebcc52a1c7a Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	134 B	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:10 Last Seen2024-04-27 02:00:34 Times Seen3456 Hash 41eece0da217398b6f4d4ee2f01b6245 72f2098b0520b07dd3c6874646c920a3d367a4e2 62bba8c2295a14bb2d007a3f7f8730fd10cef7348a6474f3f832c99ca6795d35 Loading...

	www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18	20 kB	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:16 Last Seen2024-04-27 02:00:36 Times Seen1559 Hash 4cd5ea35543390c5fc4e9def651ab721 d360aa74dff157fcefda69336ecf420f04940f98 9167cb37ed21405ef9556646b83789a2099c15398f5cea867470df1e81752e17 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 05:51:09 Times Seen37111794 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	940 B	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 1cef367afc3e7c26f49b10f570ab6408 dcbeffeea2f4f805859b352801bde2536093b140 df4881600de4db0eff6cf3613980b57fc63addabe3be0c43ac90dd105af5a375 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	393 B	2023-03-07	2024-04-23
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:45 Last Seen2024-04-23 23:58:30 Times Seen251 Hash 0c4845a1554108a38aa127693ec58172 4fd4eb77f98d319aa7e0ae1110bf560486c79f7b 78363419dab3882262edbeeeb85652678e0906aec57a87f164d84b9304dad820 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	1.5 kB	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 1c4bc8fb3a510ca40e2724ad3a26267f 021fdd5b95e1b372cfba2946a65f26c95a36526c c133ebc47b4b3abd364a31a6c9e1c2c5b72545e07f7e66cba37cb7dd40e214a0 Loading...

	a.realsrv.com/popunder1000.js	95 kB	2023-03-07	2023-03-17
Pretty URL a.realsrv.com/popunder1000.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:29 Last Seen2023-03-17 21:22:43 Times Seen1 Hash 68448a546ecb224d9461fb04376911e0 1063790cabf57ffff66ecc0cab2bec54257b9320 4bb2db0838ccc0ff89104cb41141964b99c7846ce33352c2b99ceafd3477dee3 Loading...

	www.googletagmanager.com/gtag/js?id=UA-185402816-18	108 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-185402816-18 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 0fa5b88ca2f2d919eca2b5cc18852371 e8b1e63e9ecb8cc1810852ad8418578970b34557 5509fe5554ad43f7c4d01ffdb1f71de06ac9307cda5cf9f08592d6723e4cb36d Loading...

	limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24	7 B	2023-03-07	2024-04-17
Pretty URL limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 IP 62.122.171.6 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:23 Last Seen2024-04-17 16:44:22 Times Seen16320 Hash a97eb6fbe6f13b601d5d48c0eba8baae 736efb938caf3d0edec406932ada889f1a4f2268 a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821 Loading...

	www.hentaiasmr.moe/wp-content/plugins/cbxwpbookmark/assets/js/cbxwpbookmark-public.js?ver=1.7.7	75 kB	2023-03-07	2023-07-17
Pretty URL www.hentaiasmr.moe/wp-content/plugins/cbxwpbookmark/assets/js/cbxwpbookmark-public.js?ver=1.7.7 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2023-07-17 06:28:43 Times Seen3 Hash 66dc2beb72eed0f6c2a43b11f86635e8 836f62723d884a96fb5327e9c0cce2212a0d1b2a 18a681602172356e8f810f2284beeda81a7215cb9514aff0d69edfa67d855db7 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	228 B	2023-03-07	2023-03-12
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2023-03-12 20:56:25 Times Seen1 Hash d4c0d1140d8281ba07b0b4a20c39ca00 acbaca0800435d0381190d58efa3269809615542 61ee413b4f2ecab4e9e56d32b0642212dba08493dea12759a4e44856cd5cd059 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	2.1 kB	2023-03-07	2024-04-26
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 06:21:32 Times Seen6356 Hash 9cd47ac5a0389a37b4d8e7d194e17c9a 9121da7907e37462c10ce8616f06b5c22f640744 ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda Loading...

	http:text/javascript;base64,CiAgd2luZG93LmRhdGFMYXllciA9IHdpbmRvdy5kYXRhTGF5ZXIgfHwgW107CiAgZnVuY3Rpb24gZ3RhZygpe2RhdGFMYXllci5wdXNoKGFyZ3VtZW50cyk7fQogIGd0YWcoJ2pzJywgbmV3IERhdGUoKSk7CgogIGd0YWcoJ2NvbmZpZycsICdVQS0xODU0MDI4MTYtMTgnKTsK	156 B	2023-03-07	2024-02-28
Pretty URL http:text/javascript;base64,CiAgd2luZG93LmRhdGFMYXllciA9IHdpbmRvdy5kYXRhTGF5ZXIgfHwgW107CiAgZnVuY3Rpb24gZ3RhZygpe2RhdGFMYXllci5wdXNoKGFyZ3VtZW50cyk7fQogIGd0YWcoJ2pzJywgbmV3IERhdGUoKSk7CgogIGd0YWcoJ2NvbmZpZycsICdVQS0xODU0MDI4MTYtMTgnKTsK IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2024-02-28 18:42:10 Times Seen5 Hash 228713615c3e5df51434f2faef73a30b 47ff6688d37b836681954765b878598c51d3ba09 c954f5ef47eec3f37b76eb33bd5f7f03bfcf4203971dffb512a1f8675e4a6522 Loading...

	www.hentaiasmr.moe/wp-content/plugins/cbxwpbookmark/assets/js/cbxwpbookmark-events.js?ver=1.7.7	8.1 kB	2023-03-07	2024-02-04
Pretty URL www.hentaiasmr.moe/wp-content/plugins/cbxwpbookmark/assets/js/cbxwpbookmark-events.js?ver=1.7.7 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2024-02-04 09:47:21 Times Seen25 Hash 78afbfb9d55825d911ff7aca8997a836 49d809a03ea4cf140a44d54c2534cd723714c319 632f46bd01f47dc12e654136d16d546bfac87f46466c796008950b8b4716a18e Loading...

