Report - fasterflings.com/click?key=ab330f43c4119a8f0799&source={path_name}&fb={fb}&subid={%25utm

Report Overview

Visited public
2024-08-19 23:29:41
Tags
URL
fasterflings.com/click?key=ab330f43c4119a8f0799&source={path_name}&fb={fb}&subid={%25utm_term|url|%25}
Finishing URL
www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
IP / ASN
138.68.63.76
#14061 DIGITALOCEAN-ASN
Title
IMPORTANT!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
fasterflings.com	unknown	556 B	509 B	138.68.63.76
cdn-static3.com	unknown	409 B	66 kB	172.67.180.212
r11.o.lencr.org	unknown	1.3 kB	3.5 kB	23.36.76.226
flingforyou.com	unknown	533 B	623 B	164.92.239.223
ocsp.r2m03.amazontrust.com	unknown	338 B	863 B	143.204.53.97
www.canimeether.com	unknown	6.1 kB	187 kB	3.164.240.27
o.pki.goog	unknown	650 B	1.4 kB	142.250.74.131
www.googletagmanager.com	75	424 B	70 kB	142.250.74.168
app.api-push.com	307671	504 B	2.1 kB	188.114.96.1
tsyndicate.com	13042	473 B	585 B	148.251.152.17
r10.o.lencr.org	unknown	981 B	2.7 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-19	medium	flingforyou.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	www.canimeether.com/121651723806153453/t10.js	ScriptElement	46 kB	2024-08-17	2024-10-04
Pretty URL www.canimeether.com/121651723806153453/t10.js IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-17 02:38 Last Seen2024-10-04 10:22 Times Seen11 Hash 31130d502b1a9b7c742f8f65f55076bd 05185ae4ff7c5d33886dcd7af2b8e2dbc5a6bb79 25e8a6b93dfca6c41ceec0b127cba1ab580ca89301e7ea71f77eb8f9a3f7719e Loading...

	www.canimeether.com/121651723806153453/custom.js	ScriptElement	2.9 kB	2024-08-17	2024-08-31
Pretty URL www.canimeether.com/121651723806153453/custom.js IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-17 02:38 Last Seen2024-08-31 08:32 Times Seen9 Hash fbc78a821a1ccad6656468974c17f8fd 34d6922d7a75b4bd5a80a604eb8055ce61ebe928 aaea8c7cd2ef26d0e5ed2eb87568666ebcd22b1d7a15096f5da5531bb426a7a3 Loading...

	www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b	ScriptElement	9 B	2023-05-08	2025-03-15
Pretty URL www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-08 13:26 Last Seen2025-03-15 12:24 Times Seen329 Hash be6785e59c77a61aab69e5b739bed670 6decef9a08c4f0485df0b1ab9632a1a59381758f 41061c462a27d78278f8565bbc8dde884bb0e9423a902b8f20a0e1a4ab074cac Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82	ScriptElement	191 kB	2024-08-21	2024-08-21
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 10:19 Last Seen2024-08-21 10:19 Times Seen1 Hash 508a4b7a5617a1bfdc4f29bb8fdb1ad8 231ffdaf7c0c088eeae271206a5eefa34c42dcb5 1b3b1204a6f68c464721998ceecb5ccc7c9bb7e266115652676369cc2199f9ac Loading...

	www.canimeether.com/121651723806153453/script.min.js	ScriptElement	519 B	2023-05-08	2024-10-06
Pretty URL www.canimeether.com/121651723806153453/script.min.js IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-08 13:26 Last Seen2024-10-06 09:50 Times Seen272 Hash 9c95fde5cdc1cd266c53bd652ee19424 66082c408dfce07d764251e39f31af70da9f233f 824c9b9df4af8a671f4f5d66d8c4e5e811166adaf16d7070bbdfc276165bb436 Loading...

	www.canimeether.com/121651723806153453/jquery.min.js	ScriptElement	97 kB	2023-03-07	2025-05-29
Pretty URL www.canimeether.com/121651723806153453/jquery.min.js IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-29 06:26 Times Seen30229 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b	ScriptElement	41 B	2024-08-17	2024-10-04
Pretty URL www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-17 02:38 Last Seen2024-10-04 10:22 Times Seen11 Hash a220a54c64f40b09b565cc7ac8dccbb9 47a61846b455dd6424710ac4b1769ee89ed1aa80 dabbf2f3834d693b3959506ba48e5bd9ff03df722c94dc3f31affc43ecc68e08 Loading...

	www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b	ScriptElement	45 B	2024-07-10	2024-10-06
Pretty URL www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-10 08:56 Last Seen2024-10-06 09:50 Times Seen51 Hash cd0ce06648d1171bb1f95e855a47587c ae027113e7a72d1388430411c061d79f454f105b ac0a4e3399ead1c2957f82eba4073371c6ae6329a5f0877262cd24651482a15c Loading...

	www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b	ScriptElement	470 B	2023-11-08	2024-10-04
Pretty URL www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b IP 3.164.240.27 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 13:59 Last Seen2024-10-04 10:22 Times Seen13 Hash 3b1cd93afb13f0a06c41e4cb57576988 2502912c6d93f94c0c2305c4824a238c3697c77d 95c9823209fe0c111a0292d60a11cf55265c201b7bd987a526863000d766c93b Loading...

	cdn-static3.com/cdn/push.min.js	ScriptElement	36 kB	2023-03-07	2025-05-20
Pretty URL cdn-static3.com/cdn/push.min.js IP 172.67.180.212 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-20 07:56 Times Seen198 Hash 44c9e373bc246e347c8420a2eb8f54d4 5eb6010833c0c873766407c7a51ea5eafe69dbdf 2dac93602a4e47e156b8b54455dfdcd7a7a4901ab33f2a0c2c416a395e1ebda5 Loading...

	unknown	ScriptElement	954 B	2024-06-19	2025-03-15
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-19 19:13 Last Seen2025-03-15 12:24 Times Seen76 Hash 935d5d30e919db06e2c41f426717b491 56b735f59dc4009398d5add7e34eac8a18f7e494 a80a8adfa4b713cb4452aa5f975789e4b3e6ce6031fa980a2892522615592595 Loading...

HTTP Transactions (27)

URL IP Response Size

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
50a89b39234eb6cc4eda70d7e27be17f
306340eb26b6817fd8851a085563a88eed7e2b6b
eaabd011ed0722deeee97e566b8318b17d8e993d31db4c2cc31cf0e3cd8191f5

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "EAABD011ED0722DEEEE97E566B8318B17D8E993D31DB4C2CC31CF0E3CD8191F5"
Last-Modified: Mon, 19 Aug 2024 12:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6176
Expires: Tue, 20 Aug 2024 01:12:10 GMT
Date: Mon, 19 Aug 2024 23:29:14 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18cce98073c1bf25df62a3ca026dedbf
26ea37fc15ead14ac2047d074f6c4153d57775d0
c5fdde15e0dc09e045c2df21c77d2c87e6c7d4abe86048426f468fcd696054e0

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C5FDDE15E0DC09E045C2DF21C77D2C87E6C7D4ABE86048426F468FCD696054E0"
Last-Modified: Sun, 18 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9344
Expires: Tue, 20 Aug 2024 02:04:58 GMT
Date: Mon, 19 Aug 2024 23:29:14 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
69a9603269726ce602d708bf57058c4c
8689e9ea81ea9636e7b08c3ed42650553a0c4e3b
1a2339d740b715f3df1900d80114c8376ead57205961a6f896edf37b3ee3a897

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A2339D740B715F3DF1900D80114C8376EAD57205961A6F896EDF37B3EE3A897"
Last-Modified: Sat, 17 Aug 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4180
Expires: Tue, 20 Aug 2024 00:38:54 GMT
Date: Mon, 19 Aug 2024 23:29:14 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18f75729f3e25e2eb7f12b70dfce3849
479177b92dda7c4e8763c80a15cbc71c3386d06c
0b7da2da1fcba23c5118479e14828f87a605a32af15d0962f216115a9ff1d02a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0B7DA2DA1FCBA23C5118479E14828F87A605A32AF15D0962F216115A9FF1D02A"
Last-Modified: Sun, 18 Aug 2024 15:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2242
Expires: Tue, 20 Aug 2024 00:06:36 GMT
Date: Mon, 19 Aug 2024 23:29:14 GMT
Connection: keep-alive

fasterflings.com/click?key=ab330f43c4119a8f0799&source={path_name}&fb={fb}&subid={%25utm_term|url|%25}

138.68.63.76

307 Temporary Redirect

0 B

URL User Request GET HTTP/2
fasterflings.com/click?key=ab330f43c4119a8f0799&source={path_name}&fb={fb}&subid={%25utm_term|url|%25}
IP
138.68.63.76:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectfasterflings.com
Fingerprint03:65:B5:FE:A1:CE:6C:E5:6E:DF:5C:C1:AD:33:FA:E3:64:50:16:3A
ValiditySun, 04 Aug 2024 14:01:41 GMT - Sat, 02 Nov 2024 14:01:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?key=ab330f43c4119a8f0799&source={path_name}&fb={fb}&subid={%25utm_term|url|%25} HTTP/1.1
Host: fasterflings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 307 Temporary Redirect
date: Mon, 19 Aug 2024 23:29:15 GMT
location: https://flingforyou.com/click.php?key=pg9qqk858z5ttgbr02nc&source=ff_c3&fb={fb}&subid=3
server: Caddy
set-cookie: uclick=neiJxVwKb9k10eGhOmCY57qpSnvGvNcW/mXp9E+CSHeRDlVLbImjskJxNF8gO7MH5Kre; Max-Age=31536000; SameSite=Lax
bcid=cr1taitahauc73c8h0cg; Max-Age=31536000; SameSite=Lax
cid=cr1taitahauc73c8h0cg; Max-Age=31536000; SameSite=Lax
x-request-id: e7881a84-f75a-4b5b-a33e-7d7f6635d376
content-length: 0
X-Firefox-Spdy: h2

flingforyou.com/click.php?key=pg9qqk858z5ttgbr02nc&source=ff_c3&fb={fb}&subid=3

164.92.239.223

302 Found

0 B

URL User Request GET HTTP/1.1
flingforyou.com/click.php?key=pg9qqk858z5ttgbr02nc&source=ff_c3&fb={fb}&subid=3
IP
164.92.239.223:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectflingforyou.com
Fingerprint71:4B:F5:FD:39:49:76:E7:2A:A0:6A:6A:CA:2F:12:B7:87:BF:0B:05
ValidityWed, 17 Jul 2024 02:05:52 GMT - Tue, 15 Oct 2024 02:05:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /click.php?key=pg9qqk858z5ttgbr02nc&source=ff_c3&fb={fb}&subid=3 HTTP/1.1
Host: flingforyou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Mon, 19 Aug 2024 23:29:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=qna6bzu3; expires=Tue, 20-Aug-2024 23:29:15 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b; expires=Tue, 20-Aug-2024 23:29:15 GMT; Max-Age=86400; path=/; secure; SameSite=none
Location: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Strict-Transport-Security: max-age=31536000

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
aa20503e7a22eed1d02014df2efbdea0
6628d0828ec4729c0224dbc6de2a408bdae2137f
e7e9f0358f9c85b927cb020424ef59a7ab957cecad13137c0d74133bff7ef7d8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Mon, 19 Aug 2024 23:29:15 GMT
Server: ECAcc (amb/6B67)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4H5bt8DP8P2T2tnvmheCDrJ3gZFpT6xuqoPjZXaQUI3f3nOhut0wsg==

www.canimeether.com/121651723806153453/script.min.js

3.164.240.27

200 OK

519 B

URL GET HTTP/2
www.canimeether.com/121651723806153453/script.min.js
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
ASCII text
Size
519 B (519 bytes)
Hash
9c95fde5cdc1cd266c53bd652ee19424
66082c408dfce07d764251e39f31af70da9f233f
824c9b9df4af8a671f4f5d66d8c4e5e811166adaf16d7070bbdfc276165bb436

HTTP Headers

GET /121651723806153453/script.min.js HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 519
date: Fri, 16 Aug 2024 11:06:19 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: "9c95fde5cdc1cd266c53bd652ee19424"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 3NLo4wntwRZsoNw8anX46Yo_jptsN6Qb7yFXmV7enLjelhTb8nTUXQ==
age: 303778
X-Firefox-Spdy: h2

cdn-static3.com/cdn/push.min.js

172.67.180.212

200 OK

65 kB

URL GET HTTP/2
cdn-static3.com/cdn/push.min.js
IP
172.67.180.212:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerGoogle Trust Services
Subjectcdn-static3.com
Fingerprint9C:1A:81:05:BD:C8:41:E4:B1:F1:FA:CB:C7:96:A5:5D:4A:49:02:1B
ValiditySat, 06 Jul 2024 14:28:08 GMT - Fri, 04 Oct 2024 14:28:07 GMT

File type
JavaScript source, ASCII text, with very long lines (36273)
Size
65 kB (65411 bytes)
Hash
44c9e373bc246e347c8420a2eb8f54d4
5eb6010833c0c873766407c7a51ea5eafe69dbdf
2dac93602a4e47e156b8b54455dfdcd7a7a4901ab33f2a0c2c416a395e1ebda5

HTTP Headers

GET /cdn/push.min.js HTTP/1.1
Host: cdn-static3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 Aug 2024 23:29:16 GMT
content-type: application/x-javascript
content-security-policy: block-all-mixed-content
etag: W/"44c9e373bc246e347c8420a2eb8f54d4"
last-modified: Mon, 06 Jun 2022 20:30:35 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 17DF447EC59FB378
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 2477
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e9Vy8UW3mTMno5%2F5FZtwscD%2FDfwp40zQNB%2BuoIxYbDK%2BpXfdigslV9IMvcFfEaQoq61jucQO6odAENUnlT1xdd8KXugGulinUcsh0Ve8Rl7gfzQT7DRbG5%2FFdDpEx5HPWq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b5decbcef6fb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/87-1723806232516.jpg

3.164.240.27

200 OK

19 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/87-1723806232516.jpg
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 450x900, components 3
Size
19 kB (18609 bytes)
Hash
6b8c6526a9a40d51b451d9343a24acfd
ddd893d8c4916f04ebbcf519426bb77a12c8d086
678053d3609ed2c8578e375e2eb0dd511cddf15510a1f56ac7aeb727855ffa13

HTTP Headers

GET /121651723806153453/87-1723806232516.jpg HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 18609
date: Fri, 16 Aug 2024 11:06:20 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: "6b8c6526a9a40d51b451d9343a24acfd"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 2ElBeUQzcsMAmtAbFVOOyZqQL_R13xcn-Qgx2h9c5DJFT0tM-5ne9g==
age: 303777
X-Firefox-Spdy: h2

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5829
Expires: Tue, 20 Aug 2024 01:06:25 GMT
Date: Mon, 19 Aug 2024 23:29:16 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5829
Expires: Tue, 20 Aug 2024 01:06:25 GMT
Date: Mon, 19 Aug 2024 23:29:16 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5829
Expires: Tue, 20 Aug 2024 01:06:25 GMT
Date: Mon, 19 Aug 2024 23:29:16 GMT
Connection: keep-alive

www.canimeether.com/121651723806153453/jquery.min.js

3.164.240.27

200 OK

38 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/jquery.min.js
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32077)
Size
38 kB (37563 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

HTTP Headers

GET /121651723806153453/jquery.min.js HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 16 Aug 2024 11:06:19 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: W/"4f252523d4af0b478c810c2547a63e19"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 6xcBun72am7LnUOUAL1ezui2FbyE8tDcOdpk1lGSJxJe_54DddGgbg==
age: 303778
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c3c00177cf36cb860e663ffacfaf2972
090b47ed03e558a1cc3a23e2ae8e768fd5bd0b77
3e56f4e0084cdb18fc7c8986e9fb4dae80a7e6432816cf9eaa771e1e04fc16c3

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Aug 2024 23:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.canimeether.com/121651723806153453/custom.js

3.164.240.27

200 OK

1.0 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/custom.js
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.0 kB (1000 bytes)
Hash
fbc78a821a1ccad6656468974c17f8fd
34d6922d7a75b4bd5a80a604eb8055ce61ebe928
aaea8c7cd2ef26d0e5ed2eb87568666ebcd22b1d7a15096f5da5531bb426a7a3

HTTP Headers

GET /121651723806153453/custom.js HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 16 Aug 2024 11:06:19 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: W/"fbc78a821a1ccad6656468974c17f8fd"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: VQuMXpW1usuZsQuZTHdrTIciVzbr4Dt1WdSnJdgRcOTgtm1hjfR-5g==
age: 303778
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/%7B%7Blogo%7D%7D

3.164.240.27

404 Not Found

362 B

URL GET HTTP/2
www.canimeether.com/121651723806153453/%7B%7Blogo%7D%7D
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
362 B (362 bytes)
Hash
df2ca4fe8214c2aa6b44ec915cf5b818
651662714cf309a33ca099b93030223b427c089b
d1d2c98896e5cc4e7645b586615dd27b4dd252cd596a978cf3f28202c981940b

HTTP Headers

GET /121651723806153453/%7B%7Blogo%7D%7D HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
content-length: 362
date: Mon, 19 Aug 2024 23:29:15 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 29YIlvvs3Iz7jexnX7yPyHV7G91fzFeHB5aYQhK3YNNEsLHhActwaA==
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint27:BF:6E:8E:D6:51:1C:C5:B2:CF:E2:E9:0F:87:D0:F3:33:23:E7:37
ValidityTue, 30 Jul 2024 12:32:47 GMT - Tue, 22 Oct 2024 12:32:46 GMT

File type
JavaScript source, ASCII text, with very long lines (2345)
Size
69 kB (68951 bytes)
Hash
508a4b7a5617a1bfdc4f29bb8fdb1ad8
231ffdaf7c0c088eeae271206a5eefa34c42dcb5
1b3b1204a6f68c464721998ceecb5ccc7c9bb7e266115652676369cc2199f9ac

HTTP Headers

GET /gtm.js?id=GTM-PKBDJ82 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 Aug 2024 23:29:16 GMT
expires: Mon, 19 Aug 2024 23:29:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 Aug 2024 22:50:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68951
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/favicon.png

3.164.240.27

200 OK

1.8 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/favicon.png
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
PNG image data, 57 x 57, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1831 bytes)
Hash
0d658e55a18c46569f820dcb53fb0228
8d6f6d24829a0599c1309beedb3814b8fce7b8e4
0a225727f83c4d29abd12f49aa2161b6b7560dd23f3864cab690471fee17ac9a

HTTP Headers

GET /121651723806153453/favicon.png HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1831
date: Fri, 16 Aug 2024 11:27:56 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: "0d658e55a18c46569f820dcb53fb0228"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 2JFgnD6ihL25fSOXtwefKAn1lNINPwN0LQm5DH6UR3MWZ5HlVnXuPQ==
age: 302481
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c3c00177cf36cb860e663ffacfaf2972
090b47ed03e558a1cc3a23e2ae8e768fd5bd0b77
3e56f4e0084cdb18fc7c8986e9fb4dae80a7e6432816cf9eaa771e1e04fc16c3

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Aug 2024 23:29:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

app.api-push.com/get-keys

188.114.96.1

200 OK

1.2 kB

URL POST HTTP/2
app.api-push.com/get-keys
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerGoogle Trust Services
Subjectapi-push.com
FingerprintFE:F4:92:6A:3A:29:09:08:0B:66:BF:14:00:E0:1D:A1:C3:A8:3E:08
ValidityThu, 08 Aug 2024 02:46:21 GMT - Wed, 06 Nov 2024 02:46:20 GMT

File type
JSON text data
Size
1.2 kB (1235 bytes)
Hash
60b239d9867b1e0b3fe6e2b606264212
da402982ecab9bf57d7101270271f8a30fb6300e
af611559266a5487237da7ca83b4e8d0c405f3495f0a23f38cd608df0362d4ee

HTTP Headers

POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 242
Origin: https://www.canimeether.com
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 19 Aug 2024 23:29:16 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1nfm9rn16acQ6AY0IQMhvfHhMbkjDvPUzzIHE%2BsMrgIN5plup5HCuGQTwCqB8cmOBA9RgmQSYieI0gaNKINQiY1itvLNaI%2BqA0MGh8zUik%2FL1vMDi%2FzP7No%2ByPmG1Hmr1CmI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b5decbe2f175685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

tsyndicate.com/api/v1/retargeting/set/31274e87-1118-4d7c-bc72-9007731936c3

148.251.152.17

200 OK

43 B

URL GET HTTP/2
tsyndicate.com/api/v1/retargeting/set/31274e87-1118-4d7c-bc72-9007731936c3
IP
148.251.152.17:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerLet's Encrypt
Subjecttsyndicate.com
Fingerprint4D:12:60:AA:74:8F:2E:44:38:74:D2:5E:33:2E:CB:10:F3:F5:0A:39
ValidityMon, 12 Aug 2024 09:07:54 GMT - Sun, 10 Nov 2024 09:07:53 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ba036c43037cfe89320d1ef7b64cd43f
88c72d3e26047eb1e45e5564a76427734f120efe
42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb

HTTP Headers

GET /api/v1/retargeting/set/31274e87-1118-4d7c-bc72-9007731936c3 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 19 Aug 2024 23:29:16 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
set-cookie: ts_rt_31274e87-1118-4d7c-bc72-9007731936c3=AAMC; expires=Tue, 19 Aug 2025 23:29:16 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/favicon.png

3.164.240.27

200 OK

1.8 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/favicon.png
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
PNG image data, 57 x 57, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1831 bytes)
Hash
0d658e55a18c46569f820dcb53fb0228
8d6f6d24829a0599c1309beedb3814b8fce7b8e4
0a225727f83c4d29abd12f49aa2161b6b7560dd23f3864cab690471fee17ac9a

HTTP Headers

GET /121651723806153453/favicon.png HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1831
date: Fri, 16 Aug 2024 11:27:56 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: "0d658e55a18c46569f820dcb53fb0228"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: NQZl-sLwe4GGc8qKxsatzQNdWgF0xbgJ2-SKcpzCGgLoMaFzf3MOtw==
age: 302481
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/t10.js

3.164.240.27

200 OK

46 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/t10.js
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type

Size
46 kB (46522 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /121651723806153453/t10.js HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Fri, 16 Aug 2024 11:06:19 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: W/"66c05761d4fa40478861eddb09fece54"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: Kql3AAQXAe0reJ3lkLTxaf33xWF--zhRvxssS_BP2Ppu8-kcSDvSpQ==
age: 303778
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/bg1.jpg

3.164.240.27

200 OK

54 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/bg1.jpg
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3
Size
54 kB (54387 bytes)
Hash
0326aa67743cad3e671513dabaf87b6f
21cacde973d6cf44b8ebebd84637d7332f8fc474
3aca5abb6f9410195aa8a1493a97aa037d46f775d3163bd9fde8adda2a4e30c0

HTTP Headers

GET /121651723806153453/bg1.jpg HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpg
content-length: 54387
date: Fri, 16 Aug 2024 11:06:20 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: "0326aa67743cad3e671513dabaf87b6f"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: J4Tl5O2qcb-IXrbO4Ggifb5RwgXBWmbEP-cSgmJ6URUdhoee6ADAAA==
age: 303777
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/style.css

3.164.240.27

200 OK

6.1 kB

URL GET HTTP/2
www.canimeether.com/121651723806153453/style.css
IP
3.164.240.27:443
ASN
#0

Requested by
https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
ASCII text, with very long lines (6433), with no line terminators
Size
6.1 kB (6094 bytes)
Hash
c649844d3651686c1099612f6d23d40b
1b68bdae1244ef369a2f9362479e7d85474822b7
5772bfe5169188d9ac34dce83ece559bbcca81fd949fcd2e42326f1626e5dacf

HTTP Headers

GET /121651723806153453/style.css HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Fri, 16 Aug 2024 11:06:19 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: W/"3637be451cc8b5f1800e21dee94aab3a"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: FEBv9I5Av3ia-vx3uDAHKPvxreM4URvu_cBnI_RhQkjppbTPkEQLDA==
age: 303778
X-Firefox-Spdy: h2

www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b

3.164.240.27

200 OK

14 kB

URL User Request GET HTTP/2
www.canimeether.com/121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b
IP
3.164.240.27:443
ASN
#0

Certificate
IssuerAmazon
Subjectcanimeether.com
Fingerprint62:1C:59:EE:CE:86:43:C5:C5:FA:B7:4F:28:B8:87:1C:70:69:F3:C6
ValidityTue, 28 May 2024 00:00:00 GMT - Thu, 26 Jun 2025 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
14 kB (13505 bytes)
Hash
c1c6b41bcdd5230818c2d616e974fbf1
f5759ebef14bdc5e54c02620c74f2a55c2f24840
4968963515d447897f082bb440732e3c46a58438c9312969ffea3b435427ccc1

HTTP Headers

GET /121651723806153453/?subid=10&lander=1361&uclick=qna6bzu3&uclickhash=qna6bzu3-qna6bzu3-2t-0-bz-ydd5-gx3vwj-afc93b HTTP/1.1
Host: www.canimeether.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
date: Fri, 16 Aug 2024 11:06:19 GMT
last-modified: Fri, 16 Aug 2024 11:03:53 GMT
etag: W/"c1c6b41bcdd5230818c2d616e974fbf1"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b5ef788d0f05b31973ca8ae989fe9748.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: CIGHLlXv2pC01hCTmWLrq3v1zAob8YzR4P9n_vJC56SgVmC4sxd9CA==
age: 303777
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by