animeflv.mom/wp-content/themes/animeflv_mom/assets/img/logo-big.webp
104.21.49.54200 OK 4.8 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/img/logo-big.webp
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 59eed5605589a08f2d5a42bdf6249b48
50e7aa35c8389b8a7b5b0a02c51870edf2b13f1b
7c03d87a9e3508135669675d66254d861dcf54d856b03075ffb71d7e3548b7e0
GET /wp-content/themes/animeflv_mom/assets/img/logo-big.webp HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:10 GMT
content-type: image/webp
content-length: 4750
cache-control: public, max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "128e-6441f4a8-85f2;;;"
last-modified: Fri, 21 Apr 2023 02:27:52 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i5QI0kAPWdhs8Z4KTJuXXR6g8G8Qzvsw7Gz%2B59gecAiqNg0CbAtBYNfGmBvhXU5LUZGY6P4X%2Fqefnb0UIRiIFyMuR5LheNJMxJbEP25nrnkR6AWkfor193grYhTtUto%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe59dc47b50f-OSL
animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2
104.21.49.54200 OK 77 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:10 GMT
content-type: font/woff2
content-length: 77160
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "12d68-6242daa9-5018fd;;;"
last-modified: Tue, 29 Mar 2022 10:08:41 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WNKBguRBn2whjqscnh607HO61XkqGokvJBVL6xXigdXbYdr%2Fzrr9hN%2BLGeHYZCAnTLu6Ft40Xk6Ein8bAdzeD7U%2FMQStGh1gux%2FWSug2VAAKMDbdNRzjaKge%2Bk5sXhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe59dc41b50f-OSL
animeflv.mom/wp-content/litespeed/css/95f2c200218f5cd156c13dfa385dabe5.css?ver=66c28
104.21.49.54 15 kB URL animeflv.mom/wp-content/litespeed/css/95f2c200218f5cd156c13dfa385dabe5.css?ver=66c28
IP 104.21.49.54:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (48155)
Hash 95f2c200218f5cd156c13dfa385dabe5
c8c74b95b86cb02c7ac9fb2075e2122dca036681
54670d1c42e27255f9eb1070dacb6552e064568a2758fb30cd1b315d207cf355
GET /wp-content/litespeed/css/95f2c200218f5cd156c13dfa385dabe5.css?ver=66c28 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:10 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: W/"15a0b-6465a575-6595b0;gz"
last-modified: Thu, 18 May 2023 04:11:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q7FNhPo%2FrmOutAR32US7Ls4wVoe4wvMDzVYsUnsqHWiTbGvN8agXT2RFyFSg%2FZlEHEPFCRMqvwLh%2Fp%2B8Woo8vxrxhM%2FQMQix96GVFpDPcz6E5QBf5pgdAKWZAqzKxSE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe59cc38b50f-OSL
content-encoding: br
animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Bold.woff2
104.21.49.54200 OK 58 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Bold.woff2
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 58192, version 1.0\012- data
Hash 5b96b5a577421710294448af428a2963
ff56af250c9972a605ac38ff0cdb6932fe1e227b
640b22c0c8b70ab87e6c9b9abd26d5e40040647aa7c6a5a90b1db3659fbd6219
GET /wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Bold.woff2 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/95f2c200218f5cd156c13dfa385dabe5.css?ver=66c28
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:10 GMT
content-type: font/woff2
content-length: 58192
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "e350-63ed94a6-8600;;;"
last-modified: Thu, 16 Feb 2023 02:27:50 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=njApByzBQ52DwYrb1XCgVNy%2FwZjxeioReM4PcDH9YWXNtfPzw1CWx4BCeb8VtEjyYZFoTul5WqDy3jV3Y70CyB1RvCNLSq1htUoXaIAz0o8TF9jrHz7DwHJ5bSLcuB8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe5bdddbb50f-OSL
animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2
104.21.49.54200 OK 77 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
DNT: 1
Connection: keep-alive
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: font/woff2
content-length: 77160
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "12d68-6242daa9-5018fd;;;"
last-modified: Tue, 29 Mar 2022 10:08:41 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FkrL76wbJhJJaaEhkeucVhZ9NCwgGRcnZKrJ61lGLd8VOkMPhLN5hV2UmQFjIk2H6oPZeKFcfQf4GiRO14DDm7RTO5JMmL%2BVk%2F5dXO7FdXGWVoBlmtFouEwy4CNvw%2B0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe602e47b524-OSL
animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Regular.woff
172.67.159.11 80 kB URL animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Regular.woff
IP 172.67.159.11:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 80224, version 0.0\012- data
Hash 12ca39d23bfcf7db71d6de8e53339e63
6aefcf92d5e4a44a2e7fdeca18dd3863c719710d
d80cc833458d2d3a6f95d761fa9a602e4f8068512375571471e12ff8627b3d8d
GET /wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Regular.woff HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/95f2c200218f5cd156c13dfa385dabe5.css?ver=66c28
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: application/font-woff
content-length: 80224
etag: "13960-63ed94a6-860b;;;"
last-modified: Thu, 16 Feb 2023 02:27:50 GMT
alt-svc: h3=":443"; ma=86400
expires: Sat, 17 Jun 2023 11:57:10 GMT
cache-control: max-age=43200
x-cache: BYPASS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M8yWqV%2FCt%2Bkb%2Fx3FWKsHcAz%2BX%2BKTtsmfNnxV66fSGQQIUDJfIhaI9rK1JxDfn0m077eGltPaftgp20h8Ag3VVJWEZWx7eQRN6ZteaVcZyEMjSTh5ZrbanAhQexy1TEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe5dffd7b50f-OSL
X-Firefox-Spdy: h2
esanimes.com/assets/player/icon.png
172.67.153.134200 OK 20 kB URL GET HTTP/2 esanimes.com/assets/player/icon.png
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type PNG image data, 29 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash f7073693ae0abee71dcbe6b4683d15a0
1f6ee14fc2bfe7184568aac31ef9d247b6ffbdde
43e1a200a6912f591d8e5a05adbe01193487924bda0efaa94d8cf29ecb302609
GET /assets/player/icon.png HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://esanimes.com/assets/player/style.css?v=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: image/png
content-length: 19864
last-modified: Tue, 21 Dec 2021 16:11:14 GMT
etag: "61c1fca2-4d98"
expires: Sat, 17 Jun 2023 11:57:11 GMT
cache-control: max-age=86400
x-cache: BYPASS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gz4CQ4WlFcvq3ah391%2FEbWP%2BbpjMU1JeDNCORfEXD7g2ZQgGfBzpKKZNRMJkjqNljMGctzvuD8vGwc%2F307sweOkEwjWHLvkMHk%2Bj8lIwmSCOTnplIl0RaH9K7547rYM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe5f79a2b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
172.67.159.11 98 kB URL animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
IP 172.67.159.11:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/95f2c200218f5cd156c13dfa385dabe5.css?ver=66c28
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: application/font-woff
content-length: 98024
etag: "17ee8-6242daa9-5018fc;;;"
last-modified: Tue, 29 Mar 2022 10:08:41 GMT
alt-svc: h3=":443"; ma=86400
expires: Sat, 17 Jun 2023 11:57:10 GMT
cache-control: max-age=43200
x-cache: BYPASS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BohlkgA2R3eSESsLLiOeUx1s0BaIMJMYrkgej2fjKYnvyzqWF0n8lS7I8GHpD9MiWTMerJOHwiN6LeH50wZciKeE0J7H52VmbZi5IuIKHXZo5crCt%2F7Se31BFOCVSuw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe5dffd8b50f-OSL
X-Firefox-Spdy: h2
esanimes.com/assets/player/core.js
172.67.153.134200 OK 51 kB URL GET HTTP/2 esanimes.com/assets/player/core.js
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3258339e04c5b37fcd2faa9f4c3e1628
7449df171d88b9b86ac43893c37f749274fba1da
ff5eedec8292ff363b5010c1eeaac9af90ae4119cfd059c7ff1c57c4fd466cb5
GET /assets/player/core.js HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:10 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 21 Dec 2021 16:06:10 GMT
etag: W/"61c1fb72-218c2"
expires: Sat, 17 Jun 2023 11:57:10 GMT
cache-control: max-age=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TeQ1W13yRZWgcnLyO57VpAXvKNm1A4Ee1swHVk0g2h9cgPMbqcF%2FDRvxeb12HQFiuii24fS9e7RVrdqY8mgufLK6MR9txvqPG0jBc4TT2ceRSHfFURxe97sFiWwi%2BPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe5c1cbeb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
animeflv.mom/wp-content/themes/animeflv_mom/assets/img/bg.jpg
104.21.49.54200 OK 1.5 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/img/bg.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 198x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae01fe2a884f4166489afc1dfcf64526
89fb4d1172dbe0ced460d955e3b3701084daced9
ee0a7ef36c487a92cd2bb0c290d3e9553cd00de3c65397581c9e9cc0dea6ba15
GET /wp-content/themes/animeflv_mom/assets/img/bg.jpg HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/3cc4c21456282d7eb75fabed775cd922.css?ver=cd922
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: image/jpeg
content-length: 1452
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "5ac-6242daa9-501922;;;"
last-modified: Tue, 29 Mar 2022 10:08:41 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zb2OcXn4OPqJe3bxf8sVeNrgc7J2bwZAPss%2FmdRs%2BAAYLTdxwVkfJMc7tY4JnrLXLQzlz%2Bulp6Ev1VFDkUePc6s%2BEE00eRVnSfqZpPQ8sz%2BDLacztD1iNf25mPZ%2BqgY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe61ef77b524-OSL
animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Regular.woff2
104.21.49.54200 OK 60 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Regular.woff2
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 60080, version 1.0\012- data
Hash ca222ffe5288763a81d7db107ac353c6
24f345b12446384dca16854ad379e9001ab33009
38df043aef07a5b6e8290e78a01a74aac8306e5fc10a2a61fba6c30ca1da68df
GET /wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Regular.woff2 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/f9f37143743648a14eead97b433a68fc.css?ver=a68fc
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: font/woff2
content-length: 60080
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "eab0-63ed94a6-85fc;;;"
last-modified: Thu, 16 Feb 2023 02:27:50 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uuvyyxiurqjt2QNH67%2Bv%2Be0rOAK4W9dWuXfWxPX2OdjKejtR%2FeJnmiv2JkdABB%2FRsxeMpnjt2b4RPG%2FwCOUJN2yIDtvM61TXxVGmhxng6PyyXjlGafWLUMam1InpYmA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe61ff81b524-OSL
animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Bold.woff2
104.21.49.54200 OK 58 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Bold.woff2
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 58192, version 1.0\012- data
Hash 5b96b5a577421710294448af428a2963
ff56af250c9972a605ac38ff0cdb6932fe1e227b
640b22c0c8b70ab87e6c9b9abd26d5e40040647aa7c6a5a90b1db3659fbd6219
GET /wp-content/themes/animeflv_mom/assets/fonts/Open_Sans/OpenSans-Bold.woff2 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/f9f37143743648a14eead97b433a68fc.css?ver=a68fc
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: font/woff2
content-length: 58192
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "e350-63ed94a6-8600;;;"
last-modified: Thu, 16 Feb 2023 02:27:50 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z5sZ7NWfvlJow7otlS%2B0oLE4FG0XHonqifIQZ8BuaAG6sQaa4Ffm2fKDcducQxhzHePf3nH%2BKINSHwUtEPXe8M%2FVRIMBuaxpWodbn7w1NKSemMeMY%2BlvGD0kIPyeXkw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe61ff85b524-OSL
animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
172.67.159.11200 OK 102 kB URL User Request GET HTTP/2 animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
IP 172.67.159.11:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3413)
Size 102 kB (102464 bytes)
Hash 26c32c6733e01db417978c3f7a6c9c3e
64eb55febe8ad4e2df4831b9595829597dffa430
0e2bb6ced7c4e96d9d7ed8021072ca3b92870fe0a549e0a0de82be9415a72095
GET /movie/black-clover-tv-vasbpva9/?ep=40 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.25