	c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-27
Pretty URL c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-27 02:39:29 Times Seen68686 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	1.2 kB	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash fbcc25590255039301e660dc7da87a03 fc8a0d35f16e62de95e44a018a986506347e090b 94c8b9614d6157280ed693a8daccf90e1d4b3e64a986a6bb0621fe2f0b7f7b68 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	2.4 kB	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 8c5947a4e4172d1636600f4e73537ffe db6a224bb9ffc451b2a32373b6533305a0bd086b f5c75ca353533dc18dce9e431d0efd22ecaf1d2260d88a0ba4c54e73aab10f36 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	330 B	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 54a355654ba10893689ad0fbae1dd074 5909835de1daae50d5599d5ad1a8f579d0f98eb9 24c7f6b9b50abced06e0d2a01fb20df175f672549a06128dbb2926c0fd197388 Loading...

	cuddlethehyena.com/t/9/fret/meow4/1866240/brt.js	68 kB	2023-03-07	2023-03-07
Pretty URL cuddlethehyena.com/t/9/fret/meow4/1866240/brt.js IP 62.122.171.6 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash c211fdaa06f059aaf9be2aa1c0496239 ca9417f0352c4d66e026a84b4e8b7e3059085f66 15ad081ca46d0b3f13abf4be145cbec21d3a19e9097cee59934e67a67dd1e07a Loading...

	www.hentaiasmr.moe/wp-content/plugins/simple-banner/simple-banner.js?ver=2.12.1	5.0 kB	2023-03-07	2023-12-01
Pretty URL www.hentaiasmr.moe/wp-content/plugins/simple-banner/simple-banner.js?ver=2.12.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:09 Last Seen2023-12-01 23:47:35 Times Seen73 Hash 3a3a655b9173f1905b2d8dcbf092e9b2 7bfc928c9ac62fa7380629c9f1f6cc027eab2739 cab4b18fa040c8cd4549935f6ad1bf3a0941aeb1ba6973412a509ab16aa84f2d Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	9.6 kB	2023-03-07	2023-03-12
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:45 Last Seen2023-03-12 20:56:25 Times Seen1 Hash 680eabb7bd0136ace48ec107458e7a3e 6018f1418555b8d80a13089cf5a5384610fdb2f4 360f6fa71e2b0c1dbf07158b175c6945efb34bb124ff7e8b6202c31aaba8ba66 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	1.6 kB	2023-03-07	2024-04-14
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-14 21:46:31 Times Seen158 Hash 09bdcb1ac2c9f08b9ea556262c59a21c 88fc2a026279c8743367b4cf45a1dd146512b6b6 f020eb20787ab41e40ccd3fbf23cefc5e978f4bebeca14d7bfdc90975aaeba83 Loading...

	a.realsrv.com/ad-provider.js	73 kB	2023-03-07	2023-03-17
Pretty URL a.realsrv.com/ad-provider.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:02 Last Seen2023-03-17 12:45:00 Times Seen1 Hash 03f4be528de4c197c18dda9b2aa71f96 2bf044048f482551901a41a7444ae89f45347c9b ea8b3885069786423480735cd504b4df069e8060954a0dee74bfb079e88ec846 Loading...

	www.hentaiasmr.moe/wp-content/plugins/favorites/assets/js/favorites.min.js?ver=2.3.2	20 kB	2023-03-07	2024-04-18
Pretty URL www.hentaiasmr.moe/wp-content/plugins/favorites/assets/js/favorites.min.js?ver=2.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-18 08:17:49 Times Seen451 Hash b74f351dc87c6bffd28fe85dc85879b1 e654d813b2918cecb2d279897ae21a36eb1b5114 668e6f8a29d0bad03dd193213d3db5f7ac2c7a3abf4b4157d0ff03472c8c8083 Loading...

	www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15	24 kB	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:16 Last Seen2024-04-27 02:00:36 Times Seen1141 Hash c675495748ef0df6858b93dd9e623c46 e1be723e4e25d37282821c50b7e12796d3df5f8d 9a32744fa4707d6ea1ad2b696c644c4f45d327509989b4625b8a980e4a45e271 Loading...

	www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/main.js?ver=1.5.5	39 kB	2023-03-07	2024-01-25
Pretty URL www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/main.js?ver=1.5.5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2024-01-25 11:26:30 Times Seen86 Hash db5d4642a21d9c045a9598b2845ea625 e48c4f6fe0685ba95d78ac73938872e19e89b6c2 e7e1e8f6e2a83c8eab1b2959c1453abf185813b56996c6a6187df21f65854823 Loading...

	www.hentaiasmr.moe/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js	7.9 kB	2023-03-07	2024-04-26
Pretty URL www.hentaiasmr.moe/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 14:21:46 Times Seen3341 Hash d18523e4a4aaa9420a86e4dddfb07554 fa22a3d38dc3c87ca92f1456846682abeb696b96 6e86a52a9858206302e32036d89907e3ac87762055e7f9c6364aec33221b3e41 Loading...

	http:blank	684 B	2023-03-07	2023-03-07
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 89c2ac559cd663b7b5c09ac77aeaf2a5 a0baa3b3da10c78289469cfa37765aa0540e3b7d cd24382785e8c5c483292fbd72f4d996fe33ee05618364ed95ffdf6c3675b783 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	59 B	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:10 Last Seen2024-04-27 02:00:34 Times Seen3642 Hash de7507ad26c6c904109c87dd5dfac288 952cae1ce6ce1e74b010b31b4357424c12a5960c 09f81a5c463b570b389ce0b118a29bf489353d0ae7d47eefee9b9e7b703e0e02 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	189 B	2023-03-07	2023-03-07
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 682e29323af435a8b61d23c8e3717936 bbd56e801a8d3d21b0367e1015d98d6798cc1ac0 9fa7cd99be68bbe89a248cb977113f0ba0008ab13422ba8dc76cbb3ab9448004 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	3.1 kB	2023-03-07	2024-04-24
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2024-04-24 19:47:52 Times Seen571 Hash fd115969f0247516c5ee9b6c4c422471 605b00fde2898076de9cc7fa4813b331e60608eb 58a3dde7d54a7bab56a9fe5aa4fc8b28fb675e1808fd34945a7e9511ec622c00 Loading...

	www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0	4.5 kB	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2024-04-27 02:00:34 Times Seen634 Hash eca10535dd65f4979e3b3ad3ec8e02c2 54c38c3bf24825e407741ef0e316f678a5b580db 802bc6725fd37d15aa9d599fa3f921fca0d4c585162c7b23da8ccd6f3ded751d Loading...

	www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0	683 B	2023-03-07	2024-04-27
Pretty URL www.hentaiasmr.moe/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-27 02:00:34 Times Seen3293 Hash 75abd4cd8807b312f9f7faeb77ee774b e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034 Loading...

	cuddlethehyena.com/get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676	3.4 kB	2023-03-07	2023-03-07
Pretty URL cuddlethehyena.com/get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676 IP 62.122.171.6 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:00 Last Seen2023-03-07 15:51:00 Times Seen1 Hash 3eb6ef0ea96234882fb4d720d341dc4f 947223a09c87d5a8a69f16c75816023f926cf913 1191953e944bbbaa67c3c4d91e5e04afdae7d30823e110c70392c970977a8fa6 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 19:24:16 Times Seen842 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	a.realsrv.com/video-slider.js	46 kB	2023-03-07	2023-03-17
Pretty URL a.realsrv.com/video-slider.js IP 205.185.216.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:52 Last Seen2023-03-17 11:29:50 Times Seen1 Hash f7d4d3a86e052eaccd29fcb67bdaa7b7 d2ce3ee76ea3afea4a58d6d606aebad052eec211 1cef6c6def8500dd94a877d979f693c37477bba7152fd53d8b9c5cc22e965447 Loading...

	stats.wp.com/e-202237.js	9.0 kB	2023-03-07	2024-01-05
Pretty URL stats.wp.com/e-202237.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-01-05 09:08:33 Times Seen3233 Hash 9152c169155daa333287728cb8e4ae93 1e45a9ea1464acf983f022567cb9f669f4c77f65 82d0aae1e7b8cfc0574d6548d1f35096f5e4310321aa964ff3fdb46c4d12e302 Loading...

	www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/	5.8 kB	2023-03-07	2024-01-01
Pretty URL www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ IP 172.67.206.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:46 Last Seen2024-01-01 23:50:22 Times Seen13 Hash da289d2c26e9867650678bd8a0996298 824f9ff2f551ab873920c2f26482609fb2f69fe9 8c3aefc9a16e3ac3016b6076dd0aa54a1e36c04d02f1775761f99c8c64fe62cf Loading...

HTTP Transactions (53)

URL IP Response Size

www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/

172.67.206.175

301 Moved Permanently

0 B

URL HTTP/1.1
www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/
IP
172.67.206.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ HTTP/1.1
Host: www.hentaiasmr.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 13 Sep 2022 14:11:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 13 Sep 2022 15:11:29 GMT
Location: https://www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bStk%2Bj%2FteJMPFXVueDA2DKzo7VpdaUOEZ48fSn4h3iXh3384TZbs7lYqYWDWj%2BAFo2YdfmIYXadamzA9%2B6h1EeccNqH%2FelRnHJ7lVuN9%2Fom4YzM3BxU1iA1120jYpmv4hvJnLtw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a178ee9cfd0afa-OSL
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 14:08:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5ANYG460WOdEwz-znOaHaXMeTcTHPXiHa9WUv6G89Om6t_OKOZUnRw==
Age: 163

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10116
Expires: Tue, 13 Sep 2022 17:00:05 GMT
Date: Tue, 13 Sep 2022 14:11:29 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g_8MLkNA40eRHESVETe6RcXUFB9WROvUmjofoHZpkdJTT2qIYZsydQ==
age: 34575
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

a.realsrv.com/video-slider.js

205.185.216.42

200 OK

13 kB

URL HTTP/1.1
a.realsrv.com/video-slider.js
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (45726), with no line terminators
Size
13 kB (13013 bytes)
Hash
76da46f4c257b96bfb42e8a22f70e4f3
f64e2431557a6ebc9ce742dae555fe84eb2f5141
73a66ac6767d009e6a2d3727eff796bf8c1bb3221f473d8fb558bdd25dd9aa9b

HTTP Headers

GET /video-slider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:11:30 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 13013
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"d2ce3ee76ea3afea4a58d6d606a"
X-HW: 1663078290.dop223.sk1.t,1663078290.cds071.sk1.shn,1663078290.cds071.sk1.c
Access-Control-Allow-Origin: *, *

a.realsrv.com/ad-provider.js

205.185.216.42

200 OK

24 kB

URL HTTP/1.1
a.realsrv.com/ad-provider.js
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65536), with no line terminators
Size
24 kB (23726 bytes)
Hash
46504668ecf4671f582f5ba93a2f3c6b
8b165c478da3dd4fd4df3b40745733049b5acb0c
5230c0e2745fedbf038f97e374a5b6ea033434301aa86ec545eae37b29350799

HTTP Headers

GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:11:30 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 23726
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"2bf044048f482551901a41a7444"
X-HW: 1663078290.dop201.sk1.t,1663078290.cds205.sk1.shn,1663078290.dop201.sk1.t,1663078290.cds207.sk1.c
Access-Control-Allow-Origin: *, *

cuddlethehyena.com/solid.gif?z=1866240&abvar=0

62.122.171.6

200 OK

43 B

URL HTTP/2
cuddlethehyena.com/solid.gif?z=1866240&abvar=0
IP
62.122.171.6:0
ASN
#50245 Serverel Inc.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /solid.gif?z=1866240&abvar=0 HTTP/1.1
Host: cuddlethehyena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

a.realsrv.com/popunder1000.js

205.185.216.42

200 OK

40 kB

URL HTTP/1.1
a.realsrv.com/popunder1000.js
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (39969 bytes)
Hash
ecf59349935e274ee2cb03e357d71158
7aa74be5d4c9e213b0692eaa0ac6a78e5d74b9e1
64603c3d15d7d1fdf05fd5ef4e582ec4766635797f974cc08f3d6e79c7725d31

HTTP Headers

GET /popunder1000.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:11:30 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 39969
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"1063790cabf57ffff66ecc0cab2"
X-HW: 1663078290.dop201.sk1.t,1663078290.cds205.sk1.shn,1663078290.dop201.sk1.t,1663078290.cds258.sk1.c
Access-Control-Allow-Origin: *, *

pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=194586036&post=0&tz=-4&srv=www.hentaiasmr.moe&host=www.hentaiasmr.moe&ref=&fcp=0&rand=0.6463534273010452

192.0.76.3

200 OK

9.1 kB

URL HTTP/2
pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=194586036&post=0&tz=-4&srv=www.hentaiasmr.moe&host=www.hentaiasmr.moe&ref=&fcp=0&rand=0.6463534273010452
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type
data
Size
9.1 kB (9104 bytes)
Hash
8ccd6d003ef78a6523dc6c9dd9f43edd
e9bd91d778b6312c73a5043ff1f9496d197298cf
0bebde01de6c3c4aeb81d50f27d111becfbe358d044155194b193d37dec7c889

HTTP Headers

GET /g.gif?v=ext&j=1%3A11.3.1&blog=194586036&post=0&tz=-4&srv=www.hentaiasmr.moe&host=www.hentaiasmr.moe&ref=&fcp=0&rand=0.6463534273010452 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/p/jetpack/11.3.1/css/jetpack.css

192.0.77.37

200 OK

16 kB

URL HTTP/2
c0.wp.com/p/jetpack/11.3.1/css/jetpack.css
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size
16 kB (15871 bytes)
Hash
3da697fe22ffd9b645738de9d3fb15d0
85f322c6368ccb5ce46be96f7ec27d5653fb9b75
ac62785c668227b7bfd49f7a98179f68aea27392bc7f64380af8b74b4fa3a0f6

HTTP Headers

GET /p/jetpack/11.3.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Jul 2022 17:25:16 GMT
content-encoding: br
expires: Wed, 13 Sep 2023 14:11:30 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

syndication.realsrv.com/splash.php?idzone=4608836&cookieconsent=true

95.211.229.248

200 OK

4.0 kB

URL HTTP/1.1
syndication.realsrv.com/splash.php?idzone=4608836&cookieconsent=true
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
4.0 kB (3984 bytes)
Hash
092e74374a1077669a10b2b2cced156b
6fe8dae63d5b8c5ff8dd3d0f979ebdac34c26222
87f169806c802113d3a673f9c74e97f98df0f1a2a7a35828b6f519660cd756ff

HTTP Headers

GET /splash.php?idzone=4608836&cookieconsent=true HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:30 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:30 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Wed, 14 Sep 2022 14:11:30 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-185402816-18

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-185402816-18
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
42 kB (41921 bytes)
Hash
b74decd68ad09e203bc39694a74ede23
6b4e13ecde4c2d096baa1442eb8d8070291f154f
589021456e5b140a300867c3d575622c6619509053c4599209e1f119eed86b21

HTTP Headers

GET /gtag/js?id=UA-185402816-18 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 13 Sep 2022 14:11:30 GMT
expires: Tue, 13 Sep 2022 14:11:30 GMT
cache-control: private, max-age=900
last-modified: Tue, 13 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41921
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2911
Cache-Control: max-age=153836
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:30 GMT
Etag: "63203a1f-1d7"
Expires: Thu, 15 Sep 2022 08:55:26 GMT
Last-Modified: Tue, 13 Sep 2022 08:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

30 kB

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (65447)
Size
30 kB (30310 bytes)
Hash
b4760b677aac4851687f43034c5b7f04
53869e5ca6c8b775c1f1296b118287b35616048f
1f358bdef72ff115dfd95bd211b8d8b1d48fdc637dbb9fe03b94da9063c354ff

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Wed, 13 Sep 2023 14:11:30 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24

62.122.171.6

200 OK

7 B

URL HTTP/2
limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP
62.122.171.6:0
ASN
#50245 Serverel Inc.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2209130911393d60834bb74e97808cf25b3b; Path=/; Expires=Wed, 13 Sep 2023 14:11:31 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

62.122.171.6

200 OK

7 B

URL HTTP/2
limurol.com/ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP
62.122.171.6:0
ASN
#50245 Serverel Inc.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ssp/req/1866240/?pb=a194d721a6551dfedc47aac17261d5b11663085490&psp=_hTCcBQgMYEyJSTvdfYO3Pk-4EeZQccX9kRlJP6JTJm427YVnJITZD80FGTsQVPh0hExUG05rnNvI3hlHH9BfRikltoqzZ2JBQ9Vwei7Kquy03XMN7ijPJG3iH3PkWQKFDBNosIox4anecIk43dVCxv3ezu7CXmFNVWY5SYqmQ2qrhm6sttcYdS0iRrHyEenbxLQjfapB0wdAfwhB1mxKXM88vq4ZfpYy8vEzE2_xjUOBaTs_2fH5actSQWZHIsUPJZj3s_Ah2ACZ9zXnTjYb-rF3DIY2LzuqjL5SpYf7Nhf_2ldbwzEQsI4LmThVIqr8XcteRbWLiHIvt51J7Y6gHD7EM6UQX4enDgdNFbc0ftherTp2gkOqS1Ok7AcaG-POLce7XeHK1ZUNecIMKIG_qMsfVz_3oCokSsVH8BVqQXLBRkwkCiZMS--U6iRtxrWmXlAcuKyl0GqrNFtDUcKHdcdIDBqKfgA0aYRR_f2ouRI1XLDL8X147unm9nKtW-BrVDNtDMDlsNN0QSB4Y9imKHu-FFhHAE7cDJrv_HhVVQNUuRfyp7TnSmi55FJN-U-lFHhjfi1iuAmxAULa0AaxZF0_miTOTZo-XE=&cb=_cljydhp3277u8jw45nkkgl&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: UID=2209130911393d60834bb74e97808cf25b3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

syndication.realsrv.com/v1/api.php

95.211.229.248

200 OK

6.2 kB

URL HTTP/1.1
syndication.realsrv.com/v1/api.php
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
JSON data\012- , ASCII text, with very long lines (10724), with no line terminators
Size
6.2 kB (6170 bytes)
Hash
13d5bc6fe141de83ee80fad031adfbad
937e6dda87d3534ab803d0837588361f74bbc8db
716998b1697086331edb1878cf92105cfc0b8381d8ee0affeb277c0c41239df5

HTTP Headers

POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 379
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

s3t3d2y8.afcdn.net/library/426059/62b98a39ab4e50d36d7986fc5538f57fc72b0372.webp

185.76.9.18

200 OK

9.5 kB

URL HTTP/2
s3t3d2y8.afcdn.net/library/426059/62b98a39ab4e50d36d7986fc5538f57fc72b0372.webp
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 300x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.5 kB (9486 bytes)
Hash
2b07d6f75f90712734b51b3c2640d5e1
62b98a39ab4e50d36d7986fc5538f57fc72b0372
10e5aae537ed74546c55153e7061bdc3554d2806b3155c401b8fcffe5cea6991

HTTP Headers

GET /library/426059/62b98a39ab4e50d36d7986fc5538f57fc72b0372.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/webp
content-length: 9486
last-modified: Thu, 08 Sep 2022 14:48:34 GMT
etag: "631a00c2-250e"
expires: Tue, 12 Sep 2023 15:18:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1694532617
server: CDN77-Turbo
x-77-nzt: AblMCQ0t0df/Cj8BAA
x-77-nzt-ray: TC7+8mtCKh0
x-cache: HIT
x-age: 81674
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11QS2pDMQy8Si/wzEiWLDnrdttASg7g9wntIik0XaSgw8fvlUCpBzyDNZIGM5gH1IHyE2FHtMsUlVJFEk6kEq/7QwjF+3L5bh/tev5K588lhAu0hsEEHpU7S4hKAXkQIcRcay5hakzMHKSRAx2suXu7SkA2KFllZy+ufVwc357j5XgI6lV53IgM3AgI2vKE9AVd47YOPC0++QJlNx9B5DbPRXWa5iYiJa/G//nxiyRaqNf58dAx0Eb9IDbVrj+XKeKPZYVuTRzia6qlGFrj2Qrl5lkwlvWHaDrNbWxmdzxQYnJnAQAA

95.211.229.248

200 OK

20 B

URL HTTP/1.1
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11QS2pDMQy8Si/wzEiWLDnrdttASg7g9wntIik0XaSgw8fvlUCpBzyDNZIGM5gH1IHyE2FHtMsUlVJFEk6kEq/7QwjF+3L5bh/tev5K588lhAu0hsEEHpU7S4hKAXkQIcRcay5hakzMHKSRAx2suXu7SkA2KFllZy+ufVwc357j5XgI6lV53IgM3AgI2vKE9AVd47YOPC0++QJlNx9B5DbPRXWa5iYiJa/G//nxiyRaqNf58dAx0Eb9IDbVrj+XKeKPZYVuTRzia6qlGFrj2Qrl5lkwlvWHaDrNbWxmdzxQYnJnAQAA
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11QS2pDMQy8Si/wzEiWLDnrdttASg7g9wntIik0XaSgw8fvlUCpBzyDNZIGM5gH1IHyE2FHtMsUlVJFEk6kEq/7QwjF+3L5bh/tev5K588lhAu0hsEEHpU7S4hKAXkQIcRcay5hakzMHKSRAx2suXu7SkA2KFllZy+ufVwc357j5XgI6lV53IgM3AgI2vKE9AVd47YOPC0++QJlNx9B5DbPRXWa5iYiJa/G//nxiyRaqNf58dAx0Eb9IDbVrj+XKeKPZYVuTRzia6qlGFrj2Qrl5lkwlvWHaDrNbWxmdzxQYnJnAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

s3t3d2y8.afcdn.net/library/623611/ed0885e8288645e4cca003a57f3a486611122606.jpg

185.76.9.18

200 OK

29 kB

URL HTTP/2
s3t3d2y8.afcdn.net/library/623611/ed0885e8288645e4cca003a57f3a486611122606.jpg
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size
29 kB (28796 bytes)
Hash
de65c02764f5d04b7ac0a815d366c969
ed0885e8288645e4cca003a57f3a486611122606
05e417d7c0294dfb542e9de1f1f8c763d8bbfe3f08316fd1b0c78ebb1c22e7f9

HTTP Headers

GET /library/623611/ed0885e8288645e4cca003a57f3a486611122606.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/jpeg
content-length: 28796
last-modified: Mon, 25 May 2020 13:58:36 GMT
etag: "5ecbcf0c-707c"
expires: Fri, 30 Jun 2023 11:10:15 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195204
server: CDN77-Turbo
x-77-nzt: AblMCQ22lpD/j/JhAA
x-77-nzt-ray: Y7z2/WW6fus
x-cache: HIT
x-age: 6419087
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg

185.76.9.18

200 OK

25 kB

URL HTTP/2
s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size
25 kB (25056 bytes)
Hash
dbe31828ea0277ab9845bf67aa749927
cc7211683ae26562c2df637755f311868f37c8ea
6499cca4ce115e6dcb44a71342a5c705f938fbffbe5c410b55e60051a417b917

HTTP Headers

GET /library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/jpeg
content-length: 25056
last-modified: Thu, 30 Mar 2017 09:55:25 GMT
etag: "58dcd60d-61e0"
expires: Fri, 30 Jun 2023 14:29:46 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195223
server: CDN77-Turbo
x-77-nzt: AblMCQ0a7sH/fPJhAA
x-77-nzt-ray: 49l8ev0Mr0c
x-cache: HIT
x-age: 6419068
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

s3t3d2y8.afcdn.net/library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg

185.76.9.18

200 OK

26 kB

URL HTTP/2
s3t3d2y8.afcdn.net/library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size
26 kB (25606 bytes)
Hash
316e02345cdd5d4167b5a17253fd855d
72928a7cad8198b3e9ab14a2f0220601aff56a07
c7b35046dc527d4f6167ea21967c71800a5bbb46b52d647f48294c61dc46f0ad

HTTP Headers

GET /library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/jpeg
content-length: 25606
last-modified: Thu, 22 Oct 2020 17:10:55 GMT
etag: "5f91bd1f-6406"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416492
server: CDN77-Turbo
x-77-nzt: AblMCQ2ki/f/50YSAA
x-77-nzt-ray: tS+pQM/gK2c
x-cache: HIT
x-age: 1197799
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

s3t3d2y8.afcdn.net/library/344676/8d56c5a4dc87f994b32a34cacb64fce1a8c10500.webp

185.76.9.18

200 OK

3.2 kB

URL HTTP/2
s3t3d2y8.afcdn.net/library/344676/8d56c5a4dc87f994b32a34cacb64fce1a8c10500.webp
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
3.2 kB (3208 bytes)
Hash
c5b9eaabdf9d87a060447b064ce3fc15
8d56c5a4dc87f994b32a34cacb64fce1a8c10500
b1341b48d5719e5dd1b7a5ec8bb9b5748c26c0741aa6d2b12bb2344f77a131a0

HTTP Headers

GET /library/344676/8d56c5a4dc87f994b32a34cacb64fce1a8c10500.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/webp
content-length: 3208
last-modified: Wed, 03 Nov 2021 16:40:42 GMT
etag: "6182bb8a-c88"
expires: Fri, 30 Jun 2023 11:21:04 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195364
server: CDN77-Turbo
x-77-nzt: AblMCQ2CRL3/7/FhAA
x-77-nzt-ray: vMaAZeGwXnw
x-cache: HIT
x-age: 6418927
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

s3t3d2y8.afcdn.net/library/426059/548180d44acd4d6e553e920149e72aba8c8a08e3.mp4

185.76.9.18

206 Partial Content

49 kB

URL HTTP/2
s3t3d2y8.afcdn.net/library/426059/548180d44acd4d6e553e920149e72aba8c8a08e3.mp4
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
49 kB (49070 bytes)
Hash
6276f56cb578ac6abb7c299c8e95d1d2
548180d44acd4d6e553e920149e72aba8c8a08e3
2c083f2561bf5d6a7af011446bd800f6c090a65c75b04a1332c9dda3bbfab52b

HTTP Headers

GET /library/426059/548180d44acd4d6e553e920149e72aba8c8a08e3.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: video/mp4
content-length: 49070
last-modified: Thu, 08 Sep 2022 15:24:49 GMT
etag: "631a0941-bfae"
expires: Fri, 08 Sep 2023 15:57:14 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1694188657
server: CDN77-Turbo
x-77-nzt: AblMCQ0OF9n/on4GAA
x-77-nzt-ray: Sx3apvvSpws
x-cache: HIT
x-age: 425634
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-49069/49070
X-Firefox-Spdy: h2

syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS04FIRC8ihcY0l9o3tq1JhoPwDBMdPGeic+FJn14mzEaIwV0pVNV0AREC9QF+QbhhHhi9IqpQhJKqOJ39w8u6M/j8t5e2vX8ls6vwzNxRvQCRcC8UlRxUeXC2RHBuaLWbGG1wkbgqM4OAVIObbAEABQR/vR4exwMhDLu+eikEhw+pmsf1m2AkhVbASN127Jq71sTkcxT+P+T8I0Yg2xG/zQCCx4lFvjB2vXz0t3/SI5pZJr014quVDu2dTQdva+D5uZ9X3PdR4EMX3Jwja9QAQAA

95.211.229.248

200 OK

20 B

URL HTTP/1.1
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS04FIRC8ihcY0l9o3tq1JhoPwDBMdPGeic+FJn14mzEaIwV0pVNV0AREC9QF+QbhhHhi9IqpQhJKqOJ39w8u6M/j8t5e2vX8ls6vwzNxRvQCRcC8UlRxUeXC2RHBuaLWbGG1wkbgqM4OAVIObbAEABQR/vR4exwMhDLu+eikEhw+pmsf1m2AkhVbASN127Jq71sTkcxT+P+T8I0Yg2xG/zQCCx4lFvjB2vXz0t3/SI5pZJr014quVDu2dTQdva+D5uZ9X3PdR4EMX3Jwja9QAQAA
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PS04FIRC8ihcY0l9o3tq1JhoPwDBMdPGeic+FJn14mzEaIwV0pVNV0AREC9QF+QbhhHhi9IqpQhJKqOJ39w8u6M/j8t5e2vX8ls6vwzNxRvQCRcC8UlRxUeXC2RHBuaLWbGG1wkbgqM4OAVIObbAEABQR/vR4exwMhDLu+eikEhw+pmsf1m2AkhVbASN127Jq71sTkcxT+P+T8I0Yg2xG/zQCCx4lFvjB2vXz0t3/SI5pZJr014quVDu2dTQdva+D5uZ9X3PdR4EMX3Jwja9QAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PSU4DQQz8Ch+YkctLLzlzJhKIB3R6ZgSHBCnhECQ/HvcgIYRLbtehytVmYp6oTpAH0AE4CLxirjQrzzD1p+OzK/xtvXy293Y7X+fzx+qazVL2TFmpeOWY6momWZID5IaKhORZRXKNPTAXpwCbhDbYTITY4K8vj3sjwOTxjsxBw+V0H6ZtLb2sZFxyORFQ8rIks96XpqpJhvD/H+kHcQWrc4B+MWEfUeQ7a7evS3f/I9mP0WGy3RoRqjRyGiOVjWlrfVFBQW/oENbVTqLlG1mu7t1SAQAA

95.211.229.248

200 OK

20 B

URL HTTP/1.1
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PSU4DQQz8Ch+YkctLLzlzJhKIB3R6ZgSHBCnhECQ/HvcgIYRLbtehytVmYp6oTpAH0AE4CLxirjQrzzD1p+OzK/xtvXy293Y7X+fzx+qazVL2TFmpeOWY6momWZID5IaKhORZRXKNPTAXpwCbhDbYTITY4K8vj3sjwOTxjsxBw+V0H6ZtLb2sZFxyORFQ8rIks96XpqpJhvD/H+kHcQWrc4B+MWEfUeQ7a7evS3f/I9mP0WGy3RoRqjRyGiOVjWlrfVFBQW/oENbVTqLlG1mu7t1SAQAA
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PSU4DQQz8Ch+YkctLLzlzJhKIB3R6ZgSHBCnhECQ/HvcgIYRLbtehytVmYp6oTpAH0AE4CLxirjQrzzD1p+OzK/xtvXy293Y7X+fzx+qazVL2TFmpeOWY6momWZID5IaKhORZRXKNPTAXpwCbhDbYTITY4K8vj3sjwOTxjsxBw+V0H6ZtLb2sZFxyORFQ8rIks96XpqpJhvD/H+kHcQWrc4B+MWEfUeQ7a7evS3f/I9mP0WGy3RoRqjRyGiOVjWlrfVFBQW/oENbVTqLlG1mu7t1SAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PQU7EMAz8Ch9o5HHsONkzZ5BAPKBJW8FhF4nlAJIfj1sEQnjkjBPN2DET80RtQr4BnYBThjekRkk4QcXv7h9c4M/r5X1+ma/nt3R+Xb00VogbmVD1xsHiopotFwcoLGTV2EWsNjNxqGenAGsObVSJiBAt/Onx9kgEmDzOfaiDok1c6GO3bWsddSXlarUTUG1ZiuoYyywiJe/C/7+kb8QezDGdfx4CEw6KID+q+fp5Ge5/JMc6spv01wofvdderW2cBZk7F5Stb4PVVLSVL4Sl0rlRAQAA

95.211.229.248

200 OK

6.5 kB

URL HTTP/1.1
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PQU7EMAz8Ch9o5HHsONkzZ5BAPKBJW8FhF4nlAJIfj1sEQnjkjBPN2DET80RtQr4BnYBThjekRkk4QcXv7h9c4M/r5X1+ma/nt3R+Xb00VogbmVD1xsHiopotFwcoLGTV2EWsNjNxqGenAGsObVSJiBAt/Onx9kgEmDzOfaiDok1c6GO3bWsddSXlarUTUG1ZiuoYyywiJe/C/7+kb8QezDGdfx4CEw6KID+q+fp5Ge5/JMc6spv01wofvdderW2cBZk7F5Stb4PVVLSVL4Sl0rlRAQAA
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
6.5 kB (6502 bytes)
Hash
f78d1e43c1540fc61e380e8da0f37278
acdbb207e48656d56a2809fb83b4e114359ab19e
3e810cf7320461910ecef79631728639912fd38e61616ee579332a0dd204883e

HTTP Headers

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PQU7EMAz8Ch9o5HHsONkzZ5BAPKBJW8FhF4nlAJIfj1sEQnjkjBPN2DET80RtQr4BnYBThjekRkk4QcXv7h9c4M/r5X1+ma/nt3R+Xb00VogbmVD1xsHiopotFwcoLGTV2EWsNjNxqGenAGsObVSJiBAt/Onx9kgEmDzOfaiDok1c6GO3bWsddSXlarUTUG1ZiuoYyywiJe/C/7+kb8QezDGdfx4CEw6KID+q+fp5Ge5/JMc6spv01wofvdderW2cBZk7F5Stb4PVVLSVL4Sl0rlRAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11Oy0oEQQz8FX9gmlQ6/dqzZwXFD5jp6UEPu4LrYYX6eDMjgthFqKRTSUpFdZI2Id5BTsApgg2hSTANSMaHxyca+Doun/PbfD1/hPP7YDTLJbNIMals6my0hKrZCAhjsSKt0ESsaIpEYqQ4vHCtZ0GQq6/gy/P9EXCYEk1vHl7st6lCX0m57cPbqL0OSVpLXQSoZV1zSr2vs7mluAv/e5UfhAjJ3tffD8eEg/wJj2y+fl06+UeyIx1Dbs9sp1kFrbe+SF7qVuNoax9j2wwZdWvrN1XHwIFUAQAA

95.211.229.248

200 OK

20 B

URL HTTP/1.1
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11Oy0oEQQz8FX9gmlQ6/dqzZwXFD5jp6UEPu4LrYYX6eDMjgthFqKRTSUpFdZI2Id5BTsApgg2hSTANSMaHxyca+Doun/PbfD1/hPP7YDTLJbNIMals6my0hKrZCAhjsSKt0ESsaIpEYqQ4vHCtZ0GQq6/gy/P9EXCYEk1vHl7st6lCX0m57cPbqL0OSVpLXQSoZV1zSr2vs7mluAv/e5UfhAjJ3tffD8eEg/wJj2y+fl06+UeyIx1Dbs9sp1kFrbe+SF7qVuNoax9j2wwZdWvrN1XHwIFUAQAA
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11Oy0oEQQz8FX9gmlQ6/dqzZwXFD5jp6UEPu4LrYYX6eDMjgthFqKRTSUpFdZI2Id5BTsApgg2hSTANSMaHxyca+Doun/PbfD1/hPP7YDTLJbNIMals6my0hKrZCAhjsSKt0ESsaIpEYqQ4vHCtZ0GQq6/gy/P9EXCYEk1vHl7st6lCX0m57cPbqL0OSVpLXQSoZV1zSr2vs7mluAv/e5UfhAjJ3tffD8eEg/wJj2y+fl06+UeyIx1Dbs9sp1kFrbe+SF7qVuNoax9j2wwZdWvrN1XHwIFUAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.029701%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS0pEMRC8ihd4ob9JZ9a6VRiZA+T90MWM4LgYoQ5v3lNB7ILuJlVdVIREBqoD6x3TgfmgjMqpUjJJ7IbHpyOM8bJcPtpru57f0/ltgUkmryhUjAJV+jSYc4hm1AorUbxk9NY5FbBDQR3i2qV9S8ScXTWyuXFoN8Pp+R4PpyM4EdlPFyjRTZzAexgYoXOg22a3LjHFQi5RYuyOUeY5u0/T3Mws6yb8H56+kXKvzsvvQ8fA++hF2Ld2/bxMwB/J9kvX7cj304DFli2XmXIjH3ld12K5tjaXUdZFdApd4gvfWAMpagEAAA==

95.211.229.248

200 OK

20 B

URL HTTP/1.1
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA11PS0pEMRC8ihd4ob9JZ9a6VRiZA+T90MWM4LgYoQ5v3lNB7ILuJlVdVIREBqoD6x3TgfmgjMqpUjJJ7IbHpyOM8bJcPtpru57f0/ltgUkmryhUjAJV+jSYc4hm1AorUbxk9NY5FbBDQR3i2qV9S8ScXTWyuXFoN8Pp+R4PpyM4EdlPFyjRTZzAexgYoXOg22a3LjHFQi5RYuyOUeY5u0/T3Mws6yb8H56+kXKvzsvvQ8fA++hF2Ld2/bxMwB/J9kvX7cj304DFli2XmXIjH3ld12K5tjaXUdZFdApd4gvfWAMpagEAAA==
IP
95.211.229.248:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PS0pEMRC8ihd4ob9JZ9a6VRiZA+T90MWM4LgYoQ5v3lNB7ILuJlVdVIREBqoD6x3TgfmgjMqpUjJJ7IbHpyOM8bJcPtpru57f0/ltgUkmryhUjAJV+jSYc4hm1AorUbxk9NY5FbBDQR3i2qV9S8ScXTWyuXFoN8Pp+R4PpyM4EdlPFyjRTZzAexgYoXOg22a3LjHFQi5RYuyOUeY5u0/T3Mws6yb8H56+kXKvzsvvQ8fA++hF2Ld2/bxMwB/J9kvX7cj304DFli2XmXIjH3ld12K5tjaXUdZFdApd4gvfWAMpagEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4608836%7C72742220%7C131178%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Chentaiasmr.moe%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:11:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://www.hentaiasmr.moe
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263208f92941fc6.658522441674910900%22%3B%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263208f92941fc6.658522441674910900%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Thu, 12 Sep 2024 14:11:31 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

u3y8v8u4.aucdn.net/library/461665/348d2c5fc3978b9b935d4a1e071538cdc1307ee5.mp4

185.76.9.18

206 Partial Content

1.9 MB

URL HTTP/2
u3y8v8u4.aucdn.net/library/461665/348d2c5fc3978b9b935d4a1e071538cdc1307ee5.mp4
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
1.9 MB (1908734 bytes)
Hash
ba5ff3f90a8c0ec653ff1151d8c7532b
7d50c2060284e009daf65376456b97f213bf255e
6637e3a0effa1ed5c78dbdabaf219f497ac59314bc9d21a0c755d7760d60fb36

HTTP Headers

GET /library/461665/348d2c5fc3978b9b935d4a1e071538cdc1307ee5.mp4 HTTP/1.1
Host: u3y8v8u4.aucdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 206 Partial Content
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: video/mp4
content-length: 13083299
last-modified: Mon, 30 May 2022 13:35:13 GMT
etag: "6294c811-c7a2a3"
expires: Fri, 30 Jun 2023 11:08:40 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195235
server: CDN77-Turbo
x-77-nzt: AblMCQ2icpb/cPJhAA
x-77-nzt-ray: zymN29M/lwY
x-cache: HIT
x-age: 6419056
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-13083298/13083299
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 13 Sep 2022 12:41:12 GMT
expires: Tue, 13 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 5420
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-185402816-18&cid=618758431.1663078279&jid=887837131&gjid=1894935754&_gid=1479344820.1663078279&_u=YEBAAUAAAAAAAC~&z=1086766672

142.251.1.157

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-185402816-18&cid=618758431.1663078279&jid=887837131&gjid=1894935754&_gid=1479344820.1663078279&_u=YEBAAUAAAAAAAC~&z=1086766672
IP
142.251.1.157:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-185402816-18&cid=618758431.1663078279&jid=887837131&gjid=1894935754&_gid=1479344820.1663078279&_u=YEBAAUAAAAAAAC~&z=1086766672 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hentaiasmr.moe
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.hentaiasmr.moe
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 13 Sep 2022 14:11:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:11:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10180
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:11:32 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9945 bytes)
Hash
c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 59352
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9466 bytes)
Hash
6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 04:49:30 GMT
age: 33722
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10407 bytes)
Hash
557695ec8ffeebb0272c099542a14ace
ad627b434e1c3b693d8636675bcea0f8794e0dc2
4d79c7830caa73b921d6abaa97771ab1f4dc8fd709597f01ba04c268c03b6157

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 85df5ad9-f229-4d33-90b9-5dd28c77578a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YH396F2SIAMFnGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63196d25-3ee08f1e27cd37e96dba0f40;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 04:18:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Oep2UJdadBnTBuCy7CexUcezT0cCvm_9hroZnV-UrC9lQQxwUc4rkw==
via: 1.1 07c02ae6c53d85283eb15380264d9998.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 06:18:57 GMT
age: 28355
etag: "ad627b434e1c3b693d8636675bcea0f8794e0dc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8485 bytes)
Hash
e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2jR7F56GE_qqbRBWjNDiDBgWbCYv-Ac6kvC1LI0HciQkKGTeNDYlyw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:16:59 GMT
age: 57273
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10849 bytes)
Hash
838f709437b2dfbede4ee15307afe217
2ab2ee20e720b78be6deb55f967ac0d8b7dad048
a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4rpwcrZLDlgcwBtH7wpoHMOb8hhFbKbZSQpjWqUqbt_Sl4ud3dm9Vg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:18 GMT
age: 59354
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7720 bytes)
Hash
ae7d16fad4da4300a1953a916fb59688
488c58f73c81bb4d45e496c458fe3197a0884c26
4d4946932d53caad6e97bcc66527bd9cad658c0cf6f4215d01943b8a9e832959

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7720
x-amzn-requestid: 7670a969-cb9c-4583-8455-10f7512ee9c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YT9YJG__oAMF4YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e429a-674ef5a4727826ab0d60529e;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 20:18:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OOCryyfLht-3ebVn-5aWtQI_JnVkWxMGggv07cUoomDlgb5ogru7vg==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:55 GMT
age: 58177
etag: "488c58f73c81bb4d45e496c458fe3197a0884c26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

0 B

URL HTTP/2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Wed, 13 Sep 2023 14:11:30 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.wp.com/e-202237.js

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/e-202237.js
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /e-202237.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Sun, 03 Sep 2023 22:56:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

cuddlethehyena.com/t/9/fret/meow4/1866240/brt.js

62.122.171.6

200 OK

0 B

URL HTTP/2
cuddlethehyena.com/t/9/fret/meow4/1866240/brt.js
IP
62.122.171.6:0
ASN
#50245 Serverel Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /t/9/fret/meow4/1866240/brt.js HTTP/1.1
Host: cuddlethehyena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 13:38:24 GMT
vary: Accept-Encoding
etag: W/"63189ed0-1091a"
x-js-ab1: current
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

s3t3d2y8.afcdn.net/images/close-icon.svg

185.76.9.18

200 OK

0 B

URL HTTP/2
s3t3d2y8.afcdn.net/images/close-icon.svg
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/close-icon.svg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:31 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Jun 2022 13:13:10 GMT
etag: W/"62bc4fe6-109"
expires: Fri, 30 Jun 2023 18:46:40 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195206
server: CDN77-Turbo
x-77-nzt: AblMCQ2lcTv/jfJhAA
x-77-nzt-ray: vnkOlIp/B5o
x-cache: HIT
x-age: 6419085
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/

104.21.77.99

200 OK

0 B

URL HTTP/2
www.hentaiasmr.moe/category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/
IP
104.21.77.99:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /category/kaede-akino-%E3%80%90%E7%A7%8B%E9%87%8E%E3%81%8B%E3%81%88%E3%81%A7%E3%80%91/ HTTP/1.1
Host: www.hentaiasmr.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Tue, 13 Sep 2022 14:11:23 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcbR47zwnrA8QaOjtymT4T%2FH6w9%2FqcRzFvXyJmVOne6eegEgNArxlW2fcUFItYD4V956%2FO%2BFNVKiYRXibSsRSYIXPyA2C57NegPwElwi7Ip91nDA1w0JU1eYpCLlti0olSO0CtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74a178f04c320b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cuddlethehyena.com/get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676

62.122.171.6

200 OK

0 B

URL HTTP/2
cuddlethehyena.com/get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676
IP
62.122.171.6:0
ASN
#50245 Serverel Inc.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /get/1866240?zoneid=1866240&jp=_cl5s2bhrz3yacml25m04ub&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6301440985624676 HTTP/1.1
Host: cuddlethehyena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hentaiasmr.moe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:11:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=22091309114a8e9b3c919646999ce13f7045; Path=/; Expires=Wed, 13 Sep 2023 14:11:30 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (41)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP