kissanime1.net/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: kissanime1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 25 Feb 2023 21:03:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 25 Feb 2023 22:03:03 GMT
Location: https://kissanime1.net/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bvhoZcSqlHRAYyB9rDwzFfUl0meILs81d5zMQKjn%2FTVzgRVQi2teBVVPu5D5vAZIj%2BH8bXsna0t6t8Bo%2FMe4Hvl7o69FI%2BJpa2fbouBAP3WJHTnWgdMMBdxkZtyOF5XiTA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79f362ad99f7b52d-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8083775b7a6637d27672cc4a2581fa2d
023420d026fbf2cd0f69d5606524094011375202
66664ed1d36948fe99498950e3525d03c1797689c9186c4cd0bd5ded531b3bac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66664ED1D36948FE99498950E3525D03C1797689C9186C4CD0BD5DED531B3BAC"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18797
Expires: Sun, 26 Feb 2023 02:16:20 GMT
Date: Sat, 25 Feb 2023 21:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc3cacbc6c565bf2955b507302b8fb41
7b773e19aff1d4904cec328c456513e80f917ba4
b45c582b42efef5e8bd5744333a137f13e94a93cafbaace39b36cfa1eeb041bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B45C582B42EFEF5E8BD5744333A137F13E94A93CAFBAACE39B36CFA1EEB041BD"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13950
Expires: Sun, 26 Feb 2023 00:55:33 GMT
Date: Sat, 25 Feb 2023 21:03:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Feb 2023 20:12:29 GMT
content-type: application/json
age: 3034
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 29cfccb9238759ed21dbb0d92cae75f8
f41ad1b02e353cd2b33af7618c71cc16fae2886e
91e392e78e584e8a82762dab0d5615aa1af3893237d601db3d45bb6fad488580
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91E392E78E584E8A82762DAB0D5615AA1AF3893237D601DB3D45BB6FAD488580"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14569
Expires: Sun, 26 Feb 2023 01:05:52 GMT
Date: Sat, 25 Feb 2023 21:03:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1FLkqibiRMBhQ1VGkYuxC5XWzSX5GkRiM/JP4s2mVoMr2y/Mb95e/vmaGZC3TK6+Yf3FGfT4eUo=
x-amz-request-id: HCCYJQVZRTX1QEXW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Feb 2023 20:13:25 GMT
age: 2978
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Feb 2023 21:03:03 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/AM9ieyQZtGo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/AM9ieyQZtGo
IP
Hash 87ef44871a39cd99c1d18dcad0bae237
c23dce28821df24abc6e79cdb8cf751957fa9d15
169f11d9ad4bc40ae7a5e1e65d5a1ae55b1bf46c9f738a6271ccf66173ac2ddb
POST /s/gts1p5/AM9ieyQZtGo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Expires, Last-Modified, Cache-Control, ETag, Backoff, Content-Type, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Feb 2023 20:12:23 GMT
age: 3041
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/AM9ieyQZtGo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/AM9ieyQZtGo
IP
Hash 87ef44871a39cd99c1d18dcad0bae237
c23dce28821df24abc6e79cdb8cf751957fa9d15
169f11d9ad4bc40ae7a5e1e65d5a1ae55b1bf46c9f738a6271ccf66173ac2ddb
POST /s/gts1p5/AM9ieyQZtGo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www2.kiss-anime.ws/
200 OK 30 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a92b78c594b85ca4839fe429a82e5898
cf46349cc8a56677ffea2aca8352e770660d251a
e8c8b20c3f537fc8832c2b2b7905a4c3992f0851b1a8b69265f77789893662b5
GET / HTTP/1.1
Host: www2.kiss-anime.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.4.45
x-pingback: http://www2.kiss-anime.ws/xmlrpc.php
x-varnish: 171307657 174698009
age: 7
via: 1.1 varnish (Varnish/6.0)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kOOmpQSQzDlgfy9an%2Ffphifm30fIeGtGJwptT0soben9lxMLFlGMtIH0yurV7MmzTaA2RIZiQ9lnISuQSFmUjIlMMPN4cZ%2BtqfuI1j5LyE5i%2BcM1MBmxGTLiOMHUWzFH7bgfFR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b27e10b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 85cbb48f071581b644dd200623699bd6
0c9d7c3ca38562a97a4a6af3fb96f68982027594
d83caa4c6791e3b475a8ae8c255b84dc0bf0a8d06b65e5e6195af4f66e47eb86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D83CAA4C6791E3B475A8AE8C255B84DC0BF0A8D06B65E5E6195AF4F66E47EB86"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11180
Expires: Sun, 26 Feb 2023 00:09:24 GMT
Date: Sat, 25 Feb 2023 21:03:04 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 39aaaa7d24320fda44f6a8737ed168dd
c0d539c0f6c29155559aaf16a54e489b5a8104cb
cc620070de1e55165936e66d9dee599a2f790862bf95c7cc86b00ee3e9676ff8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2408
Cache-Control: max-age=143034
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Etag: "63f9f9da-1d7"
Expires: Mon, 27 Feb 2023 12:46:58 GMT
Last-Modified: Sat, 25 Feb 2023 12:06:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6832ad0cb02cc3a3b8b396c543188bed
be89c17eb73e465ff69c67f30162d45fa8e2d8a4
4e327ab482594d6bdf040d2fd8f8fc9213aaf1014c1f74587a976981cc741aa2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6832ad0cb02cc3a3b8b396c543188bed
be89c17eb73e465ff69c67f30162d45fa8e2d8a4
4e327ab482594d6bdf040d2fd8f8fc9213aaf1014c1f74587a976981cc741aa2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f822116fa5d26738cefa55ac00175975
43c7e4789bb0bda3ffde1e879e2a6bb8ed2c3e06
b27bd998e364825dd5e0c207ae10b1223b9087463d95cd5f3c1daff049e50916
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B27BD998E364825DD5E0C207AE10B1223B9087463D95CD5F3C1DAFF049E50916"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2691
Expires: Sat, 25 Feb 2023 21:47:55 GMT
Date: Sat, 25 Feb 2023 21:03:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6dbbf8a99f14aa5c8b76354b0a8ea3e2
3435f4c413860589d0650ba43cc30b0056f9a3f7
069ba4e9cdcb97a7ce504c51018753af78e643f7c0c65f799faba8ed2daeac7a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash f1ab17e3595a6be275003fd039a0de1d
74940f0a57cec976835eaf940e1bfc5f73832db1
15fb52c851ccff585bad3f3b5bfcc4a32c194986173668489e4d5be8af7f0422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5161
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Last-Modified: Sat, 25 Feb 2023 19:37:03 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
inbbredraxing.com/1clkn/29415
200 OK 26 B URL HTTP/1.1 inbbredraxing.com/1clkn/29415
IP
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
Analyzer Verdict Alert quad9 Sinkholed
GET /1clkn/29415 HTTP/1.1
Host: inbbredraxing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Feb 2023 21:03:04 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Sun, 26-Feb-2023 21:03:04 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJw9i7sOgkAURAENEQXMJH6APyA%2BgoWtWhoojPUG8Wo2wl7Crg%2F8elETq5mcOWNZljMK4cgK%2FmoerWZRvIjmyxidCzGcJIWf802ZuhEqKwluwvUja%2BDWdJGsAgx%2BReR8IvSTdHJQV8UP9R8%2BtwDdXJomgPeJrxv20JG6Qrgu5HO85%2BJmWlvDU2SErohO8DbZsaDpdr9D%2BKffs2ujJ7Woan42bR8aWdKLFQk%2BnzWZFtl313kDsc5BIg%3D%3D; expires=Sun, 26-Feb-2023 21:03:04 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Feb 2023 18:52:41 GMT
expires: Tue, 20 Feb 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 439823
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash f1ab17e3595a6be275003fd039a0de1d
74940f0a57cec976835eaf940e1bfc5f73832db1
15fb52c851ccff585bad3f3b5bfcc4a32c194986173668489e4d5be8af7f0422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5161
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Last-Modified: Sat, 25 Feb 2023 19:37:03 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash f1ab17e3595a6be275003fd039a0de1d
74940f0a57cec976835eaf940e1bfc5f73832db1
15fb52c851ccff585bad3f3b5bfcc4a32c194986173668489e4d5be8af7f0422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5161
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Last-Modified: Sat, 25 Feb 2023 19:37:03 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 280 B IP
Hash c205f714050e9c508645cc996697f753
a646e58933af0f4d90469f01e574226ab4ef96e9
90f3e6bcaaf790a4c76d42fff75231cc277bf57378042eff1c54817b4a2c15cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5700
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Last-Modified: Sat, 25 Feb 2023 19:28:06 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6dbbf8a99f14aa5c8b76354b0a8ea3e2
3435f4c413860589d0650ba43cc30b0056f9a3f7
069ba4e9cdcb97a7ce504c51018753af78e643f7c0c65f799faba8ed2daeac7a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y4Mf7Q85NoqxFE1FFMdXaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iq9LUkU78LtQSQ8ZVhxbvJJcTuk=
ocsp.digicert.com/
200 OK 278 B IP
Hash f1ab17e3595a6be275003fd039a0de1d
74940f0a57cec976835eaf940e1bfc5f73832db1
15fb52c851ccff585bad3f3b5bfcc4a32c194986173668489e4d5be8af7f0422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5161
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Last-Modified: Sat, 25 Feb 2023 19:37:03 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
200 OK 78 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 78168, version 331.-31196\012- data
Hash a9fd1225fb2cd32320e2b931dca01089
44ec5c6a868b4ce62350d9f040ed8e18f7a1d128
c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: font/woff2
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 f793ce54a443ce6e9ca85f518dd4fd36.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: iDDbDhyE8L1kWfUc2DQ7dSaaIbKcO43yZ9U7rI6D3mGygyoLr8_u0w==
age: 1246937
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BT1NT%2F5yyg08ucXH6I1j8Wi4W27PZIZg1L8rX%2FDuR38BuuDlb%2BZn%2BKz1kOqrwzaAlOB73JpF8%2BKXSP8GObFvLltbYOYykm07s6XNo%2FV6EFf6rbjwJGdKQuZ8STTtFZWP4GNGw2WYAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362b6e81323ac-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash b19c0f365f45aa09a71c12ee1daee70a
5be778c95a87e0b67ab2d4d5aebf30d8fbf65816
e46fdeb5386e828b9ed36cbb4c5b410e11c16d6981bd3cd0cb2a9ac9a6f6afbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3756
Cache-Control: max-age=118491
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:04 GMT
Etag: "63f994b7-117"
Expires: Mon, 27 Feb 2023 05:57:55 GMT
Last-Modified: Sat, 25 Feb 2023 04:55:19 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
platform.bidgear.com/ads.php?domainid=2420&sizeid=2&zoneid=7412
200 OK 1.1 kB URL HTTP/2 platform.bidgear.com/ads.php?domainid=2420&sizeid=2&zoneid=7412
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (843), with no line terminators
Hash 1e7f24f54edd566031df570bec9d0519
dbaffcb4d97778e8e951e3ae544edbda698cda65
649340c21f62e66350b8b75bce8798e65a8a66ce04c17bf53086f37fd81cffa0
GET /ads.php?domainid=2420&sizeid=2&zoneid=7412 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: application/javascript
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CHdcgAgmjagBoEOwdxN%2BTL5Nfy6aI7rw9wexHVkoNWv%2F78rkMEUu907%2BDvkc%2BekOIi%2FWIV7PJfY12VfHsRLquRzZ5beSZV6rRi6iKJOD0PFB9djGvDZwF5wWDpBJmSko5c6oTRln"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b5ce92b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ab88b6afdad4663758427ce0ada4324
e2aa636707da38583919ab3546cfa868f9403ec9
e30f4877a8d26fd20aa65fb18c941e87330fe89f9238048d789ed0a35996a611
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E30F4877A8D26FD20AA65FB18C941E87330FE89F9238048D789ED0A35996A611"
Last-Modified: Fri, 24 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20929
Expires: Sun, 26 Feb 2023 02:51:53 GMT
Date: Sat, 25 Feb 2023 21:03:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ab88b6afdad4663758427ce0ada4324
e2aa636707da38583919ab3546cfa868f9403ec9
e30f4877a8d26fd20aa65fb18c941e87330fe89f9238048d789ed0a35996a611
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E30F4877A8D26FD20AA65FB18C941E87330FE89F9238048D789ED0A35996A611"
Last-Modified: Fri, 24 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=828
Expires: Sat, 25 Feb 2023 21:16:52 GMT
Date: Sat, 25 Feb 2023 21:03:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ab88b6afdad4663758427ce0ada4324
e2aa636707da38583919ab3546cfa868f9403ec9
e30f4877a8d26fd20aa65fb18c941e87330fe89f9238048d789ed0a35996a611
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E30F4877A8D26FD20AA65FB18C941E87330FE89F9238048D789ED0A35996A611"
Last-Modified: Fri, 24 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20885
Expires: Sun, 26 Feb 2023 02:51:09 GMT
Date: Sat, 25 Feb 2023 21:03:04 GMT
Connection: keep-alive
gracefulbayonetlukewarm.com/d422d7c9d2625bc8604133095f66df31/invoke.js
200 OK 9.8 kB URL HTTP/1.1 gracefulbayonetlukewarm.com/d422d7c9d2625bc8604133095f66df31/invoke.js
IP
File type exported SGML document, ASCII text, with very long lines (26975), with no line terminators
Hash dd0b16d13b46e5e209bfc482220a0a29
d0a538e42483b91b61a8931f05025cb594ac19f5
e7b8f0557773f3317299cce580ae77a83e9f09dae769b05d7f878fd421593c58
GET /d422d7c9d2625bc8604133095f66df31/invoke.js HTTP/1.1
Host: gracefulbayonetlukewarm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c63ff211c292f1a89962acd23e9ad61b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
gracefulbayonetlukewarm.com/11/47/64/114764e8c107a9d8d8a1e90e478e044b.js
200 OK 13 kB URL HTTP/1.1 gracefulbayonetlukewarm.com/11/47/64/114764e8c107a9d8d8a1e90e478e044b.js
IP
File type ASCII text, with very long lines (37134), with no line terminators
Hash e1c8566d1c8ee62cf6e76ac4dbf3b790
cf810948601ebaeac4446aa4992ebaefb1891498
485fc0d46d457dbd0956418e42160d95370cfbcf8d7d7a352928e97f3aa1b613
GET /11/47/64/114764e8c107a9d8d8a1e90e478e044b.js HTTP/1.1
Host: gracefulbayonetlukewarm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e45232f42c1baaa078f2826970288804
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
jsc.adskeeper.com/b/i/bidgear.kissanime1.net.1407594.js
200 OK 1.0 kB URL HTTP/2 jsc.adskeeper.com/b/i/bidgear.kissanime1.net.1407594.js
IP
File type ASCII text, with very long lines (2690)
Hash 65046bb4582f69cd78d6e48769437b90
0b9363919c7b0b409905f734729debac01f0354f
d2118f5c3739d4f4f691018017132ff2e7141d61f2075a24c978ecf2ee3a7db1
GET /b/i/bidgear.kissanime1.net.1407594.js HTTP/1.1
Host: jsc.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: text/javascript
content-length: 1024
x-amz-id-2: Jsf/TYAxAqe5SNtQfbc4wZAuWcCcTpF6iKeeqo8HXx9yW91iGvZ4NUwsscsTBIwcbqcVaukyZTQo2dUuEiqsWg==
x-amz-request-id: 03PR5AHF6N6YC38X
last-modified: Wed, 18 Jan 2023 10:35:25 GMT
etag: "65046bb4582f69cd78d6e48769437b90"
content-encoding: gzip
x-amz-version-id: uTNrSxNv92vqvbkZqeC8pGRf3TrM6MU6
cf-cache-status: REVALIDATED
expires: Sun, 26 Feb 2023 01:03:05 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362b768bbb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gracefulbayonetlukewarm.com/a5/c5/94/a5c594cb7a3272316d41396bece4e8b9.js
200 OK 21 kB URL HTTP/1.1 gracefulbayonetlukewarm.com/a5/c5/94/a5c594cb7a3272316d41396bece4e8b9.js
IP
File type HTML document, ASCII text, with very long lines (60201), with no line terminators
Hash 592ab67aacb527bac71bb48ce36261f7
8a325280bc5b0e1ebd1fb267555923f94c4b167d
d02bc2184264e9fe5244455a1deb7a493474b6d21b6c4e5457ead363d712c08f
GET /a5/c5/94/a5c594cb7a3272316d41396bece4e8b9.js HTTP/1.1
Host: gracefulbayonetlukewarm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 90d1db6a504e2fb1fa85771108ec9f77
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 279 B IP
Hash b19c0f365f45aa09a71c12ee1daee70a
5be778c95a87e0b67ab2d4d5aebf30d8fbf65816
e46fdeb5386e828b9ed36cbb4c5b410e11c16d6981bd3cd0cb2a9ac9a6f6afbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3757
Cache-Control: max-age=118491
Content-Type: application/ocsp-response
Date: Sat, 25 Feb 2023 21:03:05 GMT
Etag: "63f994b7-117"
Expires: Mon, 27 Feb 2023 05:57:56 GMT
Last-Modified: Sat, 25 Feb 2023 04:55:19 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
inbbredraxing.com/1clkn/29415
200 OK 26 B URL HTTP/1.1 inbbredraxing.com/1clkn/29415
IP
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
Analyzer Verdict Alert quad9 Sinkholed
GET /1clkn/29415 HTTP/1.1
Host: inbbredraxing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; GL_GI10=eJw9i7sOgkAURAENEQXMJH6APyA%2BgoWtWhoojPUG8Wo2wl7Crg%2F8elETq5mcOWNZljMK4cgK%2FmoerWZRvIjmyxidCzGcJIWf802ZuhEqKwluwvUja%2BDWdJGsAgx%2BReR8IvSTdHJQV8UP9R8%2BtwDdXJomgPeJrxv20JG6Qrgu5HO85%2BJmWlvDU2SErohO8DbZsaDpdr9D%2BKffs2ujJ7Woan42bR8aWdKLFQk%2BnzWZFtl313kDsc5BIg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Feb 2023 21:03:05 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 6c0354339d75164a602f22c1ebc09786
9bca89d4dc69ec32c39616ce0f35cad700e86f73
7867a140da5c3431d594635f2790cc283ac7a249be7caaaffe36fac7a48b9ef9
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 25 Feb 2023 21:03:05 GMT
Last-Modified: Sat, 25 Feb 2023 20:49:08 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Pgl4IABzARw1rpkS292klD1c77QMlE2tFkDKwYGJTuMN9v72fY0YrA==
Age: 838
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash fdec54022fe8810afc7977dbd720383d
ecedab0ae22c37ff4ee1ba6f1142e563f2d027ab
a474d8d8abd2a8f2e62647478d3526884ac985dc108bd812cad5f360196ece8d
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www2.kiss-anime.ws
access-control-allow-credentials: true
set-cookie: uid_id2=b14f4bfa-d83f-4737-9429-e571a9627766:2:1; expires=Tue, 22 Feb 2033 21:03:05 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 6c0354339d75164a602f22c1ebc09786
9bca89d4dc69ec32c39616ce0f35cad700e86f73
7867a140da5c3431d594635f2790cc283ac7a249be7caaaffe36fac7a48b9ef9
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 25 Feb 2023 21:03:05 GMT
Last-Modified: Sat, 25 Feb 2023 20:40:02 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nh-TwuwTHetoaAisHh7YWWD8hmOC_AHFB82v9g-hAMvaqAqaQc659Q==
Age: 1383
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 6c0354339d75164a602f22c1ebc09786
9bca89d4dc69ec32c39616ce0f35cad700e86f73
7867a140da5c3431d594635f2790cc283ac7a249be7caaaffe36fac7a48b9ef9
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 25 Feb 2023 21:03:05 GMT
Last-Modified: Sat, 25 Feb 2023 20:45:14 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mLM98v4Q6L0q_BNNvf8BwPuGEZ_1Jg_H3wfU3sBZYjVOVlcjwa3hGg==
Age: 1071
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 67c1442afdebd46f6fce5d9ac3e43b30
6aa7fe4953d99545da33591bc2fb586b8a4551aa
01ed7a64da284a4962275e80e7c7bfd9a1f22d45a76cc01d225ccd96c1e3d5dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED7A64DA284A4962275E80E7C7BFD9A1F22D45A76CC01D225CCD96C1E3D5DC"
Last-Modified: Fri, 24 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6815
Expires: Sat, 25 Feb 2023 22:56:40 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
jsc.adskeeper.com/b/i/bidgear.kissanime1.net.1407594.es6.js
200 OK 76 kB URL HTTP/2 jsc.adskeeper.com/b/i/bidgear.kissanime1.net.1407594.es6.js
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (32237)
Hash f561eca20b8f41f6c1d54fba11daa537
12bab423a410cfb7d82bdeafab8407937bf70719
8f0b845ebc4425bbda6af17f3c003cc17a7e7322af0d3e33ae8f828501a12b32
GET /b/i/bidgear.kissanime1.net.1407594.es6.js HTTP/1.1
Host: jsc.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: text/javascript
content-length: 76243
x-amz-id-2: e8J7j2s/m67X5ap9rX5bNKZ8RnBEUQ0CVi8lB9eVcbQLbsGWU5cqsdUL51lRvOfPWj034awKVUE=
x-amz-request-id: 711G3S03RT2WVNQQ
last-modified: Wed, 18 Jan 2023 10:35:25 GMT
etag: "f561eca20b8f41f6c1d54fba11daa537"
content-encoding: gzip
x-amz-version-id: 6zn0o1fUQWn1PQPnpJEIvUPvcqjtAGCD
cf-cache-status: REVALIDATED
expires: Sun, 26 Feb 2023 01:03:05 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362b91aceb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 67c1442afdebd46f6fce5d9ac3e43b30
6aa7fe4953d99545da33591bc2fb586b8a4551aa
01ed7a64da284a4962275e80e7c7bfd9a1f22d45a76cc01d225ccd96c1e3d5dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED7A64DA284A4962275E80E7C7BFD9A1F22D45A76CC01D225CCD96C1E3D5DC"
Last-Modified: Fri, 24 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6815
Expires: Sat, 25 Feb 2023 22:56:40 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash c42ece3c8ecdd5ff838c030c65884867
8c66fc5283536cb3b76fed64c09d5c765670b818
90e973b053752d557bf0e62703ba6bec29556e9f98cde8813711cdf7547986bb
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www2.kiss-anime.ws
access-control-allow-credentials: true
set-cookie: uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1; expires=Tue, 22 Feb 2033 21:03:05 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2dba151b69fca37aab9034a003dee381
2a0e1faf90f8e9ca0db73cd368c1fb85dc198213
27b601bf0d589e03ada9f919e0fe904e1d88b273923bc1c154391fdda628cd8b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "27B601BF0D589E03ADA9F919E0FE904E1D88B273923BC1C154391FDDA628CD8B"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11162
Expires: Sun, 26 Feb 2023 00:09:07 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 25 Feb 2023 21:45:28 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 25 Feb 2023 21:45:28 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 25 Feb 2023 21:45:28 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 25 Feb 2023 21:45:28 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2543
Expires: Sat, 25 Feb 2023 21:45:28 GMT
Date: Sat, 25 Feb 2023 21:03:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6d50cc-511f-4cf2-9587-269ed2b5bf7a.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6d50cc-511f-4cf2-9587-269ed2b5bf7a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18ac490500cba961f269960b7549824f
8a9c31653ea1e5265867e6de2d302a44555aa109
97af3735bb13e722bf0c0e50f9770b4bba8acfa7a6a8cf7da0804b6383cc49af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6d50cc-511f-4cf2-9587-269ed2b5bf7a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10191
x-amzn-requestid: a95f6d17-3c71-4a96-ab75-aa931c6b5d62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AoE-KE4qoAMF4cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f31b8d-38ce714b31f1fc795cd1f438;Sampled=0
x-amzn-remapped-date: Mon, 20 Feb 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: o-B-6u5o8WXHCdiXyCvSLiVa12h_a_YA_OujBP_ZaZ2NJ4EPKT9dxQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 05:01:43 GMT
age: 57682
etag: "8a9c31653ea1e5265867e6de2d302a44555aa109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5651651c-e7cc-4a7b-ae8a-9fb1e88379d3.jpeg
200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5651651c-e7cc-4a7b-ae8a-9fb1e88379d3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94622f58aa91b60efcab072bbfc1b8fc
481c511819075f80bacc5cca0b50c3650b5789d1
767c220ed09fbb28216023785c3609993185463dea0fcdc6cb355d6d00acd6b0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5651651c-e7cc-4a7b-ae8a-9fb1e88379d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2433
x-amzn-requestid: 1eb77631-515a-41f7-ac18-59c8cd22c4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ax_KCHgAoAMFu5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7123f-051da60474344e58658cc980;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 07:14:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KStkU8id8VhC4s3kYYvxctpem7798i9K7jNQUVNahm_mycuGOaE72g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 07:44:04 GMT
age: 47941
etag: "481c511819075f80bacc5cca0b50c3650b5789d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c87908-10da-4c1e-98d5-7b8969dc1d8f.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c87908-10da-4c1e-98d5-7b8969dc1d8f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8a79c5116304a1077022d4e19d5f892
9c70a05af13a4b959aea1211aeceffaf022bb958
0ff1c048a91e61945398123124970d6b7309f48a688181274ab0365e87f13759
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c87908-10da-4c1e-98d5-7b8969dc1d8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9277
x-amzn-requestid: e261e234-b057-478e-89c2-beba806ca510
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A3QiTFWMoAMF18A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f92e0e-3a86e7a303be3ce619b876f8;Sampled=0
x-amzn-remapped-date: Fri, 24 Feb 2023 21:37:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: QWHYevVRVpj96ZeAjz14lg7uxt8X78VpVCOIrvGjldD7ON2EGVVcSg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Feb 2023 23:10:45 GMT
age: 78740
etag: "9c70a05af13a4b959aea1211aeceffaf022bb958"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363345a7-425e-4498-8aa7-e16250bedd66.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363345a7-425e-4498-8aa7-e16250bedd66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5c457f02a50b085b748b7e806f166f7
a7b75438ba91b71e023e2e6e355563ac2635bf25
7607c112a56f9893b0c491cad54d7d83be0fa414e69dd44c251e074e15877f6a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363345a7-425e-4498-8aa7-e16250bedd66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5269
x-amzn-requestid: e6460273-d038-41fa-9915-5f5762feecab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A3QiUFqhIAMF5sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f92e0e-6c3baead0e2b8845557bf7e9;Sampled=0
x-amzn-remapped-date: Fri, 24 Feb 2023 21:37:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 07pNAHZlG7fP3dgG0eb-onMglfj9-wP2RAFShvr3b-MkOECPQZaSdA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Feb 2023 21:40:19 GMT
age: 84166
etag: "a7b75438ba91b71e023e2e6e355563ac2635bf25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6e0f61d-f4aa-4f95-9bb6-85293a1c2a7b.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6e0f61d-f4aa-4f95-9bb6-85293a1c2a7b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d85d33259ccf1aafbe8982507e3a4fbd
28b000d1da5b8a1f82152ebc91b3693512ba66ce
4dc76b0f8bef989d90463cc3ca0431d87008d5c93eee05ece9661c1f08a90686
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6e0f61d-f4aa-4f95-9bb6-85293a1c2a7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4234
x-amzn-requestid: 555774d4-9947-40dc-a01c-4a0fcb4e2078
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9M5FUdoAMFY_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbeb-51fdadb066a95c0943d77264;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:34:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YMLp6ccv5mVGJMr1XcTTMD_dRm91uW0gHDMaT9oIB6sYo4wwz2Jpgw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 00:10:20 GMT
age: 75165
etag: "28b000d1da5b8a1f82152ebc91b3693512ba66ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S8s54RJtScNtsl6uEFtBEHnTj4lb3l5xIWR96Kvr_SdwQQQMgSKNxA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Feb 2023 21:34:57 GMT
age: 84488
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
poorlystepmotherresolute.com/pixel/purst?dl=0&th=0&sc=0&rs=1933&rd=1933&fd=932&bv=22.10.v.9&tmpl=70
200 OK 0 B URL HTTP/1.1 poorlystepmotherresolute.com/pixel/purst?dl=0&th=0&sc=0&rs=1933&rd=1933&fd=932&bv=22.10.v.9&tmpl=70
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1933&rd=1933&fd=932&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: poorlystepmotherresolute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:05 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 25 Feb 2023 21:03:05 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 25f2591170a5a25ca3cbb5c61a08659d
Strict-Transport-Security: max-age=0; includeSubdomains
poorlystepmotherresolute.com/10/c3/56/10c35632f85a0001da6dbfdab0ac1ace.js
200 OK 13 kB URL HTTP/1.1 poorlystepmotherresolute.com/10/c3/56/10c35632f85a0001da6dbfdab0ac1ace.js
IP
File type ASCII text, with very long lines (37156), with no line terminators
Hash a1a0a1178cfdd2f3538166391c2fd2d5
b07ddb19697c023baa872d80a31ca3a4113711bd
2e0adb1f9cc83547b26447fc23c0fd74633247e96ebb86234d327281879c6c7d
Analyzer Verdict Alert quad9 Sinkholed
GET /10/c3/56/10c35632f85a0001da6dbfdab0ac1ace.js HTTP/1.1
Host: poorlystepmotherresolute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e0fbe6baf8fa6d2580631f5c1773cad
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash c42ece3c8ecdd5ff838c030c65884867
8c66fc5283536cb3b76fed64c09d5c765670b818
90e973b053752d557bf0e62703ba6bec29556e9f98cde8813711cdf7547986bb
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Cookie: uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www2.kiss-anime.ws
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2ae565b450db10d146f815736bd9d5a3
7b822f4a07c16ea6076eef76fd0c335056c79ff4
425958d6d52c48932fb0d7d31e0c0cb82fc4a14cce275c1b3c4afce6929a52f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Feb 2023 05:29:14 GMT
Expires: Sat, 04 Mar 2023 05:29:13 GMT
Etag: "7b822f4a07c16ea6076eef76fd0c335056c79ff4"
Cache-Control: max-age=548166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79f362be4df0b4ed-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2ae565b450db10d146f815736bd9d5a3
7b822f4a07c16ea6076eef76fd0c335056c79ff4
425958d6d52c48932fb0d7d31e0c0cb82fc4a14cce275c1b3c4afce6929a52f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Feb 2023 05:29:14 GMT
Expires: Sat, 04 Mar 2023 05:29:13 GMT
Etag: "7b822f4a07c16ea6076eef76fd0c335056c79ff4"
Cache-Control: max-age=548166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79f362be49dbfab4-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 679c7d615af06e79d81feccc924dff3a
c030a6166c7ca9b93d4b073a8d96befff47ef354
ec31e0932c48151c98e7c2db5be46e4f07963f942e51958eab62c119cc125cef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC31E0932C48151C98E7C2DB5BE46E4F07963F942E51958EAB62C119CC125CEF"
Last-Modified: Sat, 25 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15185
Expires: Sun, 26 Feb 2023 01:16:11 GMT
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
robberysordid.com/watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid=
307 Temporary Redirect 1.6 kB URL HTTP/1.1 robberysordid.com/watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid=
IP
Hash c7bf00a5c76d829d367e76c9628046f2
bd70dc3e54dd364597330d2cca53e19768b9a135
6045f77bd91f0434f1a9e5efab69c3943359b8964a67bdd2b82cbfe31aebc6f1
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid= HTTP/1.1
Host: robberysordid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www2.kiss-anime.ws
Access-Control-Allow-Origin: https://www2.kiss-anime.ws
Access-Control-Allow-Credentials: true
Location: https://robberysordid.com/watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid=&shu=365ac92cb05d97749ddba1e59dab1e8fa798b741a7037ee509067eb49221d6946e4835e408816638c79a55e2e02044ab1f55744c4f2b18b1fd20b803b56dc8497ab321c2553f873560d2069230df36942b710becc6d7c1eed4a35f7faee6d3a1&pst=1677359046&rmtc=t
Set-Cookie: u_pl=16884591; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.2qCLk18hOn98HwDaGtAR-nfj82UEDPfuREK4VCyysqw; expires=Sat, 25 Feb 2023 21:04:06 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 86bdb561ee213818bf3b3cc039f99949
Strict-Transport-Security: max-age=0; includeSubdomains
widgets.amung.us/classic/02/225.png
200 OK 1.5 kB URL HTTP/2 widgets.amung.us/classic/02/225.png
IP
File type PNG image data, 81 x 29, 8-bit colormap, non-interlaced\012- data
Hash 16b42e74ffff0bad32b139536af408a5
3e4e069dd332ca71a630d50276db173a281021f4
607a306184ec4d5f94faaa2a86dd8c50ac499f1ed4617915de767162b5b0ff28
GET /classic/02/225.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: image/png
content-length: 1504
last-modified: Sun, 13 Jun 2010 09:03:09 GMT
etag: "4c149ecd-5e0"
expires: Fri, 17 Feb 2023 16:08:18 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 795288
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c149a716a5-ARN
X-Firefox-Spdy: h2
widgets.amung.us/classic/00/43.png
200 OK 1.5 kB URL HTTP/2 widgets.amung.us/classic/00/43.png
IP
File type PNG image data, 81 x 29, 8-bit colormap, non-interlaced\012- data
Hash 627392d26379418502a3301ce0210463
83b0916c6ead2171f36cf36bda31bfe4be47cdd4
52cb08a007caec49939e0e8be07822c9fb5285f424030826b0daa9b45f7b7232
GET /classic/00/43.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: image/png
content-length: 1502
last-modified: Sun, 13 Jun 2010 09:03:09 GMT
etag: "4c149ecd-5de"
expires: Sun, 05 Feb 2023 01:40:18 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 1884168
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c149a916a5-ARN
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=d70d8b4572
200 OK 840 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=d70d8b4572
IP
File type ASCII text, with very long lines (2774)
Hash f4b0a0dd802d33bc03b3802452397fc7
26c6bd0730bd4994a1096bf16e1173a26f0944a1
d77b31046e55c741af0b559a918c428606334414108504274bae8a1146787464
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=d70d8b4572 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 728b6476f3e2317ec8044d22806d4f94.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: qfOO7guQAL-31M6EbYyXsLg1k0Btb-TFUfOYBeqC65TDrdpnKz02Pg==
age: 1246938
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sM21otk4sVEP6gF1mRq1CE%2B3c3aV3maWuJf7642yy%2Fivsb46C88KXqWN1EyVKY3xzsxbsNLIC7W9njuCoV45Hwi%2BF%2Bgumm9tOibV%2BZ0ZWyD4QuTjorAeVjqpW%2F9Y4ZcQsifgwqlbrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b5ad8823ac-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash c42ece3c8ecdd5ff838c030c65884867
8c66fc5283536cb3b76fed64c09d5c765670b818
90e973b053752d557bf0e62703ba6bec29556e9f98cde8813711cdf7547986bb
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Cookie: uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www2.kiss-anime.ws
access-control-allow-credentials: true
X-Firefox-Spdy: h2
poorlystepmotherresolute.com/pixel/pure
204 No Content 0 B URL HTTP/1.1 poorlystepmotherresolute.com/pixel/pure
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: poorlystepmotherresolute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
robberysordid.com/watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid=&shu=365ac92cb05d97749ddba1e59dab1e8fa798b741a7037ee509067eb49221d6946e4835e408816638c79a55e2e02044ab1f55744c4f2b18b1fd20b803b56dc8497ab321c2553f873560d2069230df36942b710becc6d7c1eed4a35f7faee6d3a1&pst=1677359046&rmtc=t
200 OK 2.0 kB URL HTTP/1.1 robberysordid.com/watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid=&shu=365ac92cb05d97749ddba1e59dab1e8fa798b741a7037ee509067eb49221d6946e4835e408816638c79a55e2e02044ab1f55744c4f2b18b1fd20b803b56dc8497ab321c2553f873560d2069230df36942b710becc6d7c1eed4a35f7faee6d3a1&pst=1677359046&rmtc=t
IP
File type HTML document, ASCII text, with very long lines (2487)
Hash d04f55cf6682b10d5c0ea60fb5f885c9
b75ef060135f4577cace66501abef0f909b6ff99
7ae9eb8a38e8256a4f2b4d52480d6db8359e2aa79acaf032d45a1f11cfdde599
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1663446384255.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22kissanime%22%2C%22-%22%2C%22watch%22%2C%22anime%22%2C%22online%22%2C%22in%22%2C%22hd%22%2C%22quality%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww2.kiss-anime.ws%2F&tz=0&dev=e&res=12.1055&uuid=&shu=365ac92cb05d97749ddba1e59dab1e8fa798b741a7037ee509067eb49221d6946e4835e408816638c79a55e2e02044ab1f55744c4f2b18b1fd20b803b56dc8497ab321c2553f873560d2069230df36942b710becc6d7c1eed4a35f7faee6d3a1&pst=1677359046&rmtc=t HTTP/1.1
Host: robberysordid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Referer: https://www2.kiss-anime.ws/
Connection: keep-alive
Cookie: u_pl=16884591
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www2.kiss-anime.ws
Access-Control-Allow-Origin: https://www2.kiss-anime.ws
Access-Control-Allow-Credentials: true
Set-Cookie: pdhtkv=true; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
uncs=1; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
uncs5=1; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b00529fd8418c5c793f923230eedc04b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
poorlystepmotherresolute.com/pixel/pure
204 No Content 0 B URL HTTP/1.1 poorlystepmotherresolute.com/pixel/pure
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: poorlystepmotherresolute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
poorlystepmotherresolute.com/pixel/pure
200 OK 0 B URL HTTP/1.1 poorlystepmotherresolute.com/pixel/pure
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: poorlystepmotherresolute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
kiynew.com/admc?a=2&pid=1056499&sid=1188176&wid=429092&fp=9e4947f35751465411fd1a4f5c358c78&tz=0
200 OK 0 B URL HTTP/2 kiynew.com/admc?a=2&pid=1056499&sid=1188176&wid=429092&fp=9e4947f35751465411fd1a4f5c358c78&tz=0
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /admc?a=2&pid=1056499&sid=1188176&wid=429092&fp=9e4947f35751465411fd1a4f5c358c78&tz=0 HTTP/1.1
Host: kiynew.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 25 Feb 2023 21:03:06 GMT
content-length: 0
access-control-allow-origin: https://www2.kiss-anime.ws
access-control-allow-credentials: true
X-Firefox-Spdy: h2
poorlystepmotherresolute.com/pixel/pure
200 OK 0 B URL HTTP/1.1 poorlystepmotherresolute.com/pixel/pure
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: poorlystepmotherresolute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ce9639e0b492980a1a385280aeb550c8
8109e7eef6a5b98d35556e7bc2ddd019438cb28b
381a20a32a198473d1b536d4d6cbf8dfa61040836ba02f5b251a4b5e61862e28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "381A20A32A198473D1B536D4D6CBF8DFA61040836BA02F5B251A4B5E61862E28"
Last-Modified: Sat, 25 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4654
Expires: Sat, 25 Feb 2023 22:20:40 GMT
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 51b01ecbe9d83cd98aa2fcdc872e0acc
d1e98fd8f34a44209bb9b3526fa5c5fc57338cc4
c0b3d73c7d7f3423467d5b8ab8f5c3044172e35c7c5b47ad9f76a2f6d3d7e888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C0B3D73C7D7F3423467D5B8AB8F5C3044172E35C7C5B47AD9F76A2F6D3D7E888"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4104
Expires: Sat, 25 Feb 2023 22:11:30 GMT
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
prhzxq.com/wnrw?aid=12862793391582299518&a=1
200 OK 0 B URL HTTP/2 prhzxq.com/wnrw?aid=12862793391582299518&a=1
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wnrw?aid=12862793391582299518&a=1 HTTP/1.1
Host: prhzxq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 25 Feb 2023 21:03:06 GMT
content-length: 0
access-control-allow-origin: https://www2.kiss-anime.ws
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b258f71de171fa9f3a162ae1d23a72d4
e9cee5eb80a68b897b14ee5d65d00c077b5a219c
6d0cf10799e64f38eb54f7c7c2b8b56fb8695a2b1d854ea8ef8f55181ca1a459
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D0CF10799E64F38EB54F7C7C2B8B56FB8695A2B1D854EA8EF8F55181CA1A459"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10268
Expires: Sat, 25 Feb 2023 23:54:14 GMT
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
cdn.cloudimagesb.com/bi/b4/60/4b/b4604b8fc6ed76dda2a5b56933fbf9c5/1612447977.jpg
200 OK 77 kB URL HTTP/2 cdn.cloudimagesb.com/bi/b4/60/4b/b4604b8fc6ed76dda2a5b56933fbf9c5/1612447977.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:02:01 15:13:07], baseline, precision 8, 300x250, components 3\012- data
Hash a196167e0ca028da02a1d0bc0208cf31
3731919933e5d772717422725b7b898200cf222b
d845792707b936e87f8f8e16c27ac6d7933bd245bc9dd3c516148f0b4a6117a3
GET /bi/b4/60/4b/b4604b8fc6ed76dda2a5b56933fbf9c5/1612447977.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: image/jpeg
content-length: 76881
server: nginx/1.17.6
last-modified: Thu, 04 Feb 2021 14:13:05 GMT
etag: "601c00f1-12c51"
expires: Mon, 27 Feb 2023 21:03:06 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 67560848b6b557de637f40dc076965ef
bfa55d7cb3c4b88420ea5dfa51a688fe8b44a9a6
90e41e0e164c4d5a64fdbb9039134dc44a3d6cc07dacf241f559e329198f4f52
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "90E41E0E164C4D5A64FDBB9039134DC44A3D6CC07DACF241F559E329198F4F52"
Last-Modified: Fri, 24 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11585
Expires: Sun, 26 Feb 2023 00:16:11 GMT
Date: Sat, 25 Feb 2023 21:03:06 GMT
Connection: keep-alive
voicebeddingtaint.com/sbar.json?key=114764e8c107a9d8d8a1e90e478e044b&uuid=d3bf09c2-b213-473c-95f2-85d1d091f136%3A2%3A1
200 OK 4.0 kB URL HTTP/1.1 voicebeddingtaint.com/sbar.json?key=114764e8c107a9d8d8a1e90e478e044b&uuid=d3bf09c2-b213-473c-95f2-85d1d091f136%3A2%3A1
IP
File type JSON data\012- , ASCII text, with very long lines (5668), with no line terminators
Hash 9ebd804f8843ba76915d99e1d8adfab1
3531d7c6ae74cebf84b242ebbadabd1ee3fc3f0d
51d466c179acef84f85c6527578c20c6d90a8b26a8959997b842b3bfe55eeadb
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=114764e8c107a9d8d8a1e90e478e044b&uuid=d3bf09c2-b213-473c-95f2-85d1d091f136%3A2%3A1 HTTP/1.1
Host: voicebeddingtaint.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:06 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www2.kiss-anime.ws
Access-Control-Allow-Origin: https://www2.kiss-anime.ws
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16382546; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1; expires=Sat, 04 Mar 2023 21:03:06 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
uncs=1; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 26 Feb 2023 21:03:06 GMT; secure; SameSite=None
slec114764e8c107a9d8d8a1e90e478e044b=[3851891]; expires=Sat, 25 Feb 2023 21:03:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cb718f5666e672537007ee7e4f8b57c3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
unseenreport.com/pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=10c35632f85a0001da6dbfdab0ac1ace&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=10c35632f85a0001da6dbfdab0ac1ace&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
IP
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=10c35632f85a0001da6dbfdab0ac1ace&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f136b6c2f70d4f2fa46386731d7030d4
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=114764e8c107a9d8d8a1e90e478e044b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=114764e8c107a9d8d8a1e90e478e044b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
IP
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=114764e8c107a9d8d8a1e90e478e044b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c675ae6319dc3ee0b0221efb35b2633
Strict-Transport-Security: max-age=0; includeSubdomains
voicebeddingtaint.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwYscxReuTvK7%2FDwpQRQUB%2FRgwJ1Uz%2FTsTCeHYIwbFuNm2UT2KNVV1bPl1HQ1Vd3Ts5PLYkCCp1E8eOz9ZjdLNAbzBwgyK4LsaceDrOCif4MgmJPM7MDoO9R73%2Fvq8L3vvU9281NCkbOT9ffNQGnNLjeqtPLmpkqEKVxl7W7Fp1V6tbKpkuXgaqU%2FfWzvik8bVXqpclPyjrlcoz6lPvUrK8rK2PQvz1io9HHoV0NaDWpVvxGgb%2F%2BLXe7BMQ%2Bid0pegBKT%2F2399BSKj5F0v70hXScz6VvvdnPNMmPREwcfJJ3EFAm6izK2HuLkYP4bxk0I%2BfIcTHIwnwCmtzedAJGaEO8XH1FyMJeJqLd%2FpjTSkAki8RyK3hhSj6HYGNzchxLHBOACa7eRdB%2BuGVuw7TOWTdkJufDXn1DFhFz47SKS7pPrWvUrd4zOM2USh35cQvXHUO0x0vwQ2cCDKg7Bs4%2BhBEHSLaHEyRuiHsU05LWlqObXl4JmnS%2BFjbi21GoIX9DQj%2F368swapcZQ8RhaDsHcOeTOQ6485LGHPPXQFScV1ghjSptxFNfrrYBzXq9z3mgti4aoB62YIudT7UNk6RBcD8HtDlK7g476%2FLjxyjEZwebfw22VcMKDywh6okQhCQpHUDCCQhEUGUHRK%2FeFdjVXPhTa5ZE%2Fz7V5rpcjk7V32b7J2jIhu%2BkpeX5m29%2FPNtCRJxXfD5rLgWxxnzZZKFqixXwZUhk0W5IGQQSnSih3Dsx5GKgJeSn8Fel0l1u%2FI2KHcPoQXL0Ilr8KVoyaNQq2NQpaFIPkm45yboklqiurhYMwJdLsArJtb1efkpdnQq786CD50bUvBn%2FcfHLxHrgtkdoSH6kfCNr6wWjDFGRvwxSOPL2dZqqrBmy62zsZy%2BT5r96T24WxYvWGGz56m0%2BJafn4rnTZLZYIlbQd%2Bfq6EkLaFWO5JN%2Btuk0Zredu63pukzy9tf7Oymo3tdI5ZZIxmDp%2BvQauJuT%2Fjz6cXe1r9y5B2TFsXqKbH5F5QJlD8HQHLl30nCGweoGj1EORlyNbixZNrQi0XGAWlXD%2FwtGi3nUP0LYeWHZ%2Fdqs9W6KnSzA9hMvPj7LUHl37uT4LRNobRdp6e5G2%2BrMza506qchGTGNJazKKwyhuMirCOAgjFvqyGTWYj8xN%2BLPi038AAAD%2F%2FwEAAP%2F%2Fgc7J2Y0EAAA%3D
200 OK 7 B URL HTTP/1.1 voicebeddingtaint.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwYscxReuTvK7%2FDwpQRQUB%2FRgwJ1Uz%2FTsTCeHYIwbFuNm2UT2KNVV1bPl1HQ1Vd3Ts5PLYkCCp1E8eOz9ZjdLNAbzBwgyK4LsaceDrOCif4MgmJPM7MDoO9R73%2Fvq8L3vvU9281NCkbOT9ffNQGnNLjeqtPLmpkqEKVxl7W7Fp1V6tbKpkuXgaqU%2FfWzvik8bVXqpclPyjrlcoz6lPvUrK8rK2PQvz1io9HHoV0NaDWpVvxGgb%2F%2BLXe7BMQ%2Bid0pegBKT%2F2399BSKj5F0v70hXScz6VvvdnPNMmPREwcfJJ3EFAm6izK2HuLkYP4bxk0I%2BfIcTHIwnwCmtzedAJGaEO8XH1FyMJeJqLd%2FpjTSkAki8RyK3hhSj6HYGNzchxLHBOACa7eRdB%2BuGVuw7TOWTdkJufDXn1DFhFz47SKS7pPrWvUrd4zOM2USh35cQvXHUO0x0vwQ2cCDKg7Bs4%2BhBEHSLaHEyRuiHsU05LWlqObXl4JmnS%2BFjbi21GoIX9DQj%2F368swapcZQ8RhaDsHcOeTOQ6485LGHPPXQFScV1ghjSptxFNfrrYBzXq9z3mgti4aoB62YIudT7UNk6RBcD8HtDlK7g476%2FLjxyjEZwebfw22VcMKDywh6okQhCQpHUDCCQhEUGUHRK%2FeFdjVXPhTa5ZE%2Fz7V5rpcjk7V32b7J2jIhu%2BkpeX5m29%2FPNtCRJxXfD5rLgWxxnzZZKFqixXwZUhk0W5IGQQSnSih3Dsx5GKgJeSn8Fel0l1u%2FI2KHcPoQXL0Ilr8KVoyaNQq2NQpaFIPkm45yboklqiurhYMwJdLsArJtb1efkpdnQq786CD50bUvBn%2FcfHLxHrgtkdoSH6kfCNr6wWjDFGRvwxSOPL2dZqqrBmy62zsZy%2BT5r96T24WxYvWGGz56m0%2BJafn4rnTZLZYIlbQd%2Bfq6EkLaFWO5JN%2Btuk0Zredu63pukzy9tf7Oymo3tdI5ZZIxmDp%2BvQauJuT%2Fjz6cXe1r9y5B2TFsXqKbH5F5QJlD8HQHLl30nCGweoGj1EORlyNbixZNrQi0XGAWlXD%2FwtGi3nUP0LYeWHZ%2Fdqs9W6KnSzA9hMvPj7LUHl37uT4LRNobRdp6e5G2%2BrMza506qchGTGNJazKKwyhuMirCOAgjFvqyGTWYj8xN%2BLPi038AAAD%2F%2FwEAAP%2F%2Fgc7J2Y0EAAA%3D
IP
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwYscxReuTvK7%2FDwpQRQUB%2FRgwJ1Uz%2FTsTCeHYIwbFuNm2UT2KNVV1bPl1HQ1Vd3Ts5PLYkCCp1E8eOz9ZjdLNAbzBwgyK4LsaceDrOCif4MgmJPM7MDoO9R73%2Fvq8L3vvU9281NCkbOT9ffNQGnNLjeqtPLmpkqEKVxl7W7Fp1V6tbKpkuXgaqU%2FfWzvik8bVXqpclPyjrlcoz6lPvUrK8rK2PQvz1io9HHoV0NaDWpVvxGgb%2F%2BLXe7BMQ%2Bid0pegBKT%2F2399BSKj5F0v70hXScz6VvvdnPNMmPREwcfJJ3EFAm6izK2HuLkYP4bxk0I%2BfIcTHIwnwCmtzedAJGaEO8XH1FyMJeJqLd%2FpjTSkAki8RyK3hhSj6HYGNzchxLHBOACa7eRdB%2BuGVuw7TOWTdkJufDXn1DFhFz47SKS7pPrWvUrd4zOM2USh35cQvXHUO0x0vwQ2cCDKg7Bs4%2BhBEHSLaHEyRuiHsU05LWlqObXl4JmnS%2BFjbi21GoIX9DQj%2F368swapcZQ8RhaDsHcOeTOQ6485LGHPPXQFScV1ghjSptxFNfrrYBzXq9z3mgti4aoB62YIudT7UNk6RBcD8HtDlK7g476%2FLjxyjEZwebfw22VcMKDywh6okQhCQpHUDCCQhEUGUHRK%2FeFdjVXPhTa5ZE%2Fz7V5rpcjk7V32b7J2jIhu%2BkpeX5m29%2FPNtCRJxXfD5rLgWxxnzZZKFqixXwZUhk0W5IGQQSnSih3Dsx5GKgJeSn8Fel0l1u%2FI2KHcPoQXL0Ilr8KVoyaNQq2NQpaFIPkm45yboklqiurhYMwJdLsArJtb1efkpdnQq786CD50bUvBn%2FcfHLxHrgtkdoSH6kfCNr6wWjDFGRvwxSOPL2dZqqrBmy62zsZy%2BT5r96T24WxYvWGGz56m0%2BJafn4rnTZLZYIlbQd%2Bfq6EkLaFWO5JN%2Btuk0Zredu63pukzy9tf7Oymo3tdI5ZZIxmDp%2BvQauJuT%2Fjz6cXe1r9y5B2TFsXqKbH5F5QJlD8HQHLl30nCGweoGj1EORlyNbixZNrQi0XGAWlXD%2FwtGi3nUP0LYeWHZ%2Fdqs9W6KnSzA9hMvPj7LUHl37uT4LRNobRdp6e5G2%2BrMza506qchGTGNJazKKwyhuMirCOAgjFvqyGTWYj8xN%2BLPi038AAAD%2F%2FwEAAP%2F%2Fgc7J2Y0EAAA%3D HTTP/1.1
Host: voicebeddingtaint.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Cookie: u_pl=16382546; uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4449f8eeb8b0fd8476659a32582c1eaa
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=a5c594cb7a3272316d41396bece4e8b9&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=a5c594cb7a3272316d41396bece4e8b9&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
IP
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=d3bf09c2-b213-473c-95f2-85d1d091f136&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=a5c594cb7a3272316d41396bece4e8b9&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 64a50d0c863f3ea163a0a2c7da85719f
Strict-Transport-Security: max-age=0; includeSubdomains
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 33e98d37182d7ab76011d147116bcd88
5d7943170a9e80fd97d2aed549f89e43aa3714d4
c01610af91b92dd4b74cbc47b984536fa8f78c27dc299c1f4bb0322572518c62
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C01610AF91B92DD4B74CBC47B984536FA8F78C27DC299C1F4BB0322572518C62"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12267
Expires: Sun, 26 Feb 2023 00:27:34 GMT
Date: Sat, 25 Feb 2023 21:03:07 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 33e98d37182d7ab76011d147116bcd88
5d7943170a9e80fd97d2aed549f89e43aa3714d4
c01610af91b92dd4b74cbc47b984536fa8f78c27dc299c1f4bb0322572518c62
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C01610AF91B92DD4B74CBC47B984536FA8F78C27DC299C1F4BB0322572518C62"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12267
Expires: Sun, 26 Feb 2023 00:27:34 GMT
Date: Sat, 25 Feb 2023 21:03:07 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/img/74.png
200 OK 7.2 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/img/74.png
IP
File type PNG image data, 1160 x 1160, 8-bit/color RGB, non-interlaced\012- data
Hash be8865bbb6578f1a69d8a5e451609a05
19ed445da5f9476a6fa90bc156b5f5f9ed1a2ca8
1d53bd487fa183ea2ae984861b3b68f5829569baaf23b57e0f3f4a8abde55e23
GET /sb/notifications/games/nutaku/multi/qr/1/img/74.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: image/png
content-length: 7190
last-modified: Fri, 09 Dec 2022 09:01:26 GMT
etag: "6392f966-1c16"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6492808
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YmbvS7b3dyvj4OcVmAIR4%2B9PYqyQCgePn%2BIMpUeEad28Efu7WPJbKZ2PEAKcVTO1k0o3D2DGcZYAOzLHhtzgNoljYSQdHSH4g68V92aW0q00uRaarVE2SlBCzFjqwNBqquGMZSoNZhwS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c6ee08419a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 33e98d37182d7ab76011d147116bcd88
5d7943170a9e80fd97d2aed549f89e43aa3714d4
c01610af91b92dd4b74cbc47b984536fa8f78c27dc299c1f4bb0322572518c62
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C01610AF91B92DD4B74CBC47B984536FA8F78C27DC299C1F4BB0322572518C62"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12267
Expires: Sun, 26 Feb 2023 00:27:34 GMT
Date: Sat, 25 Feb 2023 21:03:07 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/img/girls.png
200 OK 322 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/img/girls.png
IP
File type PNG image data, 729 x 331, 8-bit/color RGBA, non-interlaced\012- data
Size 322 kB (322399 bytes)
Hash 47b7ae41a98644de6d46d58a0e51a793
b0f736609af3c0b3214ee52cc9f0798dcc972df6
b2ad5bf8fc066203168fbceb53b7df6012e8897be344b240e94105af1b4ba0f2
GET /sb/notifications/games/nutaku/multi/qr/1/img/girls.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: image/png
content-length: 322399
last-modified: Fri, 09 Dec 2022 09:01:28 GMT
etag: "6392f968-4eb5f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2612717
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=58Ci%2F5xuXTyoeS9MBgarfMewcMT5EFXmVGfE2jMTNfyQC7jtTqDfJMAR0p8H6iaapRp9DRrb6XYqsa4pXpSlB2aEZutJFk2z5Ehj21fpOGl%2FY9HWg1tYm26udn4urQN0z9o3GCyc52pM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c6ee04419a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
voicebeddingtaint.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4tcxRetl%2BS3%2BblSgigoNujCgNN5%2F3r6dbIIxjhhME6GSWSWUq%2BqXk%2FZ1a8eVe%2F16%2BlsBgMSXLXiwuWb0zMZojGYDyBIjwgyq2kXMoKDfgZBMCvpnobWu6h7zz21OPfc%2B8lucUpcFPRk%2FX09kErRy426W3tzU6Zcl7a2drfmuXX3am1Tpsvh1Vp%2F%2BpjeFc9t1N1LtZuCdfRl3%2FVc13O92oo0ItH9yzMWMnvc8uottx76da8Rom%2F%2Bi23hwFIHvHdKXoDkk%2F9t%2FfQUko2Rdr%2B9IWwn19lb73YLRXNt0OMHH6SdVJcpuosyMQ6S9GD%2BG9pOCPnyHHR6MJ8Aurc3nQCxnBDnFw9xejCXibi3f6Y0VhApYv4cyt4YQo0h6RhM34fkxwRgHGu3kXYfrmlT0u0zlk7ZCbnw15%2BQ5YRc%2BO0i0u6T60r2a3e0KnKpU4t%2BUkH2x5DtMbLiEPnAgSwPwfKPITlB2q0g%2BckbPIgTt8X8pdj3gqWwGbClViPxl6IG97jb8hIvWJ5ZI%2BUYMhlDiSGoPYfCOiikgyJxUGQOuvykRhutxHWbSZwEQRQyxoKAsUa0zBs8CKPERcGm2ofIsyGYGoKZHWRmBx35%2BXHjlWMygim%2Bh92qYLkDmxP0eIVSEJSWoKQEpSQoc4KyV%2B1zZX1bPeTKFrE3z%2F48B9VI5%2B1duq%2FztkjJbnZKnp%2FZ9vezDXTESc3zwuZyKCLmuU3a4hGPqCdargibkXDDMIaVFaQ9B2odDOSEvNT6Fdl0l1u%2FI6aHsOoQTL4IWrwKWo6avgu6NQojF4P0m460dommsivqpQXXFbL8AvJtZ1edkpdnQq78aCHY0bUvBn%2FcfHLxHpipkJkKH8kfCNrqwWhDl2RvQ5eWPL2d5bIrB3S62zs5zcX5r94T26U2fPWGHT56m02Jafn4rrD5LZpymbYt%2Bfq65FyYFW2YIN%2Bt2k0Rrxd263ph0iK7tf7Oymo3M8JaqdMxqDx%2B3QeTE%2FL%2FRx%2FOrva1e5cgzRimqNAtjsg8IPUhWLYDmy16VhMYtcBx5qAsqpHx40VTSQIlFpjGFey%2FcLyod%2B0DtI0Dmt%2Bf3WrPVOipClQNYYvzozwzR9d%2BDmaBWDmjWBlnL1ZGfXZmrZUntYYXiiiOmozzWDDuNf0gClzX5zxstoTXQm4n7Fn56T8AAAD%2F%2FwEAAP%2F%2FlcZHP40EAAA%3D
200 OK 7 B URL HTTP/1.1 voicebeddingtaint.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4tcxRetl%2BS3%2BblSgigoNujCgNN5%2F3r6dbIIxjhhME6GSWSWUq%2BqXk%2FZ1a8eVe%2F16%2BlsBgMSXLXiwuWb0zMZojGYDyBIjwgyq2kXMoKDfgZBMCvpnobWu6h7zz21OPfc%2B8lucUpcFPRk%2FX09kErRy426W3tzU6Zcl7a2drfmuXX3am1Tpsvh1Vp%2F%2BpjeFc9t1N1LtZuCdfRl3%2FVc13O92oo0ItH9yzMWMnvc8uottx76da8Rom%2F%2Bi23hwFIHvHdKXoDkk%2F9t%2FfQUko2Rdr%2B9IWwn19lb73YLRXNt0OMHH6SdVJcpuosyMQ6S9GD%2BG9pOCPnyHHR6MJ8Aurc3nQCxnBDnFw9xejCXibi3f6Y0VhApYv4cyt4YQo0h6RhM34fkxwRgHGu3kXYfrmlT0u0zlk7ZCbnw15%2BQ5YRc%2BO0i0u6T60r2a3e0KnKpU4t%2BUkH2x5DtMbLiEPnAgSwPwfKPITlB2q0g%2BckbPIgTt8X8pdj3gqWwGbClViPxl6IG97jb8hIvWJ5ZI%2BUYMhlDiSGoPYfCOiikgyJxUGQOuvykRhutxHWbSZwEQRQyxoKAsUa0zBs8CKPERcGm2ofIsyGYGoKZHWRmBx35%2BXHjlWMygim%2Bh92qYLkDmxP0eIVSEJSWoKQEpSQoc4KyV%2B1zZX1bPeTKFrE3z%2F48B9VI5%2B1duq%2FztkjJbnZKnp%2FZ9vezDXTESc3zwuZyKCLmuU3a4hGPqCdargibkXDDMIaVFaQ9B2odDOSEvNT6Fdl0l1u%2FI6aHsOoQTL4IWrwKWo6avgu6NQojF4P0m460dommsivqpQXXFbL8AvJtZ1edkpdnQq78aCHY0bUvBn%2FcfHLxHpipkJkKH8kfCNrqwWhDl2RvQ5eWPL2d5bIrB3S62zs5zcX5r94T26U2fPWGHT56m02Jafn4rrD5LZpymbYt%2Bfq65FyYFW2YIN%2Bt2k0Rrxd263ph0iK7tf7Oymo3M8JaqdMxqDx%2B3QeTE%2FL%2FRx%2FOrva1e5cgzRimqNAtjsg8IPUhWLYDmy16VhMYtcBx5qAsqpHx40VTSQIlFpjGFey%2FcLyod%2B0DtI0Dmt%2Bf3WrPVOipClQNYYvzozwzR9d%2BDmaBWDmjWBlnL1ZGfXZmrZUntYYXiiiOmozzWDDuNf0gClzX5zxstoTXQm4n7Fn56T8AAAD%2F%2FwEAAP%2F%2FlcZHP40EAAA%3D
IP
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4tcxRetl%2BS3%2BblSgigoNujCgNN5%2F3r6dbIIxjhhME6GSWSWUq%2BqXk%2FZ1a8eVe%2F16%2BlsBgMSXLXiwuWb0zMZojGYDyBIjwgyq2kXMoKDfgZBMCvpnobWu6h7zz21OPfc%2B8lucUpcFPRk%2FX09kErRy426W3tzU6Zcl7a2drfmuXX3am1Tpsvh1Vp%2F%2BpjeFc9t1N1LtZuCdfRl3%2FVc13O92oo0ItH9yzMWMnvc8uottx76da8Rom%2F%2Bi23hwFIHvHdKXoDkk%2F9t%2FfQUko2Rdr%2B9IWwn19lb73YLRXNt0OMHH6SdVJcpuosyMQ6S9GD%2BG9pOCPnyHHR6MJ8Aurc3nQCxnBDnFw9xejCXibi3f6Y0VhApYv4cyt4YQo0h6RhM34fkxwRgHGu3kXYfrmlT0u0zlk7ZCbnw15%2BQ5YRc%2BO0i0u6T60r2a3e0KnKpU4t%2BUkH2x5DtMbLiEPnAgSwPwfKPITlB2q0g%2BckbPIgTt8X8pdj3gqWwGbClViPxl6IG97jb8hIvWJ5ZI%2BUYMhlDiSGoPYfCOiikgyJxUGQOuvykRhutxHWbSZwEQRQyxoKAsUa0zBs8CKPERcGm2ofIsyGYGoKZHWRmBx35%2BXHjlWMygim%2Bh92qYLkDmxP0eIVSEJSWoKQEpSQoc4KyV%2B1zZX1bPeTKFrE3z%2F48B9VI5%2B1duq%2FztkjJbnZKnp%2FZ9vezDXTESc3zwuZyKCLmuU3a4hGPqCdargibkXDDMIaVFaQ9B2odDOSEvNT6Fdl0l1u%2FI6aHsOoQTL4IWrwKWo6avgu6NQojF4P0m460dommsivqpQXXFbL8AvJtZ1edkpdnQq78aCHY0bUvBn%2FcfHLxHpipkJkKH8kfCNrqwWhDl2RvQ5eWPL2d5bIrB3S62zs5zcX5r94T26U2fPWGHT56m02Jafn4rrD5LZpymbYt%2Bfq65FyYFW2YIN%2Bt2k0Rrxd263ph0iK7tf7Oymo3M8JaqdMxqDx%2B3QeTE%2FL%2FRx%2FOrva1e5cgzRimqNAtjsg8IPUhWLYDmy16VhMYtcBx5qAsqpHx40VTSQIlFpjGFey%2FcLyod%2B0DtI0Dmt%2Bf3WrPVOipClQNYYvzozwzR9d%2BDmaBWDmjWBlnL1ZGfXZmrZUntYYXiiiOmozzWDDuNf0gClzX5zxstoTXQm4n7Fn56T8AAAD%2F%2FwEAAP%2F%2FlcZHP40EAAA%3D HTTP/1.1
Host: voicebeddingtaint.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Cookie: u_pl=16382546; uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 04233cc18aa13d1a4969ec3297ba02c8
Strict-Transport-Security: max-age=0; includeSubdomains
voicebeddingtaint.com/pixel/sbs?c=1
200 OK 0 B URL HTTP/1.1 voicebeddingtaint.com/pixel/sbs?c=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: voicebeddingtaint.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Cookie: u_pl=16382546; uid_id2=d3bf09c2-b213-473c-95f2-85d1d091f136:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Feb 2023 21:03:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
whos.amung.us/widget/6g7ib7glghlv.png
307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/widget/6g7ib7glghlv.png
IP
GET /widget/6g7ib7glghlv.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/classic/02/225.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79f362bf989e16a5-ARN
X-Firefox-Spdy: h2
kissanime1.net/
301 Moved Permanently 0 B IP
GET / HTTP/1.1
Host: kissanime1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 25 Feb 2023 21:03:03 GMT
content-type: text/html; charset=iso-8859-1
location: https://www2.kiss-anime.ws/
x-varnish: 171307655 172456426
age: 10
via: 1.1 varnish (Varnish/6.0)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W0fgsJiWFK8mjYZSIJrt21bFk2MMs1fzw0qJUqeQwIcW6OjDPdJ0iGywxBfkeLtChZsUO4eOSNSiNL7uMGaw8fwRwpLF2TrgcYnFSMu1g5VblFO7eCh54%2BYiv1mDci0uxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b0787d0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/d70d8b4572.js
200 OK 0 B URL HTTP/2 kit.fontawesome.com/d70d8b4572.js
IP
GET /d70d8b4572.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F0K-8TPUt8fb-xBM0olC
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 79f362b41fc0b4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
i.wmgtr.com/cic/PMTZDMTP3BCY48-RTzBBiGS7XXWOmbYh.png
200 OK 0 B URL HTTP/2 i.wmgtr.com/cic/PMTZDMTP3BCY48-RTzBBiGS7XXWOmbYh.png
IP
ASN #39572 DataWeb Global Group B.V.
GET /cic/PMTZDMTP3BCY48-RTzBBiGS7XXWOmbYh.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: image/png
server: nginx/1.19.0
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
content-encoding: gzip
cache-control: max-age=82800
expires: Sun, 26 Feb 2023 20:03:06 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 550c0a7739338e1a86d38336776112da
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 25 Feb 2023 21:03:04 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VyIvASDP1vWnsxW9mNUqt%2BMHsoiKTJBWNU6KOziv7w614ZjfY2u7KeGp%2BRpNkHd0TAbkcB33TlKcMVHyYg4Pt9TESfPZrmyfXTL%2B8fH6O4hMLBbfGCIYhPUA46JixeLYmPKzTmU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362b9b8cd3859-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/img/close.svg
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/img/close.svg
IP
GET /sb/notifications/games/nutaku/multi/qr/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: image/svg+xml
last-modified: Fri, 09 Dec 2022 09:01:27 GMT
etag: W/"6392f967-415"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 703588
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pd11HWne9srNyx34OFnqVhIwkwGT9WB9Y%2B1nyDQkfrRdo5GuM1JYwHm%2B%2F40cgjPl%2BpwbSrK6zv35nD0RRzN6nUNgKkdLNT%2BQO9preL6fTvHx7lt7r8fjtbjqc3IgFoKFoqD%2FvNrZK9Lu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c6fe14419a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Open+Sans:wght@300;400&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@300;400&display=swap
IP
GET /css2?family=Open+Sans:wght@300;400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 25 Feb 2023 21:03:04 GMT
date: Sat, 25 Feb 2023 21:03:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/games/nutaku/multi/qr/1/index.html
200 OK 0 B URL HTTP/2 cdn.yourwebbars.com/sb/notifications/games/nutaku/multi/qr/1/index.html
IP
GET /sb/notifications/games/nutaku/multi/qr/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: text/html
last-modified: Fri, 09 Dec 2022 09:10:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 641084
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RicLmQPsmtY0nraoQFgMYb%2B7vDXbZjQa61XK%2BqWKYJgxirhx8laTdLRjTMDyRGmP4hq6GfD4RP7G4pIb%2B%2BYxZ3okISbUQ9krsGqcmrdw%2FuaARZ%2FcjDnxga%2BMvHpoTf7M548VLGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c54a7bb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/css/animate.css
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/css/animate.css
IP
GET /sb/notifications/games/nutaku/multi/qr/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: text/css
last-modified: Fri, 09 Dec 2022 09:01:20 GMT
etag: W/"6392f960-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 289833
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JihrsCK9%2Bn7Giekpxu6jnsrXnwloXNiXZov2vWHygRtbSUiOi7edbSd51a%2F%2B6yj57Da%2FH%2Bn6tQX8Rsg52O3dYLNKCuDYsLydezFMAKYBmP4ckPwqw9nmHFpGaR%2Bz2iGwXC4JGM0noNUz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c68b1b76f0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/js/jquery.min.js
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/js/jquery.min.js
IP
GET /sb/notifications/games/nutaku/multi/qr/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 09:01:29 GMT
etag: W/"6392f969-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2612717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GHCM1rz5hZEYkA7zaeyCuvKWoEvA2s87tK5XSR0DwSKzRdCrsBdlLyqzLaqmkuym7A3M5wwQUDBmE4zhDK6T29rqjXo19kzfGLNUUsc1z0CRubTsbJeZU2yo%2BjehLj4%2BTHW8KhuU4ycB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c6edfd419a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=d70d8b4572
200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=d70d8b4572
IP
GET /releases/v5.15.4/css/free.min.css?token=d70d8b4572 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 17a77a72dc1e9981253a822e540e37c2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: k0Do4FJoVjZg53jKc-X4c0NAHUSxG4BFl7EKnn4-PseMpsE-oTJZLg==
age: 1246938
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eH0B%2FuJf3oUmwz3Vtdng9Nk4r%2BumQcZYljHsIvVQgSRkLP7T68Dm%2FBuhmpBVJHK720eQpnL7eOFVr7ZiDoECZhsX02bNAhEmUsMTd2o8Mvffi57eXPcPYTnWoUr8nrSSXzR8kUqOfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b58d4023ac-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/css/styles.css
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/css/styles.css
IP
GET /sb/notifications/games/nutaku/multi/qr/1/css/styles.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: text/css
last-modified: Fri, 09 Dec 2022 09:01:19 GMT
etag: W/"6392f95f-2ce7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 289833
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kkdN%2BFeXRm%2BliCMEysN2c84WMUbkBHl%2FqTrezsoHqhahAsLosXB1BjyHeDfRs%2BxjtU%2FscZWcIaLSYytFBcPoFJqZ%2BOroJtE%2FfUAUoac91zl4wVSzhRvfQ57csoe86%2FuHykojBvGu6xBr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c67b1376f0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/js/main.js
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/nutaku/multi/qr/1/js/main.js
IP
GET /sb/notifications/games/nutaku/multi/qr/1/js/main.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:07 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 09:01:29 GMT
etag: W/"6392f969-7c4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 289832
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZH0wZNPuvp52Df8yBwXcWN2PG4S9eDlg3p13nSJSZIa%2FU%2F5S4bOKsrIRVu6NSLgArJQAWZ8mWyMtJgcxaSY1XJOITIApccv9xgZ0hhwQv6xfl%2BNni1DVtUBZPWSog%2BLW4438rFDnyc9k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79f362c7cc8e76f0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
xdiwbc.com/pw/waWQiOjEwNTY0OTksInNpZCI6MTE4ODE3Niwid2lkIjo0MjkwOTIsInNyYyI6Mn0=eyJ.js
200 OK 0 B URL HTTP/2 xdiwbc.com/pw/waWQiOjEwNTY0OTksInNpZCI6MTE4ODE3Niwid2lkIjo0MjkwOTIsInNyYyI6Mn0=eyJ.js
IP
GET /pw/waWQiOjEwNTY0OTksInNpZCI6MTE4ODE3Niwid2lkIjo0MjkwOTIsInNyYyI6Mn0=eyJ.js HTTP/1.1
Host: xdiwbc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://www1.gogoanime.me
e-tag: 746c624237514f07be84a8f962559bb3
cache-control: max-age=14400
cf-cache-status: HIT
age: 4043
last-modified: Sat, 25 Feb 2023 19:55:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M7biD2LT%2FYJI6ytJ05QyhxE8Kg5R3a7krQSCMqWXmNgYftgGM1HPagMY1xEJze5Ajr%2FuRC40tqPoW1cHQalif5s%2BiQF6%2FSf%2FtysyqQV7a2VbNs1uFHUwXaFvAaFu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b3eb30b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=d70d8b4572
200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=d70d8b4572
IP
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=d70d8b4572 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Feb 2023 21:03:04 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9fedc4d43d76bf30a3fb8278d99d39aa.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: VrzelvyQqTTlV8qH3-3qIREGMKa4maJ73PU6SFrk0JgUsUzcZte08Q==
age: 1246938
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ws44q%2BlkSYoX8VDvlWcnyn82H02T%2BwoCVaDZwHZU%2FJq4S5bZBkSo5o9ynci%2B4xpSmAIaftyopFk4kyhWHiOUMabURFsgGFEEF2HJ8kxzcN6KrFY853i5L1iZeiYYtgtWAkbpA2R2sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79f362b5bd9c23ac-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prhzxq.com/wnload?a=1&e=aeyJwaWQiOjEwNTY0OTksInNpZCI6MTE4ODE3Niwid2lkIjo0MjkwOTIsImQiOiJ3d3cxLmdvZ29hbmltZS5tZSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly93d3cyLmtpc3MtYW5pbWUud3Mv&inc=0
200 OK 0 B URL HTTP/2 prhzxq.com/wnload?a=1&e=aeyJwaWQiOjEwNTY0OTksInNpZCI6MTE4ODE3Niwid2lkIjo0MjkwOTIsImQiOiJ3d3cxLmdvZ29hbmltZS5tZSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly93d3cyLmtpc3MtYW5pbWUud3Mv&inc=0
IP
ASN #39572 DataWeb Global Group B.V.
GET /wnload?a=1&e=aeyJwaWQiOjEwNTY0OTksInNpZCI6MTE4ODE3Niwid2lkIjo0MjkwOTIsImQiOiJ3d3cxLmdvZ29hbmltZS5tZSIsImxpIjoxfQ==&tz=0&if=0&u=aHR0cHM6Ly93d3cyLmtpc3MtYW5pbWUud3Mv&inc=0 HTTP/1.1
Host: prhzxq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www2.kiss-anime.ws/
Origin: https://www2.kiss-anime.ws
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 25 Feb 2023 21:03:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
whos.amung.us/widget/kemio0tlnnnp.png
307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/widget/kemio0tlnnnp.png
IP
GET /widget/kemio0tlnnnp.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www2.kiss-anime.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 25 Feb 2023 21:03:06 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/classic/00/43.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79f362bf889d16a5-ARN
X-Firefox-Spdy: h2
172.67.181.117
18.192.190.118
104.18.22.52
142.91.159.193
95.101.11.115
185.162.85.19
188.114.96.1