GET i1.wp.com/jpgjingpinx.com/upload/vod/20240113-1/29875d1c263da6a830f77e433288d13a.jpg
200 OK 33 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240113-1/29875d1c263da6a830f77e433288d13a.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-02
Last Seen 2025-06-15
Times Seen 2
Size 33 kB (33200 bytes)
MD5 ab556c0afe01fa16e127c0e89dad0ac0
SHA1 dd1357c689f5bd4258a414bfb539979a42e1b801
SHA256 97abe7a50ce5466964096ca82271f6e26cf315bec55c4ccad1aa0b9764e98048
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240113-1/29875d1c263da6a830f77e433288d13a.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:42 GMT
content-type: image/webp
content-length: 33200
last-modified: Fri, 28 Feb 2025 23:33:31 GMT
expires: Mon, 01 Mar 2027 11:33:31 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240113-1/29875d1c263da6a830f77e433288d13a.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e6ab18e2987561dc"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET fav-hentai.com/favicon.ico
404 Not Found 0 B URL
fav-hentai.com/favicon.ico
IP / ASN
104.18.29.11
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject fav-hentai.com
Fingerprint 1F:67:DA:B9:9A:89:06:FF:6D:4E:02:C6:28:D4:EA:A6:68:A2:CD:E5
Validity Wed, 28 May 2025 01:54:16 GMT - Tue, 26 Aug 2025 02:54:14 GMT
GET /favicon.ico HTTP/1.1
Host: fav-hentai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
vary: User-Agent,User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
server: cloudflare
cf-ray: 94ff20e0483a56a9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/6ad3de7da51b66351c8f8f854593bc9e.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/6ad3de7da51b66351c8f8f854593bc9e.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/6ad3de7da51b66351c8f8f854593bc9e.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET x0.ifengimg.com/ucms/2021_01/3D03055F38181E251401C1A561587D127EC37F4B_size38_w650_h366.jpg
200 OK 39 kB URL
x0.ifengimg.com/ucms/2021_01/3D03055F38181E251401C1A561587D127EC37F4B_size38_w650_h366.jpg
IP / ASN
43.152.140.79
#139341 ACE
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x366, components 3
First Seen 2025-06-15
Last Seen 2025-07-13
Times Seen 3
Size 39 kB (39215 bytes)
MD5 c432000f67c899e26afe7dea298c5e3a
SHA1 b6e7a828e0e20c02d5bb9295699b9b0b898e5fa2
SHA256 8c0d772343657409eaeb7ba7d3f25b0c5f4f3ece41bb7e88a370c3f0683cafce
Certificate Info
Issuer TrustAsia Technologies, Inc.
Subject *.ifeng.com
Fingerprint 25:82:28:08:C6:F3:41:01:A4:35:D5:8C:15:AA:3B:72:B9:0C:A7:BA
Validity Mon, 17 Mar 2025 00:00:00 GMT - Thu, 09 Apr 2026 23:59:59 GMT
GET /ucms/2021_01/3D03055F38181E251401C1A561587D127EC37F4B_size38_w650_h366.jpg HTTP/1.1
Host: x0.ifengimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Fri, 31 Dec 2021 14:39:20 GMT
Etag: "b6e7a828e0e20c02d5bb9295699b9b0b"
access-control-allow-origin: *
content-type: image/jpeg
date: Thu, 31 Oct 2024 20:05:20 GMT
server-info: tencent-c
x-osc-hit: tencent
x-osc-meta-visible: visible
Server: Lego Server
Cache-Control: max-age=7776000
Content-Length: 39215
Accept-Ranges: bytes
X-NWS-LOG-UUID: 3221946923514977796
Connection: keep-alive
X-Cache-Lookup: Cache Hit
GET cdne-pics.youjizz.com/c/3/2/c322f0cf898f9a7b1ba1f5f84bda953f1431539404-480-352-300-h264.flv-5.jpg?revnum=1
200 OK 25 kB URL
cdne-pics.youjizz.com/c/3/2/c322f0cf898f9a7b1ba1f5f84bda953f1431539404-480-352-300-h264.flv-5.jpg?revnum=1
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1695x1694, segment length 16, comment: "Lavc52.123.0", baseline, precision 8, 308x232, components 3
First Seen 2025-06-15
Last Seen 2025-07-29
Times Seen 9
Size 25 kB (24701 bytes)
MD5 ee5dbc3f3625bd784c8b83840cccfd53
SHA1 822e12f63f7d69d248643e8aed8d6b36ce183218
SHA256 180ed8640eed5ebb038ba49142d4a6e799ea63377b2a9d2cbd1dad8807f4e0c4
GET /c/3/2/c322f0cf898f9a7b1ba1f5f84bda953f1431539404-480-352-300-h264.flv-5.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
Content-Type: image/jpeg
Content-Length: 24701
last-modified: Mon, 22 Jun 2015 20:04:20 GMT
etag: "607d-51920c77f49d6"
expires: Wed, 21 Feb 2024 22:10:31 GMT
cache-control: max-age=10455713
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-7846-1-1523947-h-0-0---;6139-339-629625----0-0-0
GET jpgjingpinx.com/upload/vod/20240108-1/ed1a190ace86a2dd346f7c2bd53ab26e.jpg
200 OK 50 kB URL
jpgjingpinx.com/upload/vod/20240108-1/ed1a190ace86a2dd346f7c2bd53ab26e.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 718x404, components 3
First Seen 2024-08-20
Last Seen 2025-06-15
Times Seen 4
Size 50 kB (49934 bytes)
MD5 b86a16210b55d61c43d94ca5a63ee954
SHA1 d0a5b12646a0bbc4ab51bae951a93ec3ad192630
SHA256 4230aca70e8d2d3cbdfc4f29f28a184e6a8552b550d2b4cfa079c162a71b9c64
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240108-1/ed1a190ace86a2dd346f7c2bd53ab26e.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 49934
Content-Type: image/jpeg
Date: Tue, 10 Jun 2025 08:14:24 GMT
Etag: "659b8fec-c30e"
Expires: Thu, 10 Jul 2025 08:14:24 GMT
Last-Modified: Tue, 10 Jun 2025 08:14:24 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET static-sg-cdn.eporner.com/gallery/xG/fn/0OqMvcsfnxG/10415830-nude-amateur-selfies-and-gifs-1-587a10f736_296x1000.gif
200 OK 336 kB URL
static-sg-cdn.eporner.com/gallery/xG/fn/0OqMvcsfnxG/10415830-nude-amateur-selfies-and-gifs-1-587a10f736_296x1000.gif
IP / ASN
15.235.227.45
#16276 OVH SAS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-06-02
Last Seen 2025-07-31
Times Seen 19
Size 336 kB (335606 bytes)
MD5 45fd8993a2f0b7883bc7a01b62298dc9
SHA1 44ca6089eb86c7a6c9ee2cbd2e12640c80af7660
SHA256 35735f4a63c371d443ccada4465890a2a655087b6aec8dd2e0c57d359776d04d
Certificate Info
Issuer GlobalSign nv-sa
Subject *.eporner.com
Fingerprint A8:BC:21:FC:19:57:AD:EC:B8:25:30:35:C7:30:50:F8:E1:CC:C2:3C
Validity Sat, 07 Sep 2024 19:17:08 GMT - Thu, 09 Oct 2025 19:17:07 GMT
GET /gallery/xG/fn/0OqMvcsfnxG/10415830-nude-amateur-selfies-and-gifs-1-587a10f736_296x1000.gif HTTP/1.1
Host: static-sg-cdn.eporner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.27.4
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/webp
content-length: 335606
last-modified: Sun, 09 Jul 2023 23:49:15 GMT
etag: "64ab477b-51ef6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 1728000
vary: Accept
x-proxy-cache: HIT, HIT
link: <https://static-ca-cdn.eporner.com/gallery/xG/fn/0OqMvcsfnxG/10415830-nude-amateur-selfies-and-gifs-1-587a10f736_296x1000.gif>; rel="canonical"
alt-svc: h3=":443"; ma=86400
accept-ranges: bytes
X-Firefox-Spdy: h2
GET gif.acgnngca.com/v/2023092612/thumb_500_425_1g5dkyixs2f.webp
200 OK 3.9 kB URL
gif.acgnngca.com/v/2023092612/thumb_500_425_1g5dkyixs2f.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-07-27
Times Seen 13
Size 3.9 kB (3870 bytes)
MD5 e5e69dfd236640ab391439812cfc0f10
SHA1 13f89dec68e9b221c07009c9a0625ecdb85764ae
SHA256 c470b9eb58be6a15f25d0c44c2588dcc641a3ae2c67ac2843349f633942f31b2
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2023092612/thumb_500_425_1g5dkyixs2f.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 3870
server: cloudflare
last-modified: Fri, 21 Feb 2025 06:50:37 GMT
etag: "67b8223d-f1e"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 1924862
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=DhSZ%2Fu%2BVh2GLTqHqSYcQlcAmCgElacM%2FUEps%2FLM%2ByCOTTqxqiZxdAtAlQuUbosIbSIrj41ft5Ni6tHfnuDuecqgAhm%2FnO5rLhLAlSGdL"}]}
cf-ray: 94ff20a71f4a568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oCZvbP%2BBFC67i9trljS1M%2FI%2FqG8Y21Q43lx9sF9DvVDKrEV57tyN7MAHkeS6l%2F%2F47olH9w8Gi%2B0vQ%2BB5avoGi3ji9YuZ8Hmevtu2Q93ze9KDBlbCFOUyDQsXsLJii2kDubiq"}],"group":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94ff20ce5d3e5690-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5208&min_rtt=778&rtt_var=3857&sent=157&recv=214&lost=0&retrans=1&sent_bytes=14216&recv_bytes=12412&delivery_rate=957619&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=dfa38b1725547aeb&ts=3407&inflight_dur=79&x=80"
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.2_-_milk_nomi_ningyou.mp4_snapshot_02.07_2016.12.19_22.43.22.jpg?itok=wYF4uIYE
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.2_-_milk_nomi_ningyou.mp4_snapshot_02.07_2016.12.19_22.43.22.jpg?itok=wYF4uIYE
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.2_-_milk_nomi_ningyou.mp4_snapshot_02.07_2016.12.19_22.43.22.jpg?itok=wYF4uIYE HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20bf3a8d56ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET i0.wp.com/666529.xyz/images/2024/11/28/c9f1283e3e1e4e18f7bfe405bf75ea30.png
200 OK 47 kB URL
i0.wp.com/666529.xyz/images/2024/11/28/c9f1283e3e1e4e18f7bfe405bf75ea30.png
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-04-11
Last Seen 2025-07-31
Times Seen 53
Size 47 kB (46846 bytes)
MD5 c05636f2da5c83820f0c21520f1d8949
SHA1 c6770ce8e3068bd144096e9da4ba9082c781f11f
SHA256 da61886c68aa068ab05a1c6822713ea873cab82469d03b2fcfc0cb312b7fc660
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /666529.xyz/images/2024/11/28/c9f1283e3e1e4e18f7bfe405bf75ea30.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 46846
last-modified: Wed, 22 Jan 2025 00:26:59 GMT
expires: Fri, 22 Jan 2027 12:26:59 GMT
cache-control: public, max-age=63115200
link: <http://666529.xyz/images/2024/11/28/c9f1283e3e1e4e18f7bfe405bf75ea30.png>; rel="canonical"
x-content-type-options: nosniff
etag: "c077a9547fc59e6b"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET fixedjs.jtube.top/AV4.us.jpg
200 OK 8.7 kB URL
fixedjs.jtube.top/AV4.us.jpg
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
GET /AV4.us.jpg HTTP/1.1
Host: fixedjs.jtube.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 8741
Connection: keep-alive
etag: "2225-614075c7eff6b"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Cake
Cache-Control: public, max-age=360000
Age: 138256
cf-cache-status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O85W0LpJ31MWBBVFRiP1TyCSWc0C7%2F1LeWN%2FBVnI4Xq4hbMx58XiRRFjDw6pH3mhs1IxxTJmQsF5P9JoRBBFmFLThtwiw%2FckLg%2BVTgbOEfRdDaDKqXGZixe0dZj6mhvdpwWWAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 94ff20b06810569b-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=435&min_rtt=435&rtt_var=217&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=356&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240107-1/4ea148fa52f318576e59cebdd2db60b9.jpg
200 OK 38 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240107-1/4ea148fa52f318576e59cebdd2db60b9.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-07-29
Times Seen 10
Size 38 kB (38312 bytes)
MD5 e0d82ea78cf9259d5dde81ee332bd8e7
SHA1 74822ef2f31c933db27b091bc205e6348c64af2b
SHA256 fa091b4a0bc61b477bf238d935e2c0b4098dd79e40feda11be6b5c0d1d8515f9
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240107-1/4ea148fa52f318576e59cebdd2db60b9.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 38312
last-modified: Fri, 14 Feb 2025 17:55:02 GMT
expires: Mon, 15 Feb 2027 05:55:02 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240107-1/4ea148fa52f318576e59cebdd2db60b9.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3e12e3999141d8b2"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET evocdn.net/i/vporn.me/poster/76060185.jpg
200 OK 15 kB URL
evocdn.net/i/vporn.me/poster/76060185.jpg
IP / ASN
104.26.7.119
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-07-29
Times Seen 12
Size 15 kB (15265 bytes)
MD5 0749b72d3dda6b8457a708afd4e444ee
SHA1 0ef7beabdc30a1683536709abd7348e876774986
SHA256 a1493382cbd6faacff357e218d00f4253377596e6c424a8a3e8c8e14e8652ad4
Certificate Info
Issuer Let's Encrypt
Subject evocdn.net
Fingerprint 63:05:D7:2E:2E:7E:26:19:08:79:23:B6:A7:72:4B:90:B7:82:5B:49
Validity Sat, 14 Jun 2025 22:18:16 GMT - Fri, 12 Sep 2025 22:18:15 GMT
GET /i/vporn.me/poster/76060185.jpg HTTP/1.1
Host: evocdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 15265
cf-ray: 94ff20bafb960b02-OSL
age: 2512592
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=15468, status=vary_header_present
etag: "6547d9d3-43f5"
last-modified: Sun, 05 Nov 2023 18:07:15 GMT
vary: Accept, Accept-Encoding
proxy_type: Redirect
cf-cache-status: HIT
expires: Mon, 15 Jun 2026 03:54:44 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kgDmFFveWhMoqtFMzpM3M91tpyYxD5IgOgeDaK4ltPxIi4XbKtO3VO%2BzJivgp4Gh5AthDiGNACLf9HjoRgpTiOUTPLGe0vAClunqLpDAPNMsd0FunOIV0er%2BKnA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=5038&min_rtt=4998&rtt_var=1479&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2534&recv_bytes=442&delivery_rate=527077&cwnd=252&unsent_bytes=0&cid=3c85802f4359e5f2&ts=19&x=0", cfL4;desc="?proto=TCP&rtt=732&min_rtt=394&rtt_var=672&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2433&recv_bytes=1092&delivery_rate=5558541&cwnd=253&unsent_bytes=0&cid=877627b934b52990&ts=2330&x=0"
X-Firefox-Spdy: h2
GET feporno.cc/files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif
200 OK 31 kB URL
feporno.cc/files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif
IP / ASN
65.109.145.36
#24940 Hetzner Online GmbH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3], baseline, precision 8, 500x278, components 3
First Seen 2024-04-25
Last Seen 2025-06-15
Times Seen 67
Size 31 kB (30659 bytes)
MD5 c849e8638bb560b8fa4d9e9bfaaec9a0
SHA1 b6ea58b65511b922f70ced2a0914893d00df20ba
SHA256 17dade6f7ed00914003e6d992d6dc03d7bd081d57e3d7c38be0537678840b495
Certificate Info
Issuer Let's Encrypt
Subject feporno.cc
Fingerprint E4:F2:2B:0E:98:68:42:C8:90:7C:AD:1F:8F:24:EB:3C:58:21:35:BF
Validity Fri, 13 Jun 2025 20:40:42 GMT - Thu, 11 Sep 2025 20:40:41 GMT
GET /files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif HTTP/1.1
Host: feporno.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: image/gif
content-length: 30659
last-modified: Wed, 29 Jul 2020 21:31:38 GMT
etag: "5f21eaba-77c3"
expires: Mon, 16 Jun 2025 03:54:47 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET en.vidmo.pro/favicon.ico
200 OK 5.4 kB URL
en.vidmo.pro/favicon.ico
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /favicon.ico HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cacrz.4jpg.top/AV4.us.jpg
200 OK 8.7 kB URL
cacrz.4jpg.top/AV4.us.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /AV4.us.jpg HTTP/1.1
Host: cacrz.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/jpeg
content-length: 8741
server: cloudflare
etag: "2225-5499bcea176c0"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: Cake
ahost: RZ
cache-control: public, max-age=3600000
age: 616626
cf-cache-status: HIT
priority: u=4,i=?0
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VzKQxtpw4L01gp5CcPZIFQjnaoyW%2Fl%2BLlmDHQMZpbhaEEFDA3qJKHCpr5ZKnDISrnjIH6w2eopCZ0ycjhIygiAB%2BqeLYF%2BGCPV8FPg%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 94ff20e3cbb156b7-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.9188porn.xyz/upload/vod/20241010-11/ef6d2d50f3b07044c5e84dbc298bd19b.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/ef6d2d50f3b07044c5e84dbc298bd19b.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/ef6d2d50f3b07044c5e84dbc298bd19b.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.ifreshporn.com/favicon.ico
404 Not Found 0 B URL
www.ifreshporn.com/favicon.ico
IP / ASN
46.229.174.195
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer ZeroSSL
Subject ifreshporn.com
Fingerprint DB:4A:2E:16:64:8A:C7:03:AC:09:49:8E:46:73:CC:F1:2B:50:3A:C8
Validity Sun, 25 May 2025 00:00:00 GMT - Sat, 23 Aug 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.ifreshporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: openresty
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET rule34.paheal.net/_thumbs/d6420bf49c4216fe580ebd81f48da9dd/thumb.jpg
200 OK 2.4 kB URL
rule34.paheal.net/_thumbs/d6420bf49c4216fe580ebd81f48da9dd/thumb.jpg
IP / ASN
185.100.87.48
#200651 FlokiNET ehf
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x108, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 2.4 kB (2423 bytes)
MD5 066a340e3d8696f124b56fe0eb9161fb
SHA1 c53653f2bb54fc088b86d513c03c49d86ff07ce3
SHA256 855f379688d9369df78c0dc0dd5c001ed947c83a1ee13846bc741ff898272a85
Certificate Info
Issuer Let's Encrypt
Subject rule34.paheal.net
Fingerprint 14:19:38:B9:57:D4:0B:18:D5:5F:12:F6:60:8A:F4:36:25:BE:F4:9D
Validity Sat, 31 May 2025 08:55:26 GMT - Fri, 29 Aug 2025 08:55:25 GMT
GET /_thumbs/d6420bf49c4216fe580ebd81f48da9dd/thumb.jpg HTTP/1.1
Host: rule34.paheal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31556926
date: Sun, 15 Jun 2025 03:54:44 GMT
etag: "6403e813-977"
last-modified: Sun, 05 Mar 2023 00:53:39 GMT
server: Unit/1.34.2
content-type: image/jpeg
content-length: 2423
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/62dca7f7fed5d6cb31b0df39f41cf1613271b3e4.jpg
200 OK 7.2 kB URL
cdntube.b-cdn.net/thumbnails/62dca7f7fed5d6cb31b0df39f41cf1613271b3e4.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x727, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 15
Size 7.2 kB (7242 bytes)
MD5 472a099de29ff1abc8e03a9b6d8366ea
SHA1 40ed66be0f7c044ebb662d51b399c887857921e4
SHA256 2a113333dba604c37a8363d1aa8043f5063cf971437adee4a88a01cd9ab088fb
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/62dca7f7fed5d6cb31b0df39f41cf1613271b3e4.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 7242
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sun, 06 Aug 2023 16:38:00 GMT
cdn-storageserver: DE-1019
cdn-requestpullsuccess: True
cdn-fileserver: 572
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/05/2025 14:38:50
cdn-edgestorageid: 830
cdn-requestid: 73705f814d8568a6ecd97132b4aa0d06
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20240619-4/9d3d01c8f65cb2e4064f572cf8d34f03.jpg
0 B URL
www.9188porn.xyz/upload/vod/20240619-4/9d3d01c8f65cb2e4064f572cf8d34f03.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20240619-4/9d3d01c8f65cb2e4064f572cf8d34f03.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.3_-_uchiyama_aki_no_omorashi_gokko.mp4_snapshot_05.14_2016.12.19_22.43.49.jpg?itok=Le67JSn1
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.3_-_uchiyama_aki_no_omorashi_gokko.mp4_snapshot_05.14_2016.12.19_22.43.49.jpg?itok=Le67JSn1
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.3_-_uchiyama_aki_no_omorashi_gokko.mp4_snapshot_05.14_2016.12.19_22.43.49.jpg?itok=Le67JSn1 HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20cddfa156ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET cdn.wetwap.info/photo/1b/9e/54/1b9e549bb49773d6a46d77a9a01d3f4c.jpg
200 OK 11 kB URL
cdn.wetwap.info/photo/1b/9e/54/1b9e549bb49773d6a46d77a9a01d3f4c.jpg
IP / ASN
172.67.147.79
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2025-06-15
Last Seen 2025-07-13
Times Seen 4
Size 11 kB (10672 bytes)
MD5 258fb93ef8847a7510a5c713b7385b9f
SHA1 b591811387c2bf524aa86b74d1df1298ecc8145c
SHA256 d0a7e2533bb384eea61235abef6998d2af9edbbfae9e2a76e6701bc6032eca55
Certificate Info
Issuer Google Trust Services
Subject wetwap.info
Fingerprint 84:ED:CA:43:3A:7D:6D:6F:01:46:F3:32:F5:32:86:9C:CC:5F:67:6F
Validity Thu, 12 Jun 2025 16:36:29 GMT - Wed, 10 Sep 2025 17:35:02 GMT
GET /photo/1b/9e/54/1b9e549bb49773d6a46d77a9a01d3f4c.jpg HTTP/1.1
Host: cdn.wetwap.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 10672
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581269089.501167
etag: 258fb93ef8847a7510a5c713b7385b9f
last-modified: Sun, 09 Feb 2020 17:24:53 GMT
x-timestamp: 1581269092.56975
x-trans-id: tx58b52fd6c93d4213b3f4d-00675cf098
x-openstack-request-id: tx58b52fd6c93d4213b3f4d-00675cf098
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=31536000
expires: Sun, 15 Jun 2025 05:19:32 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 167712
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=P3%2B1HSX%2BeeHpAwZwYfgs7YB7hBojmcxYaGwwFQkKpR69Uck30NbtHdxbCcki%2Bv6kuPTuWgPYEAw4ZKMWhrqqVpmeCLPU9OkcDkwAvRk%3D"}]}
cf-ray: 94ff20bf789256a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET vidmo.pro/thumbs_320/c2/47/c247389127338525a2d1f288cea4246b/14430398.jpg
200 OK 8.8 kB URL
vidmo.pro/thumbs_320/c2/47/c247389127338525a2d1f288cea4246b/14430398.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 13
Size 8.8 kB (8815 bytes)
MD5 c40727f0c666395f8764b10b54ad96f4
SHA1 4bbc558021ac99bbac0b8994232b9257111ab8fe
SHA256 f51ee922902460892e249099242ec98fa1b1ebac195fbb010883b7b1827ffbb4
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/c2/47/c247389127338525a2d1f288cea4246b/14430398.jpg HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 8815
last-modified: Mon, 18 Apr 2022 06:17:49 GMT
expires: Wed, 08 Jan 2025 09:51:20 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET media.dlsite.com/chobit/contents/2008/8l1mdbkki1wkww4sowkk0owsw/8l1mdbkki1wkww4sowkk0owsw_thumb.jpg?w=1000&h=1000
200 OK 116 kB URL
media.dlsite.com/chobit/contents/2008/8l1mdbkki1wkww4sowkk0owsw/8l1mdbkki1wkww4sowkk0owsw_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 1000x562, components 3
First Seen 2025-06-02
Last Seen 2025-06-28
Times Seen 3
Size 116 kB (115743 bytes)
MD5 af5976508ef9bf62be99edfd3caa717f
SHA1 effa2cae3af07e31d2db6dd209bafd950a052b4f
SHA256 24b6d6bea1ec1968b6507177df12ce12883219ab482111756dfe6a1ff00c6070
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/2008/8l1mdbkki1wkww4sowkk0owsw/8l1mdbkki1wkww4sowkk0owsw_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 115743
date: Sun, 15 Jun 2025 03:14:15 GMT
last-modified: Tue, 18 Aug 2020 08:27:36 GMT
etag: W/"531d038ee5814c47bb1294507808f014"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aJUL6peOEneF63M7l1i_qdaV819MDsX7chLExXEnSE_b0lN_12ZaHQ==
age: 2428
X-Firefox-Spdy: h2
GET img.cdn2025.life/videos/202411/18/673abbe094b74ce10336d3d1/cover.webp
200 OK 20 kB URL
img.cdn2025.life/videos/202411/18/673abbe094b74ce10336d3d1/cover.webp
IP / ASN
107.167.21.106
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 426x238, components 3
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 16
Size 20 kB (20011 bytes)
MD5 959aea160e45916c3baa381f177f35f4
SHA1 865fc3e18795d6cf7ff4128d6d930dbde207107b
SHA256 82db96c0cbd1aec63e7f4c7847f4961472ebd110eec4268aa7d856a20f5cba24
Certificate Info
Issuer Let's Encrypt
Subject img.cdn2025.life
Fingerprint 4B:DF:B4:96:C9:95:97:38:BE:D5:91:E0:CE:0A:0F:17:A6:79:A8:FD
Validity Thu, 12 Jun 2025 19:13:21 GMT - Wed, 10 Sep 2025 19:13:20 GMT
GET /videos/202411/18/673abbe094b74ce10336d3d1/cover.webp HTTP/1.1
Host: img.cdn2025.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:53:24 GMT
content-type: image/webp
content-length: 20011
cross-origin-opener-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=43200
last-modified: Mon, 18 Nov 2024 04:00:24 GMT
etag: W/"4e2b-1933d6dc63a"
expires: Sun, 15 Jun 2025 15:53:24 GMT
nginx-cache: HIT
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
GET fixedjs.jtube.top/AV4.us.jpg
200 OK 8.7 kB URL
fixedjs.jtube.top/AV4.us.jpg
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
Certificate Info
Issuer Google Trust Services
Subject jtube.top
Fingerprint D3:D5:1C:C3:7C:30:87:4D:FD:26:E5:91:17:4C:77:FB:C2:FB:FE:09
Validity Thu, 01 May 2025 14:02:56 GMT - Wed, 30 Jul 2025 15:00:36 GMT
GET /AV4.us.jpg HTTP/1.1
Host: fixedjs.jtube.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: image/jpeg
content-length: 8741
server: cloudflare
etag: "2225-614075c7eff6b"
accept-ranges: bytes
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: *
access-control-allow-headers: Cake
cache-control: public, max-age=360000
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=erY0nnchn%2FJ%2FklF0X1bbVY9U18zmTN0Zj8qmfbdb36zMBM1WzGTH%2Bd0GeQQ7bsIu5RVoarrjPH3jFfL4fIYDFu6hSaAxEpka%2FVooxaQi%2FQ%3D%3D"}]}
age: 138261
cf-cache-status: HIT
vary: accept-encoding
cf-ray: 94ff20cfddf856ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET news.ifeng.com/favicon.ico
200 OK 4.0 kB URL
news.ifeng.com/favicon.ico
IP / ASN
43.152.140.107
#139341 ACE
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
First Seen 2023-09-17
Last Seen 2025-07-27
Times Seen 48
Size 4.0 kB (4038 bytes)
MD5 ef58dd8d766d78b20fe1b0b334e8bb3f
SHA1 78dd99359f753eb0322fef9fab9f481cf30d1ef9
SHA256 d55e83c935462662cfd0cbbc04274a39cef09b85aa0897e783586b6558909dfb
Certificate Info
Issuer TrustAsia Technologies, Inc.
Subject *.ifeng.com
Fingerprint 25:82:28:08:C6:F3:41:01:A4:35:D5:8C:15:AA:3B:72:B9:0C:A7:BA
Validity Mon, 17 Mar 2025 00:00:00 GMT - Thu, 09 Apr 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: news.ifeng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Fri, 30 May 2025 03:27:05 GMT
Etag: "68392589-fc6"
date: Wed, 11 Jun 2025 00:34:17 GMT
content-type: image/x-icon
expires: Wed, 18 Jun 2025 00:34:17 GMT
content-security-policy: upgrade-insecure-requests
Cache-Control: max-age=604800
Content-Length: 4038
Accept-Ranges: bytes
X-NWS-LOG-UUID: 11699095387173937670
Connection: keep-alive
Server: Lego Server
X-Cache-Lookup: Cache Hit
GET www.effedupmovies.com/wp-content/uploads/2020/10/lovelybones.jpg
0 B URL
www.effedupmovies.com/wp-content/uploads/2020/10/lovelybones.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2020/10/lovelybones.jpg HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET videosection.com/favicon.ico
404 Not Found 0 B URL
videosection.com/favicon.ico
IP / ASN
185.132.176.86
#49981 WorldStream B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject videosection.com
Fingerprint 50:B1:37:BB:AB:18:5E:18:DB:6F:A7:7B:96:B5:09:79:31:0C:3D:ED
Validity Wed, 04 Jun 2025 04:00:31 GMT - Tue, 02 Sep 2025 04:00:30 GMT
GET /favicon.ico HTTP/1.1
Host: videosection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html; charset=utf-8
server-timing: mw.not-found;dur=0.003423,mw.redirects;dur=0.416513,mw.user-country;dur=0.00205,mw.language;dur=0.015765,mw.niche;dur=0.000982,mw.meta;dur=0.000598,mw.utm;dur=0.00071,mw.referer;dur=0.115956,mw.request-vars;dur=0.023203,mw.data-processing;dur=0.001483,process-request;dur=0.789386,process-request_render;dur=0.782222
x-envoy-upstream-service-time: 3
x-envoy-decorator-operation: itube-gw-web.master.svc.cluster.local:8282/*
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2
GET www.dirtypriest.com/thumbs/d0df1a220bad0eef86233d44ba664ee2.jpg
200 OK 3.4 kB URL
www.dirtypriest.com/thumbs/d0df1a220bad0eef86233d44ba664ee2.jpg
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 160x120, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 3.4 kB (3428 bytes)
MD5 835e008dbd9590ee0c4c2baa83bb2857
SHA1 e1435db377d22d169c07e6b5becffc92d88f5ab3
SHA256 78d00ec7739977788ef39fab3e638209d56e04c11a2348dc0e27ef80e2c4bbf5
Certificate Info
Issuer Google Trust Services
Subject dirtypriest.com
Fingerprint BF:2D:13:1E:4F:20:FC:02:82:73:BA:43:7D:95:3C:62:22:DE:C6:84
Validity Sun, 27 Apr 2025 14:08:40 GMT - Sat, 26 Jul 2025 15:02:52 GMT
GET /thumbs/d0df1a220bad0eef86233d44ba664ee2.jpg HTTP/1.1
Host: www.dirtypriest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 3428
server: cloudflare
last-modified: Sun, 12 Mar 2017 01:05:54 GMT
etag: "58c49ef2-d64"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 774424
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8RYutt4hdrSBPqDc25KRvdQ3LeZYKY5fLHMJmS2JmvUkRXkT0kkaBt7uB5AfnzFgQGh13%2FnGPjK44deKukcAdXHquQTQcdfbG0DExsdDHZhf"}]}
cf-ray: 94ff20bf7b72b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/66692ffb84e672f442d43f7449122fc4.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/66692ffb84e672f442d43f7449122fc4.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/66692ffb84e672f442d43f7449122fc4.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/lolicon_angel.mp4_snapshot_09.34_2016.12.20_00.53.37.jpg?itok=oFneuyuR
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/lolicon_angel.mp4_snapshot_09.34_2016.12.20_00.53.37.jpg?itok=oFneuyuR
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/lolicon_angel.mp4_snapshot_09.34_2016.12.20_00.53.37.jpg?itok=oFneuyuR HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20ce0fb256ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET img.qianju.cc/upload/vod/20220818-1/e4d07b0442eee15661ad2a692041e73d.jpg
0 B URL
img.qianju.cc/upload/vod/20220818-1/e4d07b0442eee15661ad2a692041e73d.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/vod/20220818-1/e4d07b0442eee15661ad2a692041e73d.jpg HTTP/1.1
Host: img.qianju.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET mc.webvisor.org/watch/48140495/1?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1
200 OK 604 B URL
mc.webvisor.org/watch/48140495/1?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1
IP / ASN
77.88.21.119
#13238 YANDEX LLC
Requested by http://animal.zoo2.top/
Resource Info
File type JSON text data
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 604 B (604 bytes)
MD5 72d504a03a4bce79fa70d48e2ad6dade
SHA1 73e20efc356b0e2beea71e3bf4308328a0973e76
SHA256 20653392e4b288dfe9f0fae3876ddce3b8ef6b515b73fca04757a3a4027c715a
Certificate Info
Issuer GlobalSign nv-sa
Subject mc.webvisor.com
Fingerprint 4E:A6:D4:57:F5:B7:FB:C1:98:C0:40:D2:B8:FA:B4:10:43:09:41:94
Validity Sun, 09 Mar 2025 21:02:24 GMT - Sun, 31 Aug 2025 20:59:59 GMT
GET /watch/48140495/1?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1 HTTP/1.1
Host: mc.webvisor.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://animal.zoo2.top
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Cookie: yabs-sid=603421001749959688; i=4bOJYiUye00Won6OqNpXz1ynkJrrYeOjs+iCG1kE9moUSVLC58QW4wmAlfQTloVHhekdlthniLqr0l+V7F+ei63DQgQ=; yandexuid=7070695391749959688; yuidss=7070695391749959688; ymex=1781495688.yrts.1749959688#1781495688.yrtsi.1749959688; bh=YIiIucIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 604
strict-transport-security: max-age=31536000
content-type: application/json; charset=utf-8
pragma: no-cache
x-xss-protection: 1; mode=block
last-modified: Sun, 15-Jun-2025 03:54:48 GMT
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: Sun, 15-Jun-2025 03:54:48 GMT
access-control-allow-origin: http://animal.zoo2.top
access-control-allow-credentials: true
X-Firefox-Spdy: h2
GET jsjs.4jpg.top/index.php?js=very
200 OK 0 B URL
jsjs.4jpg.top/index.php?js=very
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /index.php?js=very HTTP/1.1
Host: jsjs.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
imghost: 1729614248-h-jsjs4jpgtopmh--NO-rm162158222116/index.php?js=very
56nloadrate: 0.3165625
cache-control: max-age=360000, private
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Xy6l9d%2BbqWdWeEXms6gFBHEhOx%2FUWS8%2Fl05%2BFIdnf9tzqXhgbHhF7NBbp%2F%2Bsr8IXovjbCIxezljK5mtWI%2BuM%2Bki9xW1kTFeHa5JI"}]}
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Cake
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
cf-ray: 94ff20a5e86956a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET media.dlsite.com/chobit/contents/1712/llcmj6258mos484g8oocw0gw/llcmj6258mos484g8oocw0gw_thumb.jpg?w=1000&h=1000
200 OK 128 kB URL
media.dlsite.com/chobit/contents/1712/llcmj6258mos484g8oocw0gw/llcmj6258mos484g8oocw0gw_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 1000x562, components 3
First Seen 2025-05-24
Last Seen 2025-06-29
Times Seen 7
Size 128 kB (128023 bytes)
MD5 3b6e0b62d2d5f77d08cf6b4300d9d039
SHA1 559daffd8b2655cb2cdaeeb30a519e7c0f3a6f19
SHA256 85d1b2ee32aa1c34666aa2f758c28c025d0cc88b7168a823548b9924cd97d217
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/1712/llcmj6258mos484g8oocw0gw/llcmj6258mos484g8oocw0gw_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 128023
date: Sun, 15 Jun 2025 03:32:41 GMT
last-modified: Thu, 30 Nov 2017 16:30:57 GMT
etag: W/"2b754be22c57448fb787afb99c13294f"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ejVxU1f24hSLG4F96SuAJxuihcmMHOStYKTl8qRZ0HI8OBrx19jLEw==
age: 1323
X-Firefox-Spdy: h2
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240305-1/c42536efe405260f7c2dfec92964886f.jpg
200 OK 43 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240305-1/c42536efe405260f7c2dfec92964886f.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-26
Last Seen 2025-07-10
Times Seen 6
Size 43 kB (43324 bytes)
MD5 c64cb584df1fc57ceb8398dde0805c40
SHA1 a75fd364e3b22748d68f4c7162089932dac3c827
SHA256 ec43393d04a85161506d3f262c55367acf0e08d29c3f706fe72a024fbff4d721
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240305-1/c42536efe405260f7c2dfec92964886f.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:42 GMT
content-type: image/webp
content-length: 43324
last-modified: Thu, 19 Dec 2024 03:03:06 GMT
expires: Sat, 19 Dec 2026 15:03:06 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240305-1/c42536efe405260f7c2dfec92964886f.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "db5c1276d3b1893a"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET pornohub24.ru/erosceny/screen/sestra-ispolzuet-mladshego-brata-kak-seks-igrushku-00.jpg
200 OK 10 kB URL
pornohub24.ru/erosceny/screen/sestra-ispolzuet-mladshego-brata-kak-seks-igrushku-00.jpg
IP / ASN
193.163.7.2
#204601 Zomro B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-12-08
Last Seen 2025-07-30
Times Seen 10
Size 10 kB (9993 bytes)
MD5 4840de82de98942f4ca6ab2b39468a56
SHA1 671dc34047dc0b37e9a411d1135ed7ff0d03b1df
SHA256 72026bb6e05424146fe60327406d538e9f10146e3206205bed88b32d4072a1c9
Certificate Info
Issuer Let's Encrypt
Subject pornohub24.ru
Fingerprint 91:0F:79:A7:07:B9:06:B5:97:6C:F2:D4:4E:13:77:24:4D:7F:38:EC
Validity Fri, 30 May 2025 23:51:51 GMT - Thu, 28 Aug 2025 23:51:50 GMT
GET /erosceny/screen/sestra-ispolzuet-mladshego-brata-kak-seks-igrushku-00.jpg HTTP/1.1
Host: pornohub24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 9993
last-modified: Sat, 06 Apr 2024 17:39:19 GMT
etag: "661188c7-2709"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/7/1/a/2/c/71a2ca1261db476920b5b6992c4cac381431324002-75.jpg
200 OK 22 kB URL
cdne-pics.youjizz.com/7/1/a/2/c/71a2ca1261db476920b5b6992c4cac381431324002-75.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 328x231, segment length 16, comment: "Lavc58.106.100", baseline, precision 8, 308x232, components 3
First Seen 2025-06-11
Last Seen 2025-07-30
Times Seen 12
Size 22 kB (21728 bytes)
MD5 b26c092c7d2ed150d28457072780651e
SHA1 32da575f9eab1da3fe45d05667467352cbf885e5
SHA256 94614d90714ee63845d1a8552d5a86f79ffb9857cfcf42af93f5cc76308cea39
GET /7/1/a/2/c/71a2ca1261db476920b5b6992c4cac381431324002-75.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 21728
last-modified: Mon, 22 Mar 2021 11:09:21 GMT
etag: "54e0-5be1e18fbeab1"
expires: Tue, 24 Sep 2024 05:41:58 GMT
cache-control: max-age=10680709
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-8658-1-818943-h-0-0---;7619-17-4185749----0-0-1
GET cdne-pics.youjizz.com/2/0/a/20a8e24815b64682390142deca08c2041426122607-422-238-401-h264.flv-5.jpg
200 OK 14 kB URL
cdne-pics.youjizz.com/2/0/a/20a8e24815b64682390142deca08c2041426122607-422-238-401-h264.flv-5.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 18357x18326, segment length 16, comment: "Lavc52.123.0", baseline, precision 8, 308x232, components 3
First Seen 2024-04-20
Last Seen 2025-07-26
Times Seen 14
Size 14 kB (13868 bytes)
MD5 aa04c8389e09ef7e3e1c8acc54c039ab
SHA1 9230d1cefc53ef5f46c55bea601562abda21837a
SHA256 9a00c77829a36b7a0a996c0b4a6705cbf5b55e1e75f6fdb632cafebbd325ff61
GET /2/0/a/20a8e24815b64682390142deca08c2041426122607-422-238-401-h264.flv-5.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 13868
last-modified: Thu, 12 Mar 2015 01:27:12 GMT
etag: "362c-5110d48802f18"
expires: Tue, 30 Jan 2024 04:52:09 GMT
cache-control: max-age=10682011
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-6140-2-3579148-h-0-0---;8657-20-2548742----0-0-0
GET cloudflare-br-pic.kwai.net/upic/2024/05/14/08/BMjAyNDA1MTQwODU5MDVfMTUwMDAxNTY2NTUxNTAzXzE1MDEwNjA1NTg3MjM2MF8yXzM=_oscn2_Bec78a44f26326c2dedcfd93586937f29.webp
200 OK 14 kB URL
cloudflare-br-pic.kwai.net/upic/2024/05/14/08/BMjAyNDA1MTQwODU5MDVfMTUwMDAxNTY2NTUxNTAzXzE1MDEwNjA1NTg3MjM2MF8yXzM=_oscn2_Bec78a44f26326c2dedcfd93586937f29.webp
IP / ASN
104.18.51.191
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x854, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-09
Last Seen 2025-07-30
Times Seen 10
Size 14 kB (13948 bytes)
MD5 fbea11401af7ca16b35aef61a7cc2720
SHA1 b9958a3ab48a1040aec4b17ec65dc4ed1d029a27
SHA256 0fbd11cc591a55bb43293b8353afd74426d8110696430817b896ef98fc7d54df
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /upic/2024/05/14/08/BMjAyNDA1MTQwODU5MDVfMTUwMDAxNTY2NTUxNTAzXzE1MDEwNjA1NTg3MjM2MF8yXzM=_oscn2_Bec78a44f26326c2dedcfd93586937f29.webp HTTP/1.1
Host: cloudflare-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 13948
cf-ray: 94ff20b8d85a12a5-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 10371
cache-control: max-age=2592000
etag: "FBEA11401AF7CA16B35AEF61A7CC2720"
expires: Mon, 15 Jun 2026 03:54:43 GMT
last-modified: Tue, 14 May 2024 01:00:18 GMT
vary: Accept-Encoding
via: 1.1 f6d84a10259ceb3740deb03491fabcd6.cloudfront.net (CloudFront)
x-amz-cf-id: jocxn5lo2Xemc058SeiT6tjR_5LdIfD6e0w7pv5lsg_6PL_nE_x77g==
x-amz-cf-pop: HEL51-P4
x-bs-hash-crc64ecma: 461767537691693103
x-bs-object-status: 0
x-cache: Hit from cloudfront
x-nws-log-uuid: 10337773060393445115
access-control-allow-origin: *
x-ks-cache: HIT
x-ks-client-ip: 91.90.42.154
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.mydesii.com/wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg
200 OK 25 kB URL
www.mydesii.com/wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg
IP / ASN
172.67.184.99
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 900x506, components 3
First Seen 2025-06-15
Last Seen 2025-07-29
Times Seen 14
Size 25 kB (24794 bytes)
MD5 e3854012b2fd904a97d0395e138ab607
SHA1 a73cd537fd4cf4c500c7c77a6ca6a78d7b6b3165
SHA256 1c7b202051c8304e818628833021fcfa11577bed23958c72afde92c23d7cb1db
Certificate Info
Issuer Google Trust Services
Subject mydesii.com
Fingerprint 41:96:60:55:5B:03:71:86:82:92:7E:35:78:B0:CF:1D:5E:62:1A:4A
Validity Fri, 16 May 2025 14:27:45 GMT - Thu, 14 Aug 2025 15:25:26 GMT
GET /wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg HTTP/1.1
Host: www.mydesii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 15 Jun 2025 03:54:46 GMT
content-type: image/jpeg
content-length: 24794
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sx9XV%2BPeh3wswfy5%2FkA%2F%2FuJC54FcDtxJLwEFkSAcWaGWMcxrcifpXtuDj88QW6RD55hbdmto%2FflGMSSS7PqeE7gVhia7d6lW5SQ75Fi0fjzV49dLK5vWHNDgDoP68Y7jccg%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Tue, 17 Jun 2025 19:51:36 GMT
etag: "60da-66d4b7bd-e22355;;;"
last-modified: Sun, 01 Sep 2024 18:51:41 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=86400
age: 374589
cf-cache-status: HIT
cf-ray: 94ff20c58936b500-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=15040&min_rtt=2845&rtt_var=7073&sent=77&recv=110&lost=0&retrans=0&sent_bytes=7245&recv_bytes=6805&delivery_rate=162968&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=668d42b9c0328193&ts=3508&inflight_dur=95&x=80"
GET obmenvsemfiles.net/fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg
302 Found 22 kB URL
obmenvsemfiles.net/fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg
IP / ASN
82.192.80.149
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 22 kB (21799 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject obmenvsemfiles.net
Fingerprint 55:B7:B2:52:2E:E5:4D:1E:96:5C:1A:46:61:9B:0F:E3:B8:B2:20:CD
Validity Sat, 17 May 2025 20:45:31 GMT - Fri, 15 Aug 2025 20:45:30 GMT
GET /fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg HTTP/1.1
Host: obmenvsemfiles.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: text/html
content-length: 138
location: http://ds.nashobmenfiles.com/fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240108-1/d6afc34348491423925ab92d67635863.jpg
200 OK 57 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240108-1/d6afc34348491423925ab92d67635863.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-21
Times Seen 2
Size 57 kB (57016 bytes)
MD5 43da906ae08ca99da3aa2edb1b5f56d5
SHA1 0ecbcd34889819b5e6f5a660e2e954209bb20167
SHA256 00408cff7cc5a7574b8cb15d5cfab3ebcdddf98fb1027de90d52a8f3e5791452
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240108-1/d6afc34348491423925ab92d67635863.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 57016
last-modified: Sun, 15 Dec 2024 17:38:10 GMT
expires: Wed, 16 Dec 2026 05:38:10 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240108-1/d6afc34348491423925ab92d67635863.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d0c7115d3091849a"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240110-1/0d156b2f82d00a0877097bb04a0ca1cb.jpg
200 OK 112 kB URL
jpgjingpinx.com/upload/vod/20240110-1/0d156b2f82d00a0877097bb04a0ca1cb.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.4 (Macintosh), datetime=2023:03:28 14:40:24], baseline, precision 8, 718x404, components 3
First Seen 2025-06-02
Last Seen 2025-06-16
Times Seen 3
Size 112 kB (111640 bytes)
MD5 e311f6ac7e61874bc242aba0428b5592
SHA1 c6635f7c47201852a19ecd5f25723405161bc4d3
SHA256 5263f9848a9602d6dace598da2ebb272b5689a0766311b3b92d43453a18bc0d9
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240110-1/0d156b2f82d00a0877097bb04a0ca1cb.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 111640
Content-Type: image/jpeg
Date: Tue, 10 Jun 2025 14:19:24 GMT
Etag: "659edbf6-1b418"
Expires: Thu, 10 Jul 2025 14:19:24 GMT
Last-Modified: Tue, 10 Jun 2025 14:19:24 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET realincestvideos.org/thumbs/742/3824942637835309742_0.jpg
200 OK 12 kB URL
realincestvideos.org/thumbs/742/3824942637835309742_0.jpg
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-01-21
Last Seen 2025-07-11
Times Seen 5
Size 12 kB (12424 bytes)
MD5 df0a7d49214ff0bcddd7f0fbc1f0b469
SHA1 639b6c0cc6922873818dc377f50debecab77ad71
SHA256 b3aab33a5bd6d8b1067909efe4d6ce09d5d1baab253df6675218da00031db23d
Certificate Info
Issuer Google Trust Services
Subject realincestvideos.org
Fingerprint 36:6B:A6:53:14:8C:F8:6D:42:86:0B:C1:06:93:F3:11:FE:E3:C2:44
Validity Fri, 16 May 2025 17:31:53 GMT - Thu, 14 Aug 2025 18:30:17 GMT
GET /thumbs/742/3824942637835309742_0.jpg HTTP/1.1
Host: realincestvideos.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 12424
server: cloudflare
last-modified: Tue, 25 Feb 2020 16:57:30 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5e5551fa-3088"
expires: Mon, 16 Jun 2025 10:38:42 GMT
cache-control: max-age=259200
accept-ranges: bytes
age: 148560
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=52MCtbH%2FqwYklsOkD0W17Dba5v4Pcc42QHnFtRECFP92MqK4qrtBrrPtV%2FMcyJvj%2B3eYKmzQDlUEfJDcWA6sFGe5ttBNEHdiF7NsRZy3Y%2Ft4UQ%3D%3D"}]}
cf-ray: 94ff20b66e555697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET timg216.top/videos/697b3a77dac1504a3066a4ceea903313cbe302d8/cover/5_505_259?ih=1
200 OK 29 kB URL
timg216.top/videos/697b3a77dac1504a3066a4ceea903313cbe302d8/cover/5_505_259?ih=1
IP / ASN
104.22.20.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-05-02
Last Seen 2025-07-30
Times Seen 20
Size 29 kB (28997 bytes)
MD5 229b77bc9750cb73c0a6eb59fe2ae1c2
SHA1 c377c3e6686fcbbf474801651a4a222f3be66d36
SHA256 851d9a26151b56656a151650c845cafac6ee615f3a0c6746c6059706fc24889a
Certificate Info
Issuer Google Trust Services
Subject timg216.top
Fingerprint 77:83:68:54:E0:99:C9:F6:C6:B3:2B:5F:C1:56:9E:4F:34:BE:32:D9
Validity Fri, 06 Jun 2025 03:04:17 GMT - Thu, 04 Sep 2025 04:01:55 GMT
GET /videos/697b3a77dac1504a3066a4ceea903313cbe302d8/cover/5_505_259?ih=1 HTTP/1.1
Host: timg216.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 28997
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 12:05:47 GMT
vary: Accept-Encoding
etag: "67c6ec9b-7145"
expires: Tue, 10 Jun 2025 14:22:29 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 2614825
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=w2Cqb23AftR9S%2BWITY0DUYtjebtCKZFmadfGNw%2F5t0GloQRJTcb%2BZR8M82%2B8CW4Fs0%2F43cvJXhob%2BFiif%2F9oQV3Yzg6mA%2Fcgqg%3D%3D"}]}
cf-ray: 94ff20a80c4d5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn1.hotmoza.tv/thumb/ae/dc/4c/aedc4ce8fae28813a6ec13d145d97757.jpg
200 OK 18 kB URL
cdn1.hotmoza.tv/thumb/ae/dc/4c/aedc4ce8fae28813a6ec13d145d97757.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3
First Seen 2024-09-19
Last Seen 2025-07-29
Times Seen 7
Size 18 kB (17801 bytes)
MD5 5c1a3261d029a481e4012696f4189a2f
SHA1 acb3b32320fb88ae975ebe4c660a8a3933c795da
SHA256 11ab90068a21ec60d64829a0b0745e4368afc82dfff284c0ebe81bf5b8af3265
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/ae/dc/4c/aedc4ce8fae28813a6ec13d145d97757.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 17801
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581263385.40865
etag: 5c1a3261d029a481e4012696f4189a2f
last-modified: Sun, 09 Feb 2020 15:49:51 GMT
x-timestamp: 1581263390.06884
x-trans-id: tx6c6fd5fb1150466cbdf77-0065fa5baa
x-openstack-request-id: tx6c6fd5fb1150466cbdf77-0065fa5baa
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Mon, 16 Jun 2025 09:14:36 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 67209
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=nPC410p5kzB2VLNsSpk5gUqhACPbBId0ROV4URLPs3G%2F87ZdC9CHx7YXqOtvh%2Bn8mCzV5keklB1t6awKYwgFrSqqJRpSiLB9gRHVOxI%3D"}]}
cf-ray: 94ff20c4bd46b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/ee/42/e8/ee42e82f32615ebbd7ea344fb430f402-1/ee42e82f32615ebbd7ea344fb430f402.20.jpg
200 OK 8.5 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/ee/42/e8/ee42e82f32615ebbd7ea344fb430f402-1/ee42e82f32615ebbd7ea344fb430f402.20.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-03-12
Last Seen 2025-07-29
Times Seen 12
Size 8.5 kB (8518 bytes)
MD5 a5c6e20704312195d5d6daaae013eaf2
SHA1 dbee0ae03a7ead3f7fe35c1e9030cea3e54fc607
SHA256 cf8d44b1ce185431532bb110d43f61b6992969d42ce3d232742948f5c58b0642
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/ee/42/e8/ee42e82f32615ebbd7ea344fb430f402-1/ee42e82f32615ebbd7ea344fb430f402.20.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 8518
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Tue, 29 Jun 2021 03:56:05 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJEQH3l1cjAAwBJRPCKwH3EKIIAAwBj/Q6jAH3h1geAA
x-77-nzt-ray: 0ef5851b987059e604444e6898b2eb28
x-accel-expires: @1755456982
x-accel-date: 1747643501
x-accel-date-max: 1745088982
x-77-cache: HIT
x-77-age: 2316183
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cloudflare-br-pic.kwai.net/upic/2022/12/19/04/BMjAyMjEyMTkwNDEyMjdfMTUwMDAxMzc2MTEwMDA4XzE1MDEwMTYxMDc4MTYzMF8yXzM=_oscn2_Be8fb4b6a6720cce8cc0ed3dc99e68fa5.webp
200 OK 14 kB URL
cloudflare-br-pic.kwai.net/upic/2022/12/19/04/BMjAyMjEyMTkwNDEyMjdfMTUwMDAxMzc2MTEwMDA4XzE1MDEwMTYxMDc4MTYzMF8yXzM=_oscn2_Be8fb4b6a6720cce8cc0ed3dc99e68fa5.webp
IP / ASN
104.18.51.191
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x854, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-02
Last Seen 2025-07-25
Times Seen 8
Size 14 kB (14442 bytes)
MD5 54894bff97222d0d23cd0530dde53592
SHA1 dc31025f1eca7b7ed9d35b4be8d91c7760610785
SHA256 44b7a4b6bc163f4a860c1fda93f64a08804ca579c72c18a7fdd9ea49cd4c9555
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /upic/2022/12/19/04/BMjAyMjEyMTkwNDEyMjdfMTUwMDAxMzc2MTEwMDA4XzE1MDEwMTYxMDc4MTYzMF8yXzM=_oscn2_Be8fb4b6a6720cce8cc0ed3dc99e68fa5.webp HTTP/1.1
Host: cloudflare-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/webp
content-length: 14442
cf-ray: 94ff20c39de412a5-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 372451
cache-control: max-age=2592000
etag: "54894BFF97222D0D23CD0530DDE53592"
expires: Mon, 15 Jun 2026 03:54:45 GMT
last-modified: Sun, 18 Dec 2022 20:13:51 GMT
vary: Accept-Encoding
via: 1.1 b301fa8d72072cc0289eb055d8389e68.cloudfront.net (CloudFront)
x-amz-cf-id: Av1_ktNzdv5_Tz-nrXBY0w0KJuXgrLFSNImKI_x8yJnBFWzXiNEP8w==
x-amz-cf-pop: ARN56-P2
x-bs-hash-crc64ecma: 1945283954897388417
x-bs-object-status: 0
x-cache: Hit from cloudfront
x-nws-log-uuid: 12708849633522766206
access-control-allow-origin: *
x-ks-cache: HIT
x-ks-client-ip: 91.90.42.154
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET rule34.paheal.net/_thumbs/cbf60e883004153e97b0c46ff6a8c08d/thumb.jpg
200 OK 3.3 kB URL
rule34.paheal.net/_thumbs/cbf60e883004153e97b0c46ff6a8c08d/thumb.jpg
IP / ASN
185.100.87.48
#200651 FlokiNET ehf
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 192x108, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 3.3 kB (3294 bytes)
MD5 baf358a2b186eb9fd2bb266cee779503
SHA1 8771c7a4860bb80ea03e70a4ce1c71870608545c
SHA256 4de31e2c121b79d61843b120142810717cdd1305a2d44cfe14c010f777ae80ef
Certificate Info
Issuer Let's Encrypt
Subject rule34.paheal.net
Fingerprint 14:19:38:B9:57:D4:0B:18:D5:5F:12:F6:60:8A:F4:36:25:BE:F4:9D
Validity Sat, 31 May 2025 08:55:26 GMT - Fri, 29 Aug 2025 08:55:25 GMT
GET /_thumbs/cbf60e883004153e97b0c46ff6a8c08d/thumb.jpg HTTP/1.1
Host: rule34.paheal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31556926
date: Sun, 15 Jun 2025 03:54:44 GMT
etag: "5e337a20-cde"
last-modified: Fri, 31 Jan 2020 00:51:44 GMT
server: Unit/1.34.2
content-type: image/jpeg
content-length: 3294
X-Firefox-Spdy: h2
GET www.9188porn.com/upload/vod/20241010-10/5deaec607358597313cab8e0ea293da6.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/5deaec607358597313cab8e0ea293da6.png
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/5deaec607358597313cab8e0ea293da6.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JemrdN%2Bp9PyzIjqfxtCiHdr7SXZ6%2BgAETQSqF%2FWEfmHV%2Fjl0l4qyrbdv%2Fzz6Y%2Fzusq2xWBGcMh%2F0s0%2F8C%2FLVRA5U1sinQ2FojLUi1Hz%2Fqqw8LmpCU44mh2tQjZ8VE1Lc18CY"}],"group":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94ff20ce6d3f5690-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5208&min_rtt=778&rtt_var=3857&sent=159&recv=214&lost=0&retrans=1&sent_bytes=16571&recv_bytes=12412&delivery_rate=957619&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=dfa38b1725547aeb&ts=3411&inflight_dur=79&x=80"
GET timg215.top/videos/9a3d7f577bdbb36097d7230a3e1010cacb877fd0/cover/5_505_259?ih=1
200 OK 62 kB URL
timg215.top/videos/9a3d7f577bdbb36097d7230a3e1010cacb877fd0/cover/5_505_259?ih=1
IP / ASN
104.22.21.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-05-06
Last Seen 2025-07-30
Times Seen 25
Size 62 kB (61944 bytes)
MD5 a6f996fb2d1c6df90a365c662b9a85dc
SHA1 cf753b8431203c48bb414c4ba27934b176573dc2
SHA256 7b103b67e28af06d010945276b80b171914e0f4901fe831e181c5fe222dcf135
Certificate Info
Issuer Google Trust Services
Subject timg215.top
Fingerprint 47:C1:38:A5:8A:9F:96:13:94:79:23:4C:77:96:01:E3:5B:39:10:DC
Validity Mon, 02 Jun 2025 04:11:42 GMT - Sun, 31 Aug 2025 05:10:26 GMT
GET /videos/9a3d7f577bdbb36097d7230a3e1010cacb877fd0/cover/5_505_259?ih=1 HTTP/1.1
Host: timg215.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 61944
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 15:16:17 GMT
vary: Accept-Encoding
etag: "67c71941-f1f8"
expires: Tue, 20 May 2025 14:19:01 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 3292480
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TpXNNvEdD9fm7epNUJcsu0GYU5qWOk0CCi0eHhsMovDIedEAEVWAUP5O9f51%2B%2F4Fw3QBKT9UQ%2FHLJKpFSvFdivIwn7vrE%2BW%2BMg%3D%3D"}]}
cf-ray: 94ff20aacd5956a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.redd.tube/
200 OK 0 B IP / ASN
104.26.15.75
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject redd.tube
Fingerprint 6A:A3:49:66:02:5D:88:4D:80:FE:94:BE:C2:A9:9E:59:D7:97:02:97
Validity Sun, 01 Jun 2025 15:05:19 GMT - Sat, 30 Aug 2025 16:05:04 GMT
GET / HTTP/1.1
Host: www.redd.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html; charset=UTF-8
cf-ray: 94ff20e689920b51-OSL
x-content-type-options: nosniff
x-frame-options: Deny
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
ischrome: false
country-code: NO
country-code-uk: false
content-encoding: gzip
vary: Accept-Encoding
set-cookie: PHPSESSID=e54feb38bc4d21587dc80921f0d78bc2; expires=Mon, 16-Jun-2025 03:54:51 GMT; Max-Age=86400; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uHytvLgeS%2B%2BTqQ9sk7t3j3%2FO1nYupi%2BIA1uyLktTIfqtzG8AiGNl%2B7g9B%2BveMvuJFsZRLNRLYuI2zCja4SZYUGSwHfbWHr1OAosrJJZQD%2BmGJz0MtrPq3LgBbklfZk8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=585&min_rtt=348&rtt_var=256&sent=10&recv=16&lost=0&retrans=0&sent_bytes=4172&recv_bytes=1274&delivery_rate=7554782&cwnd=257&unsent_bytes=0&cid=0b5bd49d658c6a8b&ts=1135&x=0"
X-Firefox-Spdy: h2
GET mydesii.com/wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg
301 Moved Permanently 25 kB URL
mydesii.com/wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg
IP / ASN
172.67.184.99
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 25 kB (24794 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject mydesii.com
Fingerprint 41:96:60:55:5B:03:71:86:82:92:7E:35:78:B0:CF:1D:5E:62:1A:4A
Validity Fri, 16 May 2025 14:27:45 GMT - Thu, 14 Aug 2025 15:25:26 GMT
GET /wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg HTTP/1.1
Host: mydesii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 15 Jun 2025 03:54:41 GMT
location: https://www.mydesii.com/wp-content/uploads/2024/09/Pakistani-Horny-Teen-Fucking.jpg
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qWWIUbpS0DwDPXx1QiildDyA9%2BO8C6%2FLw6LCKddGHxzeMPLO%2FFHvzZeOrIL%2BgUDz2xVpsEKQREC0CGHa7REIcJCA%2FQDd7jkVNQ%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94ff20aac8e7b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/53/0d/530d48b0ed456a309c3f3d8b60c448ad/412679.jpg
200 OK 14 kB URL
en.vidmo.pro/thumbs_320/53/0d/530d48b0ed456a309c3f3d8b60c448ad/412679.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 320x240, components 3
First Seen 2024-05-27
Last Seen 2025-07-15
Times Seen 7
Size 14 kB (14056 bytes)
MD5 65f27c8f0d611cf53eff3fe03494418c
SHA1 98ae0878c4895901b81f61bee4d1b573831fe8f2
SHA256 4b20023306eeee7d6034b8c86eecf556b95f9cb4a7bb52417567ec73b1d82a34
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/53/0d/530d48b0ed456a309c3f3d8b60c448ad/412679.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 14056
last-modified: Mon, 22 Aug 2016 18:40:43 GMT
expires: Sat, 23 Mar 2024 17:38:33 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET realincestvideos.org/thumbs/995/3824942638535569995_0.jpg
200 OK 9.1 kB URL
realincestvideos.org/thumbs/995/3824942638535569995_0.jpg
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-08-19
Last Seen 2025-07-29
Times Seen 14
Size 9.1 kB (9066 bytes)
MD5 de4a0d40f2dd08bcc0dbabcfb03160eb
SHA1 baaa3c62628ce4e9e4f106adde244b3f1444a016
SHA256 f0606f070ad56f908d3d6f558840876b3900ea73bda33be0b1884195481f1c6a
Certificate Info
Issuer Google Trust Services
Subject realincestvideos.org
Fingerprint 36:6B:A6:53:14:8C:F8:6D:42:86:0B:C1:06:93:F3:11:FE:E3:C2:44
Validity Fri, 16 May 2025 17:31:53 GMT - Thu, 14 Aug 2025 18:30:17 GMT
GET /thumbs/995/3824942638535569995_0.jpg HTTP/1.1
Host: realincestvideos.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 9066
server: cloudflare
last-modified: Fri, 06 Mar 2020 18:39:14 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5e6298d2-236a"
expires: Mon, 16 Jun 2025 17:00:37 GMT
cache-control: max-age=259200
accept-ranges: bytes
age: 125645
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=LOJmpuQL7visbzgyI78uE%2FSMfIjVbbbg4fKomaapy4MlR3PGjB%2FeiAfBlI8zDQh9gLPYetQTR5X46ZBPBOIE5zPxh%2Fg3axTtyekRXeqIVUzlEA%3D%3D"}]}
cf-ray: 94ff20b66e585697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hlebo.com/favicon.ico
200 OK 534 B IP / ASN
193.27.90.37
#200019 Alexhost Srl
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
First Seen 2025-01-03
Last Seen 2025-07-27
Times Seen 8
Size 534 B (534 bytes)
MD5 d2a6db628d6ae03cfb9fbd9609c239f8
SHA1 002c02fdc64f2379bb31fee73a5a1ac0c7cf4830
SHA256 32bfade3f3b0980f89cb49002ee6f3645651a95f878968ba2a2960acc1431543
Certificate Info
Issuer Let's Encrypt
Subject hlebo.com
Fingerprint 1B:79:42:8B:BC:C7:39:C0:C7:7A:E5:06:9B:A8:21:C3:39:3B:FB:C8
Validity Thu, 24 Apr 2025 03:41:41 GMT - Wed, 23 Jul 2025 03:41:40 GMT
GET /favicon.ico HTTP/1.1
Host: hlebo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: image/x-icon
content-length: 534
expires: Sun, 22 Jun 2025 03:54:51 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
GET media.hentaifreak.org/2016/03/shoujo-kyouiku-episode-2.jpg
200 OK 38 kB URL
media.hentaifreak.org/2016/03/shoujo-kyouiku-episode-2.jpg
IP / ASN
144.178.205.173
#39686 Eurofiber Nederland BV
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 640x360, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 38 kB (38173 bytes)
MD5 f31ba61451b05ac08cf68ba33e7ca968
SHA1 5fe053dbfe7f9e17f1d41f615c7180dd05ec4f24
SHA256 b803a69c9b177e347c5d37c9dff90caa4d9e83e1b342642ac2b64008dd92ad5a
Certificate Info
Issuer Let's Encrypt
Subject hentaifreak.org
Fingerprint C0:50:F4:07:4F:B7:A1:3E:26:32:FA:97:63:74:CF:47:E5:FD:D2:43
Validity Fri, 13 Jun 2025 15:35:10 GMT - Thu, 11 Sep 2025 15:35:09 GMT
GET /2016/03/shoujo-kyouiku-episode-2.jpg HTTP/1.1
Host: media.hentaifreak.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
x-amz-request-id: 3980284661
accept-ranges: bytes
content-length: 38173
content-type: image/jpeg
last-modified: Sat, 25 Mar 2023 07:25:27 GMT
etag: "f31ba61451b05ac08cf68ba33e7ca968"
x-amz-version-id: MzY4MTAxMDAwLnYxLjIuMTY3OTcyOTEyNy4u
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 604800
cache-control: public, max-age=604800
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/cbeab2bfbdee667d34152e3dca5bd771.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/cbeab2bfbdee667d34152e3dca5bd771.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/cbeab2bfbdee667d34152e3dca5bd771.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.nsfwnudes.com/favicon.ico
200 OK 1.2 kB URL
www.nsfwnudes.com/favicon.ico
IP / ASN
213.174.130.69
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-12-08
Last Seen 2025-07-30
Times Seen 26
Size 1.2 kB (1150 bytes)
MD5 8af584225eec09450b4db2d059b41a0a
SHA1 fc79905533fff60338577722a0ad51b3ccc5d1ab
SHA256 9f935f34c6af17f0afcdfac9fdab65c4b08a87f2da6d41547f09b5310f204d36
Certificate Info
Issuer Let's Encrypt
Subject nsfwnudes.com
Fingerprint E0:4B:39:C4:85:8F:80:B9:3E:C5:27:77:7C:8A:1D:80:D3:10:EB:9D
Validity Sun, 25 May 2025 03:50:27 GMT - Sat, 23 Aug 2025 03:50:26 GMT
GET /favicon.ico HTTP/1.1
Host: www.nsfwnudes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.16.1
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Sat, 04 Apr 2020 07:28:18 GMT
etag: "5e883712-47e"
expires: Tue, 15 Jul 2025 03:54:50 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.com/
403 Forbidden 0 B IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET / HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 15 Jun 2025 03:54:46 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SPtPhtkaorLPt3DVtxS63g801eYmXT0myPNHqYpq1NHA21%2F9cxi5%2FZNssCzZpzFeFW2ooWwpoxj9KfyE1H1bRupUmPVdJczYmlbY%2Bq%2Bhxwi9B7FjrMLzShD1UoVJhZDekWZm"}],"group":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94ff20cabd205690-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5590&min_rtt=778&rtt_var=4123&sent=152&recv=211&lost=0&retrans=1&sent_bytes=11419&recv_bytes=11743&delivery_rate=395528&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=dfa38b1725547aeb&ts=2828&inflight_dur=76&x=80"
GET pic.punbla.cn/new/xiao/20210824/2021082400062013018.jpeg
0 B URL
pic.punbla.cn/new/xiao/20210824/2021082400062013018.jpeg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /new/xiao/20210824/2021082400062013018.jpeg HTTP/1.1
Host: pic.punbla.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET media.hentaifreak.org/saimin-seishidou-episode-6.jpg
200 OK 60 kB URL
media.hentaifreak.org/saimin-seishidou-episode-6.jpg
IP / ASN
144.178.205.173
#39686 Eurofiber Nederland BV
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3], baseline, precision 8, 640x360, components 3
First Seen 2025-03-10
Last Seen 2025-07-15
Times Seen 6
Size 60 kB (59487 bytes)
MD5 d860dd2ac6601d68045b7d5f902c04ae
SHA1 294ea69cc84291ab44cefb21bf74e85dc29eeca4
SHA256 11976e10a1ef31e3d354b11413577d220d062abae5d5bab3a976851ce0b168b3
Certificate Info
Issuer Let's Encrypt
Subject hentaifreak.org
Fingerprint C0:50:F4:07:4F:B7:A1:3E:26:32:FA:97:63:74:CF:47:E5:FD:D2:43
Validity Fri, 13 Jun 2025 15:35:10 GMT - Thu, 11 Sep 2025 15:35:09 GMT
GET /saimin-seishidou-episode-6.jpg HTTP/1.1
Host: media.hentaifreak.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
x-amz-request-id: 2711769533
accept-ranges: bytes
content-length: 59487
content-type: image/jpeg
last-modified: Fri, 24 Mar 2023 17:12:28 GMT
etag: "d860dd2ac6601d68045b7d5f902c04ae"
x-amz-version-id: NzgyNDUzMDAwLnYxLjIuMTY3OTY3Nzk0OC4u
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 604800
cache-control: public, max-age=604800
X-Firefox-Spdy: h2
GET cloudflare-br-pic.kwai.net/upic/2024/03/01/23/BMjAyNDAzMDEyMzA3MTFfMTUwMDAxNTQ5NzgxODU4XzE1MDEwNTQzNDE1MTU4NV8yXzM=_oscn2_B58d00399902b2d47b2bc70c9eed376df.webp
200 OK 21 kB URL
cloudflare-br-pic.kwai.net/upic/2024/03/01/23/BMjAyNDAzMDEyMzA3MTFfMTUwMDAxNTQ5NzgxODU4XzE1MDEwNTQzNDE1MTU4NV8yXzM=_oscn2_B58d00399902b2d47b2bc70c9eed376df.webp
IP / ASN
104.18.51.191
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x854, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-02
Last Seen 2025-07-29
Times Seen 16
Size 21 kB (20752 bytes)
MD5 0891b4f892c6f1592e16f5dceb144aca
SHA1 2a4c972051e6231a6622967ef13df63a06e33a30
SHA256 7c4f5cb89177d7b558c3ab03417009d56d0f295df7c376134aef24a03e3dbee2
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /upic/2024/03/01/23/BMjAyNDAzMDEyMzA3MTFfMTUwMDAxNTQ5NzgxODU4XzE1MDEwNTQzNDE1MTU4NV8yXzM=_oscn2_B58d00399902b2d47b2bc70c9eed376df.webp HTTP/1.1
Host: cloudflare-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/webp
content-length: 20752
cf-ray: 94ff20be4b4c12a5-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 617185
cache-control: max-age=2592000
etag: "0891B4F892C6F1592E16F5DCEB144ACA"
expires: Mon, 15 Jun 2026 03:54:44 GMT
last-modified: Fri, 01 Mar 2024 15:08:02 GMT
vary: Accept-Encoding
via: 1.1 fedd444eadd43dacc7e53f24b46bddf8.cloudfront.net (CloudFront)
x-amz-cf-id: EctRiPlrUXrf35GxFl_Fb9ikHPZoLujqaMAEy6dC80tN6Cxny8AyHg==
x-amz-cf-pop: ARN56-P2
x-bs-hash-crc64ecma: 13405461669978211213
x-bs-object-status: 0
x-cache: Miss from cloudfront
x-nws-log-uuid: 17267640165839597956
access-control-allow-origin: *
x-ks-cache: HIT
x-ks-client-ip: 91.90.42.154
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET page.phic4.top/myda.php
200 OK 0 B URL
page.phic4.top/myda.php
IP / ASN
104.21.73.126
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject phic4.top
Fingerprint 7D:FB:B4:77:85:58:5A:A6:F5:90:D1:1A:18:37:82:49:6E:ED:B7:C6
Validity Thu, 01 May 2025 23:39:34 GMT - Thu, 31 Jul 2025 00:37:14 GMT
GET /myda.php HTTP/1.1
Host: page.phic4.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:48 GMT
content-type: text/html; charset=utf-8
server: cloudflare
myda: myda2001:4610:a:fb::79f8
vary: User-Agent, accept-encoding
age: 2460
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Sun, 15 Jun 2025 03:13:47 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4%2BvcKFZcCVxwe93gBkcRdSQIgRnx6OUh%2FKL%2Fw4f64ykeyvNq2yQKT577%2FXlhrUCwn%2ByxJhRVQpOxk%2Bm4tTOK7NyFepn8NJafZ2BqNA%3D%3D"}]}
content-encoding: br
cf-ray: 94ff20d32e67b500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.com/favicon.ico
403 Forbidden 0 B URL
www.9188porn.com/favicon.ico
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /favicon.ico HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=suBg2voPYuc%2Fc6RHfCh38vakOHGTmRMOANCduZxvmHsZiYVdDSbrFjqoiyMXhFQN3qSMh3OKheItNXv4HLYDVEHHxnmsusMObWpY%2BFBiWx1YTmYJuWgGueCgtRQpKMQzz1j5"}],"group":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94ff20decd765690-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5450&min_rtt=778&rtt_var=3377&sent=162&recv=216&lost=0&retrans=1&sent_bytes=18958&recv_bytes=12736&delivery_rate=957619&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=dfa38b1725547aeb&ts=6035&inflight_dur=87&x=80"
GET en.chezcathy.com/favicon.ico
200 OK 1.4 kB URL
en.chezcathy.com/favicon.ico
IP / ASN
138.199.36.8
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
First Seen 2025-05-02
Last Seen 2025-08-01
Times Seen 163
Size 1.4 kB (1406 bytes)
MD5 8851a1b28ebe567b927c9ae6600a8fc6
SHA1 113da6a02dff45d4b9c0d3c9ae531445a8c7b687
SHA256 b545a5091485f5dd485f0e9d2abcd55a06b22f9359c6da8955b8da7b1d3c9212
Certificate Info
Issuer Let's Encrypt
Subject en.chezcathy.com
Fingerprint 90:E4:BF:DD:EC:C4:FF:16:35:5C:3D:DE:A0:3E:4B:4F:ED:0E:BB:D7
Validity Sat, 31 May 2025 05:21:06 GMT - Fri, 29 Aug 2025 05:21:05 GMT
GET /favicon.ico HTTP/1.1
Host: en.chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:51 GMT
content-length: 1406
server: BunnyCDN-DE1-1048
cdn-pullzone: 3638742
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"1406-1744916365610"
last-modified: Thu, 17 Apr 2025 18:59:25 GMT
cdn-cachedat: 06/13/2025 06:52:53
x-powered-by: Express
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 13febfe442287f305a95370c44c912e6
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pix.porno-zona.com/fotos/50/62/d8/5062d82c84ff3b4734bebd9fba4b4e78.jpg
200 OK 13 kB URL
pix.porno-zona.com/fotos/50/62/d8/5062d82c84ff3b4734bebd9fba4b4e78.jpg
IP / ASN
104.21.93.247
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2025-06-15
Last Seen 2025-07-10
Times Seen 2
Size 13 kB (13279 bytes)
MD5 394bca6e2be2fb225aabd4f25bc38322
SHA1 32270dfe4535c010d3505240966396f8700dc8b3
SHA256 3cee55d081b342f464dec8395047957711945bad340e312d5d33fff349cf2b11
Certificate Info
Issuer Google Trust Services
Subject porno-zona.com
Fingerprint EE:DF:CF:D4:85:BC:76:AA:34:16:32:98:1B:11:06:F2:D8:1D:2D:28
Validity Sat, 14 Jun 2025 12:40:31 GMT - Fri, 12 Sep 2025 13:38:53 GMT
GET /fotos/50/62/d8/5062d82c84ff3b4734bebd9fba4b4e78.jpg HTTP/1.1
Host: pix.porno-zona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 13279
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
etag: 394bca6e2be2fb225aabd4f25bc38322
last-modified: Sun, 17 Dec 2023 03:04:15 GMT
x-timestamp: 1702782254.68834
x-trans-id: tx071da8091c6349b5a2f67-006796d888
x-openstack-request-id: tx071da8091c6349b5a2f67-006796d888
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=31536000
expires: Mon, 16 Jun 2025 22:04:05 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 21035
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0FXnYfLvL%2FOgHe2Duh4L9kIQl332blwCie19Xz4k%2BFJ%2FOSwHeiLK5sRLaliBV1rjZYWg5yU3sJuwP%2FX7fYu1pDvFu3CcZUF0DhXsngyINcY%3D"}]}
cf-ray: 94ff20a6cc3056b1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240119-1/a09fa47447f00e73d778986ab33e1c7d.jpg
200 OK 110 kB URL
jpgjingpinx.com/upload/vod/20240119-1/a09fa47447f00e73d778986ab33e1c7d.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1024x572, components 3
First Seen 2024-08-19
Last Seen 2025-06-16
Times Seen 8
Size 110 kB (109767 bytes)
MD5 2d4f0941e7064b827f6d1689f5c79507
SHA1 0ae034ec76b6d219aa80cb7d9916bade2250da01
SHA256 46c0abb25551ec410cd6442b0d3ff990a66f6995dafa3d2b7e539aeea5052c32
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240119-1/a09fa47447f00e73d778986ab33e1c7d.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 109767
Content-Type: image/jpeg
Date: Tue, 10 Jun 2025 09:10:16 GMT
Etag: "65aa13b6-1acc7"
Expires: Thu, 10 Jul 2025 09:10:16 GMT
Last-Modified: Tue, 10 Jun 2025 09:10:16 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET avatars.mds.yandex.net/get-vthumb/1023836/962c9a7381e0b7fb4b13d88b71b8e777/564x318_1
200 OK 4.7 kB URL
avatars.mds.yandex.net/get-vthumb/1023836/962c9a7381e0b7fb4b13d88b71b8e777/564x318_1
IP / ASN
87.250.247.182
#13238 YANDEX LLC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 564x318, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 4.7 kB (4746 bytes)
MD5 1802d09a210dcf028878dd2351b80793
SHA1 e96a4561bf96f114345740c54eb78fbad82dcce3
SHA256 a7d8881d9d2fdc5ff58fb8e7b54dbec17e99f818f4053ab67d2e8eb07d88449e
GET /get-vthumb/1023836/962c9a7381e0b7fb4b13d88b71b8e777/564x318_1 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/webp
Content-Length: 4746
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Tue, 18 Mar 2025 04:07:50 GMT
Cache-Control: max-age=604800,immutable
X-Request-Id: 7ba6a65c184ade36
NEL: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
Timing-Allow-Origin: *
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/4b/84/24/4b842443dbc831e0bffdfd2d622cc684/4b842443dbc831e0bffdfd2d622cc684.2.jpg
200 OK 13 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/4b/84/24/4b842443dbc831e0bffdfd2d622cc684/4b842443dbc831e0bffdfd2d622cc684.2.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 2
Size 13 kB (12602 bytes)
MD5 e6ff5b25810190486eff88a43f89f491
SHA1 2e44ea31f990880d0856c98f2208dc88216fb12c
SHA256 0b32ca1431b19af938007fdbbf4cfc9d4b7fce4c7aa5b5598c0cd10dd48ab296
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/4b/84/24/4b842443dbc831e0bffdfd2d622cc684/4b842443dbc831e0bffdfd2d622cc684.2.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 12602
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Sat, 08 Oct 2016 03:51:20 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJEQH3+nQCAAwBnJIhIwH3X7AIAAwBbT1apAH3CaR0AA
x-77-nzt-ray: 0ef5851b987059e603444e68d197932a
x-accel-expires: @1759556539
x-accel-date: 1749798665
x-accel-date-max: 1739430329
x-77-cache: HIT
x-77-age: 161018
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET amateuranimalporn.art/tmbs/20/437_ideal-a-cunnilingus.jpg
200 OK 14 kB URL
amateuranimalporn.art/tmbs/20/437_ideal-a-cunnilingus.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 54x72, segment length 16, baseline, precision 8, 320x230, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 14 kB (14364 bytes)
MD5 e9db74a0d90e548047dd9f70bb5021f8
SHA1 7d22972acc11099e6dd47c885388390d5a544a60
SHA256 e39d10c263f916e8adfbdeddc7632b992d03ea235d818aeb2db8d0d61b3f7fdd
Certificate Info
Issuer Google Trust Services
Subject amateuranimalporn.art
Fingerprint DE:B5:1E:47:9B:22:AB:D4:BE:14:F2:55:06:FB:88:95:08:FB:ED:9F
Validity Sun, 08 Jun 2025 16:46:41 GMT - Sat, 06 Sep 2025 17:44:55 GMT
GET /tmbs/20/437_ideal-a-cunnilingus.jpg HTTP/1.1
Host: amateuranimalporn.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 14364
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 11 May 2021 21:35:57 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=pE0i0Dm1bJeQM6afCS%2FMnShCZCq7zL7NaxMWYD2Z%2FJyAqm9zIwLtfBAiv9VNAjDCl8rFu0WjE%2F0OHoghFaMRst4df9opWn5YJRCZ64Y5XFfmXSg%3D"}]}
etag: "609af8bd-381c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-request-id: 51533bba9da033a100e106e9aecf2ed4
accept-ranges: bytes
age: 517000
cf-cache-status: HIT
vary: accept-encoding
cf-ray: 94ff20c2addb56a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/nosleep/0.11.0/NoSleep.min.js
200 OK 11 kB URL
cdnjs.cloudflare.com/ajax/libs/nosleep/0.11.0/NoSleep.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JavaScript source, ASCII text, with very long lines (10613)
First Seen 2023-03-07
Last Seen 2025-08-01
Times Seen 1661
Size 11 kB (10687 bytes)
MD5 ea77f824de2ef57acb12e7cb6596365e
SHA1 10bad0dbdf30a0471c2c786b349daeb1dd19180e
SHA256 2b19d92ce83bf3b498f73103ba1240f09c84798b1f92aedf1491ccf0aa6f5e4c
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/nosleep/0.11.0/NoSleep.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 3953
cf-ray: 94ff20c4fe4f0b02-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ed16b69-29bf"
last-modified: Fri, 29 May 2020 20:07:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 196344
expires: Fri, 05 Jun 2026 03:54:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7unSxvBaPocR7fjnkdtehE1HOyTecIf%2FpgL5XwkDL2GMXWpo2IM9vkC7yXds4ZAJa24T1L2SgaWa6zTsF%2BqBd3HztcE7MrJjkCD940D%2B3YpGv2H%2BlBVE1YmMWnOXhsdGpXOwgxDM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET naturismv.com/images/vyhnani-z-raje-2001.jpg
200 OK 33 kB URL
naturismv.com/images/vyhnani-z-raje-2001.jpg
IP / ASN
172.67.192.208
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-04-30
Last Seen 2025-07-29
Times Seen 51
Size 33 kB (32580 bytes)
MD5 892bd8870389b628f1a9e092ea57767c
SHA1 f90604b46f1829e9c77e37f9327e50604b022af3
SHA256 4afd614604d0c8d365d37a84a625eb3ec370ec17ad646d95598b4831e855ce17
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/vyhnani-z-raje-2001.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 32580
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:46 GMT
etag: "646765de-7f44"
expires: Sun, 14 Jun 2026 03:42:37 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 87126
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TtDaA1TPypKiKLzilMQhD8eTNh45MkO0cjqSIEPLNKzt%2Bz5hvNRmfp7Lc9SAEhWp9jRTN%2Bu%2BtCcG%2F%2B7gorV%2BDkjEgIbTFWYwElcH"}]}
cf-ray: 94ff20b68b200afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.blacktowhite.net/data/xfmg/thumbnail/66/66958-3c870f3accc630fc3de953258517ef21.jpg?1512978504
200 OK 96 kB URL
www.blacktowhite.net/data/xfmg/thumbnail/66/66958-3c870f3accc630fc3de953258517ef21.jpg?1512978504
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 96 kB (95492 bytes)
MD5 4f8859bda0c0540541710b46cfe2672f
SHA1 2e86f5ab46a350e3067ba888976560b1609d1dc7
SHA256 f4057b7501090fb9471ecc25e7cc132d3ce70cfa0055e725be6df856be8ee8fa
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /data/xfmg/thumbnail/66/66958-3c870f3accc630fc3de953258517ef21.jpg?1512978504 HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 95492
last-modified: Mon, 11 Dec 2017 07:48:24 GMT
etag: "5a2e3848-17504"
expires: Sun, 29 Jun 2025 03:54:45 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241117-7/bdef122d910ea70391cc6e4944f5c028.jpg
0 B URL
www.9188porn.xyz/upload/vod/20241117-7/bdef122d910ea70391cc6e4944f5c028.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241117-7/bdef122d910ea70391cc6e4944f5c028.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET photo.znews.vn/Uploaded/pirr/2018_04_19/30190782_1275091449289754_7602321632677330944_n.gif.jpg
200 OK 7.3 kB URL
photo.znews.vn/Uploaded/pirr/2018_04_19/30190782_1275091449289754_7602321632677330944_n.gif.jpg
IP / ASN
42.1.71.8
#131429 MOBIFONE Corporation
Requested by http://animal.zoo2.top/
Resource Info
File type GIF image data, version 89a, 93 x 78
First Seen 2024-04-24
Last Seen 2025-07-30
Times Seen 12
Size 7.3 kB (7271 bytes)
MD5 d3c42a84400fb8888a4869abc80e3ddd
SHA1 e09631c8e64266848d65fafd58899de8191b9f36
SHA256 3ee3a25d4fd2640398f4a43f89402389da2e0061aa07e59d51359c7137af2f09
Certificate Info
Issuer DigiCert Inc
Subject *.znews.vn
Fingerprint B5:CD:6B:22:CE:94:EE:7D:E4:C7:DD:44:DD:40:E9:FE:C4:F3:4C:7B
Validity Wed, 27 Nov 2024 00:00:00 GMT - Wed, 03 Dec 2025 23:59:59 GMT
GET /Uploaded/pirr/2018_04_19/30190782_1275091449289754_7602321632677330944_n.gif.jpg HTTP/1.1
Host: photo.znews.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jun 2025 03:54:46 GMT
Content-Type: image/jpeg
Content-Length: 7271
Expires: Thu, 26 Jun 2025 07:36:45 GMT
Process-Time: 394.381
Etag: "e09631c8e64266848d65fafd58899de8191b9f36"
Vary: Accept
Cache-Control: max-age=259200, no-cache
Age: 245881
X-Cache: HIT from da005.vn04.swiftserve.com:443
Server: ZCDN
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/26/8a/13/268a13d613fefb7940e6782df3d9bf40/268a13d613fefb7940e6782df3d9bf40.5.jpg
200 OK 5.6 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/26/8a/13/268a13d613fefb7940e6782df3d9bf40/268a13d613fefb7940e6782df3d9bf40.5.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-07-21
Times Seen 3
Size 5.6 kB (5568 bytes)
MD5 a2ad650a80f07e515db88afb8968ddf5
SHA1 8a1cd480e2087b2d06d97ee87ddbd5fcd7d4236a
SHA256 597a13a51071955487553e3cd6a5bc01e5c575f9574d9cc63d56ef29bc4c6e49
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/26/8a/13/268a13d613fefb7940e6782df3d9bf40/268a13d613fefb7940e6782df3d9bf40.5.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 5568
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Sun, 05 Jun 2022 10:27:20 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJEQH3gDYjAAwBJRPCNwH3CNYBAAwBj/Q63QH36l0TAA
x-77-nzt-ray: 0ef5851b987059e603444e68ec19972a
x-accel-expires: @1756630417
x-accel-date: 1747651971
x-accel-date-max: 1746262417
x-77-cache: HIT
x-77-age: 2307712
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/e/c/7/ec7444ee3577eaf3e4cd2319df23422d1491191160-320-240-170-h264.mp4-13.jpg?revnum=1
200 OK 10 kB URL
cdne-pics.youjizz.com/e/c/7/ec7444ee3577eaf3e4cd2319df23422d1491191160-320-240-170-h264.mp4-13.jpg?revnum=1
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc52.123.0", baseline, precision 8, 308x232, components 3
First Seen 2024-04-25
Last Seen 2025-07-29
Times Seen 7
Size 10 kB (10393 bytes)
MD5 c0e2564190e2a937014f835234d89cd3
SHA1 1c34388cfd377fb90ef3c56252e39051d6bf1a53
SHA256 68f01e7c891d990ff14e4881e60d665c0b576e038b1702dbf34cba2d9680f987
GET /e/c/7/ec7444ee3577eaf3e4cd2319df23422d1491191160-320-240-170-h264.mp4-13.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
Content-Type: image/jpeg
Content-Length: 10393
last-modified: Tue, 31 Mar 2020 09:02:05 GMT
etag: "2899-5a222d25fd6fe"
expires: Mon, 29 Jan 2024 15:35:25 GMT
cache-control: max-age=10508261
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-6140-1-3579086-h-0-0---;7619-17-4185749----0-0-1
GET www.mydesii.com/wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg
200 OK 9.7 kB URL
www.mydesii.com/wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg
IP / ASN
172.67.184.99
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x242, components 3
First Seen 2025-02-21
Last Seen 2025-07-30
Times Seen 19
Size 9.7 kB (9703 bytes)
MD5 312a0c9f6533d2e161abc57700d0f4fc
SHA1 411a15f59586a5c714b8cb92401c6ebbce7ba040
SHA256 a8b4b1c9ee493aa87f9dbd52c27471ad8346831c5025987b72ed7f5430381612
Certificate Info
Issuer Google Trust Services
Subject mydesii.com
Fingerprint 41:96:60:55:5B:03:71:86:82:92:7E:35:78:B0:CF:1D:5E:62:1A:4A
Validity Fri, 16 May 2025 14:27:45 GMT - Thu, 14 Aug 2025 15:25:26 GMT
GET /wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg HTTP/1.1
Host: www.mydesii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 15 Jun 2025 03:54:46 GMT
content-type: image/jpeg
content-length: 9703
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n24BWJBqAveYhaH4BjQT%2Fggd5vzTw%2BBkGuAvdqY5n9yDra0YoGKNFTpKsD2tV2zab4AfidY4YAOhn0nQLvidPc11BEIsyKsvTv8XuOVkRJgF1DXV8JySO%2Bd%2FHUkFW%2FQhZbE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Tue, 29 Apr 2025 21:58:35 GMT
etag: "25e7-667c4355-e20779;;;"
last-modified: Wed, 26 Jun 2024 16:35:33 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=86400
age: 336031
cf-cache-status: HIT
cf-ray: 94ff20c58935b500-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=15040&min_rtt=2845&rtt_var=7073&sent=87&recv=110&lost=0&retrans=0&sent_bytes=19245&recv_bytes=6805&delivery_rate=162968&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=668d42b9c0328193&ts=3510&inflight_dur=95&x=80"
GET ds.nashobmenfiles.com/fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg
200 OK 22 kB URL
ds.nashobmenfiles.com/fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg
IP / ASN
85.17.28.58
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 202x360, components 3
First Seen 2024-12-08
Last Seen 2025-07-30
Times Seen 13
Size 22 kB (21799 bytes)
MD5 f1172d1ed74958444b45c0feec9bdf98
SHA1 1bc89d2b4d740155c8a0104152bced3a76146e99
SHA256 adba51844dfdc8fb1fadb30fcb906b1b435b9494f560f43daeb9e9da0956fc72
GET /fo/files_attachments/f11/72d/f1172d1ed74958444b45c0feec9bdf98.jpg HTTP/1.1
Host: ds.nashobmenfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:45 GMT
Content-Type: image/jpeg
Content-Length: 21799
Last-Modified: Fri, 14 Jun 2024 00:52:39 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "666b9457-5527"
Accept-Ranges: bytes
GET i0.wp.com/666529.xyz/images/2024/11/26/be7a4c5f15d388322134231ed93da1bf.jpg
200 OK 4.4 kB URL
i0.wp.com/666529.xyz/images/2024/11/26/be7a4c5f15d388322134231ed93da1bf.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 259x264, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-22
Last Seen 2025-07-30
Times Seen 30
Size 4.4 kB (4370 bytes)
MD5 5443634ef065ef82ff0f52b7cd3cf5c8
SHA1 917d897a38573fe622f91b544bc38cc5471ccce1
SHA256 46ded1e7b6cda325d33bf384d20719a275eef8c2eb044e91b9c70b40b7ba4f0b
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /666529.xyz/images/2024/11/26/be7a4c5f15d388322134231ed93da1bf.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 4370
last-modified: Fri, 14 Feb 2025 00:22:57 GMT
expires: Sun, 14 Feb 2027 12:22:57 GMT
cache-control: public, max-age=63115200
link: <http://666529.xyz/images/2024/11/26/be7a4c5f15d388322134231ed93da1bf.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "abd97f1cf20d6a7a"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/37c35454cf1d2ca3acba0b93d0344ec086b11baa.jpg
200 OK 5.4 kB URL
cdntube.b-cdn.net/thumbnails/37c35454cf1d2ca3acba0b93d0344ec086b11baa.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-05-22
Last Seen 2025-07-31
Times Seen 33
Size 5.4 kB (5416 bytes)
MD5 eaba65ea52d02d7f6515ace4786021ca
SHA1 fdff493b62cdcaee06538c2e161b9d5535423a22
SHA256 f5c346a5f32dbb8812afaf8fc018c2cdb2b3f7e126934fcf923feae657fa20be
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/37c35454cf1d2ca3acba0b93d0344ec086b11baa.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 5416
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sat, 24 May 2025 15:43:42 GMT
cdn-storageserver: DE-1022
cdn-requestpullsuccess: True
cdn-fileserver: 1003
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/04/2025 14:41:45
cdn-edgestorageid: 830
cdn-requestid: 352062de259d51bab5a6d59c932e333e
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET img.jingpinx.top/upload/vod/20231226-1/ed33d048c8e81a254c62ee8cd16ec19d.jpg
0 B URL
img.jingpinx.top/upload/vod/20231226-1/ed33d048c8e81a254c62ee8cd16ec19d.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20231226-1/ed33d048c8e81a254c62ee8cd16ec19d.jpg HTTP/1.1
Host: img.jingpinx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.blacktowhite.net/data/xfmg/thumbnail/780/780465-9c3bba195baf53885e1a2d60862565a3.jpg?1726234602
200 OK 130 kB URL
www.blacktowhite.net/data/xfmg/thumbnail/780/780465-9c3bba195baf53885e1a2d60862565a3.jpg?1726234602
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
First Seen 2025-02-04
Last Seen 2025-06-30
Times Seen 5
Size 130 kB (130249 bytes)
MD5 56142ffa6fce1f5c25c6501805f21180
SHA1 dd5fe66084577b83580f3c152f7c3118552a92dc
SHA256 edaef6ab94c545cf6c9a4a92639c9ceda1e357d3e60813c0c47d61cf8b33ef0f
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /data/xfmg/thumbnail/780/780465-9c3bba195baf53885e1a2d60862565a3.jpg?1726234602 HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 130249
last-modified: Fri, 13 Sep 2024 13:40:38 GMT
etag: "66e440d6-1fcc9"
expires: Sun, 29 Jun 2025 03:54:44 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ansuko.net/wp-content/uploads/2023/07/d40b7791f7b035957b1b6cb2df213e87-36.jpg
200 OK 60 kB URL
ansuko.net/wp-content/uploads/2023/07/d40b7791f7b035957b1b6cb2df213e87-36.jpg
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x450, components 3
First Seen 2025-06-15
Last Seen 2025-07-14
Times Seen 6
Size 60 kB (59854 bytes)
MD5 2cc3bb19131cd2d3b9f4d34a082c42fa
SHA1 f5ca9456c727c77591ded8777a4ada6f89ee546f
SHA256 fbcbff9f0ba3235a8e11d0fd6022f5063986d038ba16c67db7a241939eac3b2a
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2023/07/d40b7791f7b035957b1b6cb2df213e87-36.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 59854
server: cloudflare
last-modified: Fri, 07 Jul 2023 00:22:44 GMT
etag: "64a75ad4-e9ce"
accept-ranges: bytes
age: 278124
cache-control: max-age=31536000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4gMbfTe6ifM%2BrduF6B3rSmyqvQqBTLi23Iz9QtHWQEtnjmWUhyexrLEuYA9bXykdJzU%2B0tLyLfQ87VywqB9KZvqlqhOUaNM6"}]}
cf-ray: 94ff20c2490e7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.jingpinx.top/upload/vod/20231226-1/ed33d048c8e81a254c62ee8cd16ec19d.jpg
0 B URL
img.jingpinx.top/upload/vod/20231226-1/ed33d048c8e81a254c62ee8cd16ec19d.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20231226-1/ed33d048c8e81a254c62ee8cd16ec19d.jpg HTTP/1.1
Host: img.jingpinx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET multporn.net/favicon.ico
403 Forbidden 0 B URL
multporn.net/favicon.ico
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /favicon.ico HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20dfaec456ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET obmenvsem.me/favicon.ico
200 OK 15 kB URL
obmenvsem.me/favicon.ico
IP / ASN
82.192.80.133
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2024-06-17
Last Seen 2025-07-31
Times Seen 108
Size 15 kB (15086 bytes)
MD5 5fcfc1a6b1d7b1c61867bbf650b725af
SHA1 ef131ddbc75f149934d2a54bf8ef27eb401d26d7
SHA256 aa0a1280a119f0e79c45c6a910a29bdc370bf6f4c41e40b9c156f498c23fdb59
Certificate Info
Issuer Let's Encrypt
Subject obmenvsem.me
Fingerprint 45:2B:F7:CF:C2:19:37:AE:CF:61:9F:26:86:77:99:8A:0B:47:E3:50
Validity Thu, 22 May 2025 20:51:42 GMT - Wed, 20 Aug 2025 20:51:41 GMT
GET /favicon.ico HTTP/1.1
Host: obmenvsem.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:52 GMT
content-type: image/x-icon
content-length: 15086
last-modified: Wed, 08 Nov 2023 12:00:19 GMT
etag: "654b7853-3aee"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pic.fsrxpm.cn/upload/upload/20231216/2023121601555437156.jpeg
200 OK 321 kB URL
pic.fsrxpm.cn/upload/upload/20231216/2023121601555437156.jpeg
IP / ASN
43.152.140.107
#139341 ACE
Requested by http://animal.zoo2.top/
Resource Info
File type data
First Seen 2025-06-15
Last Seen 2025-07-15
Times Seen 19
Size 321 kB (321104 bytes)
MD5 ddf8fc5d0a62af1660d3a92fca3df7d4
SHA1 2a3ca8d13aa86475c5866ffa0a41be10c5be929a
SHA256 31b2ba3c1a0f75ac419166256058f247a89a15a1a744fdbf3456baa3cf0e7c09
Certificate Info
Issuer ZeroSSL
Subject *.fsrxpm.cn
Fingerprint 09:BC:4C:24:47:D3:41:6B:B3:AE:0C:F9:4C:F0:D7:4C:83:9F:EF:46
Validity Sat, 24 May 2025 00:00:00 GMT - Fri, 22 Aug 2025 23:59:59 GMT
GET /upload/upload/20231216/2023121601555437156.jpeg HTTP/1.1
Host: pic.fsrxpm.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Thu, 28 Dec 2023 14:56:55 GMT
Etag: "ddf8fc5d0a62af1660d3a92fca3df7d4"
Content-Type: binary/octet-stream
Date: Sat, 03 May 2025 08:29:32 GMT
x-amz-server-side-encryption: AES256
Server: nginx
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: ARN53-P2
Age: 2889
Vary: Origin
Content-Length: 321104
Accept-Ranges: bytes
X-NWS-LOG-UUID: 4567750175044553072
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Access-Control-Allow-Origin: *
GET cdntube.b-cdn.net/thumbnails/4e715bd0593d1ecf370261e00e2cf1f97e5cf3fb.jpg
200 OK 7.8 kB URL
cdntube.b-cdn.net/thumbnails/4e715bd0593d1ecf370261e00e2cf1f97e5cf3fb.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x708, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-07-10
Times Seen 6
Size 7.8 kB (7780 bytes)
MD5 f518aa5cb6509dc210de4602f49b9192
SHA1 cc842009dcc9a6fecaf2261efa4de653bcf18486
SHA256 626fa3ba2227b1e7318aad183c0b650bcc549a5371dd5603dfc9aa9a4033ce34
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/4e715bd0593d1ecf370261e00e2cf1f97e5cf3fb.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 7780
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 22 Sep 2023 12:56:55 GMT
cdn-storageserver: DE-1021
cdn-requestpullsuccess: True
cdn-fileserver: 575
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/04/2025 15:54:38
cdn-edgestorageid: 830
cdn-requestid: 3075e7d761979416317641c4ae122150
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ansuko.net/wp-content/uploads/2024/07/d3oqz948_header.jpg
200 OK 180 kB URL
ansuko.net/wp-content/uploads/2024/07/d3oqz948_header.jpg
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 720x540, components 3
First Seen 2025-06-02
Last Seen 2025-07-10
Times Seen 4
Size 180 kB (179501 bytes)
MD5 ba4ffb8f263f73892e8a26c60cf73fa2
SHA1 b9527cc8563cf2cd69494e91ecd4bafef6ecf697
SHA256 3b601f56c06f4808d2db7754993d368a4b6dccd74c919719ac6e266780a2a33e
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2024/07/d3oqz948_header.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 179501
server: cloudflare
last-modified: Sun, 21 Jul 2024 01:19:52 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "669c6238-2bd2d"
accept-ranges: bytes
age: 947381
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lPqhriTNnAP6Z38gbsGhPOyKOlCbZL%2FvY%2Bw7%2BIcoTVSUnvU69RTpbMcFoML0L8D4gFgs0RMPE2Bc8tiZFhk%2FLJ3gLXXe%2BDK0"}]}
cf-ray: 94ff20bb8ef47129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/7975b9da05100aa6fc5d0e337208de8592dffae7.jpg
200 OK 9.6 kB URL
cdntube.b-cdn.net/thumbnails/7975b9da05100aa6fc5d0e337208de8592dffae7.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x727, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-05
Times Seen 8
Size 9.6 kB (9630 bytes)
MD5 4e363c4fdd53ef9f544a90ec42568590
SHA1 1ded4a4ee6e3e18020c04ba9f05ce99afba427fb
SHA256 f3b93068599b16b12bd1c458bd5e84befcb950c0997a9f56829c8e63a52a2cdc
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/7975b9da05100aa6fc5d0e337208de8592dffae7.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 9630
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Mon, 25 Sep 2023 19:38:07 GMT
cdn-storageserver: DE-633
cdn-requestpullsuccess: True
cdn-fileserver: 574
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/04/2025 16:04:01
cdn-edgestorageid: 830
cdn-requestid: 76c69d47d1438c59db20944b5d2a3b5d
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET 69av.one/favicon.ico
404 Not Found 0 B IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 69av.one
Fingerprint 79:7E:9B:B4:78:D3:E8:31:EB:16:5A:77:AB:75:9D:D8:71:33:11:2A
Validity Mon, 02 Jun 2025 16:54:08 GMT - Sun, 31 Aug 2025 17:52:49 GMT
GET /favicon.ico HTTP/1.1
Host: 69av.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 972
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=o5akPRMdh%2BC86FGc80HdR3n5bsRkWQATfu1IGGoA1iMK9HnLTgzv4WO0QtX7EgeNt%2FqblbCNJDF5e5JShwh3EAZx4TXVHA%3D%3D"}]}
content-encoding: br
cf-ray: 94ff20e22d35712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET didizy.com/
403 Forbidden 0 B IP / ASN
167.88.62.39
#63023 AS-GLOBALTELEHOST
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: didizy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sun, 15 Jun 2025 03:54:51 GMT
Content-Length: 404
Content-Type: text/html; charset=utf-8
GET vidmo.pro/thumbs_320/15/b8/15b8e2540e2942d2a420bbda6d1b9a17/12373956.jpg
200 OK 15 kB URL
vidmo.pro/thumbs_320/15/b8/15b8e2540e2942d2a420bbda6d1b9a17/12373956.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 320x240, components 3
First Seen 2024-12-08
Last Seen 2025-06-15
Times Seen 3
Size 15 kB (14584 bytes)
MD5 0964ea9fbf4d028b930bcdf9ba88e04b
SHA1 da8ca1b3f196f232c5764193ba8b81bfb8ca0dc6
SHA256 0cee9376d873c010f2fd2fc13e52ab24d4c68a639d40f26c743f770d8b98d1db
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/15/b8/15b8e2540e2942d2a420bbda6d1b9a17/12373956.jpg HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 14584
last-modified: Mon, 12 Oct 2020 04:54:40 GMT
expires: Sat, 18 May 2024 21:20:03 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET timg216.top/videos/7ff628a83cd99a0d113948c6515d5a382e49574c/cover/5_505_259?ih=1
200 OK 55 kB URL
timg216.top/videos/7ff628a83cd99a0d113948c6515d5a382e49574c/cover/5_505_259?ih=1
IP / ASN
104.22.20.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-06-15
Last Seen 2025-07-27
Times Seen 12
Size 55 kB (55179 bytes)
MD5 6c7f24602481875a56f6c2b7eab76dd6
SHA1 a185e1da1bd679ac143157ad06bb3686cccefb31
SHA256 0d2c43bd8ff582298fbb380608ee8e8dd91f4885418f33afc7bf496eaf5acca2
Certificate Info
Issuer Google Trust Services
Subject timg216.top
Fingerprint 77:83:68:54:E0:99:C9:F6:C6:B3:2B:5F:C1:56:9E:4F:34:BE:32:D9
Validity Fri, 06 Jun 2025 03:04:17 GMT - Thu, 04 Sep 2025 04:01:55 GMT
GET /videos/7ff628a83cd99a0d113948c6515d5a382e49574c/cover/5_505_259?ih=1 HTTP/1.1
Host: timg216.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 55179
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 09:28:31 GMT
vary: Accept-Encoding
etag: "67c6c7bf-d78b"
expires: Tue, 10 Jun 2025 14:00:23 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 1156412
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=th%2FkylmscQ62hb6M77TuzdrThOx60jXe5qmveUvGdGHBPvp%2BA2Us1ywDB%2Fi60V5OzuWnHCdDu1VC6Y40BbghkFv7Dzrvw2IDfg%3D%3D"}]}
cf-ray: 94ff20a76bff5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i0.wp.com/666529.xyz/images/2024/12/27/13ea13a3dd39d3c417a7513a49a90a10.jpg
200 OK 3.1 kB URL
i0.wp.com/666529.xyz/images/2024/12/27/13ea13a3dd39d3c417a7513a49a90a10.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 207x282, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-25
Last Seen 2025-07-30
Times Seen 24
Size 3.1 kB (3058 bytes)
MD5 c600c227edc08369aca6857f4525a25b
SHA1 0d1b5fe30495aa231ab9cc3ce92db959958fcdad
SHA256 76312166cb75f7df2b86693fff5795142f12f8e7e29e991c3c8375b3ddeba9c6
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /666529.xyz/images/2024/12/27/13ea13a3dd39d3c417a7513a49a90a10.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 3058
last-modified: Wed, 22 Jan 2025 00:26:58 GMT
expires: Fri, 22 Jan 2027 12:26:58 GMT
cache-control: public, max-age=63115200
link: <http://666529.xyz/images/2024/12/27/13ea13a3dd39d3c417a7513a49a90a10.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "583e8705ae65021d"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-12/29175c089614c071a61d3053d6bd1440.jpg
0 B URL
www.9188porn.xyz/upload/vod/20241010-12/29175c089614c071a61d3053d6bd1440.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-12/29175c089614c071a61d3053d6bd1440.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/32/78/de/3278de687d7c90a288e0dcb35f33d2ba/3278de687d7c90a288e0dcb35f33d2ba.18.jpg
200 OK 15 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/32/78/de/3278de687d7c90a288e0dcb35f33d2ba/3278de687d7c90a288e0dcb35f33d2ba.18.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 15 kB (14655 bytes)
MD5 57da1b05020f8cdb5408d776617a57da
SHA1 6e3ba28be05c27ccbc25a08b73564d16ed5954f3
SHA256 f3cff8aebaa92002853ca1b2e25f8ab85aa0904812909ba40a92940071d34a7a
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/32/78/de/3278de687d7c90a288e0dcb35f33d2ba/3278de687d7c90a288e0dcb35f33d2ba.18.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 14655
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 19 Oct 2016 21:48:01 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJEQH3n1UjAAwBnJIhIwH3WgUAAAwBj/Q6yAH3Iu1oAA
x-77-nzt-ray: 0ef5851b987059e603444e68ec64b333
x-accel-expires: @1751134184
x-accel-date: 1747644004
x-accel-date-max: 1730398183
x-77-cache: HIT
x-77-age: 2315679
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET slaman.sakura.ne.jp/favicon.ico
404 Not Found 0 B URL
slaman.sakura.ne.jp/favicon.ico
IP / ASN
49.212.180.77
#9371 SAKURA Internet Inc.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Gehirn Inc.
Subject *.sakura.ne.jp
Fingerprint 9F:37:6D:4A:9E:89:2D:28:E9:50:1D:06:AA:42:36:A7:76:88:1C:66
Validity Tue, 29 Apr 2025 00:00:00 GMT - Tue, 19 May 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: slaman.sakura.ne.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
X-Firefox-Spdy: h2
GET avatars.mds.yandex.net/get-vthumb/3310065/4f9f92a7dabbb4d3dd0a40c922dbcff1/564x318_1
200 OK 8.1 kB URL
avatars.mds.yandex.net/get-vthumb/3310065/4f9f92a7dabbb4d3dd0a40c922dbcff1/564x318_1
IP / ASN
87.250.247.182
#13238 YANDEX LLC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 564x318, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-06
Last Seen 2025-06-15
Times Seen 3
Size 8.1 kB (8100 bytes)
MD5 2ff682ff7f859aaca8c15336891ce62b
SHA1 e3ac92f04c8140d609b44249502f61c8927d18e7
SHA256 5b14c50d5a0741f75958c0a866447068ae2c0e85507b8254eb6dd18cfc802488
GET /get-vthumb/3310065/4f9f92a7dabbb4d3dd0a40c922dbcff1/564x318_1 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/webp
Content-Length: 8100
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Thu, 07 Mar 2024 16:25:46 GMT
Cache-Control: max-age=604800,immutable
X-Request-Id: 73557a14e965fd44
NEL: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
Timing-Allow-Origin: *
GET gif.acgnngca.com/v/2023100911/thumb_500_425_jsgnhn0ujvx.webp
200 OK 11 kB URL
gif.acgnngca.com/v/2023100911/thumb_500_425_jsgnhn0ujvx.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-06-15
Times Seen 4
Size 11 kB (10942 bytes)
MD5 e1bdd354a77e0bcb66d3374ef550051e
SHA1 28906364185984029d08cb9f6d1361a7611bb6c4
SHA256 151096167803c8a6cbfae8f429cc36360cd8df3dd433085f474acafd00a4a847
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2023100911/thumb_500_425_jsgnhn0ujvx.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 10942
server: cloudflare
last-modified: Fri, 21 Feb 2025 06:49:56 GMT
etag: "67b82214-2abe"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 90036
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=23lnyEq%2FeXlYB7ehEXNDxnRIuf6u8Fy5Zm95NadTK%2FS5TJ25HojD%2B0A4dEJ5ooYTZYyO5GlTb9I%2B8uoo91tgW7%2FTYW4aOjJreHAETO%2F4"}]}
cf-ray: 94ff20a80fa5568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/7/b/c/7bc916bb86918f1a47672d7a3dd8b1931613310427-1920-1080-2634-h264.mp4-9.jpg
200 OK 22 kB URL
cdne-pics.youjizz.com/7/b/c/7bc916bb86918f1a47672d7a3dd8b1931613310427-1920-1080-2634-h264.mp4-9.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 308x232, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 2
Size 22 kB (21631 bytes)
MD5 56b5f4bae9d0ecfca07b58a167f36927
SHA1 dec4d97b9e24900c4cebcd4ee2174d7455058186
SHA256 8b20910b23908a5a64a0d9fecda4ffb52135d9be3ba24b1950f3bdc367982d49
GET /7/b/c/7bc916bb86918f1a47672d7a3dd8b1931613310427-1920-1080-2634-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 21631
last-modified: Sun, 14 Feb 2021 13:55:11 GMT
etag: "547f-5bb4c37c393a3"
expires: Sun, 28 Jan 2024 07:52:22 GMT
cache-control: max-age=10503738
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-6140-2-3579146-h-0-0---;6139-21-629625----0-0-1
GET p15-kimg.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDIyLzA3LzE2LzA3L0JNakF5TWpBM01UWXdOekl5TkRSZk1UVXdNREF3TVRRNE5EZ3dOemN5WHpFMU1ERXdNRE14TURNeE56VTBPVjh4WHpNPV9vdXVfQjI5MWQ4NTI0ZjQ0NDFiZDNhYWMzZjlkNWIwZmIxZTI2LndlYnA.webp
200 OK 10 kB URL
p15-kimg.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDIyLzA3LzE2LzA3L0JNakF5TWpBM01UWXdOekl5TkRSZk1UVXdNREF3TVRRNE5EZ3dOemN5WHpFMU1ERXdNRE14TURNeE56VTBPVjh4WHpNPV9vdXVfQjI5MWQ4NTI0ZjQ0NDFiZDNhYWMzZjlkNWIwZmIxZTI2LndlYnA.webp
IP / ASN
54.240.174.114
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 322x574, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-07-24
Times Seen 9
Size 10 kB (10008 bytes)
MD5 f2277f1c83ab51ecb1aca330504791ce
SHA1 9bc45e343a8ec83e594f3bb7be6bba27380521c5
SHA256 6f33f0fd0817f724fd1dcd9e6ba598835af29858a9e566ca9809e773d4a8edb2
Certificate Info
Issuer Amazon
Subject *.kwai.net
Fingerprint F1:A4:C1:87:13:2A:DC:F1:6B:70:25:61:4D:D3:B2:FA:DD:F5:F1:26
Validity Tue, 10 Sep 2024 00:00:00 GMT - Thu, 09 Oct 2025 23:59:59 GMT
GET /kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDIyLzA3LzE2LzA3L0JNakF5TWpBM01UWXdOekl5TkRSZk1UVXdNREF3TVRRNE5EZ3dOemN5WHpFMU1ERXdNRE14TURNeE56VTBPVjh4WHpNPV9vdXVfQjI5MWQ4NTI0ZjQ0NDFiZDNhYWMzZjlkNWIwZmIxZTI2LndlYnA.webp HTTP/1.1
Host: p15-kimg.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 10008
date: Tue, 06 May 2025 08:21:38 GMT
krtid: gw32e4d095a6ff4e289223c1c654b3d7a2
expires: Wed, 06 May 2026 08:21:38 GMT
cache-control: public, max-age=31536000
via: 1.1 fb8c0300277bd0137c1693d3d64ab550.cloudfront.net (CloudFront), 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA50-C1, OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1bdZ1_9IdiS5KdTZ5QKn9fFQqoxdpbX2lUBbxFYkkRp0B5jb9ByDVA==
age: 3439986
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
GET gif.acgnngca.com/v/2023090808/thumb_500_425_pbf514p11ge_1.webp
200 OK 6.4 kB URL
gif.acgnngca.com/v/2023090808/thumb_500_425_pbf514p11ge_1.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-01-08
Last Seen 2025-07-29
Times Seen 21
Size 6.4 kB (6440 bytes)
MD5 a088c9e10de90d4a736a9ee07652c5f6
SHA1 216dc91e67994265b5000627fce7848295c8de48
SHA256 c668472c7088a42226164505ca055ab74ec9b416c51bd612f4aa14f36a988a49
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2023090808/thumb_500_425_pbf514p11ge_1.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 6440
server: cloudflare
last-modified: Fri, 21 Feb 2025 06:46:39 GMT
etag: "67b8214f-1928"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 689102
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vCRcmYH6QDDj1Xz0ahkeXTvDkayJsi2RFtqhVoSz8yk2euee%2FI5x5Unj07YQBS8HzqlLRwT2VfC3BqUtbsfoRLH%2BmmvR%2BYr4gd9WQIuc"}]}
cf-ray: 94ff20a9983b568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET expose.eisees.com/upload/upload/20231014/2023101415153964221.jpeg?auth=1745439319-88a1562169cee684739ed1a182787127
404 Not Found 0 B URL
expose.eisees.com/upload/upload/20231014/2023101415153964221.jpeg?auth=1745439319-88a1562169cee684739ed1a182787127
IP / ASN
172.67.142.48
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject eisees.com
Fingerprint B0:94:DA:65:E9:02:02:61:BC:8C:F7:6B:EC:79:9A:D9:FD:13:16:1B
Validity Wed, 14 May 2025 21:54:27 GMT - Tue, 12 Aug 2025 22:52:07 GMT
GET /upload/upload/20231014/2023101415153964221.jpeg?auth=1745439319-88a1562169cee684739ed1a182787127 HTTP/1.1
Host: expose.eisees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bKcsV%2B2iyoE97vLaJzEZmoHWvPyo0DQI6Wze4rTmzy3iezzlA2f48dP9hntQbwPo9S%2F5A6I%2FULVqkOzU1cDPLK%2FL3be5zgIEk3eeFHqZfQ%3D%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94ff20be598e5693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pic.punbla.cn/upload/upload/20231124/2023112406071590636.jpeg
0 B URL
pic.punbla.cn/upload/upload/20231124/2023112406071590636.jpeg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/upload/20231124/2023112406071590636.jpeg HTTP/1.1
Host: pic.punbla.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/4e/02/d6/4e02d6ea395488e2278cf4d66a8f2649/4e02d6ea395488e2278cf4d66a8f2649.8.jpg
200 OK 14 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/4e/02/d6/4e02d6ea395488e2278cf4d66a8f2649/4e02d6ea395488e2278cf4d66a8f2649.8.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 2
Size 14 kB (13632 bytes)
MD5 cf80fb93a17d9b161fa168126d992d55
SHA1 044c22f5024a854da69d811c69eb63b8d9fb7124
SHA256 4687e67b614981a8d2a86bbce14b56612679f64854f283b49289fd2a2b3a7456
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/4e/02/d6/4e02d6ea395488e2278cf4d66a8f2649/4e02d6ea395488e2278cf4d66a8f2649.8.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 13632
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Sat, 03 Aug 2019 23:01:53 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: A7lMCRE3NzfvyVkjAJySISs3Nzf/iuZHAI/0Oow3Nzf/EBMAAA
x-77-nzt-ray: 0ef5851b987059e603444e68d25b1f33
x-accel-expires: @1753298864
x-accel-date: 1747642938
x-77-cache: HIT
x-77-age: 2316745
x-accel-date-max: 1701463740
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/f13d3d5f94627393c2ef1ae2fac2a6f050e7caf1.jpg
200 OK 5.4 kB URL
cdntube.b-cdn.net/thumbnails/f13d3d5f94627393c2ef1ae2fac2a6f050e7caf1.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-05-22
Last Seen 2025-07-31
Times Seen 33
Size 5.4 kB (5416 bytes)
MD5 eaba65ea52d02d7f6515ace4786021ca
SHA1 fdff493b62cdcaee06538c2e161b9d5535423a22
SHA256 f5c346a5f32dbb8812afaf8fc018c2cdb2b3f7e126934fcf923feae657fa20be
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/f13d3d5f94627393c2ef1ae2fac2a6f050e7caf1.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 5416
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Thu, 22 May 2025 02:03:43 GMT
cdn-storageserver: DE-637
cdn-requestpullsuccess: True
cdn-fileserver: 964
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/04/2025 14:38:19
cdn-edgestorageid: 830
cdn-requestid: c477a9e77c75629a2639fdfec3f10989
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/6/d/4/6d422ba119b4ad88d2e915d2125e6e5b1550036166-1280-720-1286-h264.mp4-9.jpg
200 OK 9.7 kB URL
cdne-pics.youjizz.com/6/d/4/6d422ba119b4ad88d2e915d2125e6e5b1550036166-1280-720-1286-h264.mp4-9.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 692x693, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 308x232, components 3
First Seen 2024-08-20
Last Seen 2025-07-15
Times Seen 5
Size 9.7 kB (9745 bytes)
MD5 80e30050be8ef4c28597e71621cd54cd
SHA1 89d0a05a7cb6ce2e47f7a6bf2f1d539589aed296
SHA256 65038bdd41d53aa07967be7c0a8ef1f51b6a63d93651e154bc9bac3680dc0a29
GET /6/d/4/6d422ba119b4ad88d2e915d2125e6e5b1550036166-1280-720-1286-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 9745
last-modified: Sun, 28 Jul 2019 22:31:57 GMT
etag: "2611-58ec557dbab45"
expires: Sat, 27 Jan 2024 11:27:05 GMT
cache-control: max-age=10447177
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-6140-2-3579147-h-0-0---;6139-54-629625----0-0-0
GET rule34.paheal.net/_thumbs/0bd51ddd2bdcadf4c47fe9eab95fff21/thumb.jpg
200 OK 2.8 kB URL
rule34.paheal.net/_thumbs/0bd51ddd2bdcadf4c47fe9eab95fff21/thumb.jpg
IP / ASN
185.100.87.48
#200651 FlokiNET ehf
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x108, components 3
First Seen 2025-02-08
Last Seen 2025-07-15
Times Seen 8
Size 2.8 kB (2750 bytes)
MD5 70a5f031b0945de7e316e69e9d22af0c
SHA1 f1377082e9318099727da3812e1f9c0a9d5d0fff
SHA256 c5519cfc2d90807bf184b54bcd91d4e719206568c60acac6cfdb86393cc780a3
Certificate Info
Issuer Let's Encrypt
Subject rule34.paheal.net
Fingerprint 14:19:38:B9:57:D4:0B:18:D5:5F:12:F6:60:8A:F4:36:25:BE:F4:9D
Validity Sat, 31 May 2025 08:55:26 GMT - Fri, 29 Aug 2025 08:55:25 GMT
GET /_thumbs/0bd51ddd2bdcadf4c47fe9eab95fff21/thumb.jpg HTTP/1.1
Host: rule34.paheal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31556926
date: Sun, 15 Jun 2025 03:54:44 GMT
etag: "64694353-abe"
last-modified: Sat, 20 May 2023 22:01:55 GMT
server: Unit/1.34.2
content-type: image/jpeg
content-length: 2750
X-Firefox-Spdy: h2
GET p1-kimg.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDI0LzAzLzA3LzA1L0JNakF5TkRBek1EY3dOVEl3TXpkZk1UVXdNREF4TkRnek1qRTFPRFV6WHpFMU1ERXdOVFEzTnpRNE9UQTBNVjh5WHpNPV9vdXVfQjgyNGQ4MTAzODE3NGI0OGU1Nzc5MzlmYTE0ZjI0YjMxLndlYnA.webp
200 OK 12 kB URL
p1-kimg.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDI0LzAzLzA3LzA1L0JNakF5TkRBek1EY3dOVEl3TXpkZk1UVXdNREF4TkRnek1qRTFPRFV6WHpFMU1ERXdOVFEzTnpRNE9UQTBNVjh5WHpNPV9vdXVfQjgyNGQ4MTAzODE3NGI0OGU1Nzc5MzlmYTE0ZjI0YjMxLndlYnA.webp
IP / ASN
43.152.140.107
#139341 ACE
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 323x574, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 12 kB (12060 bytes)
MD5 303f67b702ae4f7d664b4992b5fec481
SHA1 bab3f7f569b7201ff253fd4056e59268736077b7
SHA256 380d9ddbd15b4cde7e3310b86712b4cbb87fdb5e85673b54d449f3630712076a
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDI0LzAzLzA3LzA1L0JNakF5TkRBek1EY3dOVEl3TXpkZk1UVXdNREF4TkRnek1qRTFPRFV6WHpFMU1ERXdOVFEzTnpRNE9UQTBNVjh5WHpNPV9vdXVfQjgyNGQ4MTAzODE3NGI0OGU1Nzc5MzlmYTE0ZjI0YjMxLndlYnA.webp HTTP/1.1
Host: p1-kimg.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
date: Sat, 15 Feb 2025 12:45:18 GMT
krtid: gw825e0f7b53a94872ae1d63089ec02fa1
expires: Sun, 15 Feb 2026 12:45:18 GMT
x-cache: Miss from cloudfront
x-amz-cf-pop: ARN53-P1
x-amz-cf-id: rRdJgu9VH3VdjhnOzQ0dJ_e86J0VIsm4CJcz07r5XqCrRGu2Q-hPfg==
cache-control: max-age=31536000
content-length: 12060
accept-ranges: bytes
x-nws-log-uuid: 11912259004291892628
server: Lego Server
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2
GET ajyshedfwer.buzz/favicon.ico
0 B URL
ajyshedfwer.buzz/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: ajyshedfwer.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RnN%2F8MCjIvf1NYGnDBbzz8YvRqS6JyjPMj8MwlkL6n8BNDZXqof0SfFfOB5VnwLj3YAfF5FhfRogPE0tCPfWBPiSvgMegK7KjuHKWh1h"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94ff20c2cc0ab4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240112-1/bf4522ce4beda7de773db1a212ee2b0c.jpg
200 OK 12 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240112-1/bf4522ce4beda7de773db1a212ee2b0c.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-14
Last Seen 2025-07-25
Times Seen 9
Size 12 kB (12290 bytes)
MD5 21ad66ec7c0f9deaf63c832bd348d500
SHA1 c9a1a047191215f0e8002cece0354e4726bbf0f3
SHA256 a8847bcaa6b0d33144da07757605431cad42a1dd57c0ae184cfe633d1fc626ac
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240112-1/bf4522ce4beda7de773db1a212ee2b0c.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 12290
last-modified: Sun, 02 Feb 2025 00:03:55 GMT
expires: Tue, 02 Feb 2027 12:03:55 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240112-1/bf4522ce4beda7de773db1a212ee2b0c.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "69188f953a8a0821"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/e/b/1/6/e/eb16ef9c763c02c15206c4fd10ee59831548296164-75.jpg
200 OK 30 kB URL
cdne-pics.youjizz.com/e/b/1/6/e/eb16ef9c763c02c15206c4fd10ee59831548296164-75.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 308x232, components 3
First Seen 2025-06-15
Last Seen 2025-06-19
Times Seen 4
Size 30 kB (29969 bytes)
MD5 fb58250b07b28fbc88d26c9f7bd2e9b1
SHA1 4467940ba6874f7c1981e597094a706b27b96300
SHA256 a01c345a4f87ebcdc5d28990b78b3d3afaa2e66939ffc6d1654cfbe28f6a6c49
GET /e/b/1/6/e/eb16ef9c763c02c15206c4fd10ee59831548296164-75.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:46 GMT
Content-Type: image/jpeg
Content-Length: 29969
last-modified: Fri, 13 Sep 2019 10:37:26 GMT
etag: "7511-5926cd71769af"
expires: Wed, 31 Jan 2024 06:54:13 GMT
cache-control: max-age=10798348
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-6139-2-3404218-h-0-0---;6139-25-629625----0-0-1
GET aniru.org/favicon.ico
302 Found 4.1 kB IP / ASN
172.67.135.62
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 4.1 kB (4119 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject aniru.org
Fingerprint 2A:61:D9:E9:91:8D:BF:F6:BF:C8:89:1C:9C:06:39:C0:31:0F:32:F9
Validity Wed, 30 Apr 2025 08:12:48 GMT - Tue, 29 Jul 2025 09:10:23 GMT
GET /favicon.ico HTTP/1.1
Host: aniru.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FrXAd7CqnULGQcOwpxPb6HUdQWOuLvBvVxtkWS2MgLt8eC9TUYglmvpA1ac3YUe2e8cqV4viQL7OKwJ4NPZ55nloKHKh7ZTC1kZ7jtBOPISLzkWVt9Snznm7J%2B0%3D"}],"group":"cf-nel","max_age":604800}
location: https://aniru.org/wp-includes/images/w-logo-blue-white-bg.png
link: <https://aniru.org/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
expires: Sun, 22 Jun 2025 00:35:16 GMT
cache-control: max-age=604800
age: 11973
cf-cache-status: HIT
cf-ray: 94ff20e04e4456aa-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=14007&min_rtt=986&rtt_var=9938&sent=243&recv=303&lost=0&retrans=0&sent_bytes=16393&recv_bytes=16549&delivery_rate=137418&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=577cc7843016c624&ts=5278&inflight_dur=143&x=80"
GET pornodrochka.org/favicon.ico
0 B URL
pornodrochka.org/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: pornodrochka.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET didizy.com/
403 Forbidden 0 B IP / ASN
167.88.62.39
#63023 AS-GLOBALTELEHOST
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: didizy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sun, 15 Jun 2025 03:54:51 GMT
Content-Length: 404
Content-Type: text/html; charset=utf-8
GET timg216.top/videos/7a3f3f0de46b61738652c0089d2d85809bbf77ae/cover/5_505_259?ih=1
200 OK 67 kB URL
timg216.top/videos/7a3f3f0de46b61738652c0089d2d85809bbf77ae/cover/5_505_259?ih=1
IP / ASN
104.22.20.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 67 kB (66715 bytes)
MD5 79ca2ce5673389805e98e076b9bf80eb
SHA1 eebf048d22aacd9165989a14b374a2098f88c394
SHA256 6d49576ec5f599449c5b1b1b5e29c0f4d582124ef99ba2dc8a2e4a54839a5900
Certificate Info
Issuer Google Trust Services
Subject timg216.top
Fingerprint 77:83:68:54:E0:99:C9:F6:C6:B3:2B:5F:C1:56:9E:4F:34:BE:32:D9
Validity Fri, 06 Jun 2025 03:04:17 GMT - Thu, 04 Sep 2025 04:01:55 GMT
GET /videos/7a3f3f0de46b61738652c0089d2d85809bbf77ae/cover/5_505_259?ih=1 HTTP/1.1
Host: timg216.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 66715
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Wed, 05 Mar 2025 14:19:22 GMT
vary: Accept-Encoding
etag: "67c85d6a-1049b"
expires: Tue, 10 Jun 2025 14:02:21 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 2397079
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OAWwr1Sm%2BUUsOMKyY3HeAVLaLSbAAWo0t771AIH3bgL3Y5CehdQMcuPl2gydA0UVg8N7D%2FCBoarL5mAT1Is7TFhazVQcH%2FnLpg%3D%3D"}]}
cf-ray: 94ff20a71beb5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lsbzytp.com:3519/upload/vod/20230910-1/32d6efe4408959ec2f233047c44458a9.jpg
200 OK 60 kB URL
lsbzytp.com:3519/upload/vod/20230910-1/32d6efe4408959ec2f233047c44458a9.jpg
IP / ASN
173.249.235.71
#11878 TZULO
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3
First Seen 2025-05-24
Last Seen 2025-07-21
Times Seen 13
Size 60 kB (60443 bytes)
MD5 19bcaf3dd151491f1c14b4cc14b0ba6f
SHA1 ab0961d8c01ae803da951b2351817820c8cefa53
SHA256 e2f6325b9668fcef711dc97b4c854cdd9dc341a25ef1e2799c7f345b711cd4e9
Certificate Info
Issuer SSL Corporation
Subject sbzytpimg2.com
Fingerprint E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F
Validity Thu, 19 Dec 2024 14:08:44 GMT - Mon, 19 Jan 2026 14:08:44 GMT
GET /upload/vod/20230910-1/32d6efe4408959ec2f233047c44458a9.jpg HTTP/1.1
Host: lsbzytp.com:3519
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
last-modified: Wed, 22 Nov 2023 12:54:39 GMT
vary: Accept-Encoding
etag: "655dfa0f-ec1b"
expires: Thu, 03 Jul 2025 00:54:45 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
X-Firefox-Spdy: h2
GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js?1
200 OK 87 kB URL
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js?1
IP / ASN
142.250.178.74
#15169 GOOGLE
Requested by http://animal.zoo2.top/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 67254
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint FF:78:1F:2C:E7:6A:27:90:8B:25:07:97:DD:25:4A:FA:6F:1F:0F:31
Validity Mon, 19 May 2025 08:42:52 GMT - Mon, 11 Aug 2025 08:42:51 GMT
GET /ajax/libs/jquery/3.3.1/jquery.min.js?1 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jun 2025 21:35:03 GMT
expires: Fri, 12 Jun 2026 21:35:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 195585
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youjizz.com/favicon.ico
200 OK 4.3 kB URL
www.youjizz.com/favicon.ico
IP / ASN
66.254.114.242
#29789 REFLECTED
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
First Seen 2023-07-17
Last Seen 2025-07-31
Times Seen 223
Size 4.3 kB (4286 bytes)
MD5 cd65da5df2a2cfd472a198524ec61296
SHA1 e51ea1800eec5985026a37498f4aa7044c757d04
SHA256 321ac040acb1c782abf632960125319b8925361510e13b1a9dfd904a9e733515
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Tue, 25 Feb 2020 06:57:19 GMT
etag: "5e54c54f-10be"
accept-ranges: bytes
set-cookie: RNLBSERVERID=ded6731; path=/
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
GET sasisa.ru/favicon.ico
0 B IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: sasisa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET cdn1.hotmoza.tv/thumb/08/48/33/084833da4e2f9b1ec956089fcd119f3e.jpg
200 OK 6.3 kB URL
cdn1.hotmoza.tv/thumb/08/48/33/084833da4e2f9b1ec956089fcd119f3e.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3
First Seen 2024-04-24
Last Seen 2025-07-30
Times Seen 27
Size 6.3 kB (6309 bytes)
MD5 8362d110f5f975706e2342ef8e377ce4
SHA1 e5bc5788ba3222ed722c4f466a4145ddec9dbb72
SHA256 09bbde1616b1517092738d2ae751cee980c81ae5b4ded20da39a575735658b1a
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/08/48/33/084833da4e2f9b1ec956089fcd119f3e.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 6309
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
last-modified: Sun, 09 Feb 2020 04:32:50 GMT
etag: 8362d110f5f975706e2342ef8e377ce4
x-timestamp: 1581222769.39446
x-object-meta-mtime: 1581222767.787055
x-trans-id: tx3959bd1355754aa199254-005e648951
x-openstack-request-id: tx3959bd1355754aa199254-005e648951
cache-control: max-age=172800
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Mon, 16 Jun 2025 05:32:41 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 80521
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=aeGBdXcy6t%2BogtST915dFCtLurZ9cFwLzAqplmB1m2rpuWbneY57LN6X9K9sGa9Amj%2FJvlzuaaYTAj%2BWyh%2FYKTW2BPvtwGu3VZs8SmA%3D"}]}
cf-ray: 94ff20b70fa8b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.nsfwnudes.com/previews/617/46fb0f7e21ed5c038ed984ce225ddec6.jpg
200 OK 30 kB URL
www.nsfwnudes.com/previews/617/46fb0f7e21ed5c038ed984ce225ddec6.jpg
IP / ASN
213.174.130.69
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 360x708, components 3
First Seen 2024-12-21
Last Seen 2025-07-29
Times Seen 16
Size 30 kB (30126 bytes)
MD5 de3be94f73a36aad927cd2f87a2666cb
SHA1 0129e73055c346c99e4f8b15a85ee6985ba535a3
SHA256 69174a8c41fce0dd3bc5c49b67e062ae3c07f368a2e99042e436a1eb8bc6f5fa
Certificate Info
Issuer Let's Encrypt
Subject nsfwnudes.com
Fingerprint E0:4B:39:C4:85:8F:80:B9:3E:C5:27:77:7C:8A:1D:80:D3:10:EB:9D
Validity Sun, 25 May 2025 03:50:27 GMT - Sat, 23 Aug 2025 03:50:26 GMT
GET /previews/617/46fb0f7e21ed5c038ed984ce225ddec6.jpg HTTP/1.1
Host: www.nsfwnudes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.16.1
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 30126
last-modified: Tue, 05 May 2020 18:48:43 GMT
etag: "5eb1b50b-75ae"
expires: Tue, 15 Jul 2025 03:54:41 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.effedupmovies.com/wp-content/uploads/2019/07/christianef.jpg
0 B URL
www.effedupmovies.com/wp-content/uploads/2019/07/christianef.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2019/07/christianef.jpg HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET 4kincestporn.com/thumbs/449/3824942640353466449_0.jpg
200 OK 7.0 kB URL
4kincestporn.com/thumbs/449/3824942640353466449_0.jpg
IP / ASN
104.21.48.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-04-21
Last Seen 2025-07-31
Times Seen 41
Size 7.0 kB (6973 bytes)
MD5 eacdfe7df2d409198f1d76cbc43dd80c
SHA1 4d74a411cc6af6c5d69b84d45fb722c43ca19f8c
SHA256 d35ea821add7320c6112e617242943940962768dd151bcba7d60890d260e9633
Certificate Info
Issuer Google Trust Services
Subject 4kincestporn.com
Fingerprint 8B:58:81:F3:3B:24:3A:22:EE:1F:E2:39:9D:E2:FE:40:BF:1F:75:0D
Validity Thu, 12 Jun 2025 10:12:22 GMT - Wed, 10 Sep 2025 11:10:52 GMT
GET /thumbs/449/3824942640353466449_0.jpg HTTP/1.1
Host: 4kincestporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 6973
server: cloudflare
last-modified: Fri, 06 Mar 2020 02:40:17 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5e61b811-1b3d"
expires: Mon, 07 Jul 2025 03:37:46 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 692217
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wsq1nseDwd%2FwLf6dQvxiMfQ9n9TJUW2vbxnCP26KqRcYkcsfwx0etPNcx118mUo1MA5JcmoX8T9YkHB9YREPjRAs7hnYV58qm6vdqp2I"}]}
cf-ray: 94ff20be9a0a56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240406-1/04457b2f5a3e4d2d13c492132f2ef3ac.jpg
200 OK 50 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240406-1/04457b2f5a3e4d2d13c492132f2ef3ac.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-03-24
Last Seen 2025-07-26
Times Seen 11
Size 50 kB (49774 bytes)
MD5 6143fff3cf6f03070abdf15498976f16
SHA1 1cb64026af78ec0e6927263dc8387c88ee956667
SHA256 438f79dbaade9f080d3e685248a2652eb47bb33b181bad3ac156d40cad5c3f1e
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240406-1/04457b2f5a3e4d2d13c492132f2ef3ac.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:42 GMT
content-type: image/webp
content-length: 49774
last-modified: Sat, 08 Feb 2025 11:10:30 GMT
expires: Mon, 08 Feb 2027 23:10:30 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240406-1/04457b2f5a3e4d2d13c492132f2ef3ac.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "49cc29aa5d0320de"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET cdn.devki.net/uploads/posts/2024-10/c11cd7053d_1.webp
200 OK 32 kB URL
cdn.devki.net/uploads/posts/2024-10/c11cd7053d_1.webp
IP / ASN
104.21.74.84
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x711, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-29
Times Seen 21
Size 32 kB (32014 bytes)
MD5 b02ea20cb109749deaba59a3e1a2f8ea
SHA1 f7901aff85084c8a34528714838514763fc84692
SHA256 0ee8ff7b1709a22ec7431ba48830386535cc39088bedda1c01b26dad3bc3e573
Certificate Info
Issuer Google Trust Services
Subject devki.net
Fingerprint 0D:AB:04:88:E2:65:3C:78:2A:E7:AB:CD:DD:D7:77:DA:84:78:3F:56
Validity Sun, 01 Jun 2025 20:20:30 GMT - Sat, 30 Aug 2025 21:18:32 GMT
GET /uploads/posts/2024-10/c11cd7053d_1.webp HTTP/1.1
Host: cdn.devki.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/webp
content-length: 32014
server: cloudflare
last-modified: Wed, 30 Oct 2024 22:47:58 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "6722b79e-7d0e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 7101
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VkliDWvvqdQT3R9sgsO%2FuXDnLdw3sgtRS5I981tX0ZA9Z37%2Fk%2F80gHHE4JjTcnFf3Y7ijjPt2kRBdJgcMEDZwsHg3Ltddzk%2FOOAK"}]}
cf-ray: 94ff20bdba4a56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240111-1/2bb39bfd32d5f0ccb02c6a4ae5c289dc.jpg
200 OK 31 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240111-1/2bb39bfd32d5f0ccb02c6a4ae5c289dc.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-07-30
Times Seen 11
Size 31 kB (30628 bytes)
MD5 8ec6e97cdc06e0bf0030444cc5361944
SHA1 38ebd7103f4bcb7c42e4eba1405b83fcac56a7fc
SHA256 b66211b0179099fa5a7ee0780b2d4b94f8f2d338b3df419903d07450dfde4bcb
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240111-1/2bb39bfd32d5f0ccb02c6a4ae5c289dc.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 30628
last-modified: Sat, 14 Dec 2024 00:50:18 GMT
expires: Mon, 14 Dec 2026 12:50:18 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240111-1/2bb39bfd32d5f0ccb02c6a4ae5c289dc.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "72917937c9a92dfd"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.hurtsex.com/thumbs/53dad42bdb43e86021c059109e8adede.jpg
200 OK 7.7 kB URL
www.hurtsex.com/thumbs/53dad42bdb43e86021c059109e8adede.jpg
IP / ASN
104.21.63.238
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=10, manufacturer=Gretech Corporation, model=GomPlayer 2, 1, 50, 5145 (ENG), orientation=upper-left, xresolution=185, yresolution=193, resolutionunit=2, software=ACDSee Pro 6, datetime=2013:06:14 10:07:48], baseline, precision 8, 160x120, components 3
First Seen 2025-02-21
Last Seen 2025-07-21
Times Seen 10
Size 7.7 kB (7748 bytes)
MD5 73e27f59ac8b30b65ecc8e69c5451fa6
SHA1 b5c0374b7440928a5e250628209943b3be097d23
SHA256 4b8774928975ccba5a537c07ea55fc566510f7965b104341e3aa6427252a39c7
Certificate Info
Issuer Google Trust Services
Subject hurtsex.com
Fingerprint 8D:E5:D1:DF:38:D4:4B:6F:00:03:D7:83:0D:B2:EC:44:56:5A:AF:A1
Validity Mon, 02 Jun 2025 21:18:06 GMT - Sun, 31 Aug 2025 22:16:37 GMT
GET /thumbs/53dad42bdb43e86021c059109e8adede.jpg HTTP/1.1
Host: www.hurtsex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 7748
server: cloudflare
last-modified: Sun, 27 Jul 2014 23:31:23 GMT
etag: "53d58bcb-1e44"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 93577
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oldyuSYWE%2FelDmidEedyyzGJQSxBrW4nGMcjpJm91prFc5pPseVs5o7Vm4OIf5fQGvSDmZq09yXBUrtrC0MQEFl%2BX9USjG7t6gLiuYc%3D"}]}
cf-ray: 94ff20b6df4056ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET gif.acgnngca.com/v/2023100816/thumb_500_425_1y3yyualgjk.webp
200 OK 7.9 kB URL
gif.acgnngca.com/v/2023100816/thumb_500_425_1y3yyualgjk.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-28
Last Seen 2025-07-31
Times Seen 13
Size 7.9 kB (7912 bytes)
MD5 442817f1f3b496d2d64b3837c4dd97eb
SHA1 f3a3b2699df65dfc1e3cc5806ba1b77a1f6913ff
SHA256 de52724c20ae0678956a64410d0efa41b5773ddc574c02553603ef59dd815c56
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2023100816/thumb_500_425_1y3yyualgjk.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 7912
server: cloudflare
last-modified: Fri, 21 Feb 2025 06:48:49 GMT
etag: "67b821d1-1ee8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 1422616
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3dJ%2FufpQDcauFKzhJ4g4PiYwHGTf6Z2f6u0qsuOlYygZVtpfCecWdRDYbQW4MFLf8aN%2FtVM7yXEpi7A%2FmK9plNXYABExIiMFSjW4tLFd"}]}
cf-ray: 94ff20a67f20568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.xvideos.com/favicon.ico
200 OK 15 kB URL
www.xvideos.com/favicon.ico
IP / ASN
185.88.181.4
#46652 SERVERSTACK-ASN
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-07
Last Seen 2025-07-31
Times Seen 218
Size 15 kB (15086 bytes)
MD5 d6baf7b631c1e482b6e2f770f9e67057
SHA1 73eb49e766e5954e1ad9538cc35038b9f14494b9
SHA256 fa1ee8d05ad6dfa0731ee0d37badfd019cc3315e6d3b9ca1ae161cee4749481b
Certificate Info
Issuer Sectigo Limited
Subject *.xvideos.com
Fingerprint 8A:99:1B:79:BF:20:90:58:BE:23:F3:B2:15:CA:58:D1:87:C9:8F:0E
Validity Mon, 30 Dec 2024 00:00:00 GMT - Fri, 30 Jan 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.xvideos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jun 2025 03:54:50 GMT
Content-Type: image/x-icon
Content-Length: 15086
Last-Modified: Mon, 09 Oct 2023 14:43:32 GMT
ETag: "65241194-3aee"
Expires: Sun, 22 Jun 2025 03:54:50 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
Server: nginx
GET gif.acgnngca.com/v/2023100913/thumb_500_425_k5a4yjwcear.webp
200 OK 4.0 kB URL
gif.acgnngca.com/v/2023100913/thumb_500_425_k5a4yjwcear.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-02
Last Seen 2025-07-29
Times Seen 10
Size 4.0 kB (4034 bytes)
MD5 7ebb2b233c55f66f3b9429672d60444a
SHA1 e6a0ea4efb6517a0b5a8237778c6d6db27e17cd5
SHA256 87a7567b1f88b9239e17bd91cd7f56996836c9aebe1b01284f8512d0ce1b8d65
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2023100913/thumb_500_425_k5a4yjwcear.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 4034
server: cloudflare
last-modified: Fri, 21 Feb 2025 06:51:12 GMT
etag: "67b82260-fc2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 708595
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=v391B4mWj8krD6TpA0DREEyQl22%2BcrqZme4S8VqvlQxPiNO2yCfw43wHbrKr78L1v1T2LDqg6573grfvZRyoKGttPWX71WmNkDl%2FtHSN"}]}
cf-ray: 94ff20a64f11568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240315-1/6fe2df7cb7fee258b0fbc6c190b6d9f1.jpg
200 OK 64 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240315-1/6fe2df7cb7fee258b0fbc6c190b6d9f1.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x719, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-21
Last Seen 2025-07-27
Times Seen 17
Size 64 kB (64436 bytes)
MD5 98a68a44dbb33fa93009656936c063a4
SHA1 8c1558e44380761607608e23cd535a4d660f09f7
SHA256 2d9066d978b7a7c4979a8f56a4e153b99806cf7458b366ee57ae8994a2b2c736
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240315-1/6fe2df7cb7fee258b0fbc6c190b6d9f1.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 64436
last-modified: Fri, 13 Dec 2024 23:45:07 GMT
expires: Mon, 14 Dec 2026 11:45:07 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240315-1/6fe2df7cb7fee258b0fbc6c190b6d9f1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "26b1cdb1a711889e"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/98E82D4.jpg
302 Moved Temporarily 20 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/98E82D4.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 20 kB (20198 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/98E82D4.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
server: openresty/1.21.4.1
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: text/html
content-length: 151
location: https://cdn5-static.motherlessmedia.com/images/no_image.jpg
x-cache: MISS
GET www.w3schools.com/w3css/4/w3.css
200 OK 23 kB URL
www.w3schools.com/w3css/4/w3.css
IP / ASN
23.36.77.67
#20940 Akamai International B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type ASCII text
First Seen 2023-06-26
Last Seen 2025-08-02
Times Seen 1424
Size 23 kB (23427 bytes)
MD5 75b37d4abbdde1322116d2744181081d
SHA1 6d6b5ff442af4682c30e970c382002a7c694ac5b
SHA256 c4f2aba13970ecf8303fb9329f97c8824861569273b0aa27acce48abc61d04f5
Certificate Info
Issuer Let's Encrypt
Subject certification.w3schools.com
Fingerprint E0:BE:6F:D5:91:F2:4E:EB:C2:EA:6D:F8:57:69:7A:96:16:FC:61:D8
Validity Mon, 02 Jun 2025 07:05:30 GMT - Sun, 31 Aug 2025 07:05:29 GMT
GET /w3css/4/w3.css HTTP/1.1
Host: www.w3schools.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 06 Jun 2025 12:17:20 GMT
accept-ranges: bytes
etag: "08843f3dcd6db1:0"
content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com https://pathfinder.w3schools.com;
x-content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com https://pathfinder.w3schools.com;
vary: Accept-Encoding
content-encoding: gzip
content-length: 5256
cache-control: public, max-age=30790123
expires: Sat, 06 Jun 2026 12:43:32 GMT
date: Sun, 15 Jun 2025 03:54:49 GMT
x-loc: true
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240421-1/c92a2e302bb3572be1cd13f842ce3d82.jpg
200 OK 79 kB URL
jpgjingpinx.com/upload/vod/20240421-1/c92a2e302bb3572be1cd13f842ce3d82.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 718x404, components 3
First Seen 2025-05-24
Last Seen 2025-06-16
Times Seen 8
Size 79 kB (78858 bytes)
MD5 a210aacdca8c2e4dae3f9a073391c9f7
SHA1 ec887ed6f11c94cf68abd1c7274cabfd8eb5263a
SHA256 3c450ce6eed6b5ee641eee4bf2e4864835d8b413808da6c3b87d5b166824205f
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240421-1/c92a2e302bb3572be1cd13f842ce3d82.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 78858
Content-Type: image/jpeg
Date: Tue, 10 Jun 2025 09:09:52 GMT
Etag: "6624a388-1340a"
Expires: Thu, 10 Jul 2025 09:09:52 GMT
Last-Modified: Tue, 10 Jun 2025 09:09:52 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET zozovideo.com/favicon.ico
404 Not Found 0 B URL
zozovideo.com/favicon.ico
IP / ASN
139.162.102.64
#63949 Akamai Connected Cloud
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.zozovideo.com
Fingerprint 20:AE:26:C8:3B:F7:3F:C9:1C:EC:3D:01:3D:56:BB:FC:F9:15:2C:72
Validity Sat, 19 Apr 2025 23:54:41 GMT - Fri, 18 Jul 2025 23:54:40 GMT
GET /favicon.ico HTTP/1.1
Host: zozovideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sun, 15 Jun 2025 03:54:49 GMT
server: LiteSpeed
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
GET rimg.aiyuncdn.com/videos_screenshots/266000/266998/preview.jpg
404 Not Found 0 B URL
rimg.aiyuncdn.com/videos_screenshots/266000/266998/preview.jpg
IP / ASN
104.21.59.51
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject aiyuncdn.com
Fingerprint 83:36:91:72:7A:43:7C:E3:C3:24:5B:3A:F4:0D:97:47:8D:CB:98:D8
Validity Sun, 01 Jun 2025 11:15:30 GMT - Sat, 30 Aug 2025 12:13:46 GMT
GET /videos_screenshots/266000/266998/preview.jpg HTTP/1.1
Host: rimg.aiyuncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: text/html; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 149
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=aFeLu9takGQejoLrcX15GKoOh%2FXKIi%2FMQiespq%2FECrrwovu%2BLd%2FFXHY0SIiIcoBSY57tf66ivNtbidNevUSdBFr8OkGBYGSSUl4uSi3oYw%3D%3D"}]}
content-encoding: br
cf-ray: 94ff20a76f205693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET meetcdn.com/vs/36599363.jpg
200 OK 17 kB URL
meetcdn.com/vs/36599363.jpg
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 418x240, components 3
First Seen 2024-08-19
Last Seen 2025-07-21
Times Seen 17
Size 17 kB (17086 bytes)
MD5 3ef7286887dee702f18db2aa70a487f8
SHA1 e28f429e740839fd39124c124b83f157daec66f5
SHA256 1cb44a2afbc976d492295ef94fabb7249c92fedf69d630d0dc83ad19a65c3f8f
Certificate Info
Issuer Google Trust Services
Subject meetcdn.com
Fingerprint 23:B5:5D:F4:A9:AC:80:BF:55:00:A6:B9:A1:EA:DC:FF:B5:10:75:3E
Validity Thu, 08 May 2025 06:17:43 GMT - Wed, 06 Aug 2025 07:16:07 GMT
GET /vs/36599363.jpg HTTP/1.1
Host: meetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 17086
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Wed, 29 Aug 2018 23:23:38 GMT
etag: "5b872afa-42be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT, HIT
accept-ranges: bytes
age: 894761
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=aXM9BBc%2FY9jlvogfkNQJdr8xLq02eRyDB8rOY5jWXCp7Yb9WdWiu3oEHnY%2BUJxWERHx3j3bsRfQA2n44QR4FP7W37V2SaGxo0A%3D%3D"}]}
cf-ray: 94ff20bbbba3569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.ttsp.tv/favicon.ico
0 B URL
www.ttsp.tv/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.ttsp.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET suckinganimalsex.info/favicon.ico
404 Not Found 0 B URL
suckinganimalsex.info/favicon.ico
IP / ASN
172.67.152.10
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject suckinganimalsex.info
Fingerprint A1:3F:C7:B4:84:F0:15:24:DC:26:22:77:A3:75:B0:22:4D:44:6A:C9
Validity Thu, 22 May 2025 02:31:34 GMT - Wed, 20 Aug 2025 03:29:09 GMT
GET /favicon.ico HTTP/1.1
Host: suckinganimalsex.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YLsbHKiWiXT3j%2BB%2FF1yg05X7jq0Yh2T%2BAogMVW2IYtX8TslEDWBuDh7e6mJ%2FF0gOx4kDlmO8zBPHF5%2Fu8X%2FrVZmw6%2BGQ%2BT3W6vNi0XwoJ7zac71lEVjuKK41wDbVwFYgxq5dVxNU5gc%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 94ff20e0be5956ba-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10818&min_rtt=514&rtt_var=6934&sent=207&recv=289&lost=0&retrans=0&sent_bytes=14461&recv_bytes=15828&delivery_rate=189683&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=1b8bf04341fceafd&ts=6523&inflight_dur=112&x=80"
GET jpgjingpinx.com/upload/vod/20240108-1/2db003b9cd15adff7faaa057788d0f9f.jpg
200 OK 419 kB URL
jpgjingpinx.com/upload/vod/20240108-1/2db003b9cd15adff7faaa057788d0f9f.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x607, components 3
First Seen 2025-05-27
Last Seen 2025-06-16
Times Seen 4
Size 419 kB (419111 bytes)
MD5 7e815388932572065f8c656da92c8fb6
SHA1 7ade45af2c615b7c5b9ae805524d6ca58759080a
SHA256 64367dc446ca383f89b8c491a8a73a1e3a032d80ef10536f9caab601338550d7
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240108-1/2db003b9cd15adff7faaa057788d0f9f.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 419111
Content-Type: image/jpeg
Date: Tue, 10 Jun 2025 10:38:54 GMT
Etag: "659b8f82-66527"
Expires: Thu, 10 Jul 2025 10:38:54 GMT
Last-Modified: Tue, 10 Jun 2025 10:38:58 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET feporno.com/favicon.ico
301 Moved Permanently 1.2 kB URL
feporno.com/favicon.ico
IP / ASN
65.109.145.36
#24940 Hetzner Online GmbH
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 1.2 kB (1150 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject feporno.com
Fingerprint 72:D2:2A:D2:5C:2D:17:EF:78:A6:F5:DA:5F:1D:19:13:C7:AE:5B:F2
Validity Fri, 09 May 2025 10:06:38 GMT - Thu, 07 Aug 2025 10:06:37 GMT
GET /favicon.ico HTTP/1.1
Host: feporno.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
location: https://feporno.cc/favicon.ico
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
GET www.redd.tube/
301 Moved Permanently 0 B IP / ASN
104.26.15.75
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.redd.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 15 Jun 2025 03:54:51 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 15 Jun 2025 04:54:51 GMT
Location: https://www.redd.tube/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TJtzf2PDnTgJxb8EeLktPVE4vCWp%2FgTqTsJVCY3afWD7G2JGi4AVW6knQ1j9N3TSmUPvAES%2FhZTyBya3WFoAcFMnevtdviExcWtkP6Hzq8%2B36ClJFcZTWIE7E4ixCiE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 94ff20e5d9350b31-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=463&min_rtt=463&rtt_var=231&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=342&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET i.xgroovy.com/contents/videos_screenshots/284000/284551/preview.jpg
200 OK 40 kB URL
i.xgroovy.com/contents/videos_screenshots/284000/284551/preview.jpg
IP / ASN
45.133.44.3
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 608x1080, components 3
First Seen 2025-06-15
Last Seen 2025-07-29
Times Seen 13
Size 40 kB (39972 bytes)
MD5 2319973661b0c92e7d98ce124b65a0df
SHA1 89df1f488c5d223ea200b462521e80f235b19d98
SHA256 a023f5328feaf0958190fbc3048bb920afb87ca2669d648f3acfc402952719d9
Certificate Info
Issuer Let's Encrypt
Subject i.xgroovy.com
Fingerprint 2A:D2:65:57:71:57:0C:AB:D0:64:8E:22:41:A6:17:15:63:DE:05:D1
Validity Fri, 13 Jun 2025 04:32:06 GMT - Thu, 11 Sep 2025 04:32:05 GMT
GET /contents/videos_screenshots/284000/284551/preview.jpg HTTP/1.1
Host: i.xgroovy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 39972
server: nginx
last-modified: Wed, 15 Mar 2023 04:16:07 GMT
etag: "64114687-9c24"
cache-control: max-age=31536000
expires: Mon, 15 Jun 2026 03:54:43 GMT
x-cdn-host-id: ah1003,ah0543
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pornoperso.com/wp-content/uploads/2022/01/espanolas-desnudas-periscope.jpg
200 OK 20 kB URL
pornoperso.com/wp-content/uploads/2022/01/espanolas-desnudas-periscope.jpg
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 600x337, components 3
First Seen 2025-06-15
Last Seen 2025-07-31
Times Seen 9
Size 20 kB (20182 bytes)
MD5 140a29c3820fe1e11a2cbdbd53520aa3
SHA1 40d0a62fc31f1634ddc047145ccee1f1eb3531e8
SHA256 584dca81abc8cfdba386906890678d4fdcea8f3ae6f1f5b76498bc9e69449701
Certificate Info
Issuer Google Trust Services
Subject pornoperso.com
Fingerprint 0B:CD:F1:5F:E0:A2:D1:A3:CC:5D:7C:2C:BC:30:D9:79:0E:B2:E6:D5
Validity Tue, 22 Apr 2025 08:51:15 GMT - Mon, 21 Jul 2025 09:47:22 GMT
GET /wp-content/uploads/2022/01/espanolas-desnudas-periscope.jpg HTTP/1.1
Host: pornoperso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 20182
version: MS25042301
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
expires: Thu, 23 Apr 2026 19:48:22 GMT
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
accept-ranges: bytes
last-modified: Wed, 23 Apr 2025 19:49:42 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 3683657
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Cq60t9GRWGnG46HAV%2B9%2FgOb4%2FeI%2BidsXtbXqgyXGB8fUFNtuZ9VahE2oimhaYk5spxPu0YOAP%2F4oox20IllvxESN1tEuTAUUdzLVUw%3D%3D"}]}
server: cloudflare
cf-ray: 94ff20bfcde256c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/e9/a7/b0/e9a7b0bc3d24bf01966f26524130c8be/e9a7b0bc3d24bf01966f26524130c8be.5.jpg
200 OK 13 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/e9/a7/b0/e9a7b0bc3d24bf01966f26524130c8be/e9a7b0bc3d24bf01966f26524130c8be.5.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-03-17
Last Seen 2025-06-15
Times Seen 2
Size 13 kB (12701 bytes)
MD5 9c1d0702c5800e1e539e43af20e7f332
SHA1 5a18871fc4902eb7bacc1b7346eee0757305f9c7
SHA256 2358f4378d46a0938dc877958f331e0205ac63c8c8387b1eb5610a4c9691da92
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/e9/a7/b0/e9a7b0bc3d24bf01966f26524130c8be/e9a7b0bc3d24bf01966f26524130c8be.5.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 12701
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Mon, 04 Oct 2021 16:51:13 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJEQH3mFcjAAwBJRPCPQH3EucEAAwBbT1apAHXpEgjAA
x-77-nzt-ray: 0ef5851b987059e604444e68114c822b
x-accel-expires: @1757690202
x-accel-date: 1747643500
x-accel-date-max: 1716218199
x-77-cache: HIT
x-77-age: 2316184
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.blacktowhite.net/data/xfmg/custom_thumbnail/687/687239-d136872fae0b62fc9ac81ca8112d60a9.jpg?1697482434
200 OK 19 kB URL
www.blacktowhite.net/data/xfmg/custom_thumbnail/687/687239-d136872fae0b62fc9ac81ca8112d60a9.jpg?1697482434
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3
First Seen 2025-03-10
Last Seen 2025-06-15
Times Seen 2
Size 19 kB (19118 bytes)
MD5 86783522aca5df3c75bcbc4335f68afe
SHA1 45fc4a389eecfe8bf99b0e266473af88cc0dddb7
SHA256 8382d7c6128ff5d21254be52f9a8d7868eb1c9e2668db382af66f6b34e3e36b0
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /data/xfmg/custom_thumbnail/687/687239-d136872fae0b62fc9ac81ca8112d60a9.jpg?1697482434 HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 19118
last-modified: Mon, 16 Oct 2023 18:53:54 GMT
etag: "652d86c2-4aae"
expires: Sun, 29 Jun 2025 03:54:43 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET vidmo.org/favicon.ico
200 OK 5.4 kB IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer ZeroSSL
Subject vidmo.org
Fingerprint 55:2A:92:C3:B4:BE:A5:94:65:51:0B:27:D2:FF:A6:C8:47:5C:2C:F3
Validity Wed, 07 May 2025 00:00:00 GMT - Tue, 05 Aug 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: vidmo.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cf-st.sc-cdn.net/o/Og2lfEVlA7nm18IgJ5ZKy.256.IRZXSOY?mo=GkcaDRoAGgAyAQ9IAlAuYAFaEERmTGFyZ2VUaHVtYm5haWyiARAIgAIiCxIAKgdJUlpYU09ZogEQCJoKIgsSACoHSVJaWFNPWQ==&uc=46
200 OK 8.3 kB URL
cf-st.sc-cdn.net/o/Og2lfEVlA7nm18IgJ5ZKy.256.IRZXSOY?mo=GkcaDRoAGgAyAQ9IAlAuYAFaEERmTGFyZ2VUaHVtYm5haWyiARAIgAIiCxIAKgdJUlpYU09ZogEQCJoKIgsSACoHSVJaWFNPWQ==&uc=46
IP / ASN
3.163.248.4
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc60.31.102", baseline, precision 8, 360x640, components 3
First Seen 2025-06-02
Last Seen 2025-07-29
Times Seen 18
Size 8.3 kB (8326 bytes)
MD5 9ae782615a95c7cbc4d64018edb5fe82
SHA1 9b9fb175a0179dfee853c0983eed0a0973bc83f6
SHA256 59e044b22111bd405b0fa7e1f7501976c3a0513e686498461579eccff7302eac
Certificate Info
Issuer DigiCert Inc
Subject *.sc-cdn.net
Fingerprint D8:E7:5D:83:53:3F:B9:D8:07:EC:A5:10:40:4E:62:9E:A0:DA:53:22
Validity Mon, 21 Oct 2024 00:00:00 GMT - Mon, 20 Oct 2025 23:59:59 GMT
GET /o/Og2lfEVlA7nm18IgJ5ZKy.256.IRZXSOY?mo=GkcaDRoAGgAyAQ9IAlAuYAFaEERmTGFyZ2VUaHVtYm5haWyiARAIgAIiCxIAKgdJUlpYU09ZogEQCJoKIgsSACoHSVJaWFNPWQ==&uc=46 HTTP/1.1
Host: cf-st.sc-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 8326
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD, PUT
Access-Control-Max-Age: 0
Last-Modified: Thu, 20 Jun 2024 08:26:49 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 13 Jun 2025 21:12:35 GMT
ETag: "9ae782615a95c7cbc4d64018edb5fe82"
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: WfWLKMiyClxtJ-oKd1WUrTxLileCZKYJeWCyht722Xt1CmecQbXvxQ==
Age: 110808
GET bestincestvideos.com/thumbs/570/3544021177292114570_0.jpg
200 OK 4.8 kB URL
bestincestvideos.com/thumbs/570/3544021177292114570_0.jpg
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-01-27
Last Seen 2025-07-24
Times Seen 8
Size 4.8 kB (4755 bytes)
MD5 ee059939b42287a1faa8d590f08d68b9
SHA1 7b74c4da78b88052ef783ab581167eb2ad455f80
SHA256 c955a28fc5bc6faaaf049beddb86900eab0e82cf0d5a69081f8bda7375d3131c
Certificate Info
Issuer Google Trust Services
Subject bestincestvideos.com
Fingerprint 99:A6:B4:57:0A:B2:23:49:B4:12:9A:2F:91:E5:EC:A5:5D:E8:DB:88
Validity Sun, 01 Jun 2025 17:56:11 GMT - Sat, 30 Aug 2025 18:53:55 GMT
GET /thumbs/570/3544021177292114570_0.jpg HTTP/1.1
Host: bestincestvideos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 4755
server: cloudflare
last-modified: Sat, 19 Feb 2022 17:42:34 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "62112c0a-1293"
expires: Sat, 28 Jun 2025 16:31:03 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 1423419
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OqOx58BJruaIs%2Bh0R5Oq59bwmp3EVSrgiGg1chtx7OGxSpOoFj1lc7fGJij%2BcX9PfKDAG6TKtrl3ZxQYybzTMO%2B5U90fLdwY2rM8toq%2FoexHyA%3D%3D"}]}
cf-ray: 94ff20b7df945689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.hgimg00.com/upload/vod/20240128-1/567d70f043f1d5f07207688d507c5d2d.jpg
200 OK 75 kB URL
img.hgimg00.com/upload/vod/20240128-1/567d70f043f1d5f07207688d507c5d2d.jpg
IP / ASN
173.239.210.31
#55154 MADGEN-01
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 946x525, components 3
First Seen 2024-08-20
Last Seen 2025-07-30
Times Seen 47
Size 75 kB (75363 bytes)
MD5 9c7fad87bd27bda42086abc1577f64d9
SHA1 9cd2233202eb918f2dc8e32f1d181c12e4f7553e
SHA256 037851b1da8f81305fe2b33c2d54c32f40ef7a0a8d6489e40c55ba4f28760e16
Certificate Info
Issuer Sectigo Limited
Subject img.hgimg00.com
Fingerprint 89:3C:A8:96:4E:20:BA:74:72:AF:1D:51:26:F2:5F:AE:9B:21:76:15
Validity Sat, 14 Sep 2024 00:00:00 GMT - Sun, 14 Sep 2025 23:59:59 GMT
GET /upload/vod/20240128-1/567d70f043f1d5f07207688d507c5d2d.jpg HTTP/1.1
Host: img.hgimg00.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 75363
last-modified: Sun, 28 Jan 2024 13:32:10 GMT
etag: "65b6575a-12663"
expires: Tue, 17 Jun 2025 21:40:05 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET css.4jpg.top/mycss/av4.css?33
200 OK 4.2 kB URL
css.4jpg.top/mycss/av4.css?33
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type Unicode text, UTF-8 text
First Seen 2025-04-08
Last Seen 2025-08-01
Times Seen 225
Size 4.2 kB (4158 bytes)
MD5 e05d356eb3c9cb0366e5491f098c5b66
SHA1 9c82f99795bf55512147a0bd629e9775446291bf
SHA256 7c7a5f32e5c6a2e6e1f3e71112f35691714019685cc4c7d567e158cb32d1579c
GET /mycss/av4.css?33 HTTP/1.1
Host: css.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jun 2025 03:54:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
etag: W/"103e-62edbddabc000"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Cake
Cache-Control: public, max-age=360000
X-Proxy-Cache-192g-LA: HIT
Xkey-192LA: jcss./mycss/av4.css?33-A-css.4jpg.top--myzone---no
Age: 72859
cf-cache-status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lrlenDDrEQ4JmmnoCpEUA203jl7ECxizYtr4a8TnDwEFpwa22qEq3bQDrmqRcuz0lUez5I3B2tdETwikoFHIlXt4S6PhPMPHo6ytQQsbsQERGcQCyDdf5nhIl3rkqiA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 94ff20b5f85e0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=429&min_rtt=429&rtt_var=214&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=350&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg
200 OK 32 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-08
Last Seen 2025-07-03
Times Seen 8
Size 32 kB (32500 bytes)
MD5 01efbbc6d247e7f7dc60683d0f943e1f
SHA1 2c9a03a81cc4fb90ea3f3b190f9a9d29bf15305b
SHA256 b70fc7c45ccf5a3873d698b1cf0adce135e078f7c79fbb7a5eff0ff3eae87101
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 32500
last-modified: Sat, 08 Feb 2025 23:27:04 GMT
expires: Tue, 09 Feb 2027 11:27:04 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a514cc5f21c3f148"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET twitter.yandex.com.tr/favicon.ico
404 Not Found 0 B URL
twitter.yandex.com.tr/favicon.ico
IP / ASN
87.250.255.11
#13238 YANDEX LLC
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer GlobalSign nv-sa
Subject *.xn--d1acpjx3f.xn--p1ai
Fingerprint 95:27:21:57:03:ED:BF:A6:49:D1:C2:E6:6E:55:14:3C:75:7D:9B:37
Validity Wed, 16 Apr 2025 08:08:59 GMT - Tue, 14 Oct 2025 20:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: twitter.yandex.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-length: 12214
content-type: text/html; charset=utf-8
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Sec-CH-Viewport-Width, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT, Width
set-cookie: is_gdpr_b=CJzWUhCmxgIYASgB; Path=/; Domain=.yandex.com.tr; Expires=Tue, 15 Jun 2027 03:54:53 GMT; SameSite=None; Secure
_yasc=nPHyzM5uAmfFzsrbD9xrOHtaVpqEI3q8M+bzPZ5/tGJAiJUiSBZgbZ3wOFTC+eGcmuqE; Path=/; Domain=.yandex.com.tr; Expires=Tue, 15 Jun 2027 03:54:53 GMT; Secure
is_gdpr=1; Path=/; Domain=.yandex.com.tr; Expires=Tue, 15 Jun 2027 03:54:53 GMT; SameSite=None; Secure
is_gdpr_b=CJzWUhCmxgIYAQ==; Path=/; Domain=.yandex.com.tr; Expires=Tue, 15 Jun 2027 03:54:53 GMT; SameSite=None; Secure
_yasc=4lcAt9oit96/4tkHdLq7Ft4FH1RGd+9uClDpTtwiQ2KKZ3HCxTGymTHtrBFw/eYBYws=; domain=.yandex.com.tr; path=/; expires=Wed, 13 Jun 2035 03:54:53 GMT; secure
i=GhC3Rhp8cy3aPVcyTyRvYulL72Dk+NPCU5U+trn75bGCqJZvp8P5JC9OtoLlNyatJgvool3R84jCEOPR7D6OhbBtdO4=; Expires=Tue, 15-Jun-2027 03:54:53 GMT; Domain=.yandex.com.tr; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7940735541749959693; Expires=Tue, 15-Jun-2027 03:54:53 GMT; Domain=.yandex.com.tr; Path=/; Secure; SameSite=None
yashr=7392017371749959693; Path=/; Domain=.yandex.com.tr; Expires=Mon, 15 Jun 2026 03:54:53 GMT; SameSite=None; Secure; HttpOnly
bh=YI2IucIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com.tr; Expires=Mon, 20 Jul 2026 03:54:53 GMT; SameSite=None; Secure
content-security-policy: img-src 'self' yastatic.net data: yandex.com.tr favicon.yandex.net avatars.mds.yandex.net yabs.yandex.ru mc.admetrica.ru mc.yandex.com *.mc.yandex.ru adstat.yandex.ru mc.yandex.com.tr mc.yandex.ru;default-src 'none';script-src yastatic.net yandex.com.tr mc.yandex.ru *.mc.yandex.ru adstat.yandex.ru mc.yandex.com.tr 'nonce-UHSwuuqErzbuDaWDrVC3bA==';style-src yastatic.net 'unsafe-inline';connect-src yandex.com.tr yabs.yandex.ru mc.yandex.ru *.mc.yandex.ru adstat.yandex.ru mc.admetrica.ru mc.yandex.md mc.yandex.com.tr;child-src mc.yandex.ru mc.yandex.md mc.yandex.com.tr;report-uri https://csp.yandex.net/csp?project=morda&from=morda.error404.com.tr&showid=1749959693826508-6058567961794073554-balancer-l7leveler-kubr-yp-sas-178-BAL&h=stable-portal-any-3.vla.yp-c.yandex.net&yandexuid=7940735541749959693&version=2025-06-10-146
date: Sun, 15 Jun 2025 03:54:53 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
x-content-type-options: nosniff
x-yandex-req-id: 1749959693826508-6058567961794073554-balancer-l7leveler-kubr-yp-sas-178-BAL
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/97A6399.jpg
200 OK 21 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/97A6399.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 8000x8001, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2024-08-19
Last Seen 2025-07-24
Times Seen 12
Size 21 kB (20925 bytes)
MD5 11742393e00bf04408b763637e5891fa
SHA1 54f073124b4ee08e32ad12cccc0936561ff1e06b
SHA256 5a14c61a84e07ebb1893d275690f221926b82faf161b5fe11024aa3a4019254f
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/97A6399.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 20925
vary: x-s-token
last-modified: Fri, 05 Oct 2018 08:45:22 GMT
etag: "51bd-577774abfa87f"
x-cache: HIT
x-whom: cdn06
accept-ranges: bytes
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/a7/1d/1b/a71d1b4206567d22558b8b7ac03d21f7/a71d1b4206567d22558b8b7ac03d21f7.22.jpg
200 OK 20 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/a7/1d/1b/a71d1b4206567d22558b8b7ac03d21f7/a71d1b4206567d22558b8b7ac03d21f7.22.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-05-24
Last Seen 2025-07-21
Times Seen 12
Size 20 kB (19968 bytes)
MD5 82b67c1fc0d9be200c0d3c9f736b1597
SHA1 0df9d136b19fad3ad8f317f03efe43ac1dbbb25e
SHA256 bd16ab7a2f1a8c1c8aa71f420e6d9bc696c9e9447547f29a7f1941bc1ffe8e62
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/a7/1d/1b/a71d1b4206567d22558b8b7ac03d21f7/a71d1b4206567d22558b8b7ac03d21f7.22.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 19968
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 08 Mar 2023 16:24:24 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: A7lMCRE3Nzf/hlQjACUTwjc3Nzf/eFBTAI/0Ot03Nzeh
x-77-nzt-ray: 0ef5851b987059e603444e68c6249d2a
x-77-cache: HIT
x-accel-expires: @1752552197
x-accel-date: 1747644285
x-accel-date-max: 1700711312
x-77-age: 2315398
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ph.pornfactory.info/data/23/db/5f/23db5fc9926915ca8a00d5ec5d8efad8.jpg
200 OK 7.4 kB URL
ph.pornfactory.info/data/23/db/5f/23db5fc9926915ca8a00d5ec5d8efad8.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2024-05-08
Last Seen 2025-07-29
Times Seen 21
Size 7.4 kB (7355 bytes)
MD5 323705deeb7601a8dc1aaaebd2731460
SHA1 8c0948cb80ec0320c43739abb804572417530253
SHA256 92311eee4d35850c50ab148062cccef1bd5afb3223722fb1d2616b6dca12992d
Certificate Info
Issuer Google Trust Services
Subject pornfactory.info
Fingerprint 78:46:B3:CF:EA:D2:D2:BB:19:FF:E5:26:21:01:C8:24:36:B6:40:B8
Validity Thu, 12 Jun 2025 01:50:08 GMT - Wed, 10 Sep 2025 02:48:39 GMT
GET /data/23/db/5f/23db5fc9926915ca8a00d5ec5d8efad8.jpg HTTP/1.1
Host: ph.pornfactory.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:48 GMT
content-type: image/jpeg
content-length: 7355
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581253146.594052
etag: 323705deeb7601a8dc1aaaebd2731460
last-modified: Sun, 09 Feb 2020 12:59:09 GMT
x-timestamp: 1581253148.99740
x-trans-id: txad77e2ad0f904d2296e34-006808f115
x-openstack-request-id: txad77e2ad0f904d2296e34-006808f115
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Tue, 17 Jun 2025 03:54:48 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=R5lKMGeid2%2BB9ZdYWCk0IiHqpRP8q2FmFkj1eMMY8mIAj7KVnkUO3vp6cKcUtGoE0UCubCV8h%2FGzi0NF61bv8UAeFgrEmDd0dOqB%2FaXub42y"}]}
cf-ray: 94ff20d28f095687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.mydesii.com/favicon.ico
302 Found 1.8 kB URL
www.mydesii.com/favicon.ico
IP / ASN
172.67.184.99
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 1.8 kB (1764 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject mydesii.com
Fingerprint 41:96:60:55:5B:03:71:86:82:92:7E:35:78:B0:CF:1D:5E:62:1A:4A
Validity Fri, 16 May 2025 14:27:45 GMT - Thu, 14 Aug 2025 15:25:26 GMT
GET /favicon.ico HTTP/1.1
Host: www.mydesii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wz1WRCV3AtxX1apT6YHLpaoVKDSg90F70uHrX%2F3ZQYCCn%2Bw9t9D6r%2B3WsDa2AmSexAg3Cd9JKo5sUEcxIkZPA9OnR5NwVeoEGHfTChEhGwLl623BdZuLvEpJLL9vwQOH9A4%3D"}],"group":"cf-nel","max_age":604800}
link: <https://www.mydesii.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://www.mydesii.com/wp-content/uploads/2024/11/cropped-icon-32x32.png
alt-svc: h3=":443"; ma=86400
cf-cache-status: BYPASS
cf-ray: 94ff20e19963b500-OSL
server: cloudflare
vary: Accept-Encoding
server-timing: cfL4;desc="?proto=QUIC&rtt=24768&min_rtt=2845&rtt_var=19305&sent=111&recv=114&lost=0&retrans=0&sent_bytes=44130&recv_bytes=7219&delivery_rate=394288&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=26700&unsent_bytes=0&cid=668d42b9c0328193&ts=8027&inflight_dur=227&x=80"
GET ansuko.net/wp-content/uploads/2024/12/z8vzlqwx_header.jpg
200 OK 201 kB URL
ansuko.net/wp-content/uploads/2024/12/z8vzlqwx_header.jpg
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x440, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 201 kB (201078 bytes)
MD5 e00da9e1f448a35f8b60870a27e35b81
SHA1 1bda663dc1d7f6e9278d3b6dadea91e05214aedc
SHA256 f97cff7dca9992e6956d961f337031a5660bdd27097aa7eb5616d34f739e8867
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2024/12/z8vzlqwx_header.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 201078
server: cloudflare
last-modified: Sat, 14 Dec 2024 14:10:31 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "675d91d7-31176"
accept-ranges: bytes
age: 2538402
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QPs0itqDRfcIReOF8eRI2s3PhSzwmbZAy7km9AldIyTSORi1UnWlEkR4TN9Xu2ZEU7MLU1Gd%2FiCAwMqfjsrcNN39C5BKdvf8"}]}
cf-ray: 94ff20bb2ecd7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/8e/b5/89/8eb589ecb85c55e99dfe6c9f383dcfef/8eb589ecb85c55e99dfe6c9f383dcfef.5.jpg
200 OK 10 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/8e/b5/89/8eb589ecb85c55e99dfe6c9f383dcfef/8eb589ecb85c55e99dfe6c9f383dcfef.5.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-06-30
Times Seen 2
Size 10 kB (10348 bytes)
MD5 4cfa70857ba74b38b8457ce5e241acb4
SHA1 47b2cee90d542c28c27dc02b6f7cfc9df677f94f
SHA256 bf389a85abac7683b0bc4617e481d5b879cbc1e10d21e81f3354ae12662a9131
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/8e/b5/89/8eb589ecb85c55e99dfe6c9f383dcfef/8eb589ecb85c55e99dfe6c9f383dcfef.5.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 10348
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Mon, 05 May 2025 00:33:01 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJEQH3Wi0jAAwBJRPCQAH36VMQAAwBj/Q62AH32RUAAA
x-77-nzt-ray: 0ef5851b987059e603444e6806668f2a
x-accel-expires: @1756946663
x-accel-date: 1747654313
x-accel-date-max: 1746578663
x-77-cache: HIT
x-77-age: 2305370
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET obmenvsem.org/favicon.ico
200 OK 15 kB URL
obmenvsem.org/favicon.ico
IP / ASN
82.192.80.133
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2024-06-17
Last Seen 2025-07-31
Times Seen 108
Size 15 kB (15086 bytes)
MD5 5fcfc1a6b1d7b1c61867bbf650b725af
SHA1 ef131ddbc75f149934d2a54bf8ef27eb401d26d7
SHA256 aa0a1280a119f0e79c45c6a910a29bdc370bf6f4c41e40b9c156f498c23fdb59
Certificate Info
Issuer Let's Encrypt
Subject obmenvsem.org
Fingerprint BB:AA:03:C6:63:C1:8D:2C:B7:6D:34:1A:C7:51:8E:E3:CF:A9:5E:22
Validity Thu, 01 May 2025 20:49:39 GMT - Wed, 30 Jul 2025 20:49:38 GMT
GET /favicon.ico HTTP/1.1
Host: obmenvsem.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: image/x-icon
content-length: 15086
last-modified: Wed, 08 Nov 2023 12:00:19 GMT
etag: "654b7853-3aee"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET fmtu.sltusl.com/upload/vod/20220903-4/4ae5651b5f92fdfb008d184998c03d78.jpg
404 Not Found 0 B URL
fmtu.sltusl.com/upload/vod/20220903-4/4ae5651b5f92fdfb008d184998c03d78.jpg
IP / ASN
156.238.194.67
#50183 CenturyNetworks Ltd
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject fmtu.sltusl.com
Fingerprint 3B:56:1F:60:5C:4F:9F:72:5F:AE:5A:FB:B8:98:3C:BD:7D:9C:0B:BE
Validity Fri, 30 May 2025 15:37:42 GMT - Thu, 28 Aug 2025 15:37:41 GMT
GET /upload/vod/20220903-4/4ae5651b5f92fdfb008d184998c03d78.jpg HTTP/1.1
Host: fmtu.sltusl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
content-length: 3
date: Sun, 15 Jun 2025 03:54:47 GMT
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/66692ffb84e672f442d43f7449122fc4.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/66692ffb84e672f442d43f7449122fc4.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/66692ffb84e672f442d43f7449122fc4.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET i0.wp.com/jpgjingpinx.com/upload/vod/20231217-1/3fd3ffd64585ccc72d34fa52a8dc0294.jpg
200 OK 40 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20231217-1/3fd3ffd64585ccc72d34fa52a8dc0294.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 7
Size 40 kB (39538 bytes)
MD5 0cc08a2b525007ad30c85a027dfcde81
SHA1 bd0ed3c66f49e43caabd6697dc0785604969b18c
SHA256 e28e1ff6fdb9c01b6fab6d354cb692fe96b43b8bbfbf43e1afa2ccfdae3b5bb4
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20231217-1/3fd3ffd64585ccc72d34fa52a8dc0294.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 39538
last-modified: Tue, 22 Apr 2025 02:59:12 GMT
expires: Thu, 22 Apr 2027 14:59:12 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20231217-1/3fd3ffd64585ccc72d34fa52a8dc0294.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8a1d8cfa205c4181"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/ef6d2d50f3b07044c5e84dbc298bd19b.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/ef6d2d50f3b07044c5e84dbc298bd19b.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/ef6d2d50f3b07044c5e84dbc298bd19b.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET timg216.top/videos/de496a576755f4f863d549bbdf44eda1c77377a2/cover/5_505_259?ih=1
200 OK 66 kB URL
timg216.top/videos/de496a576755f4f863d549bbdf44eda1c77377a2/cover/5_505_259?ih=1
IP / ASN
104.22.20.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-06-02
Last Seen 2025-07-30
Times Seen 17
Size 66 kB (65899 bytes)
MD5 268f74257a2066f354645bff9e2f5e91
SHA1 18c71de42c2b4dca9ef2a47b22f4951685619b2b
SHA256 0e8eb8c80a2fef30a870774bb198005708353e4728c4aff88c772804988276fc
Certificate Info
Issuer Google Trust Services
Subject timg216.top
Fingerprint 77:83:68:54:E0:99:C9:F6:C6:B3:2B:5F:C1:56:9E:4F:34:BE:32:D9
Validity Fri, 06 Jun 2025 03:04:17 GMT - Thu, 04 Sep 2025 04:01:55 GMT
GET /videos/de496a576755f4f863d549bbdf44eda1c77377a2/cover/5_505_259?ih=1 HTTP/1.1
Host: timg216.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 65899
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 18:11:27 GMT
vary: Accept-Encoding
etag: "67c7424f-1016b"
expires: Tue, 10 Jun 2025 13:49:51 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 1870748
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c6lf3lCKvVFB2%2F4ib0bxXib5YsRjVtA80j4JJQj7Rd3HDVuN4seWFiqXaFzUwB%2FOQddkJslOIk7q5RsgTy0MHXBAgQIJZlWlCA%3D%3D"}]}
cf-ray: 94ff20a76bfe5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.blacktowhite.net/data/xfmg/thumbnail/482/482807-d01ef138d5caf4f9c8e3da251327eb8f.jpg?1636984726
200 OK 122 kB URL
www.blacktowhite.net/data/xfmg/thumbnail/482/482807-d01ef138d5caf4f9c8e3da251327eb8f.jpg?1636984726
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-19
Last Seen 2025-06-15
Times Seen 5
Size 122 kB (121887 bytes)
MD5 8843fed7ed8a75c86bc4d73ffa469452
SHA1 d5403cbbb54f8d62cdd062f017006dbea82ee598
SHA256 af7a8651e02dacc75ba84a473f1874120c68492440b83abf98fb5603b7edee67
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /data/xfmg/thumbnail/482/482807-d01ef138d5caf4f9c8e3da251327eb8f.jpg?1636984726 HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 121887
last-modified: Mon, 15 Nov 2021 14:35:40 GMT
etag: "6192703c-1dc1f"
expires: Sun, 29 Jun 2025 03:54:45 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET media.hentaifreak.org/2017/07/injoku-no-heya-episode-1.jpg
200 OK 23 kB URL
media.hentaifreak.org/2017/07/injoku-no-heya-episode-1.jpg
IP / ASN
144.178.205.173
#39686 Eurofiber Nederland BV
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 640x360, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 23 kB (23048 bytes)
MD5 76f7ab27d932c7c0a42fdc12b7364d22
SHA1 06eabb3f307c45d2e61ed6697abff8ecb25d5c9f
SHA256 8d634e275740e132f4d5d2bb04f1a6455d3d0b2d0e21cc8522959029dd0a510c
Certificate Info
Issuer Let's Encrypt
Subject hentaifreak.org
Fingerprint C0:50:F4:07:4F:B7:A1:3E:26:32:FA:97:63:74:CF:47:E5:FD:D2:43
Validity Fri, 13 Jun 2025 15:35:10 GMT - Thu, 11 Sep 2025 15:35:09 GMT
GET /2017/07/injoku-no-heya-episode-1.jpg HTTP/1.1
Host: media.hentaifreak.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
x-amz-request-id: 3496441941
accept-ranges: bytes
content-length: 23048
content-type: image/jpeg
last-modified: Sat, 25 Mar 2023 05:00:33 GMT
etag: "76f7ab27d932c7c0a42fdc12b7364d22"
x-amz-version-id: Njk2OTAwMDAudjEuMi4xNjc5NzIwNDMz
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 604800
cache-control: public, max-age=604800
X-Firefox-Spdy: h2
GET static.bad.news/images/dm/b09ad75043d92fababb3ab677c53973e.jpg
200 OK 29 kB URL
static.bad.news/images/dm/b09ad75043d92fababb3ab677c53973e.jpg
IP / ASN
104.26.12.211
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x360, components 3
First Seen 2025-06-05
Last Seen 2025-07-26
Times Seen 4
Size 29 kB (28840 bytes)
MD5 ba7ce48b1c48b2b324efa7386d975217
SHA1 1d89f0e15fee61a0875e77411af9de67857d2b50
SHA256 fee0689c94f1b6e0c62d1fea301e1ff7d6517ff6d9758a0ef138866dba4f64b6
Certificate Info
Issuer Google Trust Services
Subject 323e0cdf.sni.cloudflaressl.com
Fingerprint 55:86:78:CA:C5:E7:3D:35:91:89:7E:F9:9E:3F:99:4F:24:FE:14:B6
Validity Sat, 31 May 2025 10:46:28 GMT - Fri, 29 Aug 2025 11:46:23 GMT
GET /images/dm/b09ad75043d92fababb3ab677c53973e.jpg HTTP/1.1
Host: static.bad.news
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 28840
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "ba7ce48b1c48b2b324efa7386d975217"
last-modified: Sat, 07 Oct 2023 10:24:10 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 5966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pXHhgWfvl%2BCvzis8wTWT8jRjZOO63bAMgTToWs6y%2FsFYpo2Vc3UtB4bp6GiMQwfyKrjnNSXPYMzHWX5NHoh%2BrXvL6KMkCS0sqcbMz4dM6DkADSmh3fX1zr25IS2aFggqFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 94ff20bde9d3b517-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=462&min_rtt=381&rtt_var=132&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3316&recv_bytes=1204&delivery_rate=7812949&cwnd=253&unsent_bytes=0&cid=35e3775565fba3d8&ts=2473&x=0"
X-Firefox-Spdy: h2
GET ansuko.net/wp-content/uploads/2024/07/9ay32dfw_header.jpg
200 OK 52 kB URL
ansuko.net/wp-content/uploads/2024/07/9ay32dfw_header.jpg
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x474, components 3
First Seen 2025-06-15
Last Seen 2025-07-08
Times Seen 2
Size 52 kB (52096 bytes)
MD5 a63dc3fdb5921f28d30390854f0b03b5
SHA1 57ab3b8f0304935f5cccecefc39f7a766723196b
SHA256 78fa5c15c6b5c080da306a09e5ae3661ab4d88ee8c9cc5dd257b82844b0ded20
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2024/07/9ay32dfw_header.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 52096
server: cloudflare
last-modified: Sat, 20 Jul 2024 22:19:52 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "669c3808-cb80"
accept-ranges: bytes
age: 1925851
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=a3J4zIR%2FY%2BDNTNvMgi%2Bwh2NMUyd%2BiHZwRkIZnvhV3VMyQEl8qSegS27KN9Nqwp%2FyhUx62kfGHP6shYvZMoExBmjswoA0F1XO"}]}
cf-ray: 94ff20c1b8df7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.qianju.cc/upload/vod/20220818-1/e4d07b0442eee15661ad2a692041e73d.jpg
0 B URL
img.qianju.cc/upload/vod/20220818-1/e4d07b0442eee15661ad2a692041e73d.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/vod/20220818-1/e4d07b0442eee15661ad2a692041e73d.jpg HTTP/1.1
Host: img.qianju.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET chobit.cc/favicon.ico
200 OK 3.6 kB IP / ASN
35.74.156.152
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 8 bits/pixel, 32x32, 8 bits/pixel
First Seen 2024-01-01
Last Seen 2025-07-30
Times Seen 36
Size 3.6 kB (3638 bytes)
MD5 9f7550d9fea6d0fd5ff7312b17e1b129
SHA1 3fcfd7f9266c272b1290a1c5e7a1e3b3e74a8e99
SHA256 03c4ec4d05e9212894f646d4a8fbc64181fb88d59063e5363ef69618ef0a51ab
Certificate Info
Issuer Amazon
Subject chobit.cc
Fingerprint 65:19:85:95:A8:FD:E4:7F:F0:1A:37:E7:6F:EC:10:2E:4C:06:5E:EF
Validity Sat, 25 Jan 2025 00:00:00 GMT - Mon, 23 Feb 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: chobit.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: image/vnd.microsoft.icon
content-length: 3638
set-cookie: AWSALBTG=7OZg+irYhk9dxT/G7sL/LkKn2n1q2H3nlhFv4VwUST/2dhKQsDFHsEWJ6Fk/C1yjhRk6k7YvCf+szbaiGO0NrmYwi4JVn8/EftzigPHY2KSCsc/FdjLezmhysWtRhmqoK9Oza7WPvheiDNL2yDWi9GVs6MlBtMZndqZB9ayucyf8; Expires=Sun, 22 Jun 2025 03:54:51 GMT; Path=/
AWSALBTGCORS=7OZg+irYhk9dxT/G7sL/LkKn2n1q2H3nlhFv4VwUST/2dhKQsDFHsEWJ6Fk/C1yjhRk6k7YvCf+szbaiGO0NrmYwi4JVn8/EftzigPHY2KSCsc/FdjLezmhysWtRhmqoK9Oza7WPvheiDNL2yDWi9GVs6MlBtMZndqZB9ayucyf8; Expires=Sun, 22 Jun 2025 03:54:51 GMT; Path=/; SameSite=None; Secure
AWSALB=ehXMi2e6kr8khBEMB2bk0PJ0yD3Ja5lXUrv3+TIe0a4z0uZ/x2I8AESdQk+DbzOd40nkefr6Qb3VE092m2d58QmTaJW22iE49pX4g8j1qrUdnaoH4ZrKiK0T5r9d; Expires=Sun, 22 Jun 2025 03:54:51 GMT; Path=/
AWSALBCORS=ehXMi2e6kr8khBEMB2bk0PJ0yD3Ja5lXUrv3+TIe0a4z0uZ/x2I8AESdQk+DbzOd40nkefr6Qb3VE092m2d58QmTaJW22iE49pX4g8j1qrUdnaoH4ZrKiK0T5r9d; Expires=Sun, 22 Jun 2025 03:54:51 GMT; Path=/; SameSite=None; Secure
server: Apache
last-modified: Wed, 09 Apr 2025 06:26:53 GMT
etag: "830dad-e36-632528e196540"
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
GET fav-hentai.com/wp-content/uploads/2024/06/0cb63a311b0adc2a326d474b7f21eecd.jpg
200 OK 17 kB URL
fav-hentai.com/wp-content/uploads/2024/06/0cb63a311b0adc2a326d474b7f21eecd.jpg
IP / ASN
104.18.29.11
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x405, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-24
Last Seen 2025-07-26
Times Seen 7
Size 17 kB (17182 bytes)
MD5 b13a1d687cff6bdeb2e0a8ed90a525ed
SHA1 6251bda0501e0405497cf1731e1c1ab8a65f0d9d
SHA256 7fbcadcf90c672d528f771a16f0d2e59a19f98b28af6054001a379d750ee258e
Certificate Info
Issuer Google Trust Services
Subject fav-hentai.com
Fingerprint 1F:67:DA:B9:9A:89:06:FF:6D:4E:02:C6:28:D4:EA:A6:68:A2:CD:E5
Validity Wed, 28 May 2025 01:54:16 GMT - Tue, 26 Aug 2025 02:54:14 GMT
GET /wp-content/uploads/2024/06/0cb63a311b0adc2a326d474b7f21eecd.jpg HTTP/1.1
Host: fav-hentai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/webp
content-length: 17182
cache-control: public, max-age=31536000
expires: Mon, 15 Jun 2026 03:54:44 GMT
last-modified: Sat, 08 Jun 2024 23:14:32 GMT
vary: User-Agent,User-Agent,Accept, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 94ff20b878d156a9-OSL
X-Firefox-Spdy: h2
GET www.blacktowhite.net/data/xfmg/thumbnail/212/212382-24c653940cba980230f295d3d6d0d34f.jpg?1540680137
200 OK 114 kB URL
www.blacktowhite.net/data/xfmg/thumbnail/212/212382-24c653940cba980230f295d3d6d0d34f.jpg?1540680137
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
First Seen 2025-02-08
Last Seen 2025-07-30
Times Seen 3
Size 114 kB (114075 bytes)
MD5 ab5a6b17c3b15f5194bbe9a890b7cb0c
SHA1 fe65f2322e20d0a7b02e74a2967edc560f41e2ae
SHA256 3439f0112677571c0d733df7fef079aa7d8985b0856715890cf3800143064508
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /data/xfmg/thumbnail/212/212382-24c653940cba980230f295d3d6d0d34f.jpg?1540680137 HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 114075
last-modified: Sun, 28 Oct 2018 00:03:55 GMT
etag: "5bd4fceb-1bd9b"
expires: Sun, 29 Jun 2025 03:54:44 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET img.imghuo.cfd/hd/media/videos/tmb/000/007/525/9.jpg
200 OK 11 kB URL
img.imghuo.cfd/hd/media/videos/tmb/000/007/525/9.jpg
IP / ASN
104.238.220.129
#23470 RELIABLESITE
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-08-20
Last Seen 2025-07-14
Times Seen 10
Size 11 kB (11364 bytes)
MD5 b408340f391448ec6a3e5ded95a10db9
SHA1 9968c3da5cbe053c97be654a4198859bc8d40079
SHA256 e71b903e169dd653331831571dac00087c3cd7df9b9daf221903f8c216a54883
Certificate Info
Issuer Let's Encrypt
Subject img.imghuo.cfd
Fingerprint 8E:A1:62:82:8D:80:F7:81:D5:85:E8:88:A3:92:94:47:71:0E:A0:E5
Validity Wed, 21 May 2025 07:47:38 GMT - Tue, 19 Aug 2025 07:47:37 GMT
GET /hd/media/videos/tmb/000/007/525/9.jpg HTTP/1.1
Host: img.imghuo.cfd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 15 Jun 2025 03:54:45 GMT
Content-Type: image/jpeg
Content-Length: 11364
Last-Modified: Sat, 23 Mar 2024 12:19:33 GMT
Connection: keep-alive
ETag: "65fec8d5-2c64"
Accept-Ranges: bytes
GET vidmo.pro/thumbs_320/69/37/693782030841f6e3c3d971e5fd7627fa/15791555.jpg
404 Not Found 0 B URL
vidmo.pro/thumbs_320/69/37/693782030841f6e3c3d971e5fd7627fa/15791555.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/69/37/693782030841f6e3c3d971e5fd7627fa/15791555.jpg HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
GET page.phic4.top/myda.php
200 OK 0 B URL
page.phic4.top/myda.php
IP / ASN
104.21.73.126
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject phic4.top
Fingerprint 7D:FB:B4:77:85:58:5A:A6:F5:90:D1:1A:18:37:82:49:6E:ED:B7:C6
Validity Thu, 01 May 2025 23:39:34 GMT - Thu, 31 Jul 2025 00:37:14 GMT
GET /myda.php HTTP/1.1
Host: page.phic4.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:48 GMT
content-type: text/html; charset=utf-8
server: cloudflare
myda: myda2001:4610:a:fb::79f8
vary: User-Agent, accept-encoding
age: 2460
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Sun, 15 Jun 2025 03:13:47 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MJQ3bcU5HoTNuoWkzOJJnXyQ1Uxq616sKBKkQvX%2FCht8BDE%2BiReRpLaNsFWa8z5LbSBSPpzZW2lVeVM3MP98%2F5tmp9z9Psycrk83vg%3D%3D"}]}
content-encoding: br
cf-ray: 94ff20d33e6eb500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET attachments-cdn-s.coub.com/coub_storage/coub/simple/cw_image/f41af376084/2d3a63cf70e6c69c0282e/med_1673185317_18wze7o_1471944011_1395059799_00032.jpg
200 OK 66 kB URL
attachments-cdn-s.coub.com/coub_storage/coub/simple/cw_image/f41af376084/2d3a63cf70e6c69c0282e/med_1673185317_18wze7o_1471944011_1395059799_00032.jpg
IP / ASN
95.181.182.182
#210756 EdgeCenter LLC
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc55.39.101", baseline, precision 8, 640x480, components 3
First Seen 2025-03-12
Last Seen 2025-07-15
Times Seen 6
Size 66 kB (65633 bytes)
MD5 748919c3e50253ad4b10db4ee13eeeee
SHA1 a317b3475779cf6882d733959754c923c0a5cff6
SHA256 3cfcb0d31f51148a93bd91ea90574bbec2f71d4a0dcfe6ddd31eb51a08ea8ec5
Certificate Info
Issuer Let's Encrypt
Subject 3fc4ed44-3fbc-419a-97a1-a29742511391.selcdn.net
Fingerprint 21:5F:54:63:C6:8C:33:26:22:0C:49:BF:E2:EB:3F:86:9B:83:D7:A0
Validity Wed, 28 May 2025 07:47:01 GMT - Tue, 26 Aug 2025 07:47:00 GMT
GET /coub_storage/coub/simple/cw_image/f41af376084/2d3a63cf70e6c69c0282e/med_1673185317_18wze7o_1471944011_1395059799_00032.jpg HTTP/1.1
Host: attachments-cdn-s.coub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 65633
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges
etag: "748919c3e50253ad4b10db4ee13eeeee"
last-modified: Sun, 08 Jan 2023 13:42:08 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1673185327.85460
x-trans-id: 8a3d19bb-e741-4c10-8ef0-eb61e1441005
age: 0
cache: HIT
x-cached-since: 2025-06-13T05:29:59+00:00
x-node: m9-up-gc231
accept-ranges: bytes
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/8a/02/8a02027358267881abb0324aca66e2dc/13090923.jpg
200 OK 10 kB URL
en.vidmo.pro/thumbs_320/8a/02/8a02027358267881abb0324aca66e2dc/13090923.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-12-21
Last Seen 2025-07-11
Times Seen 6
Size 10 kB (10010 bytes)
MD5 3c7473731ccc11829bc03b854908a98a
SHA1 440daf7a19df748823758db70650f923006d3419
SHA256 6a96e558a722e9da776e71363445f668bc75d503aa45f3270a9ffd1d760491bb
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/8a/02/8a02027358267881abb0324aca66e2dc/13090923.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 10010
last-modified: Fri, 02 Apr 2021 18:48:53 GMT
expires: Mon, 06 May 2024 16:18:25 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mydesii.com/wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg
301 Moved Permanently 9.7 kB URL
mydesii.com/wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg
IP / ASN
172.67.184.99
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 9.7 kB (9703 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject mydesii.com
Fingerprint 41:96:60:55:5B:03:71:86:82:92:7E:35:78:B0:CF:1D:5E:62:1A:4A
Validity Fri, 16 May 2025 14:27:45 GMT - Thu, 14 Aug 2025 15:25:26 GMT
GET /wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg HTTP/1.1
Host: mydesii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 15 Jun 2025 03:54:41 GMT
location: https://www.mydesii.com/wp-content/uploads/2024/04/Desi-Teen-Fucked-by-3-Boys-in-the-car.jpg
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QyCejUqbWrnTcqYy22A7Oi731x13fAefpbgRj8sjig7RDq%2FTNVaOOR5SPwQY4g0HtkeJfqNN75ShG8arEQQeDjT1EdM3MvJEBg%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94ff20a9a878b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.redd.tube/favicon.ico
301 Moved Permanently 0 B URL
www.redd.tube/favicon.ico
IP / ASN
104.26.15.75
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject redd.tube
Fingerprint 6A:A3:49:66:02:5D:88:4D:80:FE:94:BE:C2:A9:9E:59:D7:97:02:97
Validity Sun, 01 Jun 2025 15:05:19 GMT - Sat, 30 Aug 2025 16:05:04 GMT
GET /favicon.ico HTTP/1.1
Host: www.redd.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
content-length: 229
location: http://www.redd.tube/
cf-ray: 94ff20e348b00b51-OSL
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wJJ1tP6fEExiaj9WZsi0cGU%2Fqjmxgeblnto%2FHagLxA9n1wfnyqY6z0%2FTKBjX%2FguwuGbFWVnfy2MIDVjGTYHKv9xPB1mYpKIDxxkkApwVfJ%2BiR5zYJ3qF2HkbuFJvR6A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=448&min_rtt=348&rtt_var=132&sent=7&recv=12&lost=0&retrans=0&sent_bytes=3264&recv_bytes=1207&delivery_rate=7554782&cwnd=254&unsent_bytes=0&cid=0b5bd49d658c6a8b&ts=634&x=0"
X-Firefox-Spdy: h2
GET aniru.org/wp-content/uploads/2024/02/RJ01155231_ana_img_main.webp
200 OK 34 kB URL
aniru.org/wp-content/uploads/2024/02/RJ01155231_ana_img_main.webp
IP / ASN
172.67.135.62
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 560x420, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-04-11
Last Seen 2025-07-29
Times Seen 20
Size 34 kB (33618 bytes)
MD5 f53c54809afd8e7865c2a318b4b5f2ca
SHA1 e9b840044a7290cf7cfef280a6241f3d7c716bcc
SHA256 698a111dadf1953095a54e495e65e82942471d0e2d0c9bdff92cf382b05dbce6
Certificate Info
Issuer Google Trust Services
Subject aniru.org
Fingerprint 2A:61:D9:E9:91:8D:BF:F6:BF:C8:89:1C:9C:06:39:C0:31:0F:32:F9
Validity Wed, 30 Apr 2025 08:12:48 GMT - Tue, 29 Jul 2025 09:10:23 GMT
GET /wp-content/uploads/2024/02/RJ01155231_ana_img_main.webp HTTP/1.1
Host: aniru.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/webp
content-length: 33618
server: cloudflare
cache-control: private
last-modified: Sat, 17 Feb 2024 00:50:21 GMT
etag: "8352-611893ebc8d40"
vary: Accept, accept-encoding
accept-ranges: bytes
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FSC06FljTN0BtODwQazlBIcNF6r7W4OFsZYsWa3hAtCr0UUqScq5ebwNyjJXwNHntF8mbQIf9Nh8nwcKckqrA1Rb6A1Fzb8%3D"}]}
cf-ray: 94ff20b88cd056c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET av.4ani.uk/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
302 Found 188 kB URL
av.4ani.uk/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 188 kB (187609 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 4ani.uk
Fingerprint 05:1C:6C:88:05:05:42:D6:18:F9:38:76:76:86:EB:80:A4:80:02:E5
Validity Thu, 22 May 2025 15:12:41 GMT - Wed, 20 Aug 2025 16:10:22 GMT
GET /v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p] HTTP/1.1
Host: av.4ani.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 15 Jun 2025 03:54:39 GMT
content-type: text/html; charset=UTF-8
location: http://animal.zoo2.top/v/s/avfla.com/v/138470/1/1/title/[Father-daughter incest] After the mother remarried, the animal father fucked two daughters-AV welfare society-Popular AV video welfare community [23:34x718p]
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
pdojs-line8: host-av.4ani.uk4.194.8.20-myhost-av.4ani.uk38.220.248/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
phost: av.4ani.uk
pdojs-line355: notjp-anime-myhost-av.4ani.uk-filteron-
pdojs-line963: notjp-anime-myhost-av.4ani.uk-filteron-/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
pdo120: feedvid-, cachefileb-cacpdo3/ee/e4/16, lfm-13-5311383, lmd-1749959318, lud-1749959318, xfvlen-0, fsize-273840, played-
cache-control: public, max-age=14400
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qnbKVlnhl%2BTlGFhYf9wDgbc7g3oRBZ%2B2KM%2BITZwh2GJLB0iJM9vSB%2FmpyXSRjOkOjJQFiFmgMSRkH2%2FlW5TsjPhM9SNhzTA3"}]}
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Cake
x-proxy-cache-192g-la: MISS
xkey-192la: av.4ani.uk/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]-B-av.4ani.uk-av.4ani.uk-myzone---yes
x-proxy-cache-gjp: HIT
xkey-g-jp: av.4ani.uk/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]-B-av.4ani.uk--my_zone
cf-cache-status: MISS
cf-ray: 94ff209b2c2a568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET rule34.paheal.net/_thumbs/fdc63c7b302739a1f68edfd7cef4d07b/thumb.jpg
200 OK 1.9 kB URL
rule34.paheal.net/_thumbs/fdc63c7b302739a1f68edfd7cef4d07b/thumb.jpg
IP / ASN
185.100.87.48
#200651 FlokiNET ehf
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x108, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 1.9 kB (1869 bytes)
MD5 fa032e678cd94893c33ec6aecf4c3076
SHA1 ff06676ed6758b5ffb4c9e6e50789ef4562d922f
SHA256 5230f6fc6aab4b6aa7b3008767a5d04030c57223c98bfe5214129467de81d69c
Certificate Info
Issuer Let's Encrypt
Subject rule34.paheal.net
Fingerprint 14:19:38:B9:57:D4:0B:18:D5:5F:12:F6:60:8A:F4:36:25:BE:F4:9D
Validity Sat, 31 May 2025 08:55:26 GMT - Fri, 29 Aug 2025 08:55:25 GMT
GET /_thumbs/fdc63c7b302739a1f68edfd7cef4d07b/thumb.jpg HTTP/1.1
Host: rule34.paheal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31556926
date: Sun, 15 Jun 2025 03:54:44 GMT
etag: "6021ac53-74d"
last-modified: Mon, 08 Feb 2021 21:25:39 GMT
server: Unit/1.34.2
content-type: image/jpeg
content-length: 1869
X-Firefox-Spdy: h2
GET timg216.top/videos/23817a98a286cdf936b62fe2b6121cd2dbb74098/cover/5_505_259?ih=1
200 OK 56 kB URL
timg216.top/videos/23817a98a286cdf936b62fe2b6121cd2dbb74098/cover/5_505_259?ih=1
IP / ASN
104.22.20.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2024-12-19
Last Seen 2025-07-30
Times Seen 21
Size 56 kB (56241 bytes)
MD5 e4944475e6ff6414f11c037c1f34d862
SHA1 212aa4089fa3a408f031cbbbf0f17ba862f086bf
SHA256 ead1e930853c118af38e62145371d22294b2d748a5e90e34701d5d1aa9c41efa
Certificate Info
Issuer Google Trust Services
Subject timg216.top
Fingerprint 77:83:68:54:E0:99:C9:F6:C6:B3:2B:5F:C1:56:9E:4F:34:BE:32:D9
Validity Fri, 06 Jun 2025 03:04:17 GMT - Thu, 04 Sep 2025 04:01:55 GMT
GET /videos/23817a98a286cdf936b62fe2b6121cd2dbb74098/cover/5_505_259?ih=1 HTTP/1.1
Host: timg216.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 56241
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 09:31:37 GMT
vary: Accept-Encoding
etag: "67c6c879-dbb1"
expires: Tue, 10 Jun 2025 15:19:13 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 1882309
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bDjvgzrIem06JF6GCe%2BTtOCP3ReGDV7vh044334fNEhmjfk%2FOUbaOLYu0OSuq3vpXkSgShkqeGuJwOGSyWqG1YQ%2BkU5vtRdyEQ%3D%3D"}]}
cf-ray: 94ff20a77c065687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET media.hentaifreak.org/2016/10/cropped-favicon-1-32x32.png
200 OK 994 B URL
media.hentaifreak.org/2016/10/cropped-favicon-1-32x32.png
IP / ASN
144.178.205.173
#39686 Eurofiber Nederland BV
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
First Seen 2023-07-23
Last Seen 2025-07-30
Times Seen 42
Size 994 B (994 bytes)
MD5 6c2d442e6007e371f2d7f20c3ed296d8
SHA1 dd374d033cbe2d71795a3c376e1bb56f9a0559dd
SHA256 32288903ae09d2b0b16c0360d63ef2b2b75e15d99754695e4df212b169d3d62a
Certificate Info
Issuer Let's Encrypt
Subject hentaifreak.org
Fingerprint C0:50:F4:07:4F:B7:A1:3E:26:32:FA:97:63:74:CF:47:E5:FD:D2:43
Validity Fri, 13 Jun 2025 15:35:10 GMT - Thu, 11 Sep 2025 15:35:09 GMT
GET /2016/10/cropped-favicon-1-32x32.png HTTP/1.1
Host: media.hentaifreak.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:51 GMT
x-amz-request-id: 3980937042
accept-ranges: bytes
content-length: 994
content-type: image/png
last-modified: Sat, 25 Mar 2023 07:51:35 GMT
etag: "6c2d442e6007e371f2d7f20c3ed296d8"
x-amz-version-id: MTU3OTY4MDAwLnYxLjIuMTY3OTczMDY5NS4u
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 604800
cache-control: public, max-age=604800
X-Firefox-Spdy: h2
GET thumb.aporntv.com/thumbs/5/e/8/2/9/5e81bd92d3555mom%20daughter%20incest..mp4/5e81bd92d3555mom%20daughter%20incest..mp4-3.jpg
200 OK 6.7 kB URL
thumb.aporntv.com/thumbs/5/e/8/2/9/5e81bd92d3555mom%20daughter%20incest..mp4/5e81bd92d3555mom%20daughter%20incest..mp4-3.jpg
IP / ASN
104.26.1.238
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 200x150, components 3
First Seen 2025-02-17
Last Seen 2025-07-10
Times Seen 6
Size 6.7 kB (6678 bytes)
MD5 4c215e5329842d1ed9f9e1618155f51a
SHA1 a9a5273e6a028c6a493fba0ef0d1988f8faaf75e
SHA256 496c2627c89f362c2e65a843ecb012adc47df10e7a9f1aa0b2ba0f41532bfb89
Certificate Info
Issuer Let's Encrypt
Subject aporntv.com
Fingerprint 12:C5:AA:F4:28:DA:FC:0D:26:EF:7E:DC:ED:3C:55:A1:34:24:B2:E6
Validity Tue, 22 Apr 2025 22:30:20 GMT - Mon, 21 Jul 2025 22:30:19 GMT
GET /thumbs/5/e/8/2/9/5e81bd92d3555mom%20daughter%20incest..mp4/5e81bd92d3555mom%20daughter%20incest..mp4-3.jpg HTTP/1.1
Host: thumb.aporntv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 6678
cf-ray: 94ff20a63ae6712e-OSL
cache-control: public, max-age=16070400
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6688
etag: "5e82945a-1a20"
expires: Wed, 18 Jun 2025 23:52:48 GMT
last-modified: Tue, 31 Mar 2020 00:52:42 GMT
cf-cache-status: HIT
age: 273713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bIo%2Byx4U%2Bs8mzKL3l60N36xgqFpgMoaNvoiQOuQ25%2Fk%2Bw1eBSxcxOlSXkyKlspp%2BRx4sRZNpfqydSc%2FQ90sBhoSXkmQKjgUCgsr3jlv3rAS9cg9mkSK21Z36l4G0szgPJzLi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1338&min_rtt=446&rtt_var=1545&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2895&recv_bytes=1281&delivery_rate=5516190&cwnd=253&unsent_bytes=0&cid=5a7fe41be8fdb4f2&ts=59&x=0"
X-Firefox-Spdy: h2
GET timg207.top/videos/73898b6069f300f5e756be03a1643db82a4d7a37/cover/5_505_259?ih=1
200 OK 26 kB URL
timg207.top/videos/73898b6069f300f5e756be03a1643db82a4d7a37/cover/5_505_259?ih=1
IP / ASN
172.67.25.56
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-06-15
Last Seen 2025-07-26
Times Seen 7
Size 26 kB (26035 bytes)
MD5 06db96f42f53a318a312a4c7a305d5a3
SHA1 35a8704e971620081824df88c0119ca424656acd
SHA256 f16e85de5f287fc11c776c51fe02c99dd156c084b20668fc16d9a8a040423348
Certificate Info
Issuer Google Trust Services
Subject timg207.top
Fingerprint BE:66:3F:14:E0:5C:3A:5C:F4:FE:06:91:5F:02:0C:FF:34:92:D3:A9
Validity Wed, 14 May 2025 08:40:10 GMT - Tue, 12 Aug 2025 09:38:48 GMT
GET /videos/73898b6069f300f5e756be03a1643db82a4d7a37/cover/5_505_259?ih=1 HTTP/1.1
Host: timg207.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: application/octet-stream
content-length: 26035
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 17 Dec 2024 12:39:05 GMT
vary: Accept-Encoding
etag: "676170e9-65b3"
expires: Tue, 04 Mar 2025 07:52:59 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 11437826
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=347LtqJvNC88fsBqu%2F%2B3%2BLMmEPUAaILMA5pJEDTsyEC%2FLzfAG8uyzqwAJANqz%2FEbyzPymvD3Uug2hYz6NGNBVCzbuGH601BNBw%3D%3D"}]}
cf-ray: 94ff20bbab8856b1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg
200 OK 49 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x405, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-08
Last Seen 2025-06-15
Times Seen 3
Size 49 kB (48840 bytes)
MD5 f491e8aadfedfeea46e2ab2612b8c634
SHA1 3fe39992ad85988e2d279e5b290f3d68ed665a82
SHA256 83aeed197534dda0a8eeee6a58b7fe929a4409aee0421e3b11401f623108ffd3
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 48840
last-modified: Wed, 26 Feb 2025 05:48:42 GMT
expires: Fri, 26 Feb 2027 17:48:42 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a2b7282ee551565e"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET sexsex2.com/favicon.ico
0 B URL
sexsex2.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: sexsex2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET thumb.aporntv.com/thumbs/5/9/9/7/6/5996bbeed3d0f26990/5996bbeed3d0f26990.flv-31b.jpg
200 OK 15 kB URL
thumb.aporntv.com/thumbs/5/9/9/7/6/5996bbeed3d0f26990/5996bbeed3d0f26990.flv-31b.jpg
IP / ASN
104.26.1.238
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 670x490, components 3
First Seen 2025-02-08
Last Seen 2025-06-15
Times Seen 4
Size 15 kB (14713 bytes)
MD5 755f2a06c96b7bfc86943996c7158e6c
SHA1 399c06950bb74fb0c1ee9aa8919a2b9a4848cc61
SHA256 542401a6b34282fbf38a1358db2b39f45948a6943cb0b8c80b2556e250c21b33
Certificate Info
Issuer Let's Encrypt
Subject aporntv.com
Fingerprint 12:C5:AA:F4:28:DA:FC:0D:26:EF:7E:DC:ED:3C:55:A1:34:24:B2:E6
Validity Tue, 22 Apr 2025 22:30:20 GMT - Mon, 21 Jul 2025 22:30:19 GMT
GET /thumbs/5/9/9/7/6/5996bbeed3d0f26990/5996bbeed3d0f26990.flv-31b.jpg HTTP/1.1
Host: thumb.aporntv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 14713
cf-ray: 94ff20a6ab0c712e-OSL
cache-control: public, max-age=16070400
cf-bgj: imgq:100,h2pri
cf-polished: origSize=14727
etag: "599764e6-3987"
expires: Sat, 21 Jun 2025 05:44:55 GMT
last-modified: Fri, 18 Aug 2017 22:06:30 GMT
cf-cache-status: HIT
age: 79786
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XMCqAqhQdmUOAFs%2FlcudvvtgOe73GtDX0B0lHr7Y%2BBUOaw4gNYICO69IKml7ZCHVwqMfiwi%2BLm%2FXuIeiD2RrkUPGW9EnUMPpzSp8UY2k7mhfBQnb%2FdXj1QYP3mX%2Fqsti5N1a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6491&min_rtt=446&rtt_var=11598&sent=13&recv=12&lost=0&retrans=0&sent_bytes=10554&recv_bytes=1396&delivery_rate=15459074&cwnd=255&unsent_bytes=0&cid=5a7fe41be8fdb4f2&ts=112&x=0"
X-Firefox-Spdy: h2
GET zozovideo.com/wp-content/uploads/2023/04/6cab6ed8812cf44e762feeca9d3cdc72.jpg
200 OK 31 kB URL
zozovideo.com/wp-content/uploads/2023/04/6cab6ed8812cf44e762feeca9d3cdc72.jpg
IP / ASN
139.162.102.64
#63949 Akamai Connected Cloud
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-27
Times Seen 7
Size 31 kB (31406 bytes)
MD5 92c69de02c9d322359fbea2e075cc3ff
SHA1 9eb574096106bcbed558bd6a5b0cdbe3207f6048
SHA256 a9cc793c00dbafaa6b6fba12167dc84fe1366f9871ddcb23e3ce93c3c341f5ce
Certificate Info
Issuer Let's Encrypt
Subject *.zozovideo.com
Fingerprint 20:AE:26:C8:3B:F7:3F:C9:1C:EC:3D:01:3D:56:BB:FC:F9:15:2C:72
Validity Sat, 19 Apr 2025 23:54:41 GMT - Fri, 18 Jul 2025 23:54:40 GMT
GET /wp-content/uploads/2023/04/6cab6ed8812cf44e762feeca9d3cdc72.jpg HTTP/1.1
Host: zozovideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private
expires: Mon, 15 Jun 2026 03:54:44 GMT
content-type: image/webp
last-modified: Sun, 18 Feb 2024 21:34:35 GMT
accept-ranges: bytes
content-length: 31406
date: Sun, 15 Jun 2025 03:54:44 GMT
server: LiteSpeed
vary: User-Agent,Accept
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
GET motherless.com/favicon.ico
200 OK 1.2 kB URL
motherless.com/favicon.ico
IP / ASN
185.107.81.234
#43350 NForce Entertainment B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2023-05-25
Last Seen 2025-08-01
Times Seen 261
Size 1.2 kB (1150 bytes)
MD5 71fed71dccb91a13bdf68a6444f25ce4
SHA1 38da7202842147ecda5521d50f094a54d1381f2c
SHA256 18f6675d329e6cb3bb7d7d1e546a1c68c5cc599f1b3ae98c2abbd21a53dc42c2
Certificate Info
Issuer GoGetSSL
Subject *.motherless.com
Fingerprint BC:66:10:ED:31:C2:E1:48:61:92:BF:BD:98:9C:71:7C:41:97:BB:15
Validity Wed, 02 Apr 2025 00:00:00 GMT - Sun, 03 May 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: motherless.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:50 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Last-Modified: Thu, 20 Apr 2023 06:59:04 GMT
ETag: "6440e2b8-47e"
X-Server-W: web808
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Status: HIT
Accept-Ranges: bytes
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240116-1/37546f6831a8b361e9bda1a3d66dfa8a.jpg
200 OK 48 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240116-1/37546f6831a8b361e9bda1a3d66dfa8a.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-17
Last Seen 2025-08-01
Times Seen 24
Size 48 kB (48072 bytes)
MD5 78f82f3dcf672474eca24eac07eb61fe
SHA1 c9c61c780c0f829b8667fc5da03604e50f549670
SHA256 9e29c80babf502a48dc13996a9e4a264312516cf7a0a267fee368f4190c82661
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240116-1/37546f6831a8b361e9bda1a3d66dfa8a.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 48072
last-modified: Sat, 14 Dec 2024 03:33:32 GMT
expires: Mon, 14 Dec 2026 15:33:32 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240116-1/37546f6831a8b361e9bda1a3d66dfa8a.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5b5c6f43a706433e"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET servei.efukt.com/2017/07/ad33da40_efukt-720x405.jpg
200 OK 202 kB URL
servei.efukt.com/2017/07/ad33da40_efukt-720x405.jpg
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 720x405, components 3
First Seen 2025-06-15
Last Seen 2025-07-05
Times Seen 2
Size 202 kB (201712 bytes)
MD5 3963d4f3bd8a2f6fb0e2ae7bb7bb52a5
SHA1 8367a3cdd61c574e67e4769b1072ea34248e3a52
SHA256 b72fc1834cacd56dce13bb02929f2ff597693c3ef4f9fbf4a0811ee34547712d
Certificate Info
Issuer Google Trust Services
Subject efukt.com
Fingerprint 28:5D:66:3A:B1:DB:3A:CE:FE:B2:DE:23:70:18:B4:A9:15:87:31:71
Validity Wed, 23 Apr 2025 18:01:31 GMT - Tue, 22 Jul 2025 18:59:28 GMT
GET /2017/07/ad33da40_efukt-720x405.jpg HTTP/1.1
Host: servei.efukt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 201712
server: cloudflare
last-modified: Sun, 24 Apr 2022 05:13:18 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "6264dc6e-313f0"
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
accept-ranges: bytes
age: 129281
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tXQwfo%2Bt810xPU6n1HjleLjOaz7ZKP%2BiHSkIDsN9D0q7Cc0oyyu8tks22WSiZpnXnXsHIE8MKttlfWsIAUe2zYEA5jJKfOFfOOZOOme2"}]}
cf-ray: 94ff20b72c0db4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pornohub24.ru/favicon.ico
404 Not Found 0 B URL
pornohub24.ru/favicon.ico
IP / ASN
193.163.7.2
#204601 Zomro B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject pornohub24.ru
Fingerprint 91:0F:79:A7:07:B9:06:B5:97:6C:F2:D4:4E:13:77:24:4D:7F:38:EC
Validity Fri, 30 May 2025 23:51:51 GMT - Thu, 28 Aug 2025 23:51:50 GMT
GET /favicon.ico HTTP/1.1
Host: pornohub24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx/1.24.0
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
GET www.mydesii.com/wp-content/uploads/2024/11/cropped-icon-32x32.png
200 OK 1.8 kB URL
www.mydesii.com/wp-content/uploads/2024/11/cropped-icon-32x32.png
IP / ASN
172.67.184.99
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
First Seen 2025-02-21
Last Seen 2025-07-31
Times Seen 39
Size 1.8 kB (1764 bytes)
MD5 04581d4eab42d97ba84551672c152810
SHA1 aa54866a1ce876e3dbe2aae812e96090ab6e5278
SHA256 048c432f12443a3598d49e62587594006d5c54734c00d97b9b5d6d2091657440
Certificate Info
Issuer Google Trust Services
Subject mydesii.com
Fingerprint 41:96:60:55:5B:03:71:86:82:92:7E:35:78:B0:CF:1D:5E:62:1A:4A
Validity Fri, 16 May 2025 14:27:45 GMT - Thu, 14 Aug 2025 15:25:26 GMT
GET /wp-content/uploads/2024/11/cropped-icon-32x32.png HTTP/1.1
Host: www.mydesii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: image/png
content-length: 1764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b7czh9j43M3%2BaxrUistv%2FcbscwDxOTvL%2FN7goz9JOHfOzLMhewcbZyKYbLNCRIqC31ofFOSBvL4UYTeXgAELol5fk1R4q%2F9xxgBZSY4mXukF3wzpVV%2BVITSnlLKXwjcduyU%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Fri, 23 May 2025 18:45:29 GMT
etag: "6e4-6728f55f-e232f4;;;"
last-modified: Mon, 04 Nov 2024 16:25:03 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=86400
age: 187537
cf-cache-status: HIT
cf-ray: 94ff20e4b964b500-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=24747&min_rtt=2845&rtt_var=14520&sent=113&recv=116&lost=0&retrans=0&sent_bytes=44920&recv_bytes=7569&delivery_rate=394288&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=26700&unsent_bytes=0&cid=668d42b9c0328193&ts=8495&inflight_dur=272&x=80"
GET weav.xyz/favicon.ico
404 Not Found 0 B IP / ASN
104.21.80.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject weav.xyz
Fingerprint 29:C0:9F:8D:78:B5:95:CA:3F:41:BF:3C:57:A5:43:F2:74:51:F4:67
Validity Wed, 28 May 2025 07:13:34 GMT - Tue, 26 Aug 2025 08:11:06 GMT
GET /favicon.ico HTTP/1.1
Host: weav.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:49 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 2934
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OHB2hiSN6izcpCWkIuQW0IczerAqEICNFtGMzY1KXz3uuJBqdLaovvtInDQSebjOfuNj8E%2FXO%2FZ652%2FpRgZ18D72DuzuNQ%3D%3D"}]}
content-encoding: br
cf-ray: 94ff20dd3fe456c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET it.xvideos.com/favicon.ico
200 OK 15 kB URL
it.xvideos.com/favicon.ico
IP / ASN
185.88.181.5
#46652 SERVERSTACK-ASN
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-07
Last Seen 2025-07-31
Times Seen 218
Size 15 kB (15086 bytes)
MD5 d6baf7b631c1e482b6e2f770f9e67057
SHA1 73eb49e766e5954e1ad9538cc35038b9f14494b9
SHA256 fa1ee8d05ad6dfa0731ee0d37badfd019cc3315e6d3b9ca1ae161cee4749481b
Certificate Info
Issuer Sectigo Limited
Subject *.xvideos.com
Fingerprint 8A:99:1B:79:BF:20:90:58:BE:23:F3:B2:15:CA:58:D1:87:C9:8F:0E
Validity Mon, 30 Dec 2024 00:00:00 GMT - Fri, 30 Jan 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: it.xvideos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jun 2025 03:54:51 GMT
Content-Type: image/x-icon
Content-Length: 15086
Last-Modified: Mon, 09 Oct 2023 14:43:32 GMT
ETag: "65241194-3aee"
Expires: Sun, 22 Jun 2025 03:54:51 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
Server: nginx
GET media.dlsite.com/chobit/contents/1309/4xpqnnzise80koos48g8oggs4/4xpqnnzise80koos48g8oggs4_thumb.jpg?w=1000&h=1000
200 OK 34 kB URL
media.dlsite.com/chobit/contents/1309/4xpqnnzise80koos48g8oggs4/4xpqnnzise80koos48g8oggs4_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 800x600, components 3
First Seen 2024-08-20
Last Seen 2025-07-10
Times Seen 5
Size 34 kB (34429 bytes)
MD5 709a62bd7d228d7bc07788a0edc0e5f6
SHA1 54d65dd54be18abead5b40d4454bd9766636bf18
SHA256 4850deced6837626c1124c1ad0c29634b42a2874685aad68ecdea3d1a361009a
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/1309/4xpqnnzise80koos48g8oggs4/4xpqnnzise80koos48g8oggs4_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 34429
date: Sun, 15 Jun 2025 03:10:24 GMT
last-modified: Fri, 18 Oct 2013 09:27:03 GMT
etag: "709a62bd7d228d7bc07788a0edc0e5f6"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UwCNRaHQLeIO3zHJ2V-BSvG-M4jmx3efhDdqGfNffmUBjezc_O42vQ==
age: 2659
X-Firefox-Spdy: h2
GET xzx.mobi/preview/masha-babko-blowjob-gifs.jpg
200 OK 12 kB URL
xzx.mobi/preview/masha-babko-blowjob-gifs.jpg
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 640x360, components 3
First Seen 2024-04-21
Last Seen 2025-07-29
Times Seen 26
Size 12 kB (12358 bytes)
MD5 4ac669190d2e535edf31c2a853dd18ff
SHA1 5295a3d7f4f58f9f2406f034a461d236acea6b4f
SHA256 cada4f1d41c4c28173d5c05a641001e448cca91595216595fefcb81d600e5d91
Certificate Info
Issuer Google Trust Services
Subject xzx.mobi
Fingerprint D8:1A:29:74:1D:23:88:04:13:ED:E2:22:59:81:66:7E:9A:34:45:BF
Validity Sun, 08 Jun 2025 11:34:04 GMT - Sat, 06 Sep 2025 12:32:07 GMT
GET /preview/masha-babko-blowjob-gifs.jpg HTTP/1.1
Host: xzx.mobi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:48 GMT
content-type: image/jpeg
content-length: 12358
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Mon, 14 Jul 2025 21:50:04 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 21883
cf-cache-status: HIT
last-modified: Sat, 14 Jun 2025 21:50:04 GMT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UElo7Zga5KbGKpLBFtBxkHS5Yt2ttyBV9l1yZvFonzB4FUstkFUoVsPcgsVzxLWtEMbw2FT6CwmatyCxmbbV2wsDq05g3w%3D%3D"}]}
cf-ray: 94ff20d249d1b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET media.hentaifreak.org/toshi-densetsu-series-episode-3.jpg
200 OK 42 kB URL
media.hentaifreak.org/toshi-densetsu-series-episode-3.jpg
IP / ASN
144.178.205.173
#39686 Eurofiber Nederland BV
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 636x360, components 3
First Seen 2025-02-21
Last Seen 2025-07-26
Times Seen 8
Size 42 kB (42510 bytes)
MD5 d2a37f964a8d88fe54981d2eba49c038
SHA1 73fbc9b2995e96a5ca9218c3288609e69b35e089
SHA256 b753b1fd9c18f290d921acce89efc18c050f1b6da6f5274446becb58f8cdc5db
Certificate Info
Issuer Let's Encrypt
Subject hentaifreak.org
Fingerprint C0:50:F4:07:4F:B7:A1:3E:26:32:FA:97:63:74:CF:47:E5:FD:D2:43
Validity Fri, 13 Jun 2025 15:35:10 GMT - Thu, 11 Sep 2025 15:35:09 GMT
GET /toshi-densetsu-series-episode-3.jpg HTTP/1.1
Host: media.hentaifreak.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
x-amz-request-id: 2531506438
accept-ranges: bytes
content-length: 42510
content-type: image/jpeg
last-modified: Sat, 25 Mar 2023 00:28:04 GMT
etag: "d2a37f964a8d88fe54981d2eba49c038"
x-amz-version-id: NzY2NjQwMDAudjEuMi4xNjc5NzA0MDg0
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 604800
cache-control: public, max-age=604800
X-Firefox-Spdy: h2
GET jpgjingpinx1.top/upload/vod/20240909-1/c363adfd0944b43d05cbb6e270bc1c0f.jpg
200 OK 179 kB URL
jpgjingpinx1.top/upload/vod/20240909-1/c363adfd0944b43d05cbb6e270bc1c0f.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 718x404, components 3
First Seen 2025-02-08
Last Seen 2025-06-15
Times Seen 2
Size 179 kB (178978 bytes)
MD5 8001d3d4cf86ec273add0f0c97a306cb
SHA1 2bbebf6cff14211434139f80a6bb2b3f6802f081
SHA256 882ded599b483cad95cd8d2fb83082079f35e2995ff35dfadf4fb7494cf1d9d6
Certificate Info
Issuer Let's Encrypt
Subject jpgjingpinx1.top
Fingerprint F4:6F:3D:DD:2D:A4:4B:9E:5B:4B:BC:A1:D4:13:FB:4B:2C:F3:8D:24
Validity Wed, 11 Jun 2025 08:23:16 GMT - Tue, 09 Sep 2025 08:23:15 GMT
GET /upload/vod/20240909-1/c363adfd0944b43d05cbb6e270bc1c0f.jpg HTTP/1.1
Host: jpgjingpinx1.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 178978
Content-Type: image/jpeg
Date: Wed, 11 Jun 2025 18:38:06 GMT
Etag: "66ddce4c-2bb22"
Expires: Fri, 11 Jul 2025 18:38:06 GMT
Last-Modified: Wed, 11 Jun 2025 18:38:06 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET timg215.top/videos/35bbbd5ad6fa36e3d8ee0836960b1a2ff5aff032/cover/5_505_259?ih=1
200 OK 58 kB URL
timg215.top/videos/35bbbd5ad6fa36e3d8ee0836960b1a2ff5aff032/cover/5_505_259?ih=1
IP / ASN
104.22.21.157
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-02-08
Last Seen 2025-07-29
Times Seen 10
Size 58 kB (58303 bytes)
MD5 edb4ebb58c2d277446d66478a768e5b8
SHA1 9c5675cce22d714e05e1d513d7bb35125f8afaeb
SHA256 64c0e28e58dbe336841aa80c7f4b5151fcfc2e917cb7b45a7d1c2170b9f6b784
Certificate Info
Issuer Google Trust Services
Subject timg215.top
Fingerprint 47:C1:38:A5:8A:9F:96:13:94:79:23:4C:77:96:01:E3:5B:39:10:DC
Validity Mon, 02 Jun 2025 04:11:42 GMT - Sun, 31 Aug 2025 05:10:26 GMT
GET /videos/35bbbd5ad6fa36e3d8ee0836960b1a2ff5aff032/cover/5_505_259?ih=1 HTTP/1.1
Host: timg215.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: application/octet-stream
content-length: 58303
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 10:29:05 GMT
vary: Accept-Encoding
etag: "67c6d5f1-e3bf"
expires: Tue, 20 May 2025 14:10:38 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 862949
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hTuEggq3olY7V5vsBoDovbfjWqiO%2BX5dYloKBR2fmOg64o6Y0Pzip4mF5km5uVAmJ7yQMkUEQ3q%2B0bysA1BnOBby7cxzHj4ZHA%3D%3D"}]}
cf-ray: 94ff20a9dced56a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn1.hotmoza.tv/thumb/b3/24/6e/b3246e52ebdaf977f6ae23d054ffb207.jpg
200 OK 8.9 kB URL
cdn1.hotmoza.tv/thumb/b3/24/6e/b3246e52ebdaf977f6ae23d054ffb207.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2024-04-21
Last Seen 2025-07-30
Times Seen 22
Size 8.9 kB (8948 bytes)
MD5 6c20211fd428280a335f3f25f9e2dd9e
SHA1 533fb82c9533887b65001b60efa8717f6b80a679
SHA256 cbdb7895f02c72b0fb6a99b3422314fbdef59a42d564330d5026512b29c78a99
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/b3/24/6e/b3246e52ebdaf977f6ae23d054ffb207.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 8948
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581330345.073621
etag: 6c20211fd428280a335f3f25f9e2dd9e
last-modified: Mon, 10 Feb 2020 10:25:49 GMT
x-timestamp: 1581330348.94206
x-trans-id: tx5d65f7135a2048a58e2aa-0066b2fcfc
x-openstack-request-id: tx5d65f7135a2048a58e2aa-0066b2fcfc
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Mon, 16 Jun 2025 04:09:49 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 85493
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NQdDYeZ%2BHqKfuJsXdCcReI6Cp5JBxioc%2Fsutd6HBHmbpV1G0G%2FGVwXTxYutVuX2zf0ySSB%2BxobXB79QOqT4r0KLGIk1qPaK9IRc4N8U%3D"}]}
cf-ray: 94ff20b6df99b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/c/b/6/cb647d15a02d9b39306aa11d53464e1f1635284641-1920-1080-2628-h264.mp4-9.jpg
200 OK 24 kB URL
cdne-pics.youjizz.com/c/b/6/cb647d15a02d9b39306aa11d53464e1f1635284641-1920-1080-2628-h264.mp4-9.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 308x232, components 3
First Seen 2025-02-15
Last Seen 2025-07-29
Times Seen 7
Size 24 kB (23707 bytes)
MD5 e8c5f87d0b340088dcc968cca1ce7619
SHA1 fd4811b630eed5466eb1e994ba3b8f90338ebd4b
SHA256 ac065d99d67f885db44a891dd1f976b1275e3895e16a86fc65d49524d38ac39f
GET /c/b/6/cb647d15a02d9b39306aa11d53464e1f1635284641-1920-1080-2628-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
Content-Type: image/jpeg
Content-Length: 23707
last-modified: Tue, 26 Oct 2021 21:50:01 GMT
etag: "5c9b-5cf4875a15bbb"
expires: Mon, 03 Feb 2025 22:06:17 GMT
cache-control: max-age=10566507
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-8657-1-1094008-h-0-0---;6139-19-629625----0-0-0
GET nlt02.videosection.com/a/f/1/af1e67a6a83c257899f9e8831f2d5840/thumbs/480x270/1.jpeg
200 OK 33 kB URL
nlt02.videosection.com/a/f/1/af1e67a6a83c257899f9e8831f2d5840/thumbs/480x270/1.jpeg
IP / ASN
104.26.13.185
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 480x270, components 3
First Seen 2025-03-21
Last Seen 2025-07-30
Times Seen 20
Size 33 kB (32596 bytes)
MD5 6de0b405392556b6b579b0063b296e3c
SHA1 6f4f97b24a4991475fd0233582c623aa7ecad2c3
SHA256 bbee9c310a7cc3cc1ff1694c0723d48e27b22a71b898af0f89c4f6901d90a4cd
Certificate Info
Issuer Google Trust Services
Subject videosection.com
Fingerprint 3E:51:2A:60:0A:59:A9:A1:BB:DC:F8:EB:EE:03:F9:39:7D:56:ED:1F
Validity Sat, 26 Apr 2025 05:41:30 GMT - Fri, 25 Jul 2025 06:41:22 GMT
GET /a/f/1/af1e67a6a83c257899f9e8831f2d5840/thumbs/480x270/1.jpeg HTTP/1.1
Host: nlt02.videosection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 32596
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lpUishjZCIKszRw7gwgFsjDPIAmw9VlIyH7iQ5hoE1xAediZX3MiWpYfz1tzhAinxp9pxeCQW4WD%2Biwf0xOajVnkXVYqKhQj7mL8teFs8cuZvgo%3D"}]}
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Metrics-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cf-bgj: h2pri
accept-ranges: bytes
last-modified: Sat, 07 Sep 2024 21:33:32 UTC
cache-control: max-age=120
cf-cache-status: HIT
age: 4180
vary: accept-encoding
cf-ray: 94ff20b8991f56c1-OSL
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/113D631.jpg
200 OK 7.1 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/113D631.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 7.1 kB (7090 bytes)
MD5 d6d2e6a40404d69e858af5f685118544
SHA1 c6e6227f2a127823c4f3d686cb26d9a5c958334d
SHA256 949e1eb6cc409aae5756237341a28132e33dbd59b176af59709faeb9d3bd70f1
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/113D631.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 7090
vary: x-s-token
last-modified: Tue, 02 Oct 2018 08:00:26 GMT
etag: "1bb2-5773a5087658f"
x-cache: HIT
x-whom: cdn06
accept-ranges: bytes
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/lolicon_angel.mp4_snapshot_09.34_2016.12.20_00.53.37.jpg?itok=oFneuyuR
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/lolicon_angel.mp4_snapshot_09.34_2016.12.20_00.53.37.jpg?itok=oFneuyuR
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/lolicon_angel.mp4_snapshot_09.34_2016.12.20_00.53.37.jpg?itok=oFneuyuR HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20be9a4b56ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET obmenvsemfiles.net/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
302 Found 7.3 kB URL
obmenvsemfiles.net/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
IP / ASN
82.192.80.149
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 7.3 kB (7280 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject obmenvsemfiles.net
Fingerprint 55:B7:B2:52:2E:E5:4D:1E:96:5C:1A:46:61:9B:0F:E3:B8:B2:20:CD
Validity Sat, 17 May 2025 20:45:31 GMT - Fri, 15 Aug 2025 20:45:30 GMT
GET /fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg HTTP/1.1
Host: obmenvsemfiles.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: text/html
content-length: 138
location: http://ds.nashobmenfiles.com/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
X-Firefox-Spdy: h2
GET rimg.aiyuncdn.com/videos_screenshots/266000/266998/preview.jpg
404 Not Found 0 B URL
rimg.aiyuncdn.com/videos_screenshots/266000/266998/preview.jpg
IP / ASN
104.21.59.51
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject aiyuncdn.com
Fingerprint 83:36:91:72:7A:43:7C:E3:C3:24:5B:3A:F4:0D:97:47:8D:CB:98:D8
Validity Sun, 01 Jun 2025 11:15:30 GMT - Sat, 30 Aug 2025 12:13:46 GMT
GET /videos_screenshots/266000/266998/preview.jpg HTTP/1.1
Host: rimg.aiyuncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3B4TcWnkNzjYdbI9pZDt9zd4jMs%2F29AGtAh41SOA0LT6FmbpsMErNlIZJ%2FkLtXUBC5QFQtzVuzkJmk0vVedmUhGLPEnlLjZKoQdFHlTWwlZF6mQJqPvM3HI%2B4NmOlzxG%2Fc2%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
age: 155
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 94ff20cd6a7356af-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9310&min_rtt=1556&rtt_var=5426&sent=130&recv=180&lost=0&retrans=0&sent_bytes=10190&recv_bytes=10165&delivery_rate=198902&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=6e70bf7d52a640ad&ts=5326&inflight_dur=74&x=80"
GET www.9188porn.xyz/upload/vod/20241010-11/e412d0893aea2c795c27884dd27729d9.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/e412d0893aea2c795c27884dd27729d9.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/e412d0893aea2c795c27884dd27729d9.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET en.vidmo.org/favicon.ico
200 OK 5.4 kB URL
en.vidmo.org/favicon.ico
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer ZeroSSL
Subject vidmo.org
Fingerprint 55:2A:92:C3:B4:BE:A5:94:65:51:0B:27:D2:FF:A6:C8:47:5C:2C:F3
Validity Wed, 07 May 2025 00:00:00 GMT - Tue, 05 Aug 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: en.vidmo.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET vidmo.pro/thumbs_320/ed/2d/ed2d7e6202a48ef4ce3893d5738c1a33/15572879.jpg
200 OK 11 kB URL
vidmo.pro/thumbs_320/ed/2d/ed2d7e6202a48ef4ce3893d5738c1a33/15572879.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-12-08
Last Seen 2025-07-26
Times Seen 9
Size 11 kB (10866 bytes)
MD5 6fb5906a46248500ea2e258722f25804
SHA1 d45570299fded20f1624f6d057e9016b9d7d84b5
SHA256 fe3e050de76e8eb0b30e1d5c5f4279e32e68e565297737b2c8e9ae0b7b8b354c
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/ed/2d/ed2d7e6202a48ef4ce3893d5738c1a33/15572879.jpg HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 10866
last-modified: Sun, 30 Apr 2023 04:28:18 GMT
expires: Mon, 12 Aug 2024 20:56:28 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET uzbak.ru/favicon.ico
200 OK 495 B IP / ASN
51.83.213.151
#16276 OVH SAS
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
First Seen 2024-06-17
Last Seen 2025-07-29
Times Seen 57
Size 495 B (495 bytes)
MD5 0c19c2a6163fbf4c669707bde76ca544
SHA1 b4dc653f20445c38e93bd8128f96966ad000565d
SHA256 33df002fc10b9e1be2c51738ccdfec04a26801ad54044c8e8852026cb3687e71
Certificate Info
Issuer Let's Encrypt
Subject uzbak.ru
Fingerprint A8:2B:EB:2B:82:9A:D0:04:55:2A:0C:FD:33:E8:86:61:8E:18:66:73
Validity Wed, 30 Apr 2025 23:53:51 GMT - Tue, 29 Jul 2025 23:53:50 GMT
GET /favicon.ico HTTP/1.1
Host: uzbak.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 495
last-modified: Mon, 12 Oct 2020 13:16:33 GMT
etag: "5f845731-1ef"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.com/upload/vod/20241010-10/5deaec607358597313cab8e0ea293da6.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/5deaec607358597313cab8e0ea293da6.png
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/5deaec607358597313cab8e0ea293da6.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=uxc9DDmd2cOn%2B0Kl8dMsG7h3WjeSiW%2FgdF1jVZVkqWUOmwgYRVDD%2Fvgf9avwp9x5UnN5rUgad87VJXhgKy%2BuKpU3F6a8vhT46Hol7nc6"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94ff20b86fb2b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pornodrochka.club/uploads/posts/2019-10/medium/1570950061_00-43-12.jpg
200 OK 86 kB URL
pornodrochka.club/uploads/posts/2019-10/medium/1570950061_00-43-12.jpg
IP / ASN
91.194.110.9
#213166 UA-Hosting SIA
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 450x252, components 3
First Seen 2024-05-16
Last Seen 2025-07-25
Times Seen 9
Size 86 kB (86472 bytes)
MD5 7b14de70c15ecbad4f033bcc0767ea84
SHA1 6b98c80a25e8b19d8182b9122e18f363be5da232
SHA256 da6f0ee4956f707b4d0226f1d7564a4e0f0872339a0535fb9764e52294e6a53b
Certificate Info
Issuer Let's Encrypt
Subject pornodrochka.club
Fingerprint 0A:36:E3:8C:01:5A:FC:A6:E6:66:54:CA:63:6E:28:22:27:61:D6:51
Validity Tue, 22 Apr 2025 22:39:38 GMT - Mon, 21 Jul 2025 22:39:37 GMT
GET /uploads/posts/2019-10/medium/1570950061_00-43-12.jpg HTTP/1.1
Host: pornodrochka.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3
date: Sun, 15 Jun 2025 03:52:43 GMT
content-type: image/jpeg
content-length: 86472
last-modified: Sat, 29 Aug 2020 18:00:28 GMT
etag: "5f4a97bc-151c8"
expires: Sun, 22 Jun 2025 03:52:43 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET gcore-pic.xvideos-cdn.com/videos/thumbs169ll/e8/82/a9/e882a9e960765b0f4dc2c70faca6e529/e882a9e960765b0f4dc2c70faca6e529.1.jpg
200 OK 15 kB URL
gcore-pic.xvideos-cdn.com/videos/thumbs169ll/e8/82/a9/e882a9e960765b0f4dc2c70faca6e529/e882a9e960765b0f4dc2c70faca6e529.1.jpg
IP / ASN
185.244.209.62
#199524 G-Core Labs S.A.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2023-10-17
Last Seen 2025-07-29
Times Seen 6
Size 15 kB (15397 bytes)
MD5 eb798ef72b34299ca5930257947cd606
SHA1 695db514d91f72a3284dba4e0c32931cb5b78073
SHA256 3109e713c145a260101ddbeedc9c34888ae3d414aab1a241b44701abb4b45d23
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/e8/82/a9/e882a9e960765b0f4dc2c70faca6e529/e882a9e960765b0f4dc2c70faca6e529.1.jpg HTTP/1.1
Host: gcore-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 15397
traceparent: 00-757c2b7a8c1909d8139badc35abc265b-f9f3fb5efe40d5df-01
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Tue, 10 Jan 2023 01:33:35 GMT
expires: Wed, 12 Mar 2025 17:59:12 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-id-shield: am3-hw-edge-gc68
age: 13744501
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2025-03-12T18:02:11+00:00
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.yekuge.xyz/sdk/p/?zid=9801
200 OK 52 kB URL
cdn.yekuge.xyz/sdk/p/?zid=9801
IP / ASN
104.21.95.9
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JavaScript source, ASCII text, with very long lines (51798)
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 52 kB (52281 bytes)
MD5 17964ea652a3d0b4571a9defed80be84
SHA1 e40f996832d1dd4fc0438621b5b8e687853f3d92
SHA256 e18d3db3e206876e15b629e94aefd6616ce50e2b389c7052c00e082331f569f0
Certificate Info
Issuer Google Trust Services
Subject yekuge.xyz
Fingerprint C6:94:C6:E7:C5:1E:9D:1C:57:30:69:DB:EB:E8:C6:FF:23:87:48:90
Validity Wed, 21 May 2025 08:52:19 GMT - Tue, 19 Aug 2025 09:50:49 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sdk/p/?zid=9801 HTTP/1.1
Host: cdn.yekuge.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: application/javascript
server: cloudflare
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GxK2uHuHmIecGcCnM2O9WQ%2BY3t1f%2FZnJ8iBwbp7TOJmPBAAmI5NZlqXzPrggmoKgzq%2FbQMwOpWPoNsL%2FN0o85ZPa1WX5Ijb2bQeqGQ%3D%3D"}]}
x-time: 1749959685
access-control-allow-origin: *
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
cf-ray: 94ff20c41cc50b65-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET hentaifreak.org/favicon.ico
302 Found 994 B URL
hentaifreak.org/favicon.ico
IP / ASN
172.67.156.97
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 994 B (994 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject hentaifreak.org
Fingerprint D3:3D:1E:A1:8E:54:6E:DB:6A:0F:50:99:64:D1:DD:7C:3F:B5:43:16
Validity Sun, 01 Jun 2025 12:27:51 GMT - Sat, 30 Aug 2025 13:26:31 GMT
GET /favicon.ico HTTP/1.1
Host: hentaifreak.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html; charset=UTF-8
location: https://media.hentaifreak.org/2016/10/cropped-favicon-1-32x32.png
server: cloudflare
x-powered-by: PHP/8.1.25
link: <https://hentaifreak.org/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=unFRFpIBOl6ncWvlCFtWrVq%2BM8z%2FnfZvztZaylqY9eJqKI9rgWQCjrz6AeRfHrzSh1%2FQqWtjoNaPFBnVOAi8qdh%2BpIoGlXe5gcIBVSc%3D"}]}
cf-ray: 94ff20e60a6f5689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET realincest.me/thumbs/301/13684490103624779301_0.jpg
200 OK 7.6 kB URL
realincest.me/thumbs/301/13684490103624779301_0.jpg
IP / ASN
104.21.58.56
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-05-12
Last Seen 2025-07-31
Times Seen 38
Size 7.6 kB (7576 bytes)
MD5 72ece8410bca052190e43da203608a9a
SHA1 d8a2ec59a6917dcc3f0fbbbd2395b5eb77bf3b78
SHA256 698acd84050ea1c377a20c9fdb5c310bf627aa796238aaf4d6d8f10d1b87403e
Certificate Info
Issuer Google Trust Services
Subject realincest.me
Fingerprint 91:19:E5:EF:90:CE:89:7C:BB:FE:E4:AC:70:A6:B2:4C:F8:6A:84:0B
Validity Sat, 17 May 2025 21:18:26 GMT - Fri, 15 Aug 2025 22:16:41 GMT
GET /thumbs/301/13684490103624779301_0.jpg HTTP/1.1
Host: realincest.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 7576
server: cloudflare
last-modified: Sat, 19 Feb 2022 19:15:21 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "621141c9-1d98"
expires: Tue, 17 Jun 2025 21:35:06 GMT
cache-control: max-age=259200
accept-ranges: bytes
age: 22778
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WwVsSlQj9%2F5q%2BxmwhoT4vPiCQ0MeZnfR2eRI8ozcZws8jmtqWsdOZuqGC8G6Jug2PUIdbTyQmUBR3ji6M%2BXTMqyid%2B%2B%2BzSCGBhPY"}]}
cf-ray: 94ff20bf487856a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-12/29175c089614c071a61d3053d6bd1440.jpg
0 B URL
www.9188porn.xyz/upload/vod/20241010-12/29175c089614c071a61d3053d6bd1440.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-12/29175c089614c071a61d3053d6bd1440.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240108-1/12643f4ed2d198cbb86e8d292477fdd7.jpg
200 OK 36 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240108-1/12643f4ed2d198cbb86e8d292477fdd7.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 828x465, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-26
Last Seen 2025-07-30
Times Seen 17
Size 36 kB (35526 bytes)
MD5 4b0ce33b752997bf8023f0da1fa63cb8
SHA1 92cb4989d08590effce1fe91b6911bc6170f24e7
SHA256 8d94e18b9da607157a4f4a886f75ac323ae1ad5f4ceaa64da8ff0792f771572f
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240108-1/12643f4ed2d198cbb86e8d292477fdd7.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 35526
last-modified: Sat, 14 Dec 2024 06:52:54 GMT
expires: Mon, 14 Dec 2026 18:52:54 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240108-1/12643f4ed2d198cbb86e8d292477fdd7.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4ffbbc1c35767015"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/dc/c1/dcc1392d9750edf91230028c2a43cd62/11988416.jpg
200 OK 9.3 kB URL
en.vidmo.pro/thumbs_320/dc/c1/dcc1392d9750edf91230028c2a43cd62/11988416.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 9.3 kB (9325 bytes)
MD5 7e5983bd74e1f5dcad803c7d99bf3f6a
SHA1 e89d09ff4022fcaa5183938c29939b42e3d3fb0b
SHA256 704fce11c9744b80f72a022e3d660d391d2a39af7f55c90496028097192d5d66
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/dc/c1/dcc1392d9750edf91230028c2a43cd62/11988416.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 9325
last-modified: Thu, 11 Jun 2020 10:46:42 GMT
expires: Sat, 16 Nov 2024 19:12:50 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET avatars.mds.yandex.net/get-vthumb/4056363/80be3dd55e7b4507539972a12afeb2d8/564x318_1
200 OK 11 kB URL
avatars.mds.yandex.net/get-vthumb/4056363/80be3dd55e7b4507539972a12afeb2d8/564x318_1
IP / ASN
87.250.247.182
#13238 YANDEX LLC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 564x318, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 27
Size 11 kB (11322 bytes)
MD5 b43cefa16e78eca79ca2f9fd53812878
SHA1 54c9bce4ce0ec4215ae608163d3d4a4b1c34c005
SHA256 9f67025d8529216b059939646dff0aeee0ac5680adbc272c88ed7d1bab18e8a6
GET /get-vthumb/4056363/80be3dd55e7b4507539972a12afeb2d8/564x318_1 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:45 GMT
Content-Type: image/webp
Content-Length: 11322
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Sat, 19 Apr 2025 21:58:29 GMT
Cache-Control: max-age=604800,immutable
X-Request-Id: bbaaacab947a82f7
NEL: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
Timing-Allow-Origin: *
GET maomiav.one/favicon.ico
404 Not Found 0 B URL
maomiav.one/favicon.ico
IP / ASN
104.21.48.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject maomiav.one
Fingerprint 92:56:6C:BD:3B:4F:11:03:BC:54:52:97:41:CB:F1:96:7D:42:80:51
Validity Wed, 04 Jun 2025 06:27:33 GMT - Tue, 02 Sep 2025 07:26:06 GMT
GET /favicon.ico HTTP/1.1
Host: maomiav.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:52 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2445
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=F69bWjwIgB7kjlBL4y0vG3StVQ5e4XbIpx%2F8GTw8bvF8NaDL60Rvbh8W7IeMtqrb%2F35G0%2FGb72Ds966zHlq4Ea6yTww27LX%2B9g%3D%3D"}]}
content-encoding: br
cf-ray: 94ff20ee7a2256c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.iporntv.mobi/fotos/58/62/13/586213f1ce3d75fd14d09fccc5844337.jpg
200 OK 12 kB URL
cdn.iporntv.mobi/fotos/58/62/13/586213f1ce3d75fd14d09fccc5844337.jpg
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 320x180, components 3
First Seen 2025-06-02
Last Seen 2025-07-30
Times Seen 10
Size 12 kB (12267 bytes)
MD5 197605540082fc8c805e68bc603e3523
SHA1 08bf8e10a435abaa18bfb2fd9c5acfc9926dbd91
SHA256 297add6268bfdb71ec07ce86ca6f47447d82c3e825a7c9ab5f7b55c680f3a6dd
Certificate Info
Issuer Google Trust Services
Subject iporntv.mobi
Fingerprint 95:35:BC:55:3A:F4:D0:72:B4:40:03:29:48:00:E1:5C:A7:62:83:10
Validity Sun, 18 May 2025 03:56:22 GMT - Sat, 16 Aug 2025 04:52:44 GMT
GET /fotos/58/62/13/586213f1ce3d75fd14d09fccc5844337.jpg HTTP/1.1
Host: cdn.iporntv.mobi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:48 GMT
content-type: image/jpeg
content-length: 12267
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
last-modified: Sun, 09 Feb 2020 13:41:15 GMT
etag: 197605540082fc8c805e68bc603e3523
x-timestamp: 1581255674.24526
x-object-meta-mtime: 1581255671.873545
x-trans-id: tx1140b0b7228c4e51b4e46-005e64ba19
x-openstack-request-id: tx1140b0b7228c4e51b4e46-005e64ba19
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Mon, 16 Jun 2025 22:24:17 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 19831
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qervts3KAIYKlnrgTsD4zL%2F2iMcIEVkv8Lo3gC6SfT3cndKecgKpLdNAM%2FwtPayF0tj0TCL5%2BKPa7o%2BDsys51mJ3s4cLHEWYKQvRUA%2Bx"}]}
cf-ray: 94ff20d2486cb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET amateuranimalporn.art/favicon.ico
404 Not Found 0 B URL
amateuranimalporn.art/favicon.ico
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject amateuranimalporn.art
Fingerprint DE:B5:1E:47:9B:22:AB:D4:BE:14:F2:55:06:FB:88:95:08:FB:ED:9F
Validity Sun, 08 Jun 2025 16:46:41 GMT - Sat, 06 Sep 2025 17:44:55 GMT
GET /favicon.ico HTTP/1.1
Host: amateuranimalporn.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
server: cloudflare
vary: Accept-Encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
priority: u=4,i=?0
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=eJsKZU3sK1fslq2hLC8VY8gXa363bkIxFmDtmOqX73fgGIjnBirB6Lku%2Bn7Y1aQ7sYGSpvxSam8MeMoFC9ITc6HnG4kPlLJCtNUKWrKuyO1r2Ns%3D"}]}
content-encoding: br
cf-ray: 94ff20e0ce9656b9-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.snackvideo.com/favicon.ico
200 OK 2.3 kB URL
www.snackvideo.com/favicon.ico
IP / ASN
103.167.27.137
#142160 JOYO TECHNOLOGY PTE. LTD.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 80 x 80, 8-bit colormap, non-interlaced
First Seen 2025-02-21
Last Seen 2025-07-22
Times Seen 4
Size 2.3 kB (2292 bytes)
MD5 425a2f59a4b7dd77955d6d48fa49ad56
SHA1 bba1ccd781232157b1b50ff80258780fc231abff
SHA256 4041eb9e1fb0fe99b6269dbbac3521ad73c06ebb8a2f75160ef4ea5ddad57ac4
Certificate Info
Issuer GlobalSign nv-sa
Subject *.snackvideo.com
Fingerprint 66:42:AB:1A:B1:97:5D:89:85:97:83:8C:DC:99:20:66:FD:FB:FF:19
Validity Tue, 27 May 2025 08:05:27 GMT - Sun, 28 Jun 2026 08:05:26 GMT
GET /favicon.ico HTTP/1.1
Host: www.snackvideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Sun, 15 Jun 2025 03:54:53 GMT
content-type: image/x-icon
content-length: 2292
last-modified: Fri, 13 Jun 2025 03:12:47 GMT
etag: "684b972f-8f4"
alt-svc: quic=":443";ma=2592000;v="43"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET media.dlsite.com/chobit/contents/2009/11k3dzyy9l1wogk4ksws0s8k0/11k3dzyy9l1wogk4ksws0s8k0_thumb.jpg?w=1000&h=1000
200 OK 143 kB URL
media.dlsite.com/chobit/contents/2009/11k3dzyy9l1wogk4ksws0s8k0/11k3dzyy9l1wogk4ksws0s8k0_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 1000x562, components 3
First Seen 2024-05-12
Last Seen 2025-06-15
Times Seen 5
Size 143 kB (143390 bytes)
MD5 52fcb633d8e6bc81198f86e2c6177013
SHA1 5c6c0dd66a8ef7153300cebb36fc69f20e37daaf
SHA256 7951cc264081173091e1f0807f940033d57fc307391751461e35fb32612b6a4e
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/2009/11k3dzyy9l1wogk4ksws0s8k0/11k3dzyy9l1wogk4ksws0s8k0_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 143390
date: Sun, 15 Jun 2025 03:11:11 GMT
last-modified: Wed, 09 Sep 2020 09:44:07 GMT
etag: W/"e13890ca80af078813b61ab8ea641cfa"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EnQ4-ed9ML02j7i1iXLELuzzd4rhUyAVqROD_ekxSJYYjvLGNtICvA==
age: 2613
X-Firefox-Spdy: h2
GET www.blacktowhite.net/favicon.ico
200 OK 3.0 kB URL
www.blacktowhite.net/favicon.ico
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
First Seen 2024-06-16
Last Seen 2025-07-31
Times Seen 119
Size 3.0 kB (2951 bytes)
MD5 7f61d30e4ff36ab9f7cbc9e8b4e3feda
SHA1 54f81165e7d7130826fd6d87d85a39735c391698
SHA256 60e32d8ca6041d4eedc2e9abf1ef3f012e86a01ba7cccc3004ee934bafb22742
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 2951
last-modified: Mon, 21 Dec 2015 10:18:34 GMT
etag: "5677d1fa-b87"
expires: Sun, 29 Jun 2025 03:54:50 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.com/
403 Forbidden 0 B IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET / HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6lcOk0VIUvVVlYiNfmsuiAnMaZouVF3V0DOC5ZHkeltl6dkqUR%2BJGiv6EkaLwvjt1rMSPy6TUhZYyaYU3igkPBY9pOK5MPw0HI8zOdvW"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94ff20b7df6fb4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn5-static.motherlessmedia.com/images/no_image.jpg
200 OK 20 kB URL
cdn5-static.motherlessmedia.com/images/no_image.jpg
IP / ASN
172.67.198.225
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 150x150, components 3
First Seen 2023-05-25
Last Seen 2025-07-31
Times Seen 65
Size 20 kB (20198 bytes)
MD5 138da7bd71a4ac24cb796615b49907b8
SHA1 097a9d62b8774383e2a34ea2894be5ec35a74c20
SHA256 7b06941157e843ea2e2b80f132110af09f72b143d65a78c44c36556174d91b89
Certificate Info
Issuer Google Trust Services
Subject motherlessmedia.com
Fingerprint 8A:F1:5E:05:48:D8:C7:7E:32:19:00:61:6B:A4:98:13:E8:FD:33:DF
Validity Mon, 09 Jun 2025 10:17:51 GMT - Sun, 07 Sep 2025 11:14:22 GMT
GET /images/no_image.jpg HTTP/1.1
Host: cdn5-static.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: image/jpeg
content-length: 20198
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Thu, 20 Apr 2023 06:59:04 GMT
etag: "6440e2b8-4ee6"
expires: Sat, 21 Jun 2025 04:49:03 GMT
cache-control: max-age=1209600
x-server-w: web804
x-server-l: lb02
accept-ranges: bytes
age: 687944
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=uTLolWzVeUGL%2FfFMei6KabQ3eBKCPbQZ207XWf%2Bta8wk9qsJYoV9EudjmCUzM1g507Gw2yyJ67wGzvq3XbkjUhdC1HBRZkyEW3zwsBDELvNNdwf51HXY%2FQ00%2FRLt"}]}
cf-ray: 94ff20d15dd9b500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET fav-hentai.com/wp-content/uploads/2023/10/moa001pl-1.jpg
200 OK 80 kB URL
fav-hentai.com/wp-content/uploads/2023/10/moa001pl-1.jpg
IP / ASN
104.18.29.11
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x537, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-17
Last Seen 2025-06-15
Times Seen 2
Size 80 kB (80162 bytes)
MD5 759774d211c3d924accb9b071397a24f
SHA1 3bff25f161d13278a84b3627c21f1bf337497c2e
SHA256 781f9bc93d572cad580116ead43e9533877cbe0a98635a4d9849acdb3725b0fe
Certificate Info
Issuer Google Trust Services
Subject fav-hentai.com
Fingerprint 1F:67:DA:B9:9A:89:06:FF:6D:4E:02:C6:28:D4:EA:A6:68:A2:CD:E5
Validity Wed, 28 May 2025 01:54:16 GMT - Tue, 26 Aug 2025 02:54:14 GMT
GET /wp-content/uploads/2023/10/moa001pl-1.jpg HTTP/1.1
Host: fav-hentai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/webp
content-length: 80162
cache-control: public, max-age=31535999
expires: Mon, 15 Jun 2026 03:54:44 GMT
last-modified: Mon, 23 Oct 2023 09:55:58 GMT
vary: User-Agent,User-Agent,Accept, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 94ff20bac99556a9-OSL
X-Firefox-Spdy: h2
GET pix.porno-zona.com/fotos/3e/2d/28/3e2d28780f43edbbefc1acd36620332f.jpg
200 OK 9.0 kB URL
pix.porno-zona.com/fotos/3e/2d/28/3e2d28780f43edbbefc1acd36620332f.jpg
IP / ASN
104.21.93.247
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 9.0 kB (9036 bytes)
MD5 2c3cf601afd010e560b03d7f9f280f14
SHA1 3ecbefe146c1822567cad461b51a2299774d5ad6
SHA256 cd21859eae6d79dcd2030a5a65467662d92b9ab453d6ed26a9e52b89fd2ed0ae
Certificate Info
Issuer Google Trust Services
Subject porno-zona.com
Fingerprint EE:DF:CF:D4:85:BC:76:AA:34:16:32:98:1B:11:06:F2:D8:1D:2D:28
Validity Sat, 14 Jun 2025 12:40:31 GMT - Fri, 12 Sep 2025 13:38:53 GMT
GET /fotos/3e/2d/28/3e2d28780f43edbbefc1acd36620332f.jpg HTTP/1.1
Host: pix.porno-zona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 9036
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581170922.043399
etag: 2c3cf601afd010e560b03d7f9f280f14
last-modified: Sat, 08 Feb 2020 14:08:45 GMT
x-timestamp: 1581170924.40553
x-trans-id: txe8f7afec6b75413abc487-0067a9faf8
x-openstack-request-id: txe8f7afec6b75413abc487-0067a9faf8
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=31536000
expires: Mon, 16 Jun 2025 15:21:36 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 45184
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mSrhWWfu4qUYlY34w3LSlll71LZp9nBrCPxz7S9VFJZE%2FyS3Mw9%2BE%2FM%2Fh6r3R%2FzgvQTeMFbV%2BmxyLY7OQDJ2WUGydc56AOUSvg4Bwbd5U6I%3D"}]}
cf-ray: 94ff20a9cd5c56b1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pic.fsrxpm.cn/upload/upload/20231216/2023121601555437156.jpeg
200 OK 321 kB URL
pic.fsrxpm.cn/upload/upload/20231216/2023121601555437156.jpeg
IP / ASN
43.152.140.107
#139341 ACE
Requested by http://animal.zoo2.top/
Resource Info
File type data
First Seen 2025-06-15
Last Seen 2025-07-15
Times Seen 19
Size 321 kB (321104 bytes)
MD5 ddf8fc5d0a62af1660d3a92fca3df7d4
SHA1 2a3ca8d13aa86475c5866ffa0a41be10c5be929a
SHA256 31b2ba3c1a0f75ac419166256058f247a89a15a1a744fdbf3456baa3cf0e7c09
Certificate Info
Issuer ZeroSSL
Subject *.fsrxpm.cn
Fingerprint 09:BC:4C:24:47:D3:41:6B:B3:AE:0C:F9:4C:F0:D7:4C:83:9F:EF:46
Validity Sat, 24 May 2025 00:00:00 GMT - Fri, 22 Aug 2025 23:59:59 GMT
GET /upload/upload/20231216/2023121601555437156.jpeg HTTP/1.1
Host: pic.fsrxpm.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Thu, 28 Dec 2023 14:56:55 GMT
Etag: "ddf8fc5d0a62af1660d3a92fca3df7d4"
Content-Type: binary/octet-stream
Date: Sat, 03 May 2025 08:29:32 GMT
x-amz-server-side-encryption: AES256
Server: nginx
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: ARN53-P2
Age: 2889
Vary: Origin
Content-Length: 321104
Accept-Ranges: bytes
X-NWS-LOG-UUID: 15783177476803734883
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Access-Control-Allow-Origin: *
GET cdntube.b-cdn.net/thumbnails/25d36b68ea974cfff5c5c081b738fcd6a0a2dc03.jpg
200 OK 9.5 kB URL
cdntube.b-cdn.net/thumbnails/25d36b68ea974cfff5c5c081b738fcd6a0a2dc03.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x710, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-11
Last Seen 2025-07-13
Times Seen 15
Size 9.5 kB (9462 bytes)
MD5 24d2e54e074a9ede4b2838bfbb6e4be8
SHA1 e6a993d4cf6af1e874d1b32b2ad425b35cc7a657
SHA256 bd2c67d1be122485f1e1971f5d5af9754c6507a010e4a1dcf820561c04e03aef
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/25d36b68ea974cfff5c5c081b738fcd6a0a2dc03.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 9462
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sun, 30 Jan 2022 03:47:45 GMT
cdn-storageserver: DE-1018
cdn-requestpullsuccess: True
cdn-fileserver: 247
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/04/2025 14:57:02
cdn-edgestorageid: 830
cdn-requestid: dd5f166fe3bdafda99cbfdd9d422a072
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/9c/e7/15/9ce7156b38d3d092a9fe7c4b7bb4c5d1/9ce7156b38d3d092a9fe7c4b7bb4c5d1.5.jpg
200 OK 7.9 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/9c/e7/15/9ce7156b38d3d092a9fe7c4b7bb4c5d1/9ce7156b38d3d092a9fe7c4b7bb4c5d1.5.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-07-14
Times Seen 5
Size 7.9 kB (7891 bytes)
MD5 7345d608a86e9ca4409878edf2e89936
SHA1 f60138aa0b37adaa51e9efba3f0090693a656e84
SHA256 3496279637eb2fae01d8786996d7a40c4a1192af6575b8d70ca211b421f996df
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/9c/e7/15/9ce7156b38d3d092a9fe7c4b7bb4c5d1/9ce7156b38d3d092a9fe7c4b7bb4c5d1.5.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 7891
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Sun, 06 Feb 2022 20:09:15 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: A7lMCRE3Nzf/lFsjAJySISs3Nzf/Nu1HAI/0Otg3Nzf/MB4AAA
x-77-nzt-ray: 0ef5851b987059e603444e685b349a2a
x-accel-expires: @1753296697
x-accel-date: 1747642479
x-77-cache: HIT
x-77-age: 2317204
x-accel-date-max: 1701464421
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pornoperso.com/favicon.ico
404 Not Found 0 B URL
pornoperso.com/favicon.ico
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject pornoperso.com
Fingerprint 0B:CD:F1:5F:E0:A2:D1:A3:CC:5D:7C:2C:BC:30:D9:79:0E:B2:E6:D5
Validity Tue, 22 Apr 2025 08:51:15 GMT - Mon, 21 Jul 2025 09:47:22 GMT
GET /favicon.ico HTTP/1.1
Host: pornoperso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2TeSQZnOHAi7PZ6MkY1WpwW3oqJJNB0wyM6Jtq8Kj6jQUjg5LJ9BfRdsV%2BbwHC4hJZ%2BmTjNU4t7%2Fpx4p5hfbEGgY0a1gMo23i9N4dgdn%2Bh13XMTy56uxT1ATu%2Bt4QAAzbw%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
version: MS25053003
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, must-revalidate
age: 214876
cf-cache-status: HIT
content-encoding: br
cf-ray: 94ff20e04efdb503-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11790&min_rtt=634&rtt_var=10662&sent=189&recv=251&lost=0&retrans=0&sent_bytes=13383&recv_bytes=13821&delivery_rate=275976&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=a069a752828b3991&ts=5124&inflight_dur=134&x=80"
GET ansuko.net/wp-content/uploads/2024/12/153487_header.webp
200 OK 31 kB URL
ansuko.net/wp-content/uploads/2024/12/153487_header.webp
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 31 kB (31306 bytes)
MD5 aced99dda05670786c8c2c38279fc41d
SHA1 68a783228ff1be7c4351e988133abc3acfcdd8a5
SHA256 3c8d659767504efb84d3df37f96f0b2d76f33f31d8c36ce2e2b8b0a9cadef772
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2024/12/153487_header.webp HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/webp
content-length: 31306
server: cloudflare
last-modified: Wed, 18 Dec 2024 17:04:31 GMT
etag: "6763009f-7a4a"
accept-ranges: bytes
age: 265407
cache-control: max-age=31536000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vnrCpWQqswyc1SAIXZvWtqVc2i%2BN%2BtXoRGliclJzPQi1FyGobh7J93YZDUktwcYrWvCae9NB%2B%2FmdEitDILkyhE2W4Ms0nWAZ"}]}
cf-ray: 94ff20c2390b7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET r34xyz.b-cdn.net/posts/423/423926/423926.preview.jpg
200 OK 46 kB URL
r34xyz.b-cdn.net/posts/423/423926/423926.preview.jpg
IP / ASN
185.59.220.198
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1050x600, components 3
First Seen 2025-06-15
Last Seen 2025-06-28
Times Seen 2
Size 46 kB (46111 bytes)
MD5 7bc398995fd306e401be5833f1ceb3fd
SHA1 1016c557767bdf214837ec165a11d4b0b93a75e9
SHA256 c92620937f1519b4d3c82fac6bd523f7273426751a7e9654dfbb46b1958ac053
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /posts/423/423926/423926.preview.jpg HTTP/1.1
Host: r34xyz.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 46111
server: BunnyCDN-DE1-723
cdn-pullzone: 839427
cdn-uid: 66d6ad83-3f00-4738-b738-db341e02bfab
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 27 Mar 2024 10:38:07 GMT
cdn-storageserver: DE-1024
cdn-fileserver: 739
cdn-proxyver: 1.19
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/04/2025 17:32:47
cdn-edgestorageid: 1076
cdn-requestid: 9b3d750d3f10376761e746585575fed2
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.pornlulu.com/favicon.ico
404 Not Found 0 B URL
www.pornlulu.com/favicon.ico
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject pornlulu.com
Fingerprint 8D:2F:27:67:D4:35:82:EB:97:AE:E9:86:AA:F0:4B:6B:47:05:07:C6
Validity Tue, 22 Apr 2025 07:12:05 GMT - Mon, 21 Jul 2025 08:10:04 GMT
GET /favicon.ico HTTP/1.1
Host: www.pornlulu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=14400, must-revalidate
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=eBu4yyiCm6WNPpbOq3rVqYOqXyS94pOA3MRKArIP%2F02ERBIbdYpaB%2FPkyQnhUAnd8cLducmsHTa%2BwSqc7Qf4c7%2F7SH%2Fl3RtfM6Vy%2Bd%2Fo"}]}
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
server: cloudflare
x-cache: BYPASS, Status: 404
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
age: 11584
cf-cache-status: HIT
content-encoding: br
cf-ray: 94ff20df6efd56ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET x.devki.net/favicon.ico
301 Moved Permanently 0 B URL
x.devki.net/favicon.ico
IP / ASN
104.21.74.84
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject devki.net
Fingerprint 0D:AB:04:88:E2:65:3C:78:2A:E7:AB:CD:DD:D7:77:DA:84:78:3F:56
Validity Sun, 01 Jun 2025 20:20:30 GMT - Sat, 30 Aug 2025 21:18:32 GMT
GET /favicon.ico HTTP/1.1
Host: x.devki.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c973l33ar3rQ8av%2B6%2FUq7SxVk7Uw5PZai4u8jaYti4e71edwfk%2BLH8MFdyUaoL8blCgc6CUmoWc5v6VtEZ5zEzj%2FJZ%2FdXaO9qjGHfFdVAH%2FX29JU2SdjfXB2NyspcA%3D%3D"}],"group":"cf-nel","max_age":604800}
location: https://xl.devki.net/favicon.ico
cache-control: max-age=14400
cf-cache-status: EXPIRED
cf-ray: 94ff20e24b15569b-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8944&min_rtt=672&rtt_var=8701&sent=145&recv=219&lost=0&retrans=0&sent_bytes=11027&recv_bytes=12185&delivery_rate=190296&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=1acb602780e59379&ts=5886&inflight_dur=53&x=80"
GET aniru.org/wp-includes/images/w-logo-blue-white-bg.png
200 OK 4.1 kB URL
aniru.org/wp-includes/images/w-logo-blue-white-bg.png
IP / ASN
172.67.135.62
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
First Seen 2023-04-08
Last Seen 2025-08-02
Times Seen 24005
Size 4.1 kB (4119 bytes)
MD5 000bf649cc8f6bf27cfb04d1bcdcd3c7
SHA1 d73d2f6d74ec6cdcbae07955592962e77d8ae814
SHA256 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
Certificate Info
Issuer Google Trust Services
Subject aniru.org
Fingerprint 2A:61:D9:E9:91:8D:BF:F6:BF:C8:89:1C:9C:06:39:C0:31:0F:32:F9
Validity Wed, 30 Apr 2025 08:12:48 GMT - Tue, 29 Jul 2025 09:10:23 GMT
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: aniru.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/png
content-length: 4119
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XC7L%2B4ra8mZbl5QBUd1%2BX0MeDC%2FozYDWaVmcP%2BJ%2FKiW5SXIklJKluXeo8iIj2%2BE9mDIJAHUwH%2FcnuzS0eIXwY8J1Gn3wrHyhDNBQ6g9PY7GceQ3KNTsLE4dxXZg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Aug 2024 06:47:49 GMT
etag: "1017-61f9f1abe6e0d"
expires: Fri, 20 Jun 2025 01:12:37 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 182533
cf-cache-status: HIT
cf-ray: 94ff20e48e4a56aa-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=14281&min_rtt=986&rtt_var=8001&sent=245&recv=305&lost=0&retrans=0&sent_bytes=17231&recv_bytes=16891&delivery_rate=137418&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=577cc7843016c624&ts=5948&inflight_dur=179&x=80"
GET thumb.aporntv.com/thumbs/5/e/8/2/7/5e81bd92d013dTwins%20in%20threesome.mp4/5e81bd92d013dTwins%20in%20threesome.mp4-3.jpg
200 OK 3.4 kB URL
thumb.aporntv.com/thumbs/5/e/8/2/7/5e81bd92d013dTwins%20in%20threesome.mp4/5e81bd92d013dTwins%20in%20threesome.mp4-3.jpg
IP / ASN
104.26.1.238
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1024x765, segment length 16, baseline, precision 8, 200x150, components 3
First Seen 2025-06-15
Last Seen 2025-06-16
Times Seen 2
Size 3.4 kB (3404 bytes)
MD5 a9e6153536673b6d5ea4e721e19f7b55
SHA1 7eefd59bdb92321c8fec6b34a2d996aa2ada0d20
SHA256 d0220406a8507455212548a1b0e43003587446cf6f1766002ecb543f1b03116b
Certificate Info
Issuer Let's Encrypt
Subject aporntv.com
Fingerprint 12:C5:AA:F4:28:DA:FC:0D:26:EF:7E:DC:ED:3C:55:A1:34:24:B2:E6
Validity Tue, 22 Apr 2025 22:30:20 GMT - Mon, 21 Jul 2025 22:30:19 GMT
GET /thumbs/5/e/8/2/7/5e81bd92d013dTwins%20in%20threesome.mp4/5e81bd92d013dTwins%20in%20threesome.mp4-3.jpg HTTP/1.1
Host: thumb.aporntv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 3404
cf-ray: 94ff20a70b2b712e-OSL
cache-control: public, max-age=16070400
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "5e827ec2-d4c"
expires: Fri, 20 Jun 2025 22:27:45 GMT
last-modified: Mon, 30 Mar 2020 23:20:34 GMT
cf-cache-status: HIT
age: 106016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q0T5fFE1SwXSan3afA7C%2F1s1vRQhR8A%2F53gEdRnouuk0cC7vmpYNX%2F4szfu%2FBoaPVCk2YR1lhqsdU0YNidBoj4I38bT7BHPHOcANY3PhPhS6W4ht37%2FHerA8n0BM0HIXpR3N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6052&min_rtt=446&rtt_var=6586&sent=34&recv=17&lost=0&retrans=0&sent_bytes=33625&recv_bytes=1734&delivery_rate=15459074&cwnd=255&unsent_bytes=0&cid=5a7fe41be8fdb4f2&ts=181&x=0"
X-Firefox-Spdy: h2
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.3_-_uchiyama_aki_no_omorashi_gokko.mp4_snapshot_05.14_2016.12.19_22.43.49.jpg?itok=Le67JSn1
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.3_-_uchiyama_aki_no_omorashi_gokko.mp4_snapshot_05.14_2016.12.19_22.43.49.jpg?itok=Le67JSn1
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.3_-_uchiyama_aki_no_omorashi_gokko.mp4_snapshot_05.14_2016.12.19_22.43.49.jpg?itok=Le67JSn1 HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20beda6456ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
200 OK 188 kB IP / ASN
172.67.140.116
#13335 CLOUDFLARENET
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (57982), with CRLF line terminators
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 188 kB (187609 bytes)
MD5 281184184790f0d3f8ccbd3361c7bd78
SHA1 0933e0212f2e4417023d5da11fce3dfe6b45afb9
SHA256 a7c8df830bbdb8260514270c483f28abad8564ae78466224b9259724facbaac9
GET / HTTP/1.1
Host: animal.zoo2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jun 2025 03:54:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
pdojs-line8: host-animal.zoo2.top4.194.8.20-myhost-animal.zoo2.top38.220.248/
phost: animal.zoo2.top
pdojs-line355: notjp-anime-myhost-animal.zoo2.top-filteron-
pdojs-line963: notjp-anime-myhost-animal.zoo2.top-filteron-/
line1283: URI-/-myhost-animal.zoo2.top-filteron-
line1413: anime
line1448: -anime
line14592774uuuuuuuuu: counted
pdojs-line1513: ibig--chname--filteron--txtlang--shows-607
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Cake
X-Proxy-Cache-192g-LA: EXPIRED
Xkey-192LA: animal.zoo2.top/--animal.zoo2.top-animal.zoo2.top-myzone---no
X-Proxy-Cache-G-la: MISS
Xkey-G-la: animal.zoo2.top/--animal.zoo2.top--my_zone
cf-cache-status: EXPIRED
last-modified: Sun, 15 Jun 2025 03:54:40 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U84R%2Be1o10iMAxVBntyKU8sL8IOCB1BqfGtq%2FwJAFg5QolSvtISOmLxSaYh4uyepIOYcFbfVAdUdM0gYnfTzdvkGQ%2F0%2BUIxfK2aivUOdS4bISSszG611Iyd4b9MwwlhDVlk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 94ff20a0bcb556b9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=452&min_rtt=405&rtt_var=125&sent=6&recv=8&lost=0&retrans=0&sent_bytes=3042&recv_bytes=1066&delivery_rate=10342857&cwnd=253&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET gcore-pic.xvideos-cdn.com/videos/thumbs169ll/88/c7/98/88c7980fa579ae043b3cd1a2daedc160/88c7980fa579ae043b3cd1a2daedc160.15.jpg
200 OK 11 kB URL
gcore-pic.xvideos-cdn.com/videos/thumbs169ll/88/c7/98/88c7980fa579ae043b3cd1a2daedc160/88c7980fa579ae043b3cd1a2daedc160.15.jpg
IP / ASN
185.244.209.62
#199524 G-Core Labs S.A.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 11 kB (10914 bytes)
MD5 2dbeb32dd692e8510b3d78e9a9b220b1
SHA1 508155af31b5b4a28030827443f2ac118f640ace
SHA256 796ac1eb8758c7d7dbd252099ee6d982939b220d5b3c7b88e834a16d0f9114f5
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/88/c7/98/88c7980fa579ae043b3cd1a2daedc160/88c7980fa579ae043b3cd1a2daedc160.15.jpg HTTP/1.1
Host: gcore-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 10914
traceparent: 00-534a342038dcf99d26d73fc01ec3b267-6ed7effba1b17cc8-01
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Sun, 29 Sep 2019 13:04:03 GMT
expires: Thu, 22 May 2025 01:22:14 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-id-shield: am3-hw-edge-gc132
age: 1961930
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2025-06-09T04:18:11+00:00
accept-ranges: bytes
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_2656404407.jpg
200 OK 12 kB URL
chezcathy.com/ext/pre_2656404407.jpg
IP / ASN
138.199.37.230
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2025-01-24
Last Seen 2025-06-15
Times Seen 2
Size 12 kB (11901 bytes)
MD5 5c5f410ea7ec469f816b4bb671a9fa46
SHA1 3fb0037711a272d74f05458a1b6a3698f832fc8d
SHA256 d08744317230fbe7180f3a3cf014d5a60c160ffa7c6c3a8ca50c549af5fb3897
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_2656404407.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 11901
server: BunnyCDN-DE1-864
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "6668a821-2e7d"
last-modified: Tue, 11 Jun 2024 19:40:17 GMT
cdn-cachedat: 06/09/2025 14:13:49
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 2e6bc6daeed776864bf56592c9fb4199
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET qingseav.cc/favicon.ico
403 Forbidden 0 B URL
qingseav.cc/favicon.ico
IP / ASN
103.224.182.212
#133618 Trellian Pty. Limited
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject percussionpla.net
Fingerprint 89:AA:B7:EE:FF:AF:04:5F:54:06:47:6C:63:50:2A:B4:BD:92:68:E3
Validity Thu, 01 May 2025 20:27:49 GMT - Wed, 30 Jul 2025 20:27:48 GMT
GET /favicon.ico HTTP/1.1
Host: qingseav.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 403 Forbidden
cache-control: no-cache
content-type: text/html
GET thumb.aporntv.com/thumbs/5/c/7/e/9/5c740fce2dd13amateur-girl-fucking-dog-bestiality-sex-with-dog-zoo-porno_720p.mp4/5c740fce2dd13amateur-girl-fucking-dog-bestiality-sex-with-dog-zoo-porno_720p.mp4-3.jpg
200 OK 6.7 kB URL
thumb.aporntv.com/thumbs/5/c/7/e/9/5c740fce2dd13amateur-girl-fucking-dog-bestiality-sex-with-dog-zoo-porno_720p.mp4/5c740fce2dd13amateur-girl-fucking-dog-bestiality-sex-with-dog-zoo-porno_720p.mp4-3.jpg
IP / ASN
104.26.1.238
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 93x88, segment length 16, progressive, precision 8, 200x150, components 3
First Seen 2025-06-15
Last Seen 2025-07-13
Times Seen 3
Size 6.7 kB (6749 bytes)
MD5 df28389fa5ccb673f9cc5223e13e3613
SHA1 a6b1f8877114c64f8c6c93a6b403a2a7d1184814
SHA256 de7109d4beb782a1ff7e9f8f2b5fae65c2bc6ab0f94d98ff214e2b0c5622aa37
Certificate Info
Issuer Let's Encrypt
Subject aporntv.com
Fingerprint 12:C5:AA:F4:28:DA:FC:0D:26:EF:7E:DC:ED:3C:55:A1:34:24:B2:E6
Validity Tue, 22 Apr 2025 22:30:20 GMT - Mon, 21 Jul 2025 22:30:19 GMT
GET /thumbs/5/c/7/e/9/5c740fce2dd13amateur-girl-fucking-dog-bestiality-sex-with-dog-zoo-porno_720p.mp4/5c740fce2dd13amateur-girl-fucking-dog-bestiality-sex-with-dog-zoo-porno_720p.mp4-3.jpg HTTP/1.1
Host: thumb.aporntv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 6749
cf-ray: 94ff20a6db15712e-OSL
cache-control: public, max-age=16070400
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6751
etag: "5c7e95cc-1a5f"
expires: Tue, 17 Jun 2025 04:04:59 GMT
last-modified: Tue, 05 Mar 2019 15:29:16 GMT
cf-cache-status: HIT
age: 431382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hIFcJen%2Bdehms7jwxyILiCeSNuvVttL8bKTUvnWBxdOH3ZzLbUgybbTK2iJRdvacXSuZQhJ%2FtHv%2B9ROkUGWCLrmN0B3O4eXGWqCMOYuexiOBy1C3Tu8H76BgTTeDJPa8OoI1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6597&min_rtt=446&rtt_var=8912&sent=27&recv=14&lost=0&retrans=0&sent_bytes=26144&recv_bytes=1595&delivery_rate=15459074&cwnd=255&unsent_bytes=0&cid=5a7fe41be8fdb4f2&ts=145&x=0"
X-Firefox-Spdy: h2
GET pic.punbla.cn/new/xiao/20210824/2021082400062013018.jpeg
0 B URL
pic.punbla.cn/new/xiao/20210824/2021082400062013018.jpeg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /new/xiao/20210824/2021082400062013018.jpeg HTTP/1.1
Host: pic.punbla.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET feporno.com/files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif
301 Moved Permanently 31 kB URL
feporno.com/files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif
IP / ASN
65.109.145.36
#24940 Hetzner Online GmbH
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 31 kB (30659 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject feporno.com
Fingerprint 72:D2:2A:D2:5C:2D:17:EF:78:A6:F5:DA:5F:1D:19:13:C7:AE:5B:F2
Validity Fri, 09 May 2025 10:06:38 GMT - Thu, 07 Aug 2025 10:06:37 GMT
GET /files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif HTTP/1.1
Host: feporno.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: text/html; charset=iso-8859-1
location: https://feporno.cc/files/Anal/Domashnij_anal_s_kazahskoj_blyadqyu_Aidoj/screen.gif
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=UA-620120-3
200 OK 265 kB URL
www.googletagmanager.com/gtag/js?id=UA-620120-3
IP / ASN
142.250.178.104
#15169 GOOGLE
Requested by http://animal.zoo2.top/
Resource Info
File type JavaScript source, ASCII text, with very long lines (2385)
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 265 kB (264929 bytes)
MD5 609a021a4b9f3ab8dcf8c350cffb2cd6
SHA1 56e41fdfceedf3ad59bb99485724bd97faca6f04
SHA256 ba28c6a223a18e6fd5ee2e72d7374699d6ce61b084c513dcbe698bfef88b56b2
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 93:AC:F6:E3:CB:D8:8F:95:04:0C:A1:34:97:CB:ED:C4:F9:99:EB:12
Validity Mon, 19 May 2025 08:41:43 GMT - Mon, 11 Aug 2025 08:41:42 GMT
GET /gtag/js?id=UA-620120-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 15 Jun 2025 03:54:46 GMT
expires: Sun, 15 Jun 2025 03:54:46 GMT
cache-control: private, max-age=900
last-modified: Sun, 15 Jun 2025 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 94612
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ds2.nashobmenfiles.com/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
200 OK 7.3 kB URL
ds2.nashobmenfiles.com/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
IP / ASN
85.17.28.50
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 136x240, components 3
First Seen 2024-05-08
Last Seen 2025-07-27
Times Seen 8
Size 7.3 kB (7280 bytes)
MD5 3a4e4c473df6ff38ade48258abdad959
SHA1 e3348913718ea01e759caa0b005202f367a1c5e1
SHA256 55aa8bce0c05e8da5ff8863a6404932d54e4c6ec23e5a9d26fd5ad5deb554f3c
GET /fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg HTTP/1.1
Host: ds2.nashobmenfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:46 GMT
Content-Type: image/jpeg
Content-Length: 7280
Last-Modified: Fri, 14 Jun 2024 00:19:42 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "666b8c9e-1c70"
Accept-Ranges: bytes
GET cdne-pics.youjizz.com/f/6/2/f621c78bfc05cb7c3b28194fe4a2d6391400170812-480-360-399-h264.flv-28.jpg?revnum=1
200 OK 15 kB URL
cdne-pics.youjizz.com/f/6/2/f621c78bfc05cb7c3b28194fe4a2d6391400170812-480-360-399-h264.flv-28.jpg?revnum=1
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 213x160, segment length 16, comment: "Lavc52.123.0", baseline, precision 8, 308x232, components 3
First Seen 2024-12-22
Last Seen 2025-07-29
Times Seen 12
Size 15 kB (15033 bytes)
MD5 f1c7ae0a6c01a6114834b4d8c3b6b081
SHA1 2e7d9b80b88700cb2d1c91bbd225547395d8bd6a
SHA256 cdd3e3bd0c7c492967cab0cb334e36aab43370a5fdc902f93e20173c41f88b44
GET /f/6/2/f621c78bfc05cb7c3b28194fe4a2d6391400170812-480-360-399-h264.flv-28.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 15033
last-modified: Sun, 17 Feb 2019 10:14:03 GMT
etag: "3ab9-582144480225c"
expires: Thu, 04 Sep 2025 16:25:33 GMT
cache-control: max-age=10728240
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-8657-2-1094094-h-0-0---;8658-20-2260288----0-0-0
GET 18j.tv/favicon.ico
403 Forbidden 0 B IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 18j.tv
Fingerprint 80:1F:8E:F1:2B:03:A1:60:DB:FA:2B:DB:D4:E6:1D:8D:6C:66:71:C1
Validity Fri, 02 May 2025 14:27:11 GMT - Thu, 31 Jul 2025 15:23:47 GMT
GET /favicon.ico HTTP/1.1
Host: 18j.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html; charset=UTF-8
vary: referer, accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=urAxyGPyVWS%2FcM45cUp3utPEHTTmUDsm%2FzFHKKtlfmGCbvr4YUO0%2BW4Qz2FcYovJpp9P27MTKtbgFtUtDbmD1%2Bzs%2BqE%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94ff20e9a8ca569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET 4krealincestporn.com/thumbs/908/2705852731435098908_0.jpg
200 OK 4.0 kB URL
4krealincestporn.com/thumbs/908/2705852731435098908_0.jpg
IP / ASN
104.21.77.237
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-04-18
Last Seen 2025-07-26
Times Seen 41
Size 4.0 kB (4006 bytes)
MD5 eb055b9a96289cb0626a04d2c1db5904
SHA1 c0483149ecb61944bbb0606acd03a674ddf23a77
SHA256 be24db5b4800aa27825ea61b4b80c71a8b3bdd45744b71b7b3cdcca59a28ae78
Certificate Info
Issuer Google Trust Services
Subject 4krealincestporn.com
Fingerprint EE:63:15:78:2B:4D:50:E9:D2:8F:59:1D:44:AA:01:5F:D7:BB:85:70
Validity Sat, 19 Apr 2025 05:23:00 GMT - Fri, 18 Jul 2025 06:21:44 GMT
GET /thumbs/908/2705852731435098908_0.jpg HTTP/1.1
Host: 4krealincestporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 4006
server: cloudflare
last-modified: Sun, 08 Mar 2020 16:28:47 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5e651d3f-fa6"
expires: Mon, 07 Jul 2025 04:49:07 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 687936
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ceFkAHCR6QRGDZbwKBQpkpNwd0NYfj5USH4mTllm4AB%2BzizE93NM5FsmspPeh88AZYIqtigKQD5HQRO0Yemdi7Y7PNeTgN%2BIHTlS%2Fju70hf3WA%3D%3D"}]}
cf-ray: 94ff20b8bfe9b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.effedupmovies.com/wp-content/uploads/2024/03/verylastday.jpg
0 B URL
www.effedupmovies.com/wp-content/uploads/2024/03/verylastday.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2024/03/verylastday.jpg HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.2_-_milk_nomi_ningyou.mp4_snapshot_02.07_2016.12.19_22.43.22.jpg?itok=wYF4uIYE
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.2_-_milk_nomi_ningyou.mp4_snapshot_02.07_2016.12.19_22.43.22.jpg?itok=wYF4uIYE
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.2_-_milk_nomi_ningyou.mp4_snapshot_02.07_2016.12.19_22.43.22.jpg?itok=wYF4uIYE HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20cdcf9c56ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241117-7/bdef122d910ea70391cc6e4944f5c028.jpg
0 B URL
www.9188porn.xyz/upload/vod/20241117-7/bdef122d910ea70391cc6e4944f5c028.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241117-7/bdef122d910ea70391cc6e4944f5c028.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET img.hardcore-sex-videos.net/imgs/76/763c057db0afd8e46bed447291923769.jpg
200 OK 10 kB URL
img.hardcore-sex-videos.net/imgs/76/763c057db0afd8e46bed447291923769.jpg
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-05-22
Last Seen 2025-07-29
Times Seen 13
Size 10 kB (10120 bytes)
MD5 5d347134eb81d23db605fefccdf76717
SHA1 573831a9e8d989fc39ee8d38845a83556d3bab36
SHA256 bfa8eb4977eff3a1e725856a12da5c9dc95f42348e0f6159ed37df73fbeabcef
Certificate Info
Issuer Google Trust Services
Subject hardcore-sex-videos.net
Fingerprint 54:29:F1:52:A5:BE:23:CC:64:69:8F:60:5A:26:73:C4:E5:44:FD:6B
Validity Fri, 06 Jun 2025 20:29:55 GMT - Thu, 04 Sep 2025 21:27:42 GMT
GET /imgs/76/763c057db0afd8e46bed447291923769.jpg HTTP/1.1
Host: img.hardcore-sex-videos.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 10120
server: cloudflare
last-modified: Wed, 12 Sep 2018 21:21:42 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5b998366-2788"
accept-ranges: bytes
age: 4125
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=O8A74IbITdiWhJm9cGVf1aJzVFOLDM%2FZjF8bdls8cBSXIsQlXVucPUB8Cb9Njph9vqM3Oq3ZAX%2F69s2U9d7harmelQZ5VVIW%2FokOpozenQEsVCod52qg9QM%3D"}]}
cf-ray: 94ff20c10e25b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET suckinganimalsex.info/tmbs/9/382_hardcore-enjoying.jpg
200 OK 14 kB URL
suckinganimalsex.info/tmbs/9/382_hardcore-enjoying.jpg
IP / ASN
172.67.152.10
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x230, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 14 kB (13528 bytes)
MD5 ebebfc992479365836981504c30cf2eb
SHA1 354d572f1dc3b2b4451598f82125a1108e762825
SHA256 855ea97245b3f84e2cba828470aebc7c62c66eb8dae2e32d8f4513a734a09c2c
Certificate Info
Issuer Google Trust Services
Subject suckinganimalsex.info
Fingerprint A1:3F:C7:B4:84:F0:15:24:DC:26:22:77:A3:75:B0:22:4D:44:6A:C9
Validity Thu, 22 May 2025 02:31:34 GMT - Wed, 20 Aug 2025 03:29:09 GMT
GET /tmbs/9/382_hardcore-enjoying.jpg HTTP/1.1
Host: suckinganimalsex.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 13528
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 11 May 2021 12:21:36 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=d029l91rxWatV6NdEQv63%2Bk0on2WxIAZsE1so48IcrzyMlaTGUKDw2bRhP0BDXUVacByEtBuLTfed%2Bh0b9VjMRiujwJ85x4iIJINX5qq86VBsL0%3D"}]}
etag: "609a76d0-34d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-request-id: fad1ef3fc96fc270fb6a92152be19048
accept-ranges: bytes
age: 153205
cf-cache-status: HIT
vary: accept-encoding
cf-ray: 94ff20b7ad8056bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pic.punbla.cn/upload/upload/20231124/2023112406071590636.jpeg
0 B URL
pic.punbla.cn/upload/upload/20231124/2023112406071590636.jpeg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/upload/20231124/2023112406071590636.jpeg HTTP/1.1
Host: pic.punbla.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET media.dlsite.com/chobit/contents/2209/t8ar3y8ajhw8cccos8ocwk04/t8ar3y8ajhw8cccos8ocwk04_thumb.jpg?w=1000&h=1000
200 OK 150 kB URL
media.dlsite.com/chobit/contents/2209/t8ar3y8ajhw8cccos8ocwk04/t8ar3y8ajhw8cccos8ocwk04_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 1000x562, components 3
First Seen 2025-06-02
Last Seen 2025-07-26
Times Seen 9
Size 150 kB (149813 bytes)
MD5 f76454401480bc58d1eec07be1abf379
SHA1 a322ab6e7db6ee1c5678cd8eb2ee2f778f831f46
SHA256 74b4eb05af038768d334f3c68c357f4cde54b7b756d19e3a17cde6877c468e80
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/2209/t8ar3y8ajhw8cccos8ocwk04/t8ar3y8ajhw8cccos8ocwk04_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 149813
date: Sun, 15 Jun 2025 03:49:09 GMT
last-modified: Tue, 20 Sep 2022 04:11:12 GMT
etag: W/"a8df60038134eca6b648555be23a4690"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1bO5O9Avikuu2Awkw4Bp5plyt8Hfy8cCDVGshXfKwrhCmL85SJuZSg==
age: 335
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/f/0/d/f0d9a8e0a619f50753621a2eee7c0cb51633251485-1280-720-1277-h264.mp4-9.jpg
200 OK 30 kB URL
cdne-pics.youjizz.com/f/0/d/f0d9a8e0a619f50753621a2eee7c0cb51633251485-1280-720-1277-h264.mp4-9.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 308x232, components 3
First Seen 2025-02-08
Last Seen 2025-06-15
Times Seen 2
Size 30 kB (29877 bytes)
MD5 83756c21cad0880df08c457eb692cbe0
SHA1 5c6e188a07a7ef496b81b1e065ea19c73fc25ebd
SHA256 61d3f501089496c24285d856619232774f9c03a974d7a58b05205ecd090dbddc
GET /f/0/d/f0d9a8e0a619f50753621a2eee7c0cb51633251485-1280-720-1277-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 29877
last-modified: Sun, 03 Oct 2021 09:02:01 GMT
etag: "74b5-5cd6f0cab472f"
expires: Fri, 26 Jan 2024 15:19:25 GMT
cache-control: max-age=10374852
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-6139-2-3404218-h-0-0---;6139-30-629625----0-0-1
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240303-1/5b353df7778bcd6f9c76aaee92808efb.jpg
200 OK 64 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240303-1/5b353df7778bcd6f9c76aaee92808efb.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 900x506, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-15
Last Seen 2025-07-30
Times Seen 14
Size 64 kB (63482 bytes)
MD5 710a655c43aaae3d791f3e463c387a64
SHA1 fd90123b1fdee31db8830b24be0ef049b813fa1d
SHA256 6f741719fdec04e48c3a0c6946753e7fbbc9291c0ac8d35c3335237babef7295
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240303-1/5b353df7778bcd6f9c76aaee92808efb.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:42 GMT
content-type: image/webp
content-length: 63482
last-modified: Sat, 14 Dec 2024 02:59:58 GMT
expires: Mon, 14 Dec 2026 14:59:58 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240303-1/5b353df7778bcd6f9c76aaee92808efb.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "79dcb1b0194ed14a"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET aniru.org/wp-content/uploads/2024/02/RJ01152814_img_main.webp
200 OK 28 kB URL
aniru.org/wp-content/uploads/2024/02/RJ01152814_img_main.webp
IP / ASN
172.67.135.62
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 560x420, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2024-08-19
Last Seen 2025-07-14
Times Seen 7
Size 28 kB (28070 bytes)
MD5 49d18f1005225158541d86737fc82a17
SHA1 e2ac4276e2e7083a5c13c097eac06ecb1112d814
SHA256 f73c143e5af4739115d76885678a08682c1f87dd5069fac16907b4695254e9f6
Certificate Info
Issuer Google Trust Services
Subject aniru.org
Fingerprint 2A:61:D9:E9:91:8D:BF:F6:BF:C8:89:1C:9C:06:39:C0:31:0F:32:F9
Validity Wed, 30 Apr 2025 08:12:48 GMT - Tue, 29 Jul 2025 09:10:23 GMT
GET /wp-content/uploads/2024/02/RJ01152814_img_main.webp HTTP/1.1
Host: aniru.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/webp
content-length: 28070
server: cloudflare
cache-control: private
last-modified: Thu, 15 Feb 2024 01:03:46 GMT
etag: "6da6-6116133092080"
vary: Accept, accept-encoding
accept-ranges: bytes
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=uALDntffyQNaYLzjzfziv1e6rEjYMRAXSYjlzJEYhrRP5ozgUlW97NKoeR1Rp2rMSFCKK2qdKDrlkLSa3Bis7WVRAApCOps%3D"}]}
cf-ray: 94ff20b7dc8856c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET theporn.cc/favicon.ico
404 Not Found 0 B URL
theporn.cc/favicon.ico
IP / ASN
104.21.80.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject theporn.cc
Fingerprint EA:FF:F5:C4:71:40:9D:C1:5A:52:A8:BA:BD:CC:8F:35:51:39:DE:EA
Validity Mon, 12 May 2025 14:02:05 GMT - Sun, 10 Aug 2025 15:00:18 GMT
GET /favicon.ico HTTP/1.1
Host: theporn.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 670
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BU3Ge65E9EQ93cWA2xPjMlGFemo9I05FhzVIYBo85TtesBwAdZibzAhTkdRA%2B%2FN71EM7EIp6eMRwe91DzTOFP54YZbx933Dn"}]}
content-encoding: br
cf-ray: 94ff20e69fd67130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET animal.zoo2.top/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
301 Moved Permanently 188 kB URL
animal.zoo2.top/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
IP / ASN
172.67.140.116
#13335 CLOUDFLARENET
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 188 kB (187609 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert suricata medium ET INFO HTTP Request to a *.top domain
GET /v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p] HTTP/1.1
Host: animal.zoo2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 15 Jun 2025 03:54:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
pdojs-line8: host-animal.zoo2.top4.194.8.20-myhost-animal.zoo2.top38.220.248/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
phost: animal.zoo2.top
pdojs-line355: notjp-anime-myhost-animal.zoo2.top-filteron-
pdojs-line963: notjp-anime-myhost-animal.zoo2.top-filteron-/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]
pdo120: feedvid-, cachefileb-cacpdo3/ee/e4/16, lfm-13-5311384, lmd-1749959319, lud-1749959319, xfvlen-0, fsize-273840, played-
pdo396: feedvid-, cachefileb-cacpdo3/ee/e4/16, lfm-13-5311384, lmd-1749959319, lud-1749959319, xfvlen-0, fsize-273840, played-
pdophp-line429: -; cachetime- 25118.739302363; ctime- 19700101090000; lmd- 19700101090000
pdo-line556: host-animal.zoo2.top4.194.8.20-myhost-animal.zoo2.top38.220.248/v/s/avfla.com/v/138470/1/1/title/[Father-daughter incest] After the mother remarried, the animal father fucked two daughters-AV welfare society-Popular AV video welfare community [23:34x718p]
Cache-Control: public, max-age=360001
Location: /
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Cake
X-Proxy-Cache-192g-LA: HIT
Xkey-192LA: animal.zoo2.top/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]-B-animal.zoo2.top-animal.zoo2.top-myzone---no
X-Proxy-Cache-G-la: MISS
Xkey-G-la: animal.zoo2.top/v/s/avfla.com/v/138470/1/1/title/[Father-daughter%20incest]%20After%20the%20mother%20remarried,%20the%20animal%20father%20fucked%20two%20daughters-AV%20welfare%20society-Popular%20AV%20video%20welfare%20community%20%20%20%20%20%20%20%20%20%20%20%20%20%20[23:34x718p]-B-animal.zoo2.top--my_zone
cf-cache-status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4B%2BpQ8AjWt79Ji9Tqo2WDdKHwGAcfk4NgetEGYejnMrxGoLBPq3f0lL0VkRAmsCKo9QCJc5JGyytLZuaHkXtNQ7ll6NiEjDzIM%2BoAeKwT4IDyy8Zf01QYQG%2FtNKrsIl5DxE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 94ff209e0bbb56b9-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=405&min_rtt=405&rtt_var=202&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=666&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET gcore-pic.xvideos-cdn.com/videos/thumbs169ll/e2/c4/0c/e2c40cdc1da137aed22d648d7e966484/e2c40cdc1da137aed22d648d7e966484.26.jpg
200 OK 15 kB URL
gcore-pic.xvideos-cdn.com/videos/thumbs169ll/e2/c4/0c/e2c40cdc1da137aed22d648d7e966484/e2c40cdc1da137aed22d648d7e966484.26.jpg
IP / ASN
185.244.209.62
#199524 G-Core Labs S.A.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 2
Size 15 kB (15244 bytes)
MD5 2f08cb4b81c423f1c8932c353b8d5dc8
SHA1 e7fa043105afd2721c697b7bc043db5fb5b00f20
SHA256 9a61ac518104c51237e385e4d50dac39b8d2d57e1256409b49f4ad770ba5f9af
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/e2/c4/0c/e2c40cdc1da137aed22d648d7e966484/e2c40cdc1da137aed22d648d7e966484.26.jpg HTTP/1.1
Host: gcore-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 15244
traceparent: 00-6728b205c7c365eee6703cb426f2c612-b322060140925a71-01
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Mon, 03 Oct 2016 20:26:43 GMT
expires: Thu, 06 Feb 2025 20:22:53 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-id-shield: am3-hw-edge-gc66
age: 10689205
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2025-06-07T09:54:07+00:00
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ansuko.net/wp-content/uploads/2023/07/d40b7791f7b035957b1b6cb2df213e87-86-1.jpg
200 OK 22 kB URL
ansuko.net/wp-content/uploads/2023/07/d40b7791f7b035957b1b6cb2df213e87-86-1.jpg
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 555x420, components 3
First Seen 2025-06-15
Last Seen 2025-06-19
Times Seen 4
Size 22 kB (21937 bytes)
MD5 59b566968441e84e438b26f43b445e32
SHA1 e342ff77dab31ede4479d3d4ba750f37ac8e88dc
SHA256 50f0e4eb620afbd3412c642eb5ed3d8a9499342c4665cc5e46687eb0348fc863
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2023/07/d40b7791f7b035957b1b6cb2df213e87-86-1.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 21937
server: cloudflare
last-modified: Fri, 07 Jul 2023 00:25:47 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "64a75b8b-55b1"
accept-ranges: bytes
age: 1973227
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1%2FfvRtgnm%2FtZFkLxtdP%2BGuDy%2BGO3u88L2iP7NlhUfZMaXeEu608tdDoqtBKZPMYeBrJgSZeRxZsbFwAEw8t71aH3U7HDkCIa"}]}
cf-ray: 94ff20bb2ecc7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cacrz.4jpg.top/AV4.us.jpg
200 OK 8.7 kB URL
cacrz.4jpg.top/AV4.us.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /AV4.us.jpg HTTP/1.1
Host: cacrz.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 15 Jun 2025 03:54:48 GMT
content-type: image/jpeg
content-length: 8741
server: cloudflare
etag: "2225-5499bcea176c0"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: Cake
ahost: RZ
cache-control: public, max-age=3600000
age: 616624
cf-cache-status: HIT
priority: u=6,i=?0
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oazonbpRX8cWRhMrVB2%2BUNa%2BpdtSsyWwXWXe0ZvwppTdUy9xsLbBWzKNd7Cz6q1RzkwGCOoh8WR9ESVUdA0FHL5O9QvIbwe0HGFDWA%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 94ff20d72e6756b7-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET ds.nashobmenfiles.com/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
302 Moved Temporarily 7.3 kB URL
ds.nashobmenfiles.com/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
IP / ASN
85.17.28.58
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 7.3 kB (7280 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg HTTP/1.1
Host: ds.nashobmenfiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://animal.zoo2.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sun, 15 Jun 2025 03:54:46 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Keep-Alive: timeout=20
Location: http://ds2.nashobmenfiles.com/fo/files_attachments/3a4/e4c/3a4e4c473df6ff38ade48258abdad959.jpg
GET www.9188porn.xyz/upload/vod/20241010-11/cbeab2bfbdee667d34152e3dca5bd771.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/cbeab2bfbdee667d34152e3dca5bd771.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/cbeab2bfbdee667d34152e3dca5bd771.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET mc.webvisor.org/watch/48140495?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(21562884)fip(1)ti(1)
302 Found 604 B URL
mc.webvisor.org/watch/48140495?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(21562884)fip(1)ti(1)
IP / ASN
77.88.21.119
#13238 YANDEX LLC
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 604 B (604 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer GlobalSign nv-sa
Subject mc.webvisor.com
Fingerprint 4E:A6:D4:57:F5:B7:FB:C1:98:C0:40:D2:B8:FA:B4:10:43:09:41:94
Validity Sun, 09 Mar 2025 21:02:24 GMT - Sun, 31 Aug 2025 20:59:59 GMT
GET /watch/48140495?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(21562884)fip(1)ti(1) HTTP/1.1
Host: mc.webvisor.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://animal.zoo2.top/
Origin: http://animal.zoo2.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
access-control-allow-origin: http://animal.zoo2.top
strict-transport-security: max-age=31536000
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Sun, 15-Jun-2025 03:54:48 GMT
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
last-modified: Sun, 15-Jun-2025 03:54:48 GMT
set-cookie: yabs-sid=603421001749959688; Path=/; SameSite=None; Secure
i=4bOJYiUye00Won6OqNpXz1ynkJrrYeOjs+iCG1kE9moUSVLC58QW4wmAlfQTloVHhekdlthniLqr0l+V7F+ei63DQgQ=; Expires=Wed, 13-Jun-2035 03:54:43 GMT; Domain=.webvisor.org; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7070695391749959688; Expires=Wed, 13-Jun-2035 03:54:43 GMT; Domain=.webvisor.org; Path=/; Secure; SameSite=None
yuidss=7070695391749959688; Expires=Mon, 15-Jun-2026 03:54:48 GMT; Domain=.webvisor.org; Path=/; SameSite=None; Secure
ymex=1781495688.yrts.1749959688#1781495688.yrtsi.1749959688; Expires=Mon, 15-Jun-2026 03:54:48 GMT; Domain=.webvisor.org; Path=/; SameSite=None; Secure
bh=YIiIucIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.webvisor.org; Expires=Mon, 20 Jul 2026 03:54:48 GMT; SameSite=None; Secure
bh=YIiIucIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.webvisor.org; Expires=Mon, 20 Jul 2026 03:54:48 GMT; SameSite=None; Secure
location: /watch/48140495/1?wmode=7&page-url=http%3A%2F%2Fanimal.zoo2.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A7gb6ul65btwwzgsg60yxau986m1r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A773558953166%3Ahid%3A1041019720%3Az%3A0%3Ai%3A20250615035446%3Aet%3A1749959687%3Ac%3A1%3Arn%3A840805235%3Arqn%3A1%3Au%3A1749959687179725905%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C403%2C178%2C1025%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749959679093%3Afip%3A8c67480ea8029af8954e43defe8e57b0-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749959688%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-ANIME-VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
GET www.kwai.com/favicon.ico
200 OK 17 kB URL
www.kwai.com/favicon.ico
IP / ASN
23.73.4.210
#20940 Akamai International B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
First Seen 2024-05-18
Last Seen 2025-07-24
Times Seen 173
Size 17 kB (16958 bytes)
MD5 321813c75370556d33e64ec8c26dea6d
SHA1 73c6f171c693e0005e2f7aae020d9a6f7652d375
SHA256 5a5b31e72fbb8a672841e5511ffd511fb571cae9028a5395fd00196da7cf6c4c
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.com
Fingerprint 79:B4:47:59:A1:C1:88:DD:61:AE:E7:5A:8E:99:CB:D6:16:20:E9:CC
Validity Tue, 30 Jul 2024 09:22:23 GMT - Sun, 31 Aug 2025 09:22:22 GMT
GET /favicon.ico HTTP/1.1
Host: www.kwai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
content-length: 16958
last-modified: Fri, 13 Jun 2025 03:12:47 GMT
etag: "684b972f-423e"
content-security-policy-report-only: default-src 'self' 'unsafe-inline' 'unsafe-eval' *.mythad.com https://*.kwai-pro.com http://*.kwai-pro.com http://*.kwai.net https://*.kwai.net *.kwai.com *.snackvideo.in *.kwai.me *.kwai.app *.kwimgs.com *.yximgs.com *.cloudfront.net *.kuaishou.com https://*.gifshow.com http://*.gifshow.com https://log-sdk.ksapisrv.com https://www.googletagmanager.com https://gifshow-static.download.ks-cdn.com https://static3.avast.com https://translate.google.com https://www.gstatic.com https://fonts.gstatic.com https://connect.facebook.net www.google-analytics.com hm.baidu.com m.snackvideo.com http://*.ap4r.com https://*.ap4r.com https://*.typekit.net http://*.typekit.net ak-sgp-pic.snackvideo.in tx-sgp-pic.snackvideo.in ws-sgp-pic.snackvideo.in g-us-kampic.golden49.net g-us-kamcdn.golden49.net m.kwai.com sentry.kuaishou.com https://cdn.jsdelivr.net https://at.alicdn.com https://www.facebook.com https://snap.licdn.com https://px.ads.linkedin.com https://cdn.linkedin.oribi.io https://www.linkedin.com https://*.google.com https://*.google-analytics.com https://*.doubleclick.net asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;img-src http: https: asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;connect-src http: https: asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;report-uri https://csplog.kwai-pro.com/log/kwai/wwwkwai
accept-ranges: bytes
date: Sun, 15 Jun 2025 03:54:51 GMT
alt-svc: h3=":443"; ma=93600
X-Firefox-Spdy: h2
GET cloudflare-br-pic.kwai.net/upic/2022/07/22/12/BMjAyMjA3MjIxMjE0NDFfMTUwMDAxMjk4NjI2NDI1XzE1MDEwMDM1NTY3NDMxN18yXzM=_oscn2_B733d7047d15ad035b6959d0fa2000f73.webp
200 OK 16 kB URL
cloudflare-br-pic.kwai.net/upic/2022/07/22/12/BMjAyMjA3MjIxMjE0NDFfMTUwMDAxMjk4NjI2NDI1XzE1MDEwMDM1NTY3NDMxN18yXzM=_oscn2_B733d7047d15ad035b6959d0fa2000f73.webp
IP / ASN
104.18.51.191
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x854, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 8
Size 16 kB (15878 bytes)
MD5 d06dd59d0ad8de0a5e984612ed1dee7b
SHA1 8d4f5437204f4803666de4f8bfa7349e3789e3c1
SHA256 7b88c4b31ec799c2c1f408d55f981da1c794552252407b07bfdac4958ca9ec0a
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /upic/2022/07/22/12/BMjAyMjA3MjIxMjE0NDFfMTUwMDAxMjk4NjI2NDI1XzE1MDEwMDM1NTY3NDMxN18yXzM=_oscn2_B733d7047d15ad035b6959d0fa2000f73.webp HTTP/1.1
Host: cloudflare-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/webp
content-length: 15878
cf-ray: 94ff20bdeb2012a5-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 425207
cache-control: max-age=2592000
etag: "D06DD59D0AD8DE0A5E984612ED1DEE7B"
expires: Mon, 15 Jun 2026 03:54:44 GMT
last-modified: Fri, 22 Jul 2022 04:15:45 GMT
vary: Accept-Encoding
via: 1.1 f1a3d723a6e9098370410b253482edfe.cloudfront.net (CloudFront)
x-amz-cf-id: JIOak3EUlgeQAdbADJ0vBJjTsqCzTzKoTDj_nGQy3LIiBgojUZAB9A==
x-amz-cf-pop: HEL51-P5
x-bs-hash-crc64ecma: 9703050800863820987
x-bs-object-status: 0
x-cache: Hit from cloudfront
x-nws-log-uuid: 1923025794175699242
access-control-allow-origin: *
x-ks-cache: HIT
x-ks-client-ip: 91.90.42.154
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET rule34.paheal.net/_thumbs/7f1f8a561693181fae65a1627ecede5a/thumb.jpg
200 OK 2.9 kB URL
rule34.paheal.net/_thumbs/7f1f8a561693181fae65a1627ecede5a/thumb.jpg
IP / ASN
185.100.87.48
#200651 FlokiNET ehf
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x108, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 2.9 kB (2929 bytes)
MD5 4964bdb233c5cac48203e5fdfe6a56c6
SHA1 38aec4849fac32bae64bff08423091fc19c01e51
SHA256 17708b8c53e14c189dd00cd4340336ddaf1b52b5ef8f05756ab11dcefe6aef4f
Certificate Info
Issuer Let's Encrypt
Subject rule34.paheal.net
Fingerprint 14:19:38:B9:57:D4:0B:18:D5:5F:12:F6:60:8A:F4:36:25:BE:F4:9D
Validity Sat, 31 May 2025 08:55:26 GMT - Fri, 29 Aug 2025 08:55:25 GMT
GET /_thumbs/7f1f8a561693181fae65a1627ecede5a/thumb.jpg HTTP/1.1
Host: rule34.paheal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31556926
date: Sun, 15 Jun 2025 03:54:44 GMT
etag: "64d7016a-b71"
last-modified: Sat, 12 Aug 2023 03:50:02 GMT
server: Unit/1.34.2
content-type: image/jpeg
content-length: 2929
X-Firefox-Spdy: h2
GET vidmo.pro/thumbs_320/69/37/693782030841f6e3c3d971e5fd7627fa/15791555.jpg
404 Not Found 0 B URL
vidmo.pro/thumbs_320/69/37/693782030841f6e3c3d971e5fd7627fa/15791555.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/69/37/693782030841f6e3c3d971e5fd7627fa/15791555.jpg HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.1_-_uchiyama_aki_no_obyoki_aki-chan.mp4_snapshot_01.00_2016.12.19_22.43.06.jpg?itok=lue02JeX
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.1_-_uchiyama_aki_no_obyoki_aki-chan.mp4_snapshot_01.00_2016.12.19_22.43.06.jpg?itok=lue02JeX
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.1_-_uchiyama_aki_no_obyoki_aki-chan.mp4_snapshot_01.00_2016.12.19_22.43.06.jpg?itok=lue02JeX HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20cc4f1356ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET fotografias.antena3.com/clipping/cmsimages02/2017/06/07/20EF5422-C8EF-4D3D-B96A-5D7CA2E1E242/69.jpg?crop=1083,609,x69,y0&width=1280&height=720&optimize=low&format=jpg
200 OK 696 kB URL
fotografias.antena3.com/clipping/cmsimages02/2017/06/07/20EF5422-C8EF-4D3D-B96A-5D7CA2E1E242/69.jpg?crop=1083,609,x69,y0&width=1280&height=720&optimize=low&format=jpg
IP / ASN
199.232.193.89
#54113 FASTLY
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3
First Seen 2024-04-30
Last Seen 2025-07-29
Times Seen 12
Size 696 kB (696380 bytes)
MD5 4885a4779f239a392ba41b421b35df45
SHA1 f9b4f932cbc73eebbd68d8e10e4359a8ba2452bf
SHA256 96e9320ada038829e88fa84db1f795aac67f8672cf0c0c3e192dc531c21481cf
Certificate Info
Issuer GlobalSign nv-sa
Subject *.antena3.com
Fingerprint 36:B6:66:B6:6F:AF:A8:44:8B:79:1C:C2:3E:5D:C1:AE:4A:6F:92:87
Validity Thu, 09 Jan 2025 10:36:54 GMT - Tue, 10 Feb 2026 10:36:53 GMT
GET /clipping/cmsimages02/2017/06/07/20EF5422-C8EF-4D3D-B96A-5D7CA2E1E242/69.jpg?crop=1083,609,x69,y0&width=1280&height=720&optimize=low&format=jpg HTTP/1.1
Host: fotografias.antena3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: image/jpeg
etag: "qLjWoICKyYenV62CvOdyyxpwziK6Xjzskj8UcC4Yq28"
fastly-io-info: ifsz=902252 idim=1152x609 ifmt=jpeg ofsz=696380 odim=1280x720 ofmt=jpeg
fastly-io-served-by: img08-europe-west1
fastly-stats: io=1
server: nginx
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
x-internal-ttl: 31535913.000
accept-ranges: bytes
date: Sun, 15 Jun 2025 03:54:41 GMT
age: 2236813
x-served-by: cache-mad22041-MAD, cache-mad2200126-MAD, cache-hel1410033-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 18, 3
x-timer: S1749959681.202297,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 696380
X-Firefox-Spdy: h2
GET cav105.com/contents/videos_screenshots/6000/6836/preview.jpg
200 OK 98 kB URL
cav105.com/contents/videos_screenshots/6000/6836/preview.jpg
IP / ASN
45.145.72.132
#201106 Spartan Host Ltd
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x1280, components 3
First Seen 2024-05-06
Last Seen 2025-07-01
Times Seen 14
Size 98 kB (98002 bytes)
MD5 d809fc859352f19d9caee0121be5205c
SHA1 35b91edf031e0d75d2c9846a67d10a45e4744456
SHA256 6f1a37ae7b79ac65cf5947e34c98907548562147aba3280ab311b80a540d3066
Certificate Info
Issuer Let's Encrypt
Subject cav102.com
Fingerprint 7A:5A:5C:15:50:AA:37:93:19:98:DB:C0:27:3B:17:FF:88:6A:EF:C5
Validity Tue, 15 Apr 2025 13:40:00 GMT - Mon, 14 Jul 2025 13:39:59 GMT
GET /contents/videos_screenshots/6000/6836/preview.jpg HTTP/1.1
Host: cav105.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 98002
last-modified: Sat, 24 Sep 2022 08:20:11 GMT
etag: "632ebdbb-17ed2"
expires: Sun, 15 Jun 2025 03:55:44 GMT
cache-control: max-age=60
strict-transport-security: max-age=31536000
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/c/2/a/c2ad7ab01bcb3dc44c8b5ae95c5d08a71640361844-1920-1080-2649-h264.mp4-9.jpg
200 OK 20 kB URL
cdne-pics.youjizz.com/c/2/a/c2ad7ab01bcb3dc44c8b5ae95c5d08a71640361844-1920-1080-2649-h264.mp4-9.jpg
IP / ASN
64.210.135.117
#30361 SWIFTWILL2
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 308x232, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 20 kB (19588 bytes)
MD5 caf01a25b2403977df9a67d7d60658e0
SHA1 57ebee68545ab1afa622b87eafc8372cbf5a707a
SHA256 9dbc578b88742718b3893683f4c3aa26b5bb0d1d8a0f831e8a184bc2884cd212
GET /c/2/a/c2ad7ab01bcb3dc44c8b5ae95c5d08a71640361844-1920-1080-2649-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sun, 15 Jun 2025 03:54:42 GMT
Content-Type: image/jpeg
Content-Length: 19588
last-modified: Fri, 24 Dec 2021 16:13:42 GMT
etag: "4c84-5d3e6a37a88b5"
expires: Sun, 28 Jan 2024 15:28:08 GMT
cache-control: max-age=10539680
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
Accept-Ranges: bytes
x-cdn-diag: ams5-7846-2-1524025-h-0-0---;6139-24-629625----0-0-1
GET www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET aws-br-pic.kwai.net/upic/2021/01/04/17/BMjAyMTAxMDQxNzU0MjVfMTUwMDAwMDYyMjIzMjczXzE1MDAwMDMxMzA5NjkwNF8yXzM=_B926786a97055f320b8810b6643aa30c6.jpg?tag=1-1747701044-s-0-404jbgiztq-d3da7e987a1966ad
200 OK 50 kB URL
aws-br-pic.kwai.net/upic/2021/01/04/17/BMjAyMTAxMDQxNzU0MjVfMTUwMDAwMDYyMjIzMjczXzE1MDAwMDMxMzA5NjkwNF8yXzM=_B926786a97055f320b8810b6643aa30c6.jpg?tag=1-1747701044-s-0-404jbgiztq-d3da7e987a1966ad
IP / ASN
3.167.2.88
#0
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, baseline, precision 8, 480x640, components 3
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 50 kB (49963 bytes)
MD5 f535224640844d8ba62df8f5750c4023
SHA1 6ed094c69ff05289330440fc090bd7404f55057e
SHA256 61fa5780e61ec37f829f195e0ab4312fd8e92b832dc3ebf3fb3d10aff92e4b1c
Certificate Info
Issuer Amazon
Subject *.kwai.net
Fingerprint CD:0B:C7:F0:0E:3D:EB:FE:26:15:85:4D:E4:6B:CD:BB:C1:A1:34:08
Validity Mon, 11 Nov 2024 00:00:00 GMT - Thu, 11 Dec 2025 23:59:59 GMT
GET /upic/2021/01/04/17/BMjAyMTAxMDQxNzU0MjVfMTUwMDAwMDYyMjIzMjczXzE1MDAwMDMxMzA5NjkwNF8yXzM=_B926786a97055f320b8810b6643aa30c6.jpg?tag=1-1747701044-s-0-404jbgiztq-d3da7e987a1966ad HTTP/1.1
Host: aws-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 49963
date: Sun, 24 Nov 2024 13:23:59 GMT
accept-ranges: bytes
x-bs-object-status: 0
expires: Mon, 24 Nov 2025 13:23:59 GMT
cache-control: public, max-age=31536000
x-kslogid: 732031221506314770
last-modified: Mon, 04 Jan 2021 09:54:41 GMT
x-nws-log-uuid: 5079114759667958353
x-cache: Hit from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: -pJmVc_Zha3Ra2WAW6-i7cHdlcArjUfUZsQxpOnqlg3dle9NAlLI8A==
age: 17505046
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
GET media.dlsite.com/chobit/contents/2312/2siqzrjnuxus48oo08scs84c4/2siqzrjnuxus48oo08scs84c4_thumb.jpg?w=1000&h=1000
200 OK 138 kB URL
media.dlsite.com/chobit/contents/2312/2siqzrjnuxus48oo08scs84c4/2siqzrjnuxus48oo08scs84c4_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 1000x562, components 3
First Seen 2024-05-16
Last Seen 2025-07-24
Times Seen 12
Size 138 kB (137462 bytes)
MD5 4da31ee4107008935b9f9f9780f4836d
SHA1 b80d975b15f5306899e99ef76075bbd2296e9838
SHA256 f1cbcdde98589e0502840a4484a929e1bef18077f4188429ae789fd0a583b9c0
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/2312/2siqzrjnuxus48oo08scs84c4/2siqzrjnuxus48oo08scs84c4_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 137462
date: Sun, 15 Jun 2025 03:45:53 GMT
last-modified: Thu, 21 Dec 2023 14:26:21 GMT
etag: W/"7b0fc6af4e359b7736cfbfb49407ea87"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -yhnOeTobBCD_Epy1O2CplnrF8G3IWqB7VrUSSCg6eDyttUoIIKMsA==
age: 530
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/35/2c/352cd2d6cf8786845787107f8ef29281/13363672.jpg
200 OK 13 kB URL
en.vidmo.pro/thumbs_320/35/2c/352cd2d6cf8786845787107f8ef29281/13363672.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-09-19
Last Seen 2025-06-21
Times Seen 6
Size 13 kB (12986 bytes)
MD5 004e5d0d258823018d629d80e00cfce4
SHA1 ea6d158e82d076d530ccad7a8d1ebf9245ac4572
SHA256 67ae31918c64a3c04a9ed0506bf3a028f3f588df0fdf5078976723545d492110
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/35/2c/352cd2d6cf8786845787107f8ef29281/13363672.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 12986
last-modified: Sat, 26 Jun 2021 17:37:35 GMT
expires: Wed, 16 Apr 2025 15:16:04 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET coub.com/favicon.ico
200 OK 8.3 kB IP / ASN
95.213.253.85
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel
First Seen 2023-10-30
Last Seen 2025-07-22
Times Seen 67
Size 8.3 kB (8348 bytes)
MD5 b22f84ff786b70ac82a4b6d59a0f4cb1
SHA1 8e30c3e09f0a5c85f332beadacb9dde04f6a374b
SHA256 b664fc22289370af2778e75a14c047ef3d23e45dc1daf3047cca3aaa5a2c6670
Certificate Info
Issuer Let's Encrypt
Subject coub.com
Fingerprint BA:B3:6B:68:C2:1C:DC:D0:E7:65:2C:7F:60:E2:5F:86:69:EC:3B:A9
Validity Fri, 09 May 2025 06:00:28 GMT - Thu, 07 Aug 2025 06:00:27 GMT
GET /favicon.ico HTTP/1.1
Host: coub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jun 2025 03:54:50 GMT
Content-Type: image/x-icon
Content-Length: 8348
Last-Modified: Wed, 12 Jul 2017 08:13:24 GMT
Connection: keep-alive
ETag: "5965da24-209c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
GET rule34vault.com/favicon.ico
200 OK 22 kB URL
rule34vault.com/favicon.ico
IP / ASN
104.21.64.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 72x72, 32 bits/pixel
First Seen 2025-05-21
Last Seen 2025-07-29
Times Seen 16
Size 22 kB (21662 bytes)
MD5 f329a9792c4fc0760cdef5e53d29a878
SHA1 b70debf4d34271a4949f317e8ff083abb7bb2024
SHA256 1a86b7a3ab9931cfb76d1547e6758f9236d289cb9c39796867801a75d750fbc3
Certificate Info
Issuer Google Trust Services
Subject rule34vault.com
Fingerprint 59:AD:47:E2:3A:8B:CB:28:D5:D6:08:67:28:5F:F9:39:60:10:B6:1E
Validity Tue, 20 May 2025 13:41:53 GMT - Mon, 18 Aug 2025 14:39:34 GMT
GET /favicon.ico HTTP/1.1
Host: rule34vault.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:52 GMT
server: cloudflare
last-modified: Sun, 15 Jun 2025 01:55:34 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 1518
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0afeW2chGno8%2BybIFxHxGgnD25AQdUhEBpD1Cyndzh3FNQXMHAAmof6b050LCIl3kyI9echafYgUk1uS9hmvX351aUcmWDfjpn2gjME%3D"}]}
cf-ray: 94ff20eb19c0b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.blacktowhite.net/data/xfmg/thumbnail/650/650382-47e00097800889a5d9945e5ded183f21.jpg?1686588555
200 OK 139 kB URL
www.blacktowhite.net/data/xfmg/thumbnail/650/650382-47e00097800889a5d9945e5ded183f21.jpg?1686588555
IP / ASN
192.243.63.82
#39572 DataWeb Global Group B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 2
Size 139 kB (138877 bytes)
MD5 03e63e87708f7b54c874c094135675d2
SHA1 df55476e75931a7f3d8cb3033d6cf681e10266d4
SHA256 32284197544b9d99e6872e9c860f740358afff03e0a08f9d4eef8fe8cb9c00ac
Certificate Info
Issuer Sectigo Limited
Subject blacktowhite.net
Fingerprint 43:8E:56:BC:18:82:17:A1:A7:61:36:29:5B:13:66:73:A2:9A:A6:77
Validity Fri, 28 Jun 2024 00:00:00 GMT - Tue, 29 Jul 2025 23:59:59 GMT
GET /data/xfmg/thumbnail/650/650382-47e00097800889a5d9945e5ded183f21.jpg?1686588555 HTTP/1.1
Host: www.blacktowhite.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 138877
last-modified: Mon, 12 Jun 2023 16:53:50 GMT
etag: "64874d9e-21e7d"
expires: Sun, 29 Jun 2025 03:54:44 GMT
cache-control: max-age=1209600
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET hentaidad.com/images/ellie-banged-hard-animation-the-last-of-us.webp
200 OK 34 kB URL
hentaidad.com/images/ellie-banged-hard-animation-the-last-of-us.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 697x500, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-06-15
Times Seen 1
Size 34 kB (34164 bytes)
MD5 f9a9a78eb9eb0735b003b15350d5ea57
SHA1 d500407f952640e73cef3a6ad98a6d1e76fc88f4
SHA256 c0fb3905e0e9126ad499039334b993ad25cb3dba4691c8f087fd1f7c3c402102
Certificate Info
Issuer Google Trust Services
Subject hentaidad.com
Fingerprint 2C:8A:42:CF:E0:C8:A7:25:2C:6A:B6:2A:52:EC:23:1D:FF:6A:ED:57
Validity Wed, 23 Apr 2025 03:13:22 GMT - Tue, 22 Jul 2025 04:09:55 GMT
GET /images/ellie-banged-hard-animation-the-last-of-us.webp HTTP/1.1
Host: hentaidad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/webp
content-length: 34164
server: cloudflare
last-modified: Tue, 16 Apr 2024 14:12:29 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "661e874d-8574"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
age: 93978
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EwSeigR482E6j3bROEjOE2L9aWfJzLaE3EYPrwqakNKkBl7VUP4wMG%2FZwBQSwjrflIEj2eWeaYhejXITyw3ktos7LsXYW9P2hETv"}]}
cf-ray: 94ff20c20970569c-OSL
X-Firefox-Spdy: h2
GET zozovideo.com/wp-content/uploads/2024/12/4abfbeca48e1e493de0bc8e86b6acde3.jpg
200 OK 39 kB URL
zozovideo.com/wp-content/uploads/2024/12/4abfbeca48e1e493de0bc8e86b6acde3.jpg
IP / ASN
139.162.102.64
#63949 Akamai Connected Cloud
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3
First Seen 2025-06-02
Last Seen 2025-07-29
Times Seen 16
Size 39 kB (39025 bytes)
MD5 6f123f1b33519d8b6b3a4fbd882f95e7
SHA1 1abebdd9224cac5a759b6ba55a9f7e5e3c873a13
SHA256 755a116cd1874b0a1c2831bc418313ca68a4bf13f35bed7cdb722046562ab5c5
Certificate Info
Issuer Let's Encrypt
Subject *.zozovideo.com
Fingerprint 20:AE:26:C8:3B:F7:3F:C9:1C:EC:3D:01:3D:56:BB:FC:F9:15:2C:72
Validity Sat, 19 Apr 2025 23:54:41 GMT - Fri, 18 Jul 2025 23:54:40 GMT
GET /wp-content/uploads/2024/12/4abfbeca48e1e493de0bc8e86b6acde3.jpg HTTP/1.1
Host: zozovideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private
expires: Sun, 22 Jun 2025 03:54:45 GMT
content-type: image/jpeg
last-modified: Mon, 09 Dec 2024 02:54:16 GMT
accept-ranges: bytes
content-length: 39025
date: Sun, 15 Jun 2025 03:54:45 GMT
server: LiteSpeed
vary: User-Agent,Accept
X-Firefox-Spdy: h2
GET expose.eisees.com/upload/upload/20231014/2023101415153964221.jpeg?auth=1745439319-88a1562169cee684739ed1a182787127
404 Not Found 0 B URL
expose.eisees.com/upload/upload/20231014/2023101415153964221.jpeg?auth=1745439319-88a1562169cee684739ed1a182787127
IP / ASN
172.67.142.48
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject eisees.com
Fingerprint B0:94:DA:65:E9:02:02:61:BC:8C:F7:6B:EC:79:9A:D9:FD:13:16:1B
Validity Wed, 14 May 2025 21:54:27 GMT - Tue, 12 Aug 2025 22:52:07 GMT
GET /upload/upload/20231014/2023101415153964221.jpeg?auth=1745439319-88a1562169cee684739ed1a182787127 HTTP/1.1
Host: expose.eisees.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:47 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8Yfk%2FaLGAkw0e0%2F%2FLkwES3WTGLsRo1uktfpEEa9dV3tCjpdBJ5F8wWPvLg6EAk5ROfhPjFpdr4ZzeTe8Ay%2B2YamBEDQuYuy4%2B%2FY%2Bw1yQwQ%3D%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94ff20ce089d5693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET feporno.cc/favicon.ico
200 OK 1.2 kB URL
feporno.cc/favicon.ico
IP / ASN
65.109.145.36
#24940 Hetzner Online GmbH
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2023-05-04
Last Seen 2025-07-31
Times Seen 89
Size 1.2 kB (1150 bytes)
MD5 0177fe6e0018eb853a8c8dc0613fcbb1
SHA1 a0cf2ed70318f4dec7eb983782dd7e5dfe382b9c
SHA256 d873fcd96aba0179c8773f6211afb165635a69b81ea5a3c801599ef192dbc7b5
Certificate Info
Issuer Let's Encrypt
Subject feporno.cc
Fingerprint E4:F2:2B:0E:98:68:42:C8:90:7C:AD:1F:8F:24:EB:3C:58:21:35:BF
Validity Fri, 13 Jun 2025 20:40:42 GMT - Thu, 11 Sep 2025 20:40:41 GMT
GET /favicon.ico HTTP/1.1
Host: feporno.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/vnd.microsoft.icon
content-length: 1150
last-modified: Mon, 21 Apr 2025 09:42:50 GMT
etag: "47e-63346b0faa482"
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
GET oedy9.com/favicon.ico
301 Moved Permanently 0 B IP / ASN
102.165.26.157
#11426 TWC-11426-CAROLINAS
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject oedy9.com
Fingerprint 7B:89:7F:CE:52:01:0C:56:82:F9:F2:5A:59:1E:26:C6:54:0E:13:5A
Validity Tue, 03 Jun 2025 13:51:46 GMT - Mon, 01 Sep 2025 13:51:45 GMT
GET /favicon.ico HTTP/1.1
Host: oedy9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html
content-length: 162
location: http://didizy.com/
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20240619-4/9d3d01c8f65cb2e4064f572cf8d34f03.jpg
0 B URL
www.9188porn.xyz/upload/vod/20240619-4/9d3d01c8f65cb2e4064f572cf8d34f03.jpg
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20240619-4/9d3d01c8f65cb2e4064f572cf8d34f03.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET gcore-pic.xvideos-cdn.com/videos/thumbs169ll/4a/f1/8f/4af18f1e8e3622351ac5a096253d8ae7/4af18f1e8e3622351ac5a096253d8ae7.3.jpg
200 OK 8.0 kB URL
gcore-pic.xvideos-cdn.com/videos/thumbs169ll/4a/f1/8f/4af18f1e8e3622351ac5a096253d8ae7/4af18f1e8e3622351ac5a096253d8ae7.3.jpg
IP / ASN
185.244.209.62
#199524 G-Core Labs S.A.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-07-24
Times Seen 12
Size 8.0 kB (7992 bytes)
MD5 f44c7a242a1444fe2bcac474d4cf42e7
SHA1 01bd68609cd66c74821baef01d29e697ec442ab7
SHA256 fd0c7f5aedf8fff72572348042435a79fb5e65a2223b3bdd4101bfe24a99cf14
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/4a/f1/8f/4af18f1e8e3622351ac5a096253d8ae7/4af18f1e8e3622351ac5a096253d8ae7.3.jpg HTTP/1.1
Host: gcore-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 7992
traceparent: 00-7ffc283fb08492b718fd6403aca3ff4d-20f74a3ba5723b80-01
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 27 Sep 2023 00:06:22 GMT
expires: Sun, 04 May 2025 18:10:08 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-id-shield: am3-hw-edge-gc131
age: 4586136
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2025-05-04T18:44:26+00:00
accept-ranges: bytes
X-Firefox-Spdy: h2
GET xl.devki.net/favicon.ico
404 Not Found 0 B URL
xl.devki.net/favicon.ico
IP / ASN
104.21.74.84
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject devki.net
Fingerprint 0D:AB:04:88:E2:65:3C:78:2A:E7:AB:CD:DD:D7:77:DA:84:78:3F:56
Validity Sun, 01 Jun 2025 20:20:30 GMT - Sat, 30 Aug 2025 21:18:32 GMT
GET /favicon.ico HTTP/1.1
Host: xl.devki.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QcqsgEaPEh%2ByoAdDA0lIn5uOSCynN7%2FYDQSu4shNt6pk9IDxPzRjBXz%2BMPMHm3BFBZTdxI7C%2FK8FarZCwnOD3%2FhJg19GKkG7yIYVRtrB0MOby41W2syaZuVAcVrAqpE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
vary: accept-encoding
content-encoding: br
cf-ray: 94ff20e52b19569b-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9642&min_rtt=672&rtt_var=7921&sent=148&recv=221&lost=0&retrans=1&sent_bytes=12993&recv_bytes=12505&delivery_rate=190296&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=1acb602780e59379&ts=6344&inflight_dur=131&x=80"
GET fmtu.sltusl.com/upload/vod/20220903-4/4ae5651b5f92fdfb008d184998c03d78.jpg
404 Not Found 0 B URL
fmtu.sltusl.com/upload/vod/20220903-4/4ae5651b5f92fdfb008d184998c03d78.jpg
IP / ASN
156.238.194.67
#50183 CenturyNetworks Ltd
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject fmtu.sltusl.com
Fingerprint 3B:56:1F:60:5C:4F:9F:72:5F:AE:5A:FB:B8:98:3C:BD:7D:9C:0B:BE
Validity Fri, 30 May 2025 15:37:42 GMT - Thu, 28 Aug 2025 15:37:41 GMT
GET /upload/vod/20220903-4/4ae5651b5f92fdfb008d184998c03d78.jpg HTTP/1.1
Host: fmtu.sltusl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
content-length: 3
date: Sun, 15 Jun 2025 03:54:45 GMT
X-Firefox-Spdy: h2
GET cdn.redwap.xyz/pics/4d/98/e3/4d98e3d588f3c8bde3a7e5493a720fe1.jpg
200 OK 7.8 kB URL
cdn.redwap.xyz/pics/4d/98/e3/4d98e3d588f3c8bde3a7e5493a720fe1.jpg
IP / ASN
172.67.141.46
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 320x180, components 3
First Seen 2024-04-26
Last Seen 2025-06-16
Times Seen 7
Size 7.8 kB (7827 bytes)
MD5 0d5952b90b1f4743feee300d847fc3eb
SHA1 d8692ed38bfa65522c83df1f62d6825dd990f9f0
SHA256 74d5462777fe138712025d316e2a83b023efa891e0bd33b7b5b5b6628b093a8a
Certificate Info
Issuer Google Trust Services
Subject redwap.xyz
Fingerprint 54:32:EE:F3:46:52:3F:E9:71:4F:35:B3:17:F7:66:53:BA:02:9D:A6
Validity Wed, 11 Jun 2025 19:30:09 GMT - Tue, 09 Sep 2025 20:28:49 GMT
GET /pics/4d/98/e3/4d98e3d588f3c8bde3a7e5493a720fe1.jpg HTTP/1.1
Host: cdn.redwap.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 7827
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
last-modified: Mon, 10 Feb 2020 04:05:13 GMT
etag: 0d5952b90b1f4743feee300d847fc3eb
x-timestamp: 1581307512.09938
x-object-meta-mtime: 1581307510.527804
x-trans-id: tx26b64604db054b0fb0bdd-005e649b88
x-openstack-request-id: tx26b64604db054b0fb0bdd-005e649b88
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Mon, 16 Jun 2025 19:44:40 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 29403
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=uoc5n1yLZjbacGIs5pRM%2FqyENom1HYHOaSLG4aVXdR8UKZul1m%2Fnr%2FhL4VAk2NHhA4vARRPE8hXyw8%2FhmUePjLxSjgvM5aHD1hAw2A%3D%3D"}]}
cf-ray: 94ff20b8df1e7128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cav105.com/favicon.ico
200 OK 4.3 kB URL
cav105.com/favicon.ico
IP / ASN
45.145.72.132
#201106 Spartan Host Ltd
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
First Seen 2024-02-24
Last Seen 2025-07-27
Times Seen 88
Size 4.3 kB (4286 bytes)
MD5 79ca959796fd758988aa0acfb9952640
SHA1 8a8e7fa57c016b5cbc943faefc7c651e8959b0ce
SHA256 01d4884a0070a4804680dc80361b4695aa48ca7b37eb6768127b17d9763464cb
Certificate Info
Issuer Let's Encrypt
Subject cav102.com
Fingerprint 7A:5A:5C:15:50:AA:37:93:19:98:DB:C0:27:3B:17:FF:88:6A:EF:C5
Validity Tue, 15 Apr 2025 13:40:00 GMT - Mon, 14 Jul 2025 13:39:59 GMT
GET /favicon.ico HTTP/1.1
Host: cav105.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Mon, 25 Jul 2022 15:38:39 GMT
etag: "62deb8ff-10be"
strict-transport-security: max-age=31536000
cache-control: no-cache
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.ptt.sex/favicon.ico
404 Not Found 0 B URL
www.ptt.sex/favicon.ico
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject ptt.sex
Fingerprint F7:2E:52:86:71:B6:8C:10:95:FE:11:2A:0E:9D:80:D1:A5:2A:33:C1
Validity Mon, 21 Apr 2025 19:49:46 GMT - Sun, 20 Jul 2025 20:48:07 GMT
GET /favicon.ico HTTP/1.1
Host: www.ptt.sex
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:52 GMT
content-type: text/html; charset=UTF-8
cache-control: no-store, no-cache, must-revalidate
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2Br5URyBF%2FDKv1flfGZ6HzZO8qukQjRhhujNFnj6v76w%2BHYoUP0HLExdnK4zsDYgn6nvaZPWQ62jSQZRFQhbc%2FBxxFmHqwaVClQ%3D%3D"}]}
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-cache: BYPASS, Status: 404
cf-cache-status: BYPASS
vary: accept-encoding
content-encoding: br
set-cookie: PHPSESSID=po5smi198pmu7dvudsbrn2t9ag; HttpOnly; Path=/
_csrf=e033d08b5df9ac7b704f9d46c41edaffeee81872d6592d75002364dbf1eb2c05a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22VuHxQ5h-z7_lkKJxZ7crb0GIc2iEx0JF%22%3B%7D; HttpOnly; SameSite=Lax; Path=/
cf-ray: 94ff20e8f902b4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.1_-_uchiyama_aki_no_obyoki_aki-chan.mp4_snapshot_01.00_2016.12.19_22.43.06.jpg?itok=lue02JeX
403 Forbidden 0 B URL
multporn.net/sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.1_-_uchiyama_aki_no_obyoki_aki-chan.mp4_snapshot_01.00_2016.12.19_22.43.06.jpg?itok=lue02JeX
IP / ASN
104.22.22.184
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject multporn.net
Fingerprint 34:E5:13:C5:3E:01:0E:8B:92:9C:5C:F0:2B:B5:0A:83:7A:0A:A0:38
Validity Mon, 02 Jun 2025 14:20:21 GMT - Sun, 31 Aug 2025 14:20:20 GMT
GET /sites/default/files/styles/juicebox_1500x1500/public/video_hentai_pre/vol.1_-_uchiyama_aki_no_obyoki_aki-chan.mp4_snapshot_01.00_2016.12.19_22.43.06.jpg?itok=lue02JeX HTTP/1.1
Host: multporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
strict-transport-security: max-age=2592000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 94ff20befa7456ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET ansuko.net/wp-content/uploads/2024/12/d40b7791f7b035957b1b6cb2df213e87-15.jpg
200 OK 28 kB URL
ansuko.net/wp-content/uploads/2024/12/d40b7791f7b035957b1b6cb2df213e87-15.jpg
IP / ASN
172.67.138.117
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 533x399, components 3
First Seen 2025-06-15
Last Seen 2025-07-03
Times Seen 5
Size 28 kB (27762 bytes)
MD5 bfa53e812426c5b4e34a9d16509da182
SHA1 b20734ddf2df8c068f19a24f9417a6bc61412984
SHA256 19e1d6cc18066428537966190e18474b4ba408396d6b9501ee4ca7c60f6ceb1f
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 01:F0:4E:4C:93:58:8D:EB:64:79:D0:EE:1D:7C:21:20:08:0C:CC:6E
Validity Thu, 12 Jun 2025 07:41:15 GMT - Wed, 10 Sep 2025 08:39:43 GMT
GET /wp-content/uploads/2024/12/d40b7791f7b035957b1b6cb2df213e87-15.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 27762
server: cloudflare
last-modified: Thu, 05 Dec 2024 23:49:33 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "67523c0d-6c72"
accept-ranges: bytes
age: 2616242
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9R3M0xhtThqetBzzT50%2BiEVyXe7SqUqAIvNHiJkWqkqbbMtXz7%2BvU0W95CZKaQjJ%2FT4PChlAazjteqSX69XD6554Oef3pKR5"}]}
cf-ray: 94ff20bb2ecb7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET r34xyz.b-cdn.net/posts/393/393417/393417.preview.jpg
200 OK 84 kB URL
r34xyz.b-cdn.net/posts/393/393417/393417.preview.jpg
IP / ASN
185.59.220.198
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1050x600, components 3
First Seen 2025-06-15
Last Seen 2025-07-10
Times Seen 2
Size 84 kB (84230 bytes)
MD5 93f07f4bfdee751e5b8e72c38107a887
SHA1 3c3e29352c6b76a40443e9847c2c394dbf1e8da3
SHA256 e3bebebf9f24b7264ba924472b16aa067519cb1584747c7551e4c3b5b89a350a
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /posts/393/393417/393417.preview.jpg HTTP/1.1
Host: r34xyz.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 84230
server: BunnyCDN-DE1-723
cdn-pullzone: 839427
cdn-uid: 66d6ad83-3f00-4738-b738-db341e02bfab
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Sun, 18 Feb 2024 23:49:12 GMT
cdn-storageserver: DE-632
cdn-fileserver: 760
cdn-proxyver: 1.06
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/14/2024 00:53:39
cdn-edgestorageid: 1048
cdn-requestid: 2c77f138ca8e0f277c244acef40afe63
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET theav.xyz/favicon.ico
404 Not Found 0 B IP / ASN
104.21.77.15
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject theav.xyz
Fingerprint D4:30:C4:2A:77:1C:D7:6D:8C:30:6B:D6:14:49:55:C1:3C:FD:AE:74
Validity Tue, 13 May 2025 02:18:03 GMT - Mon, 11 Aug 2025 03:16:50 GMT
GET /favicon.ico HTTP/1.1
Host: theav.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 15 Jun 2025 03:54:51 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 61674
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RnZsRC6mM%2FYRTeNn7DVU%2FBtpknNhhf3OlWvRt8EWpj9r1TAdSM9whq0fbTBc3EoJUnJvQqACbuZa6sssqVkW0xPLlcoRPO0%3D"}]}
content-encoding: br
cf-ray: 94ff20e76fb67127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET gif.acgnngca.com/v/2023092612/thumb_500_425_yuewfbedc1l_1.webp
200 OK 12 kB URL
gif.acgnngca.com/v/2023092612/thumb_500_425_yuewfbedc1l_1.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-26
Times Seen 5
Size 12 kB (12316 bytes)
MD5 d83a357e719bf964738ae7a08031f203
SHA1 0325b4acb6189da461156cbb6500594424438425
SHA256 940ae74455717166d81112768fdb608f40e3344cd7a248e41d1f72400b3fd322
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2023092612/thumb_500_425_yuewfbedc1l_1.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 12316
server: cloudflare
last-modified: Fri, 21 Feb 2025 06:50:38 GMT
etag: "67b8223e-301c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 1422263
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=uPMrnU5oKgrBal4tcbVL5vdx6CZU%2B3zExii39d07BpHsoINhvJcK0qOhb8Er4Ues38fNU0c5KGHVcGe6WmemyQhIuqIzXWEEY11KzjH7"}]}
cf-ray: 94ff20a64f12568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/6ad3de7da51b66351c8f8f854593bc9e.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/6ad3de7da51b66351c8f8f854593bc9e.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/6ad3de7da51b66351c8f8f854593bc9e.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 87 kB URL
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP / ASN
142.250.178.74
#15169 GOOGLE
Requested by http://animal.zoo2.top/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 67254
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint FF:78:1F:2C:E7:6A:27:90:8B:25:07:97:DD:25:4A:FA:6F:1F:0F:31
Validity Mon, 19 May 2025 08:42:52 GMT - Mon, 11 Aug 2025 08:42:51 GMT
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Jun 2025 13:51:48 GMT
expires: Mon, 08 Jun 2026 13:51:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 568978
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/e412d0893aea2c795c27884dd27729d9.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/e412d0893aea2c795c27884dd27729d9.png
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/e412d0893aea2c795c27884dd27729d9.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET vidmo.pro/favicon.ico
200 OK 5.4 kB IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /favicon.ico HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:49 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.oedy9.com/favicon.ico
301 Moved Permanently 0 B URL
www.oedy9.com/favicon.ico
IP / ASN
102.165.26.157
#11426 TWC-11426-CAROLINAS
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject oedy9.com
Fingerprint 7B:89:7F:CE:52:01:0C:56:82:F9:F2:5A:59:1E:26:C6:54:0E:13:5A
Validity Tue, 03 Jun 2025 13:51:46 GMT - Mon, 01 Sep 2025 13:51:45 GMT
GET /favicon.ico HTTP/1.1
Host: www.oedy9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 15 Jun 2025 03:54:50 GMT
content-type: text/html
content-length: 162
location: http://didizy.com/
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/c422def6abb4a9e3dab87c10c1e37221711ef3ff.jpg
200 OK 9.9 kB URL
cdntube.b-cdn.net/thumbnails/c422def6abb4a9e3dab87c10c1e37221711ef3ff.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x750, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-02
Last Seen 2025-06-19
Times Seen 4
Size 9.9 kB (9896 bytes)
MD5 85e87958778f8ed771925fceb1708c6a
SHA1 dae7a28f95f65ccf22ffdd13ed8271ece32542a9
SHA256 9133c1f7dc67c6b251ed4e8564584b4a95fd624568ea680dab3dcce7aa0bab3b
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/c422def6abb4a9e3dab87c10c1e37221711ef3ff.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/webp
content-length: 9896
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Thu, 04 Apr 2024 05:43:25 GMT
cdn-storageserver: DE-51
cdn-requestpullsuccess: True
cdn-fileserver: 639
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/04/2025 14:39:11
cdn-edgestorageid: 830
cdn-requestid: bc164272870b9f488d054d7fa6037d85
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET media.dlsite.com/chobit/contents/2007/zydds1cuq80wgkkwg08400co/zydds1cuq80wgkkwg08400co_thumb.jpg?w=1000&h=1000
200 OK 117 kB URL
media.dlsite.com/chobit/contents/2007/zydds1cuq80wgkkwg08400co/zydds1cuq80wgkkwg08400co_thumb.jpg?w=1000&h=1000
IP / ASN
54.240.174.70
#16509 AMAZON-02
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 1000x562, components 3
First Seen 2024-08-19
Last Seen 2025-06-16
Times Seen 6
Size 117 kB (116574 bytes)
MD5 7c746389d5c9e5c7a0aaa7c6a021551c
SHA1 9160ae0fb4e38e447acedad23bddee0446a8cec7
SHA256 a90582596f6ccf22a6a4e322211f5e6d391a9324a292cc3cde133b754b7a1b9f
Certificate Info
Issuer Amazon
Subject dlsite.com
Fingerprint 2E:84:1A:2C:1A:2F:B3:F5:A8:BC:D4:30:5E:81:9C:67:37:E6:67:4C
Validity Mon, 10 Mar 2025 00:00:00 GMT - Wed, 08 Apr 2026 23:59:59 GMT
GET /chobit/contents/2007/zydds1cuq80wgkkwg08400co/zydds1cuq80wgkkwg08400co_thumb.jpg?w=1000&h=1000 HTTP/1.1
Host: media.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 116574
date: Sun, 15 Jun 2025 03:28:36 GMT
last-modified: Tue, 07 Jul 2020 07:39:47 GMT
etag: W/"c0f8dabae34dab8e317a756c33b4da84"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DMmHr8NAI6FQ7n_D5aQQwL_O7Q2Lu6t9jT_WU6eEqVq1mmKltFrehw==
age: 1568
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/d8/52/d852bedecb3d2eebc6b2924293fcf45e/362095.jpg
200 OK 13 kB URL
en.vidmo.pro/thumbs_320/d8/52/d852bedecb3d2eebc6b2924293fcf45e/362095.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 320x240, components 3
First Seen 2024-08-20
Last Seen 2025-07-06
Times Seen 6
Size 13 kB (12929 bytes)
MD5 2068fff94ebdc4412ee852270d8275a2
SHA1 1f6aa136aa839358e2c8a726646a103d8e199140
SHA256 7bb9dc8462010a968372ac9f9e9ec79d1129ab0d0a729443e297b2e09d04d235
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/d8/52/d852bedecb3d2eebc6b2924293fcf45e/362095.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/jpeg
content-length: 12929
last-modified: Mon, 22 Aug 2016 03:02:05 GMT
expires: Mon, 09 Oct 2023 19:12:55 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240111-1/26cc3641922d67a9da9be3f150d4c775.jpg
200 OK 114 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240111-1/26cc3641922d67a9da9be3f150d4c775.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-01-24
Last Seen 2025-07-21
Times Seen 6
Size 114 kB (113494 bytes)
MD5 b2b531509ac28c18aa836266e7c020bc
SHA1 b8fe3eb625f54c120aa6430e0cb08bfb70afc9cd
SHA256 8f6a6087e36decdd95cdb49ba4b8c52ebc662014830f87acd31e9e7bb4c34bf5
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240111-1/26cc3641922d67a9da9be3f150d4c775.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:42 GMT
content-type: image/webp
content-length: 113494
last-modified: Tue, 17 Dec 2024 18:07:58 GMT
expires: Fri, 18 Dec 2026 06:07:58 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240111-1/26cc3641922d67a9da9be3f150d4c775.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5d92b903c05a475a"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET fav-hentai.com/wp-content/uploads/2023/10/h_454dcpi10814pl-1.jpg
200 OK 114 kB URL
fav-hentai.com/wp-content/uploads/2023/10/h_454dcpi10814pl-1.jpg
IP / ASN
104.18.29.11
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3
First Seen 2025-06-15
Last Seen 2025-07-30
Times Seen 4
Size 114 kB (113494 bytes)
MD5 c8d2fbf022bbc28f43203604807cbd22
SHA1 76fead2ccef2af42b99d095a714942673ac10642
SHA256 c1fba96754a258dc8ac0b835f4f8fc10e8b30f97f088fbd0b81cb4c4513d8dc4
Certificate Info
Issuer Google Trust Services
Subject fav-hentai.com
Fingerprint 1F:67:DA:B9:9A:89:06:FF:6D:4E:02:C6:28:D4:EA:A6:68:A2:CD:E5
Validity Wed, 28 May 2025 01:54:16 GMT - Tue, 26 Aug 2025 02:54:14 GMT
GET /wp-content/uploads/2023/10/h_454dcpi10814pl-1.jpg HTTP/1.1
Host: fav-hentai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:46 GMT
content-type: image/jpeg
content-length: 113494
cache-control: public, max-age=604799
expires: Sun, 22 Jun 2025 03:54:45 GMT
last-modified: Mon, 23 Oct 2023 09:43:16 GMT
vary: User-Agent,User-Agent,Accept,Accept, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 94ff20c3bce556a9-OSL
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js
200 OK 221 kB URL
cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js
IP / ASN
104.16.175.226
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type JavaScript source, ASCII text, with very long lines (675)
First Seen 2025-06-11
Last Seen 2025-06-25
Times Seen 46
Size 221 kB (220939 bytes)
MD5 e32439a0a418139aa4d700bc7450f27c
SHA1 716fb21df76072b98880c63a4428a474d4f37ed3
SHA256 363d0868dc2112c9f6926dca0de9c3ed19d951d58cf36ead2e1e2f08c27064b5
Certificate Info
Issuer Sectigo Limited
Subject *.jsdelivr.net
Fingerprint A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F
Validity Fri, 25 Apr 2025 00:00:00 GMT - Mon, 04 May 2026 23:59:59 GMT
GET /npm/yandex-metrica-watch/watch.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 87142
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.381.0
x-jsd-version-type: version
etag: W/"35f0b-w/tgrsJhzhXXeYE800YtL4zqFgE"
content-encoding: br
x-served-by: cache-fra-eddf8230153-FRA, cache-lga21958-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 39527
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9TzafacRhAa7DuNgido1DYCju57hSXMgzfv0MxKM%2B19GI%2BWOmXWDlQkzhwQqxNjtA7i7%2BnUBq%2BZBLfPKbjrZSUeisTfAT8NQyop7%2Fc4exRT7KQ3MXdXq1NDZfO57CvzknF0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 94ff20c57b4cb4f9-OSL
X-Firefox-Spdy: h2
GET www.effedupmovies.com/favicon.ico
0 B URL
www.effedupmovies.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by http://animal.zoo2.top/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605981
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET p2-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIzLzA0LzI5LzAwL0JNakF5TXpBME1qa3dNREUwTURaZk1UVXdNREF4TkRVMU56ZzRORFF6WHpFMU1ERXdNamM1TlRBd01USXhNMTh5WHpNPV9vZmZuX0JhNTFiN2ViZmQ1ZTg2NWNjYjJmM2IwM2M3YTg4ODVkNi53ZWJw.webp
200 OK 16 kB URL
p2-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIzLzA0LzI5LzAwL0JNakF5TXpBME1qa3dNREUwTURaZk1UVXdNREF4TkRVMU56ZzRORFF6WHpFMU1ERXdNamM1TlRBd01USXhNMTh5WHpNPV9vZmZuX0JhNTFiN2ViZmQ1ZTg2NWNjYjJmM2IwM2M3YTg4ODVkNi53ZWJw.webp
IP / ASN
47.246.50.180
#24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2024-04-30
Last Seen 2025-07-25
Times Seen 19
Size 16 kB (16302 bytes)
MD5 9daf2ab52ea877f025e6c9c908c3d3bd
SHA1 bd4fa9a213fb6df13d6cfdb2566ba92ff3c2f3bd
SHA256 9a6aac613ff5d998001fd1960d6dde0e2837ebe32fbc0d9176269ffab10fcf2a
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIzLzA0LzI5LzAwL0JNakF5TXpBME1qa3dNREUwTURaZk1UVXdNREF4TkRVMU56ZzRORFF6WHpFMU1ERXdNamM1TlRBd01USXhNMTh5WHpNPV9vZmZuX0JhNTFiN2ViZmQ1ZTg2NWNjYjJmM2IwM2M3YTg4ODVkNi53ZWJw.webp HTTP/1.1
Host: p2-kimg.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 16302
date: Fri, 14 Feb 2025 14:37:32 GMT
krtid: gw696e03199f644818987dd153ed83c1b0
expires: Sat, 14 Feb 2026 14:37:32 GMT
cache-control: max-age=31536000
via: 1.1 b44e2902bb3501d47514e51618f1bda4.cloudfront.net (CloudFront), ens-cache16.l2de3[8,8,200-0,M], ens-cache5.l2de3[9,0], ens-cache5.fr4[0,0,200-0,H], ens-cache4.fr4[1,0]
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: vmcuhG-9lGv9zT9TH-OGHI9Ua-Me9EkHQqZWb7ifzWvb3ngsHNO4ug==
age: 10347326
ali-swift-global-savetime: 1739612358
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Sat, 15 Feb 2025 09:39:18 GMT
x-swift-cachetime: 31104000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
timing-allow-origin: *
eagleid: 2ff6329817499596848524829e
X-Firefox-Spdy: h2
GET gif.acgnngca.com/v/2024032712/thumb_500_425_uvsieafdtjb.webp
200 OK 13 kB URL
gif.acgnngca.com/v/2024032712/thumb_500_425_uvsieafdtjb.webp
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-29
Times Seen 15
Size 13 kB (12580 bytes)
MD5 f3f477b73e40a67f2abb26b94c1d20fd
SHA1 f49a34af2e6b469ee73fa68c8a57adc0802ef660
SHA256 2aea7618e715b5e5586276b52d86536f0d2e99ccec575ef626db8946bae05d59
Certificate Info
Issuer Google Trust Services
Subject acgnngca.com
Fingerprint 4B:AE:DE:8D:2E:C0:A1:BA:B2:BE:18:8B:D6:B3:FE:60:03:84:7D:5B
Validity Sun, 15 Jun 2025 02:17:10 GMT - Sat, 13 Sep 2025 03:15:49 GMT
GET /v/2024032712/thumb_500_425_uvsieafdtjb.webp HTTP/1.1
Host: gif.acgnngca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 12580
server: cloudflare
last-modified: Fri, 21 Feb 2025 07:07:57 GMT
etag: "67b8264d-3124"
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 2615306
cache-control: max-age=432000
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=s1g29cAWL9g63l4lyzXBOmdvjSgIAAt%2Fc7%2FhMNm1XD7aDomohS%2By7EcEDxXOYzV0zXbWgEBP%2FZRUBis9aq4BvOgedpJ0IIAt2Jv%2BqXQb"}]}
cf-ray: 94ff20a95824568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET uzbak.ru/files/screens/384/8.jpg
200 OK 39 kB URL
uzbak.ru/files/screens/384/8.jpg
IP / ASN
51.83.213.151
#16276 OVH SAS
Requested by http://animal.zoo2.top/
Resource Info
File type PNG image data, 176 x 144, 8-bit/color RGB, non-interlaced
First Seen 2024-04-24
Last Seen 2025-07-29
Times Seen 23
Size 39 kB (38590 bytes)
MD5 b7d0fa316c8d31caea3c0d560c249492
SHA1 3b424e97bfb4788aef6626a7509a0f430868bde8
SHA256 2e7d35c24f8076c14cd9740832e793a45f6a9b2918d6088ab515d904f2c1aab2
Certificate Info
Issuer Let's Encrypt
Subject uzbak.ru
Fingerprint A8:2B:EB:2B:82:9A:D0:04:55:2A:0C:FD:33:E8:86:61:8E:18:66:73
Validity Wed, 30 Apr 2025 23:53:51 GMT - Tue, 29 Jul 2025 23:53:50 GMT
GET /files/screens/384/8.jpg HTTP/1.1
Host: uzbak.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:45 GMT
content-type: image/jpeg
content-length: 38590
last-modified: Mon, 12 Oct 2020 13:24:37 GMT
etag: "5f845915-96be"
expires: Mon, 15 Jun 2026 03:54:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240111-1/2d717b6b6cff51d202f985a39a41a25d.jpg
200 OK 36 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240111-1/2d717b6b6cff51d202f985a39a41a25d.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x607, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-16
Last Seen 2025-07-21
Times Seen 18
Size 36 kB (35578 bytes)
MD5 8447525a0dc125f5bed0bf19b5dcf312
SHA1 5a17de9267203f5b5cb09bedaf8f0b6f311d5ec5
SHA256 0591639f5b3ebe7f489f67455c03ce0ecd40270a56336be7240704eb88b29265
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240111-1/2d717b6b6cff51d202f985a39a41a25d.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 35578
last-modified: Sat, 01 Mar 2025 00:08:04 GMT
expires: Mon, 01 Mar 2027 12:08:04 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240111-1/2d717b6b6cff51d202f985a39a41a25d.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "dce45f3ee95a51d5"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET obmenvsemfiles.net/fo/files_attachments/73d/37d/73d37dde0315e3ebbf3b486eb2a20d77.jpg
200 OK 42 kB URL
obmenvsemfiles.net/fo/files_attachments/73d/37d/73d37dde0315e3ebbf3b486eb2a20d77.jpg
IP / ASN
82.192.80.149
#60781 LeaseWeb Netherlands B.V.
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x853, components 3
First Seen 2025-06-15
Last Seen 2025-07-26
Times Seen 9
Size 42 kB (42502 bytes)
MD5 73d37dde0315e3ebbf3b486eb2a20d77
SHA1 e7bf61073fa250fd8814eee9c0296d5010bec615
SHA256 1e02a1dbdb1354b32ee1a6681f5bd82c47cf7a61ddeea169d5451199ffc64d39
Certificate Info
Issuer Let's Encrypt
Subject obmenvsemfiles.net
Fingerprint 55:B7:B2:52:2E:E5:4D:1E:96:5C:1A:46:61:9B:0F:E3:B8:B2:20:CD
Validity Sat, 17 May 2025 20:45:31 GMT - Fri, 15 Aug 2025 20:45:30 GMT
GET /fo/files_attachments/73d/37d/73d37dde0315e3ebbf3b486eb2a20d77.jpg HTTP/1.1
Host: obmenvsemfiles.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:43 GMT
content-type: image/jpeg
content-length: 42502
last-modified: Fri, 06 Jan 2023 02:04:51 GMT
etag: "63b781c3-a606"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/9c/d7/86/9cd786546578342d4c127365722efa04-1/9cd786546578342d4c127365722efa04.23.jpg
200 OK 19 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/9c/d7/86/9cd786546578342d4c127365722efa04-1/9cd786546578342d4c127365722efa04.23.jpg
IP / ASN
185.76.9.19
#60068 Datacamp Limited
Requested by http://animal.zoo2.top/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-15
Last Seen 2025-07-13
Times Seen 4
Size 19 kB (19026 bytes)
MD5 ad29bf3ce953bd008aa04a0dffdd4a8d
SHA1 8b4b1d0a501e0c9e774f0f5c9046ca4f28601580
SHA256 5012fac2740952977b44eccf7aa805b2252787b6bf4b6fc0ec4470890b77e8e1
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/9c/d7/86/9cd786546578342d4c127365722efa04-1/9cd786546578342d4c127365722efa04.23.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 15 Jun 2025 03:54:44 GMT
content-type: image/jpeg
content-length: 19026
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Jan 2018 21:33:44 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: A7lMCRE3Nzf/Di0jAE9/0xI3Nzf/aYsKAI/0OpXmwUXvaroCAA
x-77-nzt-ray: 0ef5851b987059e604444e688a65fb29
x-accel-expires: @1757331341
x-accel-date: 1747654390
x-77-cache: HIT
x-77-age: 2305294
x-accel-date-max: 1695301994
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240107-1/fbbb6b27c13dedb8db36c13d18c5bd75.jpg
200 OK 38 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240107-1/fbbb6b27c13dedb8db36c13d18c5bd75.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by http://animal.zoo2.top/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-15
Last Seen 2025-07-03
Times Seen 4
Size 38 kB (38252 bytes)
MD5 32a0a8e2a53a6627e91ab8216115a8a8
SHA1 6061fb6d6ec8f797acce043022f2a812ad806a34
SHA256 358d380326c1bc137555fc2ee739f9cfbf186f00be2b312438b873c5ef6d8958
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240107-1/fbbb6b27c13dedb8db36c13d18c5bd75.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://animal.zoo2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jun 2025 03:54:41 GMT
content-type: image/webp
content-length: 38252
last-modified: Tue, 04 Feb 2025 10:07:07 GMT
expires: Thu, 04 Feb 2027 22:07:07 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240107-1/fbbb6b27c13dedb8db36c13d18c5bd75.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5424d09ae2ea5a81"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 5
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