link: <https://animeflv.mom/?p=41255>; rel=shortlink
vary: Accept-Encoding
x-litespeed-cache: hit
alt-svc: h3=":443"; ma=86400
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bkt3gDzzmjAJX0SwxIBH%2FUWGkRWFB5CjGkbgaxF%2BfLaIzF8vbfg8gpvq82kcNtlnIl1e2okGx3idhNawpjf4urhltibKLITxcwAamtBwCNK9Ewo7zOo80KfAWDZXZ5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe5dffd5b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26990), with no line terminators
Hash 3ee370622e8c7c49c38d2841d890f06b
c0a215f0fafbcadcf3ae55f9ac2b70e23026f0d1
bc94fe0e0048f79803087efff90eb4359b579890f5f9719742ec2cb6933f5ce7
GET /52745c63a7e914c27169172df62c4006/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 75cde365e5ce11f458de2451ac60fc4c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
omelettegeometryguts.com/a4f768c88c80aabccee628326bcbefc6/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/a4f768c88c80aabccee628326bcbefc6/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26943), with no line terminators
Hash c89061f1d9fc3fc6520a3738b4882be2
fe4bac5bfc9b795ba0233bc7e350981cf456f019
f48e51256f2fd935190573548d317a59c6fb30cc88bcaa300cde45977027b253
GET /a4f768c88c80aabccee628326bcbefc6/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6b84ae6c17167c5d28d1f48121b5141e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
animeflv.mom/wp-content/litespeed/css/16c711423f73e7685c232d99c8b52279.css?ver=52279
104.21.49.54200 OK 598 B URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/16c711423f73e7685c232d99c8b52279.css?ver=52279
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5c349c7e163b8c5dd1bdb722602b899f
d497becd8fad03cfde90898149050a90985ef449
ac653be90fb56d873b635506f8b8415893d82e0d60c2eec2f911b2ba15bf374e
GET /wp-content/litespeed/css/16c711423f73e7685c232d99c8b52279.css?ver=52279 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"ed-648cf6d2-6595bc;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DUvY%2BjksVpKOW2ILVRyhZbNL7niNmfkpDozQs6gVw0s6p9TUAPaD2WSTeE8zwf5ZoLq%2BUU7nkDibZUGz7iml0lirkfU0gegrz%2B5fagoLkyhf2ewPNXfwtyYfXta8VJw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe602e37b524-OSL
content-encoding: br
simplewebanalysis.com/stats
52.58.93.188200 OK 40 B URL GET HTTP/2 simplewebanalysis.com/stats
IP 52.58.93.188:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerAmazon
Subjectsimplewebanalysis.com
FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash a61c67a3ee3e0b2e23597fd0cb967526
f3665c35050d799ddeb2dd5e2608959ef4e3d650
a71e01f359fb7eb8c6bc1c7f2ca38add69138aae7f2a15cfe9d34a494318e4e9
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://animeflv.mom
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b5b0e29a-db07-4e22-a129-d2812faf4ad1:1:1; expires=Mon, 13 Jun 2033 23:57:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.58.93.188200 OK 40 B URL GET HTTP/2 simplewebanalysis.com/stats
IP 52.58.93.188:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerAmazon
Subjectsimplewebanalysis.com
FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5248b56ea69636164bc611f2676ee410
78f968a73f37125497634048c57b7f3e7cb863ed
00a8dad6bd7896f5b0c52dbcd0f2d017ee34b86d695272fbf2d1c2baade1eed0
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://animeflv.mom
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Mon, 13 Jun 2033 23:57:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26970), with no line terminators
Hash 5845b923cc0529c463472d3bbdedf748
a839d6a3cffa895b73fe6a26ec0d5e7bcd4a23f6
fa2a586d339e08802c906b098f7e6a2b95117d2354d2b95e75441d78f9f1cba0
GET /52745c63a7e914c27169172df62c4006/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d26c62ce76eca7d1a8b3ff1deb528118
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
esanimes.com/assets/player/icon.png
172.67.153.134200 OK 20 kB URL GET HTTP/2 esanimes.com/assets/player/icon.png
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type PNG image data, 29 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash f7073693ae0abee71dcbe6b4683d15a0
1f6ee14fc2bfe7184568aac31ef9d247b6ffbdde
43e1a200a6912f591d8e5a05adbe01193487924bda0efaa94d8cf29ecb302609
GET /assets/player/icon.png HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://esanimes.com/assets/player/style.css?v=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: image/png
content-length: 19864
last-modified: Tue, 21 Dec 2021 16:11:14 GMT
etag: "61c1fca2-4d98"
expires: Sat, 17 Jun 2023 11:57:11 GMT
cache-control: max-age=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C%2FLVP1rMXmm3SVUGJFDSCm9VUPdkokQMGXBBKp6a1wu%2FLxdBucBqNtBUnc6AHqXT52IcAFIJYuMjUJsTPYL18evqI6zyUu0TFQ5UcavtYoNW4UEWBUVpdXIGpgrDG2M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6908a3b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
januarysundayurgently.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
192.243.61.225200 OK 13 kB URL GET HTTP/1.1 januarysundayurgently.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectjanuarysundayurgently.com
Fingerprint2D:86:A4:0A:55:B7:E9:E1:4D:A1:60:4F:D1:2E:7E:CA:9B:D5:6A:8E
ValidityTue, 13 Jun 2023 00:43:52 GMT - Mon, 11 Sep 2023 00:43:51 GMT
File type ASCII text, with very long lines (37133), with no line terminators
Hash 57cdaec292a56b78a1990826331b77f6
4cdc03c4be1024cc7e09e8918d100c3cc522b65f
7d20c693f43029c2e6190a6550b729dec86f3ba532fbf5d8b4c04da53b9527de
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
quad9 Sinkholed
GET /70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js HTTP/1.1
Host: januarysundayurgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5ea529d78d71ce54474899a9ed98fa95
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
104.21.49.54200 OK 32 kB URL User Request GET HTTP/2 animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
IP 104.21.49.54:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2056)
Hash 77e669454e166acc65e8cbe90c7fb88a
1bba1fd76957dc5c1fded4d90e694b937691ae19
4f67708286424b8b58d306eff55bd203ae0d455d550dddb3dcf2cbf9569996fc
GET /movie/black-clover-tv-vasbpva9/?ep=40 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:09 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.25
x-dns-prefetch-control: on
link: <https://animeflv.mom/?p=41255>; rel=shortlink
vary: Accept-Encoding
x-litespeed-cache: hit
alt-svc: h3=":443"; ma=86400
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7h%2FoiFmtKghoxbAKqyeb7oSEb0UBX8GkH5oiUuBwbExbU%2Br9n2bHRzmqldhcoYdmPrpcSPxbthPJQGagCILJ6AbYF7tVW0oDwvCBVs1q1%2BT7VRJonlWjEp7rdRfyXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe561cabb50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26994), with no line terminators
Hash c380e3e82cce07483a39f3d8267eace1
afa0db1d01fbed79d1c53bb8a6ea7c1a8d0b0f19
502433eb2278f6a95ad2188bb96ed19c3e59fd6ab2325cf679697223a8ae4fa1
GET /52745c63a7e914c27169172df62c4006/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 91541bbce31c36894766515d91008c25
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
januarysundayurgently.com/watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1
173.233.137.44307 Temporary Redirect 0 B URL GET HTTP/1.1 januarysundayurgently.com/watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1
IP 173.233.137.44:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectjanuarysundayurgently.com
Fingerprint2D:86:A4:0A:55:B7:E9:E1:4D:A1:60:4F:D1:2E:7E:CA:9B:D5:6A:8E
ValidityTue, 13 Jun 2023 00:43:52 GMT - Mon, 11 Sep 2023 00:43:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1 HTTP/1.1
Host: januarysundayurgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://januarysundayurgently.com/watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1&shu=0ac41f7f2caef14abe07c3a4bbacf0124117bfc090b51805fd5e46f5dab125daeaf3c59ea50114ee34e838a1f76193e206b7bedb1f4c32e7ea1ea4b9605c8af125ffa518308f401cf2bd744f6d32ca48e494b75fcb75300fb6e075fbe168e06454&pst=1686959892&rmtc=t
Set-Cookie: u_pl=17532583; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU; expires=Fri, 16 Jun 2023 23:58:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9d161a0bea21443ad82eddaae63a0430
Strict-Transport-Security: max-age=0; includeSubdomains
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.6.0/css/bootstrap.min.css
104.17.25.14200 OK 18 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.6.0/css/bootstrap.min.css
IP 104.17.25.14:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (65326)
Hash d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601
GET /ajax/libs/twitter-bootstrap/4.6.0/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/css; charset=utf-8
content-length: 17712
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60071661-27681"
last-modified: Tue, 19 Jan 2021 17:26:57 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 627358
expires: Wed, 05 Jun 2024 23:57:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j5goFGct8gjv8c4nNBifZ8K9arRzOlF5ApL9da80LoiJZ1w82bKmx6Ja5LfXVyY2z%2Bq2FadPqSagoX2Oc3f7DO1a45Oe9pzXuB%2FSITWfl%2FkVHqtYCruLtRQReTGfe4NIBpeBt%2F9a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d86fe6b4b7cb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/axios/0.22.0/axios.min.js
104.17.25.14200 OK 5.5 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/axios/0.22.0/axios.min.js
IP 104.17.25.14:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (17781)
Hash 7696d7dac74c8d84ca4ef0fd14eaa020
51aeefbbb0bfba74c8efe2bc659683ea74e46849
7225309c419aac816716ce68150e60a73a34067c7989132faf9d7498d17e2ba2
GET /ajax/libs/axios/0.22.0/axios.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 5467
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6156acbe-155b"
last-modified: Fri, 01 Oct 2021 06:37:50 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3116685
expires: Wed, 05 Jun 2024 23:57:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sI4bVYTEC6%2FUGlejJJGTqtjk1y9pmx%2Fxf7MY5APlpQ0coS0lC6%2BfVB3%2BaDeCKHVyV5El8aTOd5FFW20varpMkbiRRHqmLPy%2BTXyjAd8ZfZEivVbqBo5JQTspRZsI1gzW5yX%2Bvmkl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d86fe6b4b7db50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.6.0/js/bootstrap.bundle.min.js
104.17.25.14200 OK 19 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.6.0/js/bootstrap.bundle.min.js
IP 104.17.25.14:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (65299)
Hash f81d0a1705048649befc8b595e455a94
aec551e4d573463088fca7d14fb644eb389f1839
b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b
GET /ajax/libs/twitter-bootstrap/4.6.0/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 19173
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60071661-1499a"
last-modified: Tue, 19 Jan 2021 17:26:57 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 15183388
expires: Wed, 05 Jun 2024 23:57:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0miXUzWV8lAdGUpZzThQvEXHOLMxWW9zIn0tGcVVmGi4StjwPzUYnDkzeLlACXM6NnCE4t23X0IswHJN9SpOY0MCQlyiyhSTBPSAMM5yDe7QRBxg3Zt03NMXzUw1JH0k3zfFWZAE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d86fe6b6b8eb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
animeflv.mom/wp-content/litespeed/css/3fa3c3cdbee45a00e24f46f25fa39881.css?ver=39881
104.21.49.54200 OK 2.0 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/3fa3c3cdbee45a00e24f46f25fa39881.css?ver=39881
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (7970), with no line terminators
Hash b5bc07c60727e0e26c844d453545223b
76ef223d369cded4f2b99b868b7ca6a8676a43a5
63a572dfc01d23cd53260182bcab73dbf3db39c254cc9a57551742bdc1cb9699
GET /wp-content/litespeed/css/3fa3c3cdbee45a00e24f46f25fa39881.css?ver=39881 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"1f22-648cf6d2-6595c0;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=INQtUa67viET3sbWd3tvvsGdV9DkKnTq2bFEPDrKL86eP7LuF5AcL3fj8wbaHM%2B%2FHvD%2FjA7CS%2BkYj7DtuFB7GlyecQgXty4iodktcJ8CvJmFb7gIef5RgLNRIH4k9oM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe602e41b524-OSL
content-encoding: br
esanimes.com/player?id=556f364e76513d3d
172.67.153.134200 OK 2.3 kB URL GET HTTP/2 esanimes.com/player?id=556f364e76513d3d
IP 172.67.153.134:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash deaf74f4f5765ff07d31f588099e8e99
bc4d614d151890d6e008a82357f85b03d9d86e46
516afee698337f249600fd1166b9ead883a4375852f2909bcdb7bc2596b16df6
GET /player?id=556f364e76513d3d HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 2
last-modified: Fri, 16 Jun 2023 23:57:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M%2FrneNIKJmugrcILKuLu5Jid2BbJkOCoZfhR4HDGI8Nc%2BTDR%2FMojeIphcXEmpehZKzdH6Xn%2BRuouQKQ4ICpYRs%2FUa4gSYTprlGS1xwQnCFxJF6bDPo2ZXOzu3N628rQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe679f8fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
appcdn01.xyz/vast.js
104.21.75.219200 OK 14 B IP 104.21.75.219:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerGoogle Trust Services LLC
Subjectappcdn01.xyz
Fingerprint2D:B6:B3:82:8E:66:43:B6:B4:DF:2F:A3:63:4C:B6:1F:87:3D:DC:D7
ValidityThu, 20 Apr 2023 13:46:36 GMT - Wed, 19 Jul 2023 13:46:35 GMT
File type ASCII text, with no line terminators
Hash f889954a7cf30bbbfa6f7c3ae440dd2a
7adb4056d99c21fa515a67b5e17f12e82a16509d
27057a15c852eb49822e63991ce5e1863a05f2f5ccbcf916ca624ca773ed8d97
GET /vast.js HTTP/1.1
Host: appcdn01.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 14
last-modified: Fri, 22 Oct 2021 10:58:00 GMT
etag: "e-5ceeee26ebe00"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GUtqKtkzapQVr9f3hEQiBnu5DziIhIXdNLPyCAFqkallsju2J6L8C1edUL3IPiRzz4r5mqd9vW7nvNRm3V6TNq4qPbzg22yvgLiXet5T9yRgzMy%2BHD%2Fhkkw8S0tNoQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6b7b66b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26986), with no line terminators
Hash c8ec06e97d5c3fc53f85147d732e7bf9
4e98826c3302985b4fa49f4881bb5aa660511c30
0f168fcf0c5eecd4d7a8be6e6c64dcc3e662cca94e6d5f37a9400f8e2a4f7a48
GET /52745c63a7e914c27169172df62c4006/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 01b7c4f1c5aa554e558474ead3218cff
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
januarysundayurgently.com/watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1&shu=0ac41f7f2caef14abe07c3a4bbacf0124117bfc090b51805fd5e46f5dab125daeaf3c59ea50114ee34e838a1f76193e206b7bedb1f4c32e7ea1ea4b9605c8af125ffa518308f401cf2bd744f6d32ca48e494b75fcb75300fb6e075fbe168e06454&pst=1686959892&rmtc=t
192.243.61.225200 OK 2.0 kB URL GET HTTP/1.1 januarysundayurgently.com/watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1&shu=0ac41f7f2caef14abe07c3a4bbacf0124117bfc090b51805fd5e46f5dab125daeaf3c59ea50114ee34e838a1f76193e206b7bedb1f4c32e7ea1ea4b9605c8af125ffa518308f401cf2bd744f6d32ca48e494b75fcb75300fb6e075fbe168e06454&pst=1686959892&rmtc=t
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectjanuarysundayurgently.com
Fingerprint2D:86:A4:0A:55:B7:E9:E1:4D:A1:60:4F:D1:2E:7E:CA:9B:D5:6A:8E
ValidityTue, 13 Jun 2023 00:43:52 GMT - Mon, 11 Sep 2023 00:43:51 GMT
File type HTML document, ASCII text, with very long lines (2453)
Hash ae139979b640be03586f6961e4fb58cd
84a73cb445b5c1639fe977f2dcf39d6e32b20f89
c912f0459fcf444d0a50e406697e031cfda1170251f3d4d2e9312c51ac63de41
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1595945101167.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b5b0e29a-db07-4e22-a129-d2812faf4ad1%3A1%3A1&shu=0ac41f7f2caef14abe07c3a4bbacf0124117bfc090b51805fd5e46f5dab125daeaf3c59ea50114ee34e838a1f76193e206b7bedb1f4c32e7ea1ea4b9605c8af125ffa518308f401cf2bd744f6d32ca48e494b75fcb75300fb6e075fbe168e06454&pst=1686959892&rmtc=t HTTP/1.1
Host: januarysundayurgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532583; ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b5b0e29a-db07-4e22-a129-d2812faf4ad1:1:1; expires=Fri, 23 Jun 2023 23:57:12 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c519237527894a270b742eb916daa6c9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
nullboatloo.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
173.233.137.36200 OK 13 kB URL GET HTTP/1.1 nullboatloo.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectnullboatloo.com
Fingerprint73:FF:4A:99:88:8D:44:4F:65:92:BA:85:FC:6E:26:65:D1:F2:AF:60
ValidityTue, 13 Jun 2023 00:40:31 GMT - Mon, 11 Sep 2023 00:40:30 GMT
File type ASCII text, with very long lines (37127), with no line terminators
Hash fbdd6f44dfecbf2062e8d0dd898709f7
4a2d9193fc590e74598b46aa3405c6f1bf1201d6
c03aeab5d91cc448ae22a7b229bb7d7b04895ea2861847f83a7cf8f3bca3b63c
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
quad9 Sinkholed
GET /70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js HTTP/1.1
Host: nullboatloo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 02ab10ee52fa356a5e4d84a7feabad29
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
nullboatloo.com/watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.137.44307 Temporary Redirect 0 B URL GET HTTP/1.1 nullboatloo.com/watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.137.44:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectnullboatloo.com
Fingerprint73:FF:4A:99:88:8D:44:4F:65:92:BA:85:FC:6E:26:65:D1:F2:AF:60
ValidityTue, 13 Jun 2023 00:40:31 GMT - Mon, 11 Sep 2023 00:40:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: nullboatloo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://nullboatloo.com/watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=63c48c8db005e0fd7b8774224578526c9088b79e975ea9091c4db92e674655f5e723c472cf0cfab151fa28166f79f7a73862e641a8e3b85c68045586161309d05bf62a37c2365af11900b92fd2308bce76b64253a001c049725f517f3c7dd4a6&pst=1686959892&rmtc=t
Set-Cookie: u_pl=17532584; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; expires=Fri, 16 Jun 2023 23:58:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1abc5a3346ef36da835785b24895635d
Strict-Transport-Security: max-age=0; includeSubdomains
omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/52745c63a7e914c27169172df62c4006/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26992), with no line terminators
Hash ff09bfa1701f5161b42477883da32460
2f5cbbeb492e95dff17285536f9d24feabb161f7
bfb0d5b0750903d74563ace2af92c55dd491701569aa062dc5e96aab05e70654
GET /52745c63a7e914c27169172df62c4006/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f2d9e7f91e37c51901d9f313f8f877a8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
nullboatloo.com/watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=6b6afa488786218bdeebcbfd2b2a664b3ec2ebc946f21a4bdfafd39ffa810a49693498ce3083a56f9d647ab34312e560e007a4089a8f814e1513f94c040f752328f0679018993cd0bbcd0a3078ab14aa582605032fba0f149bbc28c42a12&pst=1686959892&rmtc=t
173.233.137.36200 OK 2.0 kB URL GET HTTP/1.1 nullboatloo.com/watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=6b6afa488786218bdeebcbfd2b2a664b3ec2ebc946f21a4bdfafd39ffa810a49693498ce3083a56f9d647ab34312e560e007a4089a8f814e1513f94c040f752328f0679018993cd0bbcd0a3078ab14aa582605032fba0f149bbc28c42a12&pst=1686959892&rmtc=t
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectnullboatloo.com
Fingerprint73:FF:4A:99:88:8D:44:4F:65:92:BA:85:FC:6E:26:65:D1:F2:AF:60
ValidityTue, 13 Jun 2023 00:40:31 GMT - Mon, 11 Sep 2023 00:40:30 GMT
File type HTML document, ASCII text, with very long lines (2413)
Hash f880398c0a3c18f953486815a22e6469
bcd660f978b4dcf6f41604d9788963819fb8bdaa
8300d90d3a656d355124cebd24e20c05344b9bf01f5adf38b19c1b848522786a
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=6b6afa488786218bdeebcbfd2b2a664b3ec2ebc946f21a4bdfafd39ffa810a49693498ce3083a56f9d647ab34312e560e007a4089a8f814e1513f94c040f752328f0679018993cd0bbcd0a3078ab14aa582605032fba0f149bbc28c42a12&pst=1686959892&rmtc=t HTTP/1.1
Host: nullboatloo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532584; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17532584,17532583; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9f3692ffe0460be33aad87f302161466
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
nullboatloo.com/watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=63c48c8db005e0fd7b8774224578526c9088b79e975ea9091c4db92e674655f5e723c472cf0cfab151fa28166f79f7a73862e641a8e3b85c68045586161309d05bf62a37c2365af11900b92fd2308bce76b64253a001c049725f517f3c7dd4a6&pst=1686959892&rmtc=t
173.233.137.36200 OK 2.0 kB URL GET HTTP/1.1 nullboatloo.com/watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=63c48c8db005e0fd7b8774224578526c9088b79e975ea9091c4db92e674655f5e723c472cf0cfab151fa28166f79f7a73862e641a8e3b85c68045586161309d05bf62a37c2365af11900b92fd2308bce76b64253a001c049725f517f3c7dd4a6&pst=1686959892&rmtc=t
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectnullboatloo.com
Fingerprint73:FF:4A:99:88:8D:44:4F:65:92:BA:85:FC:6E:26:65:D1:F2:AF:60
ValidityTue, 13 Jun 2023 00:40:31 GMT - Mon, 11 Sep 2023 00:40:30 GMT
File type HTML document, ASCII text, with very long lines (2447)
Hash fc4fdc1d596912bc7a67955ee4b776bd
4e15c06a2471862d22a7e6f3188d4f9a417ae20e
a03bc3776d2616051c774fbaaf2e3a091b0db0ab80d53ea37166734ded4e3de5
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.685025384889.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=63c48c8db005e0fd7b8774224578526c9088b79e975ea9091c4db92e674655f5e723c472cf0cfab151fa28166f79f7a73862e641a8e3b85c68045586161309d05bf62a37c2365af11900b92fd2308bce76b64253a001c049725f517f3c7dd4a6&pst=1686959892&rmtc=t HTTP/1.1
Host: nullboatloo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532584; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b0302ce9b8d42b781070ac5700a85f1d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
peachywaspish.com/watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=3deb49fa2b8430c248582bd4f0ebd63124a91f204a0831bf8fdcaa9907dc6751b627f424067f3a174718b714052b6430d4227a87434cdc47c90747827198e897d688f46ece32d93ccbf1f949f9eafbd70af6c4ca&pst=1686959892&rmtc=t
192.243.59.12200 OK 2.0 kB URL GET HTTP/1.1 peachywaspish.com/watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=3deb49fa2b8430c248582bd4f0ebd63124a91f204a0831bf8fdcaa9907dc6751b627f424067f3a174718b714052b6430d4227a87434cdc47c90747827198e897d688f46ece32d93ccbf1f949f9eafbd70af6c4ca&pst=1686959892&rmtc=t
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
File type HTML document, ASCII text, with very long lines (2407)
Hash a9298e40a589a93bde2694f8a66473e8
98bc414e70cb9dd784479936052ebdabc4382b5e
870ca97856c4f13b23d69959c9de832dc6799943fedb77499f111bd43daa22e5
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=3deb49fa2b8430c248582bd4f0ebd63124a91f204a0831bf8fdcaa9907dc6751b627f424067f3a174718b714052b6430d4227a87434cdc47c90747827198e897d688f46ece32d93ccbf1f949f9eafbd70af6c4ca&pst=1686959892&rmtc=t HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532584; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzUzMjU4NCwiayI6ImE0Zjc2OGM4OGM4MGFhYmNjZWU2MjgzMjZiY2JlZmM2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTQwNTk0LCJwaWQiOjUxNDUwMSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjoyMywicHQiOjQsInBrIjoic3RnczFneHdhcyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYW5pbWVmbHYubW9tL21vdmllL2JsYWNrLWNsb3Zlci10di12YXNicHZhOS8_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7d53fa8910ac6763f05ec56a1cfd6d85
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4c33dd00acf3e9ec3caa92992e03b532
f900808eafea946f52a49a7e536a97b2331d9f01
a00bc1576320e4aaa26267eb2836c33f6795cd1ace69497ecb52c0f584a00e2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Jun 2023 23:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudimagesb.com/cti/60/ce/c4/60cec442407f9abe013ac98b00e12cb9/1627915957.png
45.133.44.9200 OK 106 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/60/ce/c4/60cec442407f9abe013ac98b00e12cb9/1627915957.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 106 kB (106115 bytes)
Hash 9281fd8d87dda51e160328a923b9a454
fb36ebbd8cc7c4c4871e5cf947ae64a9f567c039
41544e4c12d24c819661b9609eff83f0f2ed1a6fce359a8cc32cbb77c64118da
GET /cti/60/ce/c4/60cec442407f9abe013ac98b00e12cb9/1627915957.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: image/png
content-length: 106115
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:52:46 GMT
etag: "610806be-19e83"
expires: Sun, 18 Jun 2023 23:57:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-166622646-1
142.250.74.168200 OK 49 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-166622646-1
IP 142.250.74.168:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint10:38:7C:36:39:48:3A:75:B3:8C:F2:4A:E7:C5:44:0B:9D:46:7F:F8
ValidityMon, 22 May 2023 08:17:22 GMT - Mon, 14 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (2271)
Hash c6f2af742f6360ee24edef3b0e5531eb
88aeea2e33ae9cac5a6adc8ad6a174dfefa9ed8b
16359aee94af4088c520df1f092a6d8080f22e0eaa08aee7253170e4c0a20f1a
GET /gtag/js?id=UA-166622646-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Jun 2023 23:57:13 GMT
expires: Fri, 16 Jun 2023 23:57:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48692
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4c33dd00acf3e9ec3caa92992e03b532
f900808eafea946f52a49a7e536a97b2331d9f01
a00bc1576320e4aaa26267eb2836c33f6795cd1ace69497ecb52c0f584a00e2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Jun 2023 23:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudimagesb.com/cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png
45.133.44.9200 OK 136 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 136 kB (136090 bytes)
Hash 11675ef6f5c8559ec0ade47755155665
20df6be038de603b97f849e07460cd0600b34867
4d361374b3e2e4f8de896a1f1014d500ed0802bf028d2c7bbd606f9e87ba88a4
GET /cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: image/png
content-length: 136090
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:59 GMT
etag: "6108068f-2139a"
expires: Sun, 18 Jun 2023 23:57:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
omelettegeometryguts.com/a4f768c88c80aabccee628326bcbefc6/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/a4f768c88c80aabccee628326bcbefc6/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Hash 1c0e44843281805e81894b8b9df152ef
551e51b428cb2e2936e1aa3dd9fdd66ec1f4d775
6279061e743aa4c7fa68c68ebdab2992d7a595291d03aa5a1dc24e585930f785
GET /a4f768c88c80aabccee628326bcbefc6/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 02d019fda295f5ba1d28f150cf6d6fab
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/90/7a/17/907a17350b6b51cb197a68b9abd5d891/1663166540.png
45.133.44.9200 OK 42 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/90/7a/17/907a17350b6b51cb197a68b9abd5d891/1663166540.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 729 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 610068f0944bd0789b1db6f4f174d14c
ff5a07bf5322d4ae8d897e4bc05a22fe4e53dfc0
fdaf14a8e3dd4e0f8124be05742b583c9e9c3a15e4e59e4a321953131c275101
GET /cti/90/7a/17/907a17350b6b51cb197a68b9abd5d891/1663166540.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: image/png
content-length: 42054
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:42:28 GMT
etag: "6321e854-a446"
expires: Sun, 18 Jun 2023 23:57:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/69/eb/5b/69eb5b050a7926bd63f5b298436d7d7f/1663166466.png
45.133.44.9200 OK 40 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/69/eb/5b/69eb5b050a7926bd63f5b298436d7d7f/1663166466.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 729 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash ce59bc76d5eadd3d7212d0343a5465e2
2c0b557a604b474a9e026c9e5ed4aef27c978333
1c6d20b8317b0f3e6dff1328237a84df733fdccdb2a8d7df05ae4ca7c8b289db
GET /cti/69/eb/5b/69eb5b050a7926bd63f5b298436d7d7f/1663166466.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: image/png
content-length: 40500
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:41:14 GMT
etag: "6321e80a-9e34"
expires: Sun, 18 Jun 2023 23:57:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
reallyindependencehated.com/watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
192.243.59.20307 Temporary Redirect 0 B URL GET HTTP/1.1 reallyindependencehated.com/watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectreallyindependencehated.com
Fingerprint96:01:76:F1:4C:6D:4F:E0:A4:D9:2B:7F:B4:12:6F:52:19:3E:6A:2E
ValidityThu, 25 May 2023 13:34:32 GMT - Wed, 23 Aug 2023 13:34:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: reallyindependencehated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://reallyindependencehated.com/watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=a508a0e7a216d537b76ba5238b0746bd7e5b13ba07c98b9b0c4b843f2bce79a6de392e53ef8994481813d7fe0d39054ddad24da6d4cf902a6bb904d7e8c161373ab5b34f96b2de498b94b0fb1ceebe92061aeb&pst=1686959893&rmtc=t
Set-Cookie: u_pl=17532583; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU; expires=Fri, 16 Jun 2023 23:58:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 78f0bb90ecf4cb15283a7db73efe8069
Strict-Transport-Security: max-age=0; includeSubdomains
reallyindependencehated.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
192.243.59.20200 OK 13 kB URL GET HTTP/1.1 reallyindependencehated.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectreallyindependencehated.com
Fingerprint96:01:76:F1:4C:6D:4F:E0:A4:D9:2B:7F:B4:12:6F:52:19:3E:6A:2E
ValidityThu, 25 May 2023 13:34:32 GMT - Wed, 23 Aug 2023 13:34:31 GMT
File type ASCII text, with very long lines (37139), with no line terminators
Hash 34c9803a190d22db974fa6ed3f41fe87
4b0e185d4f15bb804e227cdab73425dba2b92572
5c3ca850c91e44e960b3f12d9dec89437ed7224e4318321389c9be034ed05695
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
quad9 Sinkholed
GET /70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js HTTP/1.1
Host: reallyindependencehated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5c31b6d41b5878b539fc67e0cfb2441
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
hospitalitydisorder.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
173.233.137.60200 OK 13 kB URL GET HTTP/1.1 hospitalitydisorder.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
IP 173.233.137.60:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecthospitalitydisorder.com
Fingerprint21:EF:91:84:FD:DD:BC:EF:6F:49:0B:90:3B:71:DF:F2:24:C8:58:B1
ValidityWed, 14 Jun 2023 02:11:29 GMT - Tue, 12 Sep 2023 02:11:28 GMT
File type ASCII text, with very long lines (37139), with no line terminators
Hash 34c9803a190d22db974fa6ed3f41fe87
4b0e185d4f15bb804e227cdab73425dba2b92572
5c3ca850c91e44e960b3f12d9dec89437ed7224e4318321389c9be034ed05695
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
GET /70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js HTTP/1.1
Host: hospitalitydisorder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0aadfbdffe2d09f51f4ac4cf6204cbdb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
hospitalitydisorder.com/watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.137.60307 Temporary Redirect 0 B URL GET HTTP/1.1 hospitalitydisorder.com/watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.137.60:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecthospitalitydisorder.com
Fingerprint21:EF:91:84:FD:DD:BC:EF:6F:49:0B:90:3B:71:DF:F2:24:C8:58:B1
ValidityWed, 14 Jun 2023 02:11:29 GMT - Tue, 12 Sep 2023 02:11:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: hospitalitydisorder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://hospitalitydisorder.com/watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=29f03f79e1b0dea1fc4790eda103b27b7288fd4cf0c5c3001c7d94089ed1f0e3ec0193599054f8928005b5102f73636db5c2dc2a46f09b6a2be3b2c44d3098e3d3b776e321d4eaa78a259752bf6607e15f245d34736aba80f7300925d52503&pst=1686959893&rmtc=t
Set-Cookie: u_pl=17532583; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU; expires=Fri, 16 Jun 2023 23:58:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6eeb48782f19c408b4fe2df40ee6f687
Strict-Transport-Security: max-age=0; includeSubdomains
roasttroopdilapidation.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
173.233.137.36200 OK 13 kB URL GET HTTP/1.1 roasttroopdilapidation.com/70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectroasttroopdilapidation.com
FingerprintF3:DD:FC:01:BF:35:C2:A2:49:4F:55:58:92:55:58:93:AA:EB:03:63
ValidityWed, 31 May 2023 18:40:54 GMT - Tue, 29 Aug 2023 18:40:53 GMT
File type ASCII text, with very long lines (37154), with no line terminators
Hash 83302adf799efdd6a14e220329a944c4
1c417dd46a5854ebbea8eaac39095dab9f4caeb3
0a6333f297f24d6eabf4223ee47cc649fc32e082369357b3c444102ac7a524f9
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
quad9 Sinkholed
GET /70/f1/c4/70f1c457bb78c3e9edbf52bf7ff58440.js HTTP/1.1
Host: roasttroopdilapidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 05cadf27ebe5f8719b3e4adf0ac06a0b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
omelettegeometryguts.com/2c7d9ea46e726ff7b28e0bc7177b8db8/invoke.js
192.243.59.12200 OK 9.8 kB URL GET HTTP/1.1 omelettegeometryguts.com/2c7d9ea46e726ff7b28e0bc7177b8db8/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectomelettegeometryguts.com
FingerprintEC:33:3E:49:81:3C:41:85:A2:1D:0E:8E:1A:D6:53:82:FD:1F:BE:8B
ValidityFri, 19 May 2023 06:36:08 GMT - Thu, 17 Aug 2023 06:36:07 GMT
File type exported SGML document, ASCII text, with very long lines (26976), with no line terminators
Hash 25ea167eda951d23839111b1b5f9632b
ce6a13ff4e90add2327f7589b94e5ef577558636
0894dfd278039956cd437411302c28da88bfc702c37c77c2e4a143598fcb1c06
GET /2c7d9ea46e726ff7b28e0bc7177b8db8/invoke.js HTTP/1.1
Host: omelettegeometryguts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 00c7ee239e8ecc837d1e892f1cf253ef
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
media.dalyai.com/js/code.min.js
172.67.182.90200 OK 14 kB URL GET HTTP/2 media.dalyai.com/js/code.min.js
IP 172.67.182.90:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerGoogle Trust Services LLC
Subjectdalyai.com
FingerprintD9:13:53:CD:1C:D4:A0:93:54:E4:50:8D:DA:B6:62:40:38:B4:A9:E4
ValidityTue, 16 May 2023 20:15:21 GMT - Mon, 14 Aug 2023 20:15:20 GMT
File type ASCII text, with very long lines (15751)
Hash 6413086de30bd71928106dd4e436e03b
a5c95d5ca6bb8727fd137dd0344288f6d210083d
baea3b35d2e5c61d2307f589ad94ab3ca2ccc8aaea98b9346b93022d090d373b
GET /js/code.min.js HTTP/1.1
Host: media.dalyai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: application/javascript
last-modified: Wed, 14 Jun 2023 08:51:11 GMT
etag: W/"64897f7f-91fb"
expires: Sun, 18 Jun 2023 20:19:24 GMT
cache-control: max-age=259200
x-robots-tag: noindex, nofollow, noarchive, noimageindex
cf-cache-status: HIT
age: 99469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ICQPP5pN6LFlsdz4RGrOgK0To9he%2FJh78uxf%2B%2BqN59rYu9ZvFTRiAvbAjrVueo%2BwLmqkTqzCtjN4%2B0wJIwPivGydHIPvsvaYlvQjN%2FqwtAd%2F4%2BKomrz%2BkQ7xcM4BHUs0gxmx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6d9d51b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
reallyindependencehated.com/watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=a508a0e7a216d537b76ba5238b0746bd7e5b13ba07c98b9b0c4b843f2bce79a6de392e53ef8994481813d7fe0d39054ddad24da6d4cf902a6bb904d7e8c161373ab5b34f96b2de498b94b0fb1ceebe92061aeb&pst=1686959893&rmtc=t
192.243.59.20200 OK 2.0 kB URL GET HTTP/1.1 reallyindependencehated.com/watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=a508a0e7a216d537b76ba5238b0746bd7e5b13ba07c98b9b0c4b843f2bce79a6de392e53ef8994481813d7fe0d39054ddad24da6d4cf902a6bb904d7e8c161373ab5b34f96b2de498b94b0fb1ceebe92061aeb&pst=1686959893&rmtc=t
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectreallyindependencehated.com
Fingerprint96:01:76:F1:4C:6D:4F:E0:A4:D9:2B:7F:B4:12:6F:52:19:3E:6A:2E
ValidityThu, 25 May 2023 13:34:32 GMT - Wed, 23 Aug 2023 13:34:31 GMT
File type HTML document, ASCII text, with very long lines (2409)
Hash d8813471ef08ac6b5fe1aa8fa567aa6d
90016ab16a68b64cc00a55eabd7bec1e76f3b40b
b127718046a78151882dbaa37ef99070b87331cc78a81a00279a86c2f2ac2ea7
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1437070967878.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=a508a0e7a216d537b76ba5238b0746bd7e5b13ba07c98b9b0c4b843f2bce79a6de392e53ef8994481813d7fe0d39054ddad24da6d4cf902a6bb904d7e8c161373ab5b34f96b2de498b94b0fb1ceebe92061aeb&pst=1686959893&rmtc=t HTTP/1.1
Host: reallyindependencehated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532583; ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e056b75cfa81ef8317d9bdb1f02edd2b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
aniflv.me/js/jquery.min.js
188.114.97.1200 OK 32 kB URL GET HTTP/3 aniflv.me/js/jquery.min.js
IP 188.114.97.1:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerLet's Encrypt
Subjectaniflv.me
Fingerprint4D:04:E9:A1:5A:71:3B:A5:FB:E8:D7:A1:2B:C2:39:47:FB:CC:BF:48
ValidityFri, 09 Jun 2023 02:51:33 GMT - Thu, 07 Sep 2023 02:51:32 GMT
File type ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /js/jquery.min.js HTTP/1.1
Host: aniflv.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 May 2020 04:02:38 GMT
etag: W/"5eb0e55e-15d84"
expires: Fri, 23 Jun 2023 23:57:12 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1IrEWa2vnzl5nhvPTN1wwkRiyJIkk7K6XCeE2hxTet9F2%2F0M%2FweQcSznMit0sKNJ4CLkfWM%2B3KqTr8mqhWbtQSblerl85Y1%2BeVSnDXElGLrgC%2Fx2u%2BVhGvidk5c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6b2fa4b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
aniflv.me/js/jquery/jquery.min.js?v=1.1
188.114.97.1200 OK 38 kB URL GET HTTP/3 aniflv.me/js/jquery/jquery.min.js?v=1.1
IP 188.114.97.1:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerLet's Encrypt
Subjectaniflv.me
Fingerprint4D:04:E9:A1:5A:71:3B:A5:FB:E8:D7:A1:2B:C2:39:47:FB:CC:BF:48
ValidityFri, 09 Jun 2023 02:51:33 GMT - Thu, 07 Sep 2023 02:51:32 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 19c83a8a9a17122d6af875cb68520145
0a20a5e03ed2f76a02ee91c6992132596db0c168
2fe7586e7b340eebedab69238056f3cc4b1c7ec01136868f1100abb86ad8cfdf
GET /js/jquery/jquery.min.js?v=1.1 HTTP/1.1
Host: aniflv.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Jun 2023 18:17:38 GMT
etag: W/"6488b2c2-16199"
expires: Wed, 21 Jun 2023 18:59:14 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: HIT
age: 190678
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AEWBdH3my0sRPalCNypQwb9AuUZXO5DdGgjRcT3LNA3DGXZ0%2BoVy6044tDTCj%2F3wBFbMAs2JdG0RS4g2gPW2f1IGqH0m2aAbJp4juCnQIjMgDBIhvA4gJgpl5aM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6b2fa5b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
roasttroopdilapidation.com/watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d35017ee9fd36ce45087e1607af024dc9beed192897c6293a27014dbccb44811465188ac2c84a51b5d1ca1c2a9bb69aff2b5b65a4351728c16860f592a2325a82d5802a0e466f2216bf6748167448b41ae23fda9416c3fec135e217e25578254e68ed2&pst=1686959893&rmtc=t
173.233.137.36200 OK 2.0 kB URL GET HTTP/1.1 roasttroopdilapidation.com/watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d35017ee9fd36ce45087e1607af024dc9beed192897c6293a27014dbccb44811465188ac2c84a51b5d1ca1c2a9bb69aff2b5b65a4351728c16860f592a2325a82d5802a0e466f2216bf6748167448b41ae23fda9416c3fec135e217e25578254e68ed2&pst=1686959893&rmtc=t
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectroasttroopdilapidation.com
FingerprintF3:DD:FC:01:BF:35:C2:A2:49:4F:55:58:92:55:58:93:AA:EB:03:63
ValidityWed, 31 May 2023 18:40:54 GMT - Tue, 29 Aug 2023 18:40:53 GMT
File type HTML document, ASCII text, with very long lines (2498)
Hash f186330fbc712f88d4396c9268c8d26b
3a7c4f69dc8045fb35a3aafdf538a5afaf18eee3
847f21803665a4a28c21c0682689f3adbec825d87660f56f3da65320273ce711
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d35017ee9fd36ce45087e1607af024dc9beed192897c6293a27014dbccb44811465188ac2c84a51b5d1ca1c2a9bb69aff2b5b65a4351728c16860f592a2325a82d5802a0e466f2216bf6748167448b41ae23fda9416c3fec135e217e25578254e68ed2&pst=1686959893&rmtc=t HTTP/1.1
Host: roasttroopdilapidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532583; ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 58eb277fd8cf6fa0ec4a91084a6937f6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
friendshipmale.com/sfp.js
172.64.203.23200 OK 37 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP 172.64.203.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 8bf542db65f0ff20d510889d62e5e092
1b1b7cc04275b7641e2f07b0f4bf99b5387303bf
77a3bebee72af7beb49cd94b7f16852a532aac5f3db8f610160440fe75ca4711
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: adb8214cceb6afd0b869ddad1613f1bd
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 16 Jun 2023 23:57:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cELKHawm8vxcp0iHt2X78z617Ps%2FDleqUiOeNrvX9r6yz7g9iBs1ollnuOt170UOUFsLhhVIvVc8rd4SSdBbJktrN5m0jbG5k52LxU%2F5V7DkJIek5jybzXFDuDOsNeoAdUyZxLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe707be80892-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
washinexhaustible.com/watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.137.52307 Temporary Redirect 0 B URL GET HTTP/1.1 washinexhaustible.com/watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectwashinexhaustible.com
Fingerprint00:08:1C:94:0E:60:B9:63:50:E8:45:6E:80:DA:4C:7E:E4:0F:09:1B
ValidityWed, 14 Jun 2023 02:07:04 GMT - Tue, 12 Sep 2023 02:07:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: washinexhaustible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://washinexhaustible.com/watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=9dc3ababb1993812f1747f0a5de3f341319867ec09a6dcd846f4421e10e21f48d088fbf4f5527e7e37ba8b33cca781fa37117f3ee5a46aa373538c693cfacb2507a208c22f6eb14b5966683e61bac25cc960c483538f0224253cb132a97a917485f6fa14&pst=1686959894&rmtc=t
Set-Cookie: u_pl=17532584; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzUzMjU4NCwiayI6ImE0Zjc2OGM4OGM4MGFhYmNjZWU2MjgzMjZiY2JlZmM2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTQwNTk0LCJwaWQiOjUxNDUwMSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjoyMywicHQiOjQsInBrIjoic3RnczFneHdhcyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYW5pbWVmbHYubW9tL21vdmllL2JsYWNrLWNsb3Zlci10di12YXNicHZhOS8_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; expires=Fri, 16 Jun 2023 23:58:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5eafea3f5e5a3dc6149928e647f00814
Strict-Transport-Security: max-age=0; includeSubdomains
washinexhaustible.com/watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=9dc3ababb1993812f1747f0a5de3f341319867ec09a6dcd846f4421e10e21f48d088fbf4f5527e7e37ba8b33cca781fa37117f3ee5a46aa373538c693cfacb2507a208c22f6eb14b5966683e61bac25cc960c483538f0224253cb132a97a917485f6fa14&pst=1686959894&rmtc=t
173.233.137.52200 OK 2.4 kB URL GET HTTP/1.1 washinexhaustible.com/watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=9dc3ababb1993812f1747f0a5de3f341319867ec09a6dcd846f4421e10e21f48d088fbf4f5527e7e37ba8b33cca781fa37117f3ee5a46aa373538c693cfacb2507a208c22f6eb14b5966683e61bac25cc960c483538f0224253cb132a97a917485f6fa14&pst=1686959894&rmtc=t
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectwashinexhaustible.com
Fingerprint00:08:1C:94:0E:60:B9:63:50:E8:45:6E:80:DA:4C:7E:E4:0F:09:1B
ValidityWed, 14 Jun 2023 02:07:04 GMT - Tue, 12 Sep 2023 02:07:03 GMT
File type HTML document, ASCII text, with very long lines (2943)
Hash 6cb370aafdc129a0e9313911e8e9dd40
6340e697f7b0fd7286a9ba2f5e7b439c9da29446
b79e542b2dfc0747c67c40b84084365671045c90e263d001f48230fb2be03d7c
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1414010915531.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=9dc3ababb1993812f1747f0a5de3f341319867ec09a6dcd846f4421e10e21f48d088fbf4f5527e7e37ba8b33cca781fa37117f3ee5a46aa373538c693cfacb2507a208c22f6eb14b5966683e61bac25cc960c483538f0224253cb132a97a917485f6fa14&pst=1686959894&rmtc=t HTTP/1.1
Host: washinexhaustible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532584; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ecb4949e2fb936b8fed14a64acc1c171
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
45.133.44.9200 OK 108 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 108 kB (107711 bytes)
Hash d5d8bc18ba152c6e850417cdf9dfbbff
888bf155775a9879f26faf0e7faaff5803296e8e
b481f86a9731573e3cfd04880209d5ecb5c163caa0e2656a9f740321c5e637c8
GET /cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: image/png
content-length: 107711
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:18 GMT
etag: "61080666-1a4bf"
expires: Sun, 18 Jun 2023 23:57:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
volunteerbrash.com/watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
192.243.59.13307 Temporary Redirect 0 B URL GET HTTP/1.1 volunteerbrash.com/watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectvolunteerbrash.com
Fingerprint9B:09:BB:A5:3D:3F:D0:BC:83:1F:28:BD:2A:D9:E1:CE:F0:BA:89:6E
ValidityWed, 03 May 2023 21:31:25 GMT - Tue, 01 Aug 2023 21:31:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: volunteerbrash.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://volunteerbrash.com/watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d37137088d16dd9548f869ecd9486639d36cfe0ccfc9762873cd07089b5e5c71f2f93f2fa78d2b7a58068bca48f8ee753ba00cae177ed919665f1005b1fa477e40650688829ac31c8ea9149318cac75f0b2b4237&pst=1686959894&rmtc=t
Set-Cookie: u_pl=17745536; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.DVucyCd613kWbPhTtjRWiGLkXFtpD6POFjNJ1AmKOG8; expires=Fri, 16 Jun 2023 23:58:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 63d7b5965877a831c1c03261fef0c266
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/67/92/1c/67921c464714da676e531aa5489deec8/1627979085.png
45.133.44.9200 OK 145 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/67/92/1c/67921c464714da676e531aa5489deec8/1627979085.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 145 kB (145012 bytes)
Hash 620dee7dda3ab0a55fef5e66735e48e1
c03458e7950bed758e4352ec7a78bb434a3164b1
8552142726040854ba6a1d57037aa513e8cb424e3e5b96f017fb742f7c9255c3
GET /cti/67/92/1c/67921c464714da676e531aa5489deec8/1627979085.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: image/png
content-length: 145012
server: nginx/1.17.6
last-modified: Tue, 03 Aug 2021 08:24:53 GMT
etag: "6108fd55-23674"
expires: Sun, 18 Jun 2023 23:57:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
volunteerbrash.com/fc/e7/dc/fce7dc2ccb5e612c8c292371fd6475dc.js
192.243.59.13200 OK 13 kB URL GET HTTP/1.1 volunteerbrash.com/fc/e7/dc/fce7dc2ccb5e612c8c292371fd6475dc.js
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectvolunteerbrash.com
Fingerprint9B:09:BB:A5:3D:3F:D0:BC:83:1F:28:BD:2A:D9:E1:CE:F0:BA:89:6E
ValidityWed, 03 May 2023 21:31:25 GMT - Tue, 01 Aug 2023 21:31:24 GMT
File type ASCII text, with very long lines (37148), with no line terminators
Hash a9db12f8306d34627c4ac16d3294d309
b665b908cd12a2c5c8237ee42f8126de7dd2b73f
417de9f75a62b60ef811fbc01bf0e9c3dd86d2de54bf9daba157872b03aa564a
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
quad9 Sinkholed
GET /fc/e7/dc/fce7dc2ccb5e612c8c292371fd6475dc.js HTTP/1.1
Host: volunteerbrash.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6a3cc89c9dce30bc9e738ca9589ab718
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
volunteerbrash.com/watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d37137088d16dd9548f869ecd9486639d36cfe0ccfc9762873cd07089b5e5c71f2f93f2fa78d2b7a58068bca48f8ee753ba00cae177ed919665f1005b1fa477e40650688829ac31c8ea9149318cac75f0b2b4237&pst=1686959894&rmtc=t
192.243.59.13200 OK 2.1 kB URL GET HTTP/1.1 volunteerbrash.com/watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d37137088d16dd9548f869ecd9486639d36cfe0ccfc9762873cd07089b5e5c71f2f93f2fa78d2b7a58068bca48f8ee753ba00cae177ed919665f1005b1fa477e40650688829ac31c8ea9149318cac75f0b2b4237&pst=1686959894&rmtc=t
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectvolunteerbrash.com
Fingerprint9B:09:BB:A5:3D:3F:D0:BC:83:1F:28:BD:2A:D9:E1:CE:F0:BA:89:6E
ValidityWed, 03 May 2023 21:31:25 GMT - Tue, 01 Aug 2023 21:31:24 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (2602)
Hash 766e3b856b0d0bad5e49a621eff18379
c8b388f0bac259ffadeacc2a827c3ec4c2deff81
8f081b9613a666e660443c49bf77b8f9f4c00e246c0cde11d6e8d9ce0b9e6db3
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.571938158145.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d37137088d16dd9548f869ecd9486639d36cfe0ccfc9762873cd07089b5e5c71f2f93f2fa78d2b7a58068bca48f8ee753ba00cae177ed919665f1005b1fa477e40650688829ac31c8ea9149318cac75f0b2b4237&pst=1686959894&rmtc=t HTTP/1.1
Host: volunteerbrash.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17745536; ain=eyJhbGciOiJIUzI1NiJ9.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.DVucyCd613kWbPhTtjRWiGLkXFtpD6POFjNJ1AmKOG8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:14 GMT; secure; SameSite=None
iprc68146785f165e6d6139b616c79a9c0bb=3569805; expires=Sat, 17 Jun 2023 03:57:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
pdhtkv25=true; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
uncs25=1; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 84682792cb07d92b16d64bf9cb3e3137
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/0a/b1/19/0ab11970b13dadf9c71649681a7b7b25/1663334700.png
45.133.44.9200 OK 63 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/0a/b1/19/0ab11970b13dadf9c71649681a7b7b25/1663334700.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Hash ca20347717e56278de527735235fa53c
500f51235625acd96f5c6953ad508853196c6440
4b1caf972f548fd2e2e19b1503154e9df2159d9bc3385f79b9b96b03f90ec58d
GET /cti/0a/b1/19/0ab11970b13dadf9c71649681a7b7b25/1663334700.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: image/png
content-length: 63011
server: nginx/1.17.6
last-modified: Fri, 16 Sep 2022 13:25:08 GMT
etag: "63247934-f623"
expires: Sun, 18 Jun 2023 23:57:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/e1/e9/38/e1e9386f091513e4dc7b9ce183ab1193/1627979574.png
45.133.44.9200 OK 129 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/e1/e9/38/e1e9386f091513e4dc7b9ce183ab1193/1627979574.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size 129 kB (128958 bytes)
Hash e9d3ccd8c463b1ef2d6110bb4e6522a0
7d14b8f496d7f53fe36899277fc39ee856bdb60a
b12d119cbbdc3a61a47ccc114f582f664c47e752312202f62e3624d0bd8ff051
GET /cti/e1/e9/38/e1e9386f091513e4dc7b9ce183ab1193/1627979574.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: image/png
content-length: 128958
server: nginx/1.17.6
last-modified: Tue, 03 Aug 2021 08:33:01 GMT
etag: "6108ff3d-1f7be"
expires: Sun, 18 Jun 2023 23:57:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/de/3f/62/de3f624c0734dbfc05348cda21b5c98d/1658920011.png
45.133.44.9200 OK 214 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/de/3f/62/de3f624c0734dbfc05348cda21b5c98d/1658920011.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 160 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 214 kB (213839 bytes)
Hash 1d5c0c87729ad8b2ac5175c523b4968f
a56f93542e7ee8728fc8334d7cc5f4b53c080278
01c52194020d1ab2c4ada1c8fde8fe082ea4d3e80e03b3562e0d4a21c0616ab5
GET /cti/de/3f/62/de3f624c0734dbfc05348cda21b5c98d/1658920011.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: image/png
content-length: 213839
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:06:58 GMT
etag: "62e11c52-3434f"
expires: Sun, 18 Jun 2023 23:57:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
esanimes.com/assets/player/core.js
172.67.153.134200 OK 60 kB URL GET HTTP/2 esanimes.com/assets/player/core.js
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3258339e04c5b37fcd2faa9f4c3e1628
7449df171d88b9b86ac43893c37f749274fba1da
ff5eedec8292ff363b5010c1eeaac9af90ae4119cfd059c7ff1c57c4fd466cb5
GET /assets/player/core.js HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 21 Dec 2021 16:06:10 GMT
etag: W/"61c1fb72-218c2"
expires: Sat, 17 Jun 2023 11:57:10 GMT
cache-control: max-age=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bg%2Ff2jv%2BJKCID3jHyF1aY79EIDIw879aCI5UWrwI84Qul8qXE9uhnR4lG6BaOpmhMKyy%2B4NSMkC3L1XMT%2BEtM%2FHi1%2BlQ8fVd3ZY0PMCCV%2BWK7Oqk76EYaYOrikPqnxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe68581fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sufficedetentionhols.com/watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.139.164307 Temporary Redirect 0 B URL GET HTTP/1.1 sufficedetentionhols.com/watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.139.164:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectsufficedetentionhols.com
FingerprintCB:43:FB:78:FD:A2:7B:30:46:A4:6A:BC:70:FD:E9:E0:04:B4:6D:11
ValidityFri, 19 May 2023 19:01:27 GMT - Thu, 17 Aug 2023 19:01:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: sufficedetentionhols.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://sufficedetentionhols.com/watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=ce8bc76c86af3203a3c953711dbb650dd6b135ebcefa30ce92003ff4a0a11f1ed609ff41cab5955769ba0b3295ef821f9c3675e89baf04b5b2c3fc58be70719ce466e36333eec62afd0101b646ce9c639c58efe1237cb971f7920bbb78c9&pst=1686959894&rmtc=t
Set-Cookie: u_pl=17745536; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.DVucyCd613kWbPhTtjRWiGLkXFtpD6POFjNJ1AmKOG8; expires=Fri, 16 Jun 2023 23:58:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 95d802b36107d98490b941eb19f064c7
Strict-Transport-Security: max-age=0; includeSubdomains
sufficedetentionhols.com/watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=ce8bc76c86af3203a3c953711dbb650dd6b135ebcefa30ce92003ff4a0a11f1ed609ff41cab5955769ba0b3295ef821f9c3675e89baf04b5b2c3fc58be70719ce466e36333eec62afd0101b646ce9c639c58efe1237cb971f7920bbb78c9&pst=1686959894&rmtc=t
173.233.139.164200 OK 2.0 kB URL GET HTTP/1.1 sufficedetentionhols.com/watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=ce8bc76c86af3203a3c953711dbb650dd6b135ebcefa30ce92003ff4a0a11f1ed609ff41cab5955769ba0b3295ef821f9c3675e89baf04b5b2c3fc58be70719ce466e36333eec62afd0101b646ce9c639c58efe1237cb971f7920bbb78c9&pst=1686959894&rmtc=t
IP 173.233.139.164:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectsufficedetentionhols.com
FingerprintCB:43:FB:78:FD:A2:7B:30:46:A4:6A:BC:70:FD:E9:E0:04:B4:6D:11
ValidityFri, 19 May 2023 19:01:27 GMT - Thu, 17 Aug 2023 19:01:26 GMT
File type HTML document, ASCII text, with very long lines (2427)
Hash 40b07d8e86aff345815fe1e6d35f6075
457b96f4d7246c3eae8896827acfae2ebdc38f42
15c4a090abbad59bed0a0a10daec3e37326b94e68d9bba8353e6c5040180c885
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.414947010744.js?key=2c7d9ea46e726ff7b28e0bc7177b8db8&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=ce8bc76c86af3203a3c953711dbb650dd6b135ebcefa30ce92003ff4a0a11f1ed609ff41cab5955769ba0b3295ef821f9c3675e89baf04b5b2c3fc58be70719ce466e36333eec62afd0101b646ce9c639c58efe1237cb971f7920bbb78c9&pst=1686959894&rmtc=t HTTP/1.1
Host: sufficedetentionhols.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17745536; ain=eyJhbGciOiJIUzI1NiJ9.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.DVucyCd613kWbPhTtjRWiGLkXFtpD6POFjNJ1AmKOG8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
pdhtkv25=true; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
uncs25=1; expires=Sat, 17 Jun 2023 23:57:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7773205a13562e79fccdb1ddad1f4374
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/78/a6/1f/78a61fc9e90e37f19a9bd96f19767e96/1627915810.png
45.133.44.9200 OK 89 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/78/a6/1f/78a61fc9e90e37f19a9bd96f19767e96/1627915810.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 160 x 600, 8-bit/color RGB, non-interlaced\012- data
Hash 25cd014a40f08c9b7c50f4791dbe0d0c
550bf1487f297ddae2ca403679561cc8819fa884
d261781a45a8e1b898970abaa5d2aa13db57c39c8c90f7030c88fd681ce4b506
GET /cti/78/a6/1f/78a61fc9e90e37f19a9bd96f19767e96/1627915810.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: image/png
content-length: 89405
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:50:20 GMT
etag: "6108062c-15d3d"
expires: Sun, 18 Jun 2023 23:57:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.203.23200 OK 33 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP 172.64.203.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 8bf542db65f0ff20d510889d62e5e092
1b1b7cc04275b7641e2f07b0f4bf99b5387303bf
77a3bebee72af7beb49cd94b7f16852a532aac5f3db8f610160440fe75ca4711
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 0e1b973e7b1e4eebcb0deb235b1e8d53
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 16 Jun 2023 23:57:14 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NSSU%2Bl3RYFy9nDB6PVOwLPm%2Bdr%2B9xBE6s8Pu7svmFPGYte9AIOYblPVE7wVxvj%2BW9Q0q%2BEpFt25mvzAUGvAcVL5LKHpyJsEWOXPG2cU62KxKzbjLwc6D2zKeijmAxzISCWJUCU0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe75a8320892-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
upload.animeflv.mom/black-clover-tv.jpg
104.21.49.54200 OK 38 kB URL GET HTTP/3 upload.animeflv.mom/black-clover-tv.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 260x370, components 3\012- data
Hash 83b59251a6c4be9953fb91b5f8286d21
4ade70e8f0bfac80e85bd7a0be535352ee51b682
4063b19ef57dab24573dc80be6ce2235568f09cc995c3f350f69324610cc1c71
GET /black-clover-tv.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 38006
last-modified: Fri, 15 Oct 2021 21:29:27 GMT
etag: "6169f2b7-9476"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FdKt%2Bx2NXwUuGIKqCqXbs68rrGBibHcBDtFHV5Qs%2FazTkvbzskkZgGGdxsVLJ9F5xkj0SrxqzkKNGLB1McABB28fY%2BsqnfBCBOOwXg8DrtlG8JJTIWb4hxW6EjW9KQ%2FctzQxS93a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe785e6eb524-OSL
alt-svc: h3=":443"; ma=86400
upload.animeflv.mom/goblin-slayer.jpg
104.21.49.54200 OK 39 kB URL GET HTTP/3 upload.animeflv.mom/goblin-slayer.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 260x370, components 3\012- data
Hash e875980ce97842f0e4478b3c4a1d5ab7
43cc322477fe432c80805503b5ffda5c3bcb7686
8d51a44777b9b0b000e509d205270b2a3a479467e3c6990283d4332a558d8b04
GET /goblin-slayer.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 39343
last-modified: Fri, 15 Oct 2021 21:29:26 GMT
etag: "6169f2b6-99af"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m7p%2FGm5WNhTCsKDxfv22YOfwPvwqRnRk03LCziF5wbVxhLyGE5s2YPri%2FgMfxxmLQcB2ywdVjK8aJbsZFWeE0bLHbSqVCM4XtSTUqPEsuCeTzAlexcYxxHgLGAz%2FdJX9BWrVcicv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe785e77b524-OSL
alt-svc: h3=":443"; ma=86400
upload.animeflv.mom/zettai-junpaku-mahou-shoujo.jpg
104.21.49.54200 OK 26 kB URL GET HTTP/3 upload.animeflv.mom/zettai-junpaku-mahou-shoujo.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 260x370, components 3\012- data
Hash e3945b9158c6532797ad169fe23f3148
b32d3e6aef40e214692775cde7a65c313647ee22
ef31d5ad50c2f7ac68899123e4c0cf48d7d5dafa9ec6355787553a25d29d1ad5
GET /zettai-junpaku-mahou-shoujo.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 26487
last-modified: Fri, 15 Oct 2021 21:29:27 GMT
etag: "6169f2b7-6777"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U1Xs%2BTCvSZELP5VYWj94oJ1%2BkjkH0x%2Fsu%2FCkfXrwvXHHOwXEKyhT%2BFm1STkqwxMnaVoc1k2gMdwN%2BR%2FUTkrCT%2Bdxa2mZPlQ%2FM7CNsA2i5F1WIFp105tcnBdpxFw4aS3VLsrb8tvf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe785e79b524-OSL
alt-svc: h3=":443"; ma=86400
upload.animeflv.mom/kawaisugi-crisis.jpg
104.21.49.54200 OK 26 kB URL GET HTTP/3 upload.animeflv.mom/kawaisugi-crisis.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 260x370, components 3\012- data
Hash 1c326201839f9f62008d5aff80dcf9e4
ece908627a8a489a707d820b8e0ba4c2ca13ff16
5b7dba812e8543fe93159be01bb892541e8cde653b426b39fe829ed85c486e28
GET /kawaisugi-crisis.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 25898
last-modified: Sat, 08 Apr 2023 02:04:12 GMT
etag: "6430cb9c-652a"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SByZSmhplj2F4a8ObNhC%2BHH9wNjf%2F8UleH0UDlpI0dpkbAyrUtCxMhmT9E48No%2BC185ftIZEOYhC1TmKhxfbGdGR4R6qsfgrlVzwU0j1Kt4CZcgNXPpcgauA26v3PZMT%2FdALxQ5o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe786e7eb524-OSL
alt-svc: h3=":443"; ma=86400
upload.animeflv.mom/blade.jpg
104.21.49.54200 OK 19 kB URL GET HTTP/3 upload.animeflv.mom/blade.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x320, components 3\012- data
Hash 34e85b10a907a4cefe103e7eb9c5329a
16e9b9164f3bc13b92475da0c627d2b8940b6289
ffd3ab143637d22f4e49753fadea9784bf7d410e44c6b55646172c790d0e3e0b
GET /blade.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 18702
last-modified: Fri, 15 Oct 2021 21:29:27 GMT
etag: "6169f2b7-490e"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2zOj6OVj8kpiqmiqL60NLJsf3SlVKME2jJSfo3RNXZfgoqchwcZ8TtMPKgGXfbGZpmf195GowOA2CDuT9ldQjmbkRaK1cMauv47oVYzNAyTRMkcGNfcZgPpGZhuWpB9i1r84CUig"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe787e89b524-OSL
alt-svc: h3=":443"; ma=86400
upload.animeflv.mom/ijiranaide-nagatoro-san-2nd-attack.jpg
104.21.49.54200 OK 28 kB URL GET HTTP/3 upload.animeflv.mom/ijiranaide-nagatoro-san-2nd-attack.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 260x370, components 3\012- data
Hash e722ca0a524ca3974381842a7a828512
97ddd62f2d37d79c3590b00e55ae6257bf9fa915
1b086631e7ec4d21ab858e6b6f2e324cf48b4b34109e0e80efb16e49f23e5934
GET /ijiranaide-nagatoro-san-2nd-attack.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 27653
last-modified: Mon, 09 Jan 2023 01:22:45 GMT
etag: "63bb6c65-6c05"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RLF38HQhlJYeqHJQkcQ%2Fcicm2Bj6i%2BCV3MXA%2BlvzygU8dHWNLSOW9JbvqdocqYCbi0H9snK8mvcEJa2bNBnG0RokX8k2EuO4VJ8h8rUcf8mVgerczpfzki5RyUXJI9smtI6K9WZ4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe785e74b524-OSL
alt-svc: h3=":443"; ma=86400
unseenreport.com/pxf.gif?uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=70f1c457bb78c3e9edbf52bf7ff58440&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
192.243.59.20200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=70f1c457bb78c3e9edbf52bf7ff58440&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint40:56:AA:CA:A6:92:50:E4:39:53:0A:50:8E:2A:1C:06:EC:49:B4:DD
ValidityFri, 26 May 2023 07:21:53 GMT - Thu, 24 Aug 2023 07:21:52 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=70f1c457bb78c3e9edbf52bf7ff58440&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:16 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1fc3c73142a6c1e1affd22e295105cf6
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=fce7dc2ccb5e612c8c292371fd6475dc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
192.243.59.20200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=fce7dc2ccb5e612c8c292371fd6475dc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint40:56:AA:CA:A6:92:50:E4:39:53:0A:50:8E:2A:1C:06:EC:49:B4:DD
ValidityFri, 26 May 2023 07:21:53 GMT - Thu, 24 Aug 2023 07:21:52 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=fce7dc2ccb5e612c8c292371fd6475dc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:16 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b5f292e08f4bd629df6c3725ee1633e8
Strict-Transport-Security: max-age=0; includeSubdomains
peachywaspish.com/sbar.json?key=fce7dc2ccb5e612c8c292371fd6475dc&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
192.243.59.12200 OK 2.8 kB URL GET HTTP/1.1 peachywaspish.com/sbar.json?key=fce7dc2ccb5e612c8c292371fd6475dc&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
File type JSON data\012- , ASCII text, with very long lines (6417), with no line terminators
Hash 7cd52c456507d2c48351fc3a0b58aa70
33daf6648cf92f7858320c1a5b973288a88e7b29
fed038b88483400bfcf6b435cc94b1940399b3ea840fac943e0c77ca8b34f04d
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=fce7dc2ccb5e612c8c292371fd6475dc&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=1; pdhtkv23=true; uncs23=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:20 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17532584,19616808; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:20 GMT; secure; SameSite=None
uncs=2; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 840022713200521e6dc169e67d4ced37
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
peachywaspish.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSvW8cxRuejSP9fgoVCCFREF1BEQQ%2B7%2B7tfZEiIglGESYOSfgQDZqdmbWHm91ZzezsXiyKiCCUgkhHRbv3nO3wYUXwB4DQGapISDkqFxiEBKJHco3OtjC8zfu%2Bz%2FMUzzzzfjR2%2B8SHo3vLr%2BkNqRRdajf9xrm3g%2BB8Y0VmbtgY9jrvdqLzDVO%2BGPj9pv9c4xXBBnop9APfD%2FygsSyNSPRwKQiCpg%2BZ7%2FSDZt9vRmEzaEcYmv%2Fu1p2CpR54uU%2BegOSzMzsPIkg2RZZ%2BdVnYQaHzF15OnaKFNij5%2FTeyQaarDOnJmBgPSXb%2FWA1tHy1%2FC51tHRqGLv8RxnJGvN9%2FQ5zdP3aJuNw6MhoriAwxfwxVOYVQU0g6BdN3IPkjAjCOq6vI0u2r2lT01hFL5%2ByMnD74C7KakdM%2FP4ksfXBRyWHjhlaukDqzGCY15HAKuTZF7nZRbJyCrHbBig8g%2BY9k6WAFWbq5apWG5HvPxlFPRIHwF1uizRejqN1bpJQni343EUknSnp%2B5yghKaeQyRRKjEDtApz14KQHl3hwuYeU7zW6LOr1eK%2FNqWAsjJOgl0RJ1KfMT5jf6odwbP6GEYp8BKZGYObDbZcxG7bGwXbO14tBuVkYJzbn4Dj47AgKW4cgcnMbAzmCcd%2FBrtew%2FP%2BwxYx4r5coeY1KEFSWoKIElSSoCoKqrLe4sqGtt7myLg6Oe3jcW%2FVEF2tjuqWLNZGRcb5PHp%2FH7D1%2F8xwGYq%2BRMNHlLGQsbotOELIeC%2FthqxskvBN125zByhrSngK1HjbkjJy9t4xczsj%2F9n5ATHdh1S6YfArUPQNaTbqhD7o%2BiXo%2BNrIdmslUJKpspjoF1zXy4jSKW95Y7ZOnD7%2B7%2F8cCBHt44dN7q7%2Bc5%2B%2BAmRq5qfGe%2FJ5gTd2dXNcV2byuK0u%2BXs0LmcoNOj%2BFGwUtxMIXr4pblTb8ymU7%2BvwlNifm485NYYsVmnGZrVny5UXJuTDL2jBBvrli3xLxNWfXLzqTuXzl2qXlK2luhLVSZ1NQ%2BejN98HkjJwxg8MjP%2FvnJUgzhXE1UveQHBeknoLlt2HzE%2FdWExh1oolzD5WrJyaMT0AlCZQ42Wlcw%2F5rj0%2Fmsb2LNeOBFneQpTVKU6NUNagawbqFSZGbhxd%2Bah0WYuVNYmW8zVgZ9clRtFbuNURXdPr9yI%2B63PfjiIdh0BaMtiLap2GYdFHYGf%2F44Ne%2FAQAA%2F%2F8BAAD%2F%2F%2BKekwexBAAA
192.243.59.12200 OK 7 B URL GET HTTP/1.1 peachywaspish.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSvW8cxRuejSP9fgoVCCFREF1BEQQ%2B7%2B7tfZEiIglGESYOSfgQDZqdmbWHm91ZzezsXiyKiCCUgkhHRbv3nO3wYUXwB4DQGapISDkqFxiEBKJHco3OtjC8zfu%2Bz%2FMUzzzzfjR2%2B8SHo3vLr%2BkNqRRdajf9xrm3g%2BB8Y0VmbtgY9jrvdqLzDVO%2BGPj9pv9c4xXBBnop9APfD%2FygsSyNSPRwKQiCpg%2BZ7%2FSDZt9vRmEzaEcYmv%2Fu1p2CpR54uU%2BegOSzMzsPIkg2RZZ%2BdVnYQaHzF15OnaKFNij5%2FTeyQaarDOnJmBgPSXb%2FWA1tHy1%2FC51tHRqGLv8RxnJGvN9%2FQ5zdP3aJuNw6MhoriAwxfwxVOYVQU0g6BdN3IPkjAjCOq6vI0u2r2lT01hFL5%2ByMnD74C7KakdM%2FP4ksfXBRyWHjhlaukDqzGCY15HAKuTZF7nZRbJyCrHbBig8g%2BY9k6WAFWbq5apWG5HvPxlFPRIHwF1uizRejqN1bpJQni343EUknSnp%2B5yghKaeQyRRKjEDtApz14KQHl3hwuYeU7zW6LOr1eK%2FNqWAsjJOgl0RJ1KfMT5jf6odwbP6GEYp8BKZGYObDbZcxG7bGwXbO14tBuVkYJzbn4Dj47AgKW4cgcnMbAzmCcd%2FBrtew%2FP%2BwxYx4r5coeY1KEFSWoKIElSSoCoKqrLe4sqGtt7myLg6Oe3jcW%2FVEF2tjuqWLNZGRcb5PHp%2FH7D1%2F8xwGYq%2BRMNHlLGQsbotOELIeC%2FthqxskvBN125zByhrSngK1HjbkjJy9t4xczsj%2F9n5ATHdh1S6YfArUPQNaTbqhD7o%2BiXo%2BNrIdmslUJKpspjoF1zXy4jSKW95Y7ZOnD7%2B7%2F8cCBHt44dN7q7%2Bc5%2B%2BAmRq5qfGe%2FJ5gTd2dXNcV2byuK0u%2BXs0LmcoNOj%2BFGwUtxMIXr4pblTb8ymU7%2BvwlNifm485NYYsVmnGZrVny5UXJuTDL2jBBvrli3xLxNWfXLzqTuXzl2qXlK2luhLVSZ1NQ%2BejN98HkjJwxg8MjP%2FvnJUgzhXE1UveQHBeknoLlt2HzE%2FdWExh1oolzD5WrJyaMT0AlCZQ42Wlcw%2F5rj0%2Fmsb2LNeOBFneQpTVKU6NUNagawbqFSZGbhxd%2Bah0WYuVNYmW8zVgZ9clRtFbuNURXdPr9yI%2B63PfjiIdh0BaMtiLap2GYdFHYGf%2F44Ne%2FAQAA%2F%2F8BAAD%2F%2F%2BKekwexBAAA
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSvW8cxRuejSP9fgoVCCFREF1BEQQ%2B7%2B7tfZEiIglGESYOSfgQDZqdmbWHm91ZzezsXiyKiCCUgkhHRbv3nO3wYUXwB4DQGapISDkqFxiEBKJHco3OtjC8zfu%2Bz%2FMUzzzzfjR2%2B8SHo3vLr%2BkNqRRdajf9xrm3g%2BB8Y0VmbtgY9jrvdqLzDVO%2BGPj9pv9c4xXBBnop9APfD%2FygsSyNSPRwKQiCpg%2BZ7%2FSDZt9vRmEzaEcYmv%2Fu1p2CpR54uU%2BegOSzMzsPIkg2RZZ%2BdVnYQaHzF15OnaKFNij5%2FTeyQaarDOnJmBgPSXb%2FWA1tHy1%2FC51tHRqGLv8RxnJGvN9%2FQ5zdP3aJuNw6MhoriAwxfwxVOYVQU0g6BdN3IPkjAjCOq6vI0u2r2lT01hFL5%2ByMnD74C7KakdM%2FP4ksfXBRyWHjhlaukDqzGCY15HAKuTZF7nZRbJyCrHbBig8g%2BY9k6WAFWbq5apWG5HvPxlFPRIHwF1uizRejqN1bpJQni343EUknSnp%2B5yghKaeQyRRKjEDtApz14KQHl3hwuYeU7zW6LOr1eK%2FNqWAsjJOgl0RJ1KfMT5jf6odwbP6GEYp8BKZGYObDbZcxG7bGwXbO14tBuVkYJzbn4Dj47AgKW4cgcnMbAzmCcd%2FBrtew%2FP%2BwxYx4r5coeY1KEFSWoKIElSSoCoKqrLe4sqGtt7myLg6Oe3jcW%2FVEF2tjuqWLNZGRcb5PHp%2FH7D1%2F8xwGYq%2BRMNHlLGQsbotOELIeC%2FthqxskvBN125zByhrSngK1HjbkjJy9t4xczsj%2F9n5ATHdh1S6YfArUPQNaTbqhD7o%2BiXo%2BNrIdmslUJKpspjoF1zXy4jSKW95Y7ZOnD7%2B7%2F8cCBHt44dN7q7%2Bc5%2B%2BAmRq5qfGe%2FJ5gTd2dXNcV2byuK0u%2BXs0LmcoNOj%2BFGwUtxMIXr4pblTb8ymU7%2BvwlNifm485NYYsVmnGZrVny5UXJuTDL2jBBvrli3xLxNWfXLzqTuXzl2qXlK2luhLVSZ1NQ%2BejN98HkjJwxg8MjP%2FvnJUgzhXE1UveQHBeknoLlt2HzE%2FdWExh1oolzD5WrJyaMT0AlCZQ42Wlcw%2F5rj0%2Fmsb2LNeOBFneQpTVKU6NUNagawbqFSZGbhxd%2Bah0WYuVNYmW8zVgZ9clRtFbuNURXdPr9yI%2B63PfjiIdh0BaMtiLap2GYdFHYGf%2F44Ne%2FAQAA%2F%2F8BAAD%2F%2F%2BKekwexBAAA HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzUzMjU4NCwiayI6ImE0Zjc2OGM4OGM4MGFhYmNjZWU2MjgzMjZiY2JlZmM2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTQwNTk0LCJwaWQiOjUxNDUwMSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjoyMywicHQiOjQsInBrIjoic3RnczFneHdhcyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYW5pbWVmbHYubW9tL21vdmllL2JsYWNrLWNsb3Zlci10di12YXNicHZhOS8_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:20 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 930640028bea8ad35c64532c0ca4c653
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html
45.133.44.3200 OK 446 B URL GET HTTP/2 cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html
IP 45.133.44.3:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint0B:AE:8A:C0:29:EA:B0:86:29:66:F6:7E:76:63:66:57:38:88:FC:E6
ValidityMon, 15 May 2023 04:01:53 GMT - Sun, 13 Aug 2023 04:01:52 GMT
File type HTML document text\012- HTML document, ASCII text
Hash 4cadfafa63acfac77d51a9e8d602fd56
59d686d83b171e39e607a1223cd6dced146a785a
51ce9d4f3e78c378cf86521d43deafdb23e01a4c859b72e2ca7bef73736ceaac
GET /sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Fri, 30 Sep 2022 09:26:48 GMT
etag: W/"6336b658-497"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 17 Jun 2023 00:57:20 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/62/99/91/6299919f2727e6f79b6f7ad60ebd36aa/1667590484.png
45.133.44.9200 OK 33 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/62/99/91/6299919f2727e6f79b6f7ad60ebd36aa/1667590484.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2cb2500acb00f247ef19403c3a0f89e1
7c57e8b84b2bb0003810ffae7a14e24869155464
7efcd5082673b787603d2a0b8d768fb26807cf2ab79771a69886a916d0cda3ce
GET /si/62/99/91/6299919f2727e6f79b6f7ad60ebd36aa/1667590484.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: image/png
content-length: 32763
server: nginx/1.17.6
last-modified: Fri, 04 Nov 2022 19:34:52 GMT
etag: "6365695c-7ffb"
expires: Sun, 18 Jun 2023 23:57:20 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
toldclassifiedhardware.com/sbar.json?key=fce7dc2ccb5e612c8c292371fd6475dc&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.139.164200 OK 2.7 kB URL GET HTTP/1.1 toldclassifiedhardware.com/sbar.json?key=fce7dc2ccb5e612c8c292371fd6475dc&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.139.164:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecttoldclassifiedhardware.com
Fingerprint3E:D7:76:BB:BC:8B:7A:F5:34:8F:8E:81:F8:46:0D:EE:80:73:85:FE
ValidityWed, 14 Jun 2023 02:03:11 GMT - Tue, 12 Sep 2023 02:03:10 GMT
File type JSON data\012- , ASCII text, with very long lines (6208), with no line terminators
Hash 612cdb1fa521cd7d2b5b4d6aefd3fedc
a0513223c3b8d0cde1de231ee9a8b30499cb0406
57bde4b573442bacb0cc3a3ad25d6edb065d1f49e4a32cf2b524bbe3ddf63e9e
GET /sbar.json?key=fce7dc2ccb5e612c8c292371fd6475dc&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: toldclassifiedhardware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:20 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19616808; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:20 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 17 Jun 2023 23:57:20 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 93482a9be2eb07364ed377d043fe9071
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4c58e00150b52a44a8ff135b29133181
d3efdac50fa272337927845f52a5137101d7debc
fadd34313125590be8b04e022a607aaaafb88fcd59b5e3969acbbdaf1f51c54b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Jun 2023 23:57:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 1.2 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintA4:D0:2E:0C:FB:98:7C:38:24:ED:CC:2B:FE:74:AA:48:C4:9A:27:90
ValidityMon, 22 May 2023 08:22:04 GMT - Mon, 14 Aug 2023 08:22:03 GMT
File type gzip compressed data, max compression\012- data
Hash a94384ea28d26c977d0b393b2e8c5764
8baf5bd2b4464af1b417173836d4834c396a02eb
aafff412447cc28028a55026ae0523e66ae91c3afafb9cdf650b8c10a70f7863
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Jun 2023 23:57:20 GMT
date: Fri, 16 Jun 2023 23:57:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg
172.64.197.23200 OK 592 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3edeb68064815a05dc25ee715b546048
6ed43c4d875aa7d955e4897c9b78bab55ab4f735
6d87b433d8a0e4648ae21a4491bf63848bf8bb19eb215399d5b6370cb0e6d48f
GET /sb/ssp/utility/social-media/instagram/new/4/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 21:49:43 GMT
etag: W/"6334c177-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 9889347
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SGOnPQg6Iv5FxnzKJjw1eoBBmrpZ6kFJUjYP%2FS1qlCQsMS3cli7hpkkK1742rSzRo93o%2BeQiHPpKmn%2BIdyMfNH1yINnL2g6N6XIQeyJCbFmyo8tKpbV67XDLQ9YAR4w4jbLX8dU6HKIW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9ca890731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F50%2F77%2Fd2%2F5077d2a4de96d9464e3c0d2ecf8bb3de%2F1601543282.html&l=1209&fd=39
192.243.59.12200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F50%2F77%2Fd2%2F5077d2a4de96d9464e3c0d2ecf8bb3de%2F1601543282.html&l=1209&fd=39
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F50%2F77%2Fd2%2F5077d2a4de96d9464e3c0d2ecf8bb3de%2F1601543282.html&l=1209&fd=39 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:20 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.cloudimagesb.com/si/9f/03/9f/9f039f12c3a901981b39e44a7e2deb89/1667590110.png
45.133.44.9200 OK 33 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/9f/03/9f/9f039f12c3a901981b39e44a7e2deb89/1667590110.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint9A:03:0E:A5:2F:A4:91:E5:B4:C5:8B:64:C6:26:DA:66:35:19:14:97
ValidityMon, 29 May 2023 23:04:30 GMT - Sun, 27 Aug 2023 23:04:29 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2cb2500acb00f247ef19403c3a0f89e1
7c57e8b84b2bb0003810ffae7a14e24869155464
7efcd5082673b787603d2a0b8d768fb26807cf2ab79771a69886a916d0cda3ce
GET /si/9f/03/9f/9f039f12c3a901981b39e44a7e2deb89/1667590110.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:21 GMT
content-type: image/png
content-length: 32763
server: nginx/1.17.6
last-modified: Fri, 04 Nov 2022 19:28:39 GMT
etag: "636567e7-7ffb"
expires: Sun, 18 Jun 2023 23:57:21 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
esanimes.com/assets/player/app.js?v=3
172.67.153.134200 OK 5.0 kB URL GET HTTP/2 esanimes.com/assets/player/app.js?v=3
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
Hash 9e02f564b6468b2581b58ff0d91e69ec
51138340e2e7f68d147e605d74c2c61c106b9b51
0698d06f928206a0becfe1e941897d1eef4af2638fb79b7e6bf74be3658418e0
GET /assets/player/app.js?v=3 HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding
last-modified: Sun, 18 Sep 2022 03:14:02 GMT
etag: W/"63268cfa-c74"
expires: Sat, 17 Jun 2023 11:57:10 GMT
cache-control: max-age=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pUywX5T%2FZRtgP%2BAfqf8qgp7L4Y0vNAtCEVFZVYqQywBgfC3lyDfTMd28MK%2FZRiJzt5z6sU4dM07D9Qo5ShXyXBithfZdf1tvXZ8%2BXTMCih1kYSVJuML21TvjmMzq9DQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe685820b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fstyle.css&l=7642&fd=363
192.243.59.12200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fstyle.css&l=7642&fd=363
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fstyle.css&l=7642&fd=363 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f15247b894a1208e9114096e5471926e
9a0866397ba8755ce3feb083c203794575e3cab1
8fe29e24b8a4a510ea04168e92e9134e03d52b292b8616ecd4e02b334247ae07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Jun 2023 23:57:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
friendshipmale.com/sfp.js
172.64.203.23200 OK 28 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP 172.64.203.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 8bf542db65f0ff20d510889d62e5e092
1b1b7cc04275b7641e2f07b0f4bf99b5387303bf
77a3bebee72af7beb49cd94b7f16852a532aac5f3db8f610160440fe75ca4711
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:14 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ec407e53b69905576eeedee9d42e2e62
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 16 Jun 2023 23:57:14 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yvbTHaxWJSqqxV6pxcHgOVLvOeZtAsCkQJaQhXMxEmb4CDxnLNhR%2FL44HPhmBzVM4rbEGI5%2BfuxS6vubqULMLuEpacSs%2BmFaT9%2FcyfdeVpg%2FuBp7TWNWS8l1lo4mz5es%2FEOeqY4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe7729bb0892-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC9:2E:2A:45:EE:CD:C4:04:39:8F:FA:80:3A:30:4F:97:C2:F4:BF:E4
ValidityMon, 22 May 2023 08:22:04 GMT - Mon, 14 Aug 2023 08:22:03 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Jun 2023 03:11:48 GMT
expires: Sun, 09 Jun 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 593133
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC9:2E:2A:45:EE:CD:C4:04:39:8F:FA:80:3A:30:4F:97:C2:F4:BF:E4
ValidityMon, 22 May 2023 08:22:04 GMT - Mon, 14 Aug 2023 08:22:03 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Jun 2023 07:44:41 GMT
expires: Sun, 09 Jun 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 576760
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
peachywaspish.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSvW8cxRuejSP9fgoVCCFREF1BEQQ%2B7%2B7tfZEiIglGESYOSfgQDZqdmbWHm91ZzezsXiyKiCCUgkhHRbv3nO3wYUXwB4DQGapISDkqFxiEBKJHco3OtjC8zfu%2Bz%2FMUzzzzfjR2%2B8SHo3vLr%2BkNqRRdajf9xrm3g%2BB8Y0VmbtgY9jrvdqLzDVO%2BGPj9pv9c4xXBBnop9APfD%2FygsSyNSPRwKQiCpg%2BZ7%2FSDZt9vRmEzaEcYmv%2Fu1p2CpR54uU%2BegOSzMzsPIkg2RZZ%2BdVnYQaHzF15OnaKFNij5%2FTeyQaarDOnJmBgPSXb%2FWA1tHy1%2FC51tHRqGLv8RxnJGvN9%2FQ5zdP3aJuNw6MhoriAwxfwxVOYVQU0g6BdN3IPkjAjCOq6vI0u2r2lT01hFL5%2ByMnD74C7KakdM%2FP4ksfXBRyWHjhlaukDqzGCY15HAKuTZF7nZRbJyCrHbBig8g%2BY9k6WAFWbq5apWG5HvPxlFPRIHwF1uizRejqN1bpJQni343EUknSnp%2B5yghKaeQyRRKjEDtApz14KQHl3hwuYeU7zW6LOr1eK%2FNqWAsjJOgl0RJ1KfMT5jf6odwbP6GEYp8BKZGYObDTZcxOw4%2By%2Fl6MSjD1mZhnNieg2FrHGwfwYcgcnMbAzmCcd%2FBrtew%2FP%2BwxYx4r5coeY1KEFSWoKIElSSoCoKqrLe4sqGtt7myLg6Oe3jcW%2FVEF2tjuqWLNZGRcb5PHp%2FH7D1%2F8xwGYq%2BRMNHlLGQsbotOELIeC%2FthqxskvBN125zByhrSngK1HjbkjJy9t4xczsj%2F9n5ATHdh1S6YfArUPQNaTbqhD7o%2BiXo%2BNrIdmslUJKpspjoF1zXy4jSKW95Y7ZOnD7%2B7%2F8cCBHt44dN7q7%2Bc5%2B%2BAmRq5qfGe%2FJ5gTd2dXNcV2byuK0u%2BXs0LmcoNOj%2BFGwUtxMIXr4pblTb8ymU7%2BvwlNifm485NYYsVmnGZrVny5UXJuTDL2jBBvrli3xLxNWfXLzqTuXzl2qXlK2luhLVSZ1NQ%2BejN98HkjJwxg8MjP%2FvnJUgzhXE1UveQHBeknoLlt2HzE%2FdWExh1oolzD5WrJyaMT0AlCZQ42Wlcw%2F5rj0%2Fmsb2LNeOBFneQpTVKU6NUNagawbqFSZGbhxd%2Bah0WYuVNYmW8zVgZ9clRtFbuNRjzBQ3ibiAEF%2B0WY1GH9eJO0oq6otfmbRR2xj8%2B%2BPVvAAAA%2F%2F8BAAD%2F%2F%2BV7NQKxBAAA
192.243.59.12200 OK 7 B URL GET HTTP/1.1 peachywaspish.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSvW8cxRuejSP9fgoVCCFREF1BEQQ%2B7%2B7tfZEiIglGESYOSfgQDZqdmbWHm91ZzezsXiyKiCCUgkhHRbv3nO3wYUXwB4DQGapISDkqFxiEBKJHco3OtjC8zfu%2Bz%2FMUzzzzfjR2%2B8SHo3vLr%2BkNqRRdajf9xrm3g%2BB8Y0VmbtgY9jrvdqLzDVO%2BGPj9pv9c4xXBBnop9APfD%2FygsSyNSPRwKQiCpg%2BZ7%2FSDZt9vRmEzaEcYmv%2Fu1p2CpR54uU%2BegOSzMzsPIkg2RZZ%2BdVnYQaHzF15OnaKFNij5%2FTeyQaarDOnJmBgPSXb%2FWA1tHy1%2FC51tHRqGLv8RxnJGvN9%2FQ5zdP3aJuNw6MhoriAwxfwxVOYVQU0g6BdN3IPkjAjCOq6vI0u2r2lT01hFL5%2ByMnD74C7KakdM%2FP4ksfXBRyWHjhlaukDqzGCY15HAKuTZF7nZRbJyCrHbBig8g%2BY9k6WAFWbq5apWG5HvPxlFPRIHwF1uizRejqN1bpJQni343EUknSnp%2B5yghKaeQyRRKjEDtApz14KQHl3hwuYeU7zW6LOr1eK%2FNqWAsjJOgl0RJ1KfMT5jf6odwbP6GEYp8BKZGYObDTZcxOw4%2By%2Fl6MSjD1mZhnNieg2FrHGwfwYcgcnMbAzmCcd%2FBrtew%2FP%2BwxYx4r5coeY1KEFSWoKIElSSoCoKqrLe4sqGtt7myLg6Oe3jcW%2FVEF2tjuqWLNZGRcb5PHp%2FH7D1%2F8xwGYq%2BRMNHlLGQsbotOELIeC%2FthqxskvBN125zByhrSngK1HjbkjJy9t4xczsj%2F9n5ATHdh1S6YfArUPQNaTbqhD7o%2BiXo%2BNrIdmslUJKpspjoF1zXy4jSKW95Y7ZOnD7%2B7%2F8cCBHt44dN7q7%2Bc5%2B%2BAmRq5qfGe%2FJ5gTd2dXNcV2byuK0u%2BXs0LmcoNOj%2BFGwUtxMIXr4pblTb8ymU7%2BvwlNifm485NYYsVmnGZrVny5UXJuTDL2jBBvrli3xLxNWfXLzqTuXzl2qXlK2luhLVSZ1NQ%2BejN98HkjJwxg8MjP%2FvnJUgzhXE1UveQHBeknoLlt2HzE%2FdWExh1oolzD5WrJyaMT0AlCZQ42Wlcw%2F5rj0%2Fmsb2LNeOBFneQpTVKU6NUNagawbqFSZGbhxd%2Bah0WYuVNYmW8zVgZ9clRtFbuNRjzBQ3ibiAEF%2B0WY1GH9eJO0oq6otfmbRR2xj8%2B%2BPVvAAAA%2F%2F8BAAD%2F%2F%2BV7NQKxBAAA
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSvW8cxRuejSP9fgoVCCFREF1BEQQ%2B7%2B7tfZEiIglGESYOSfgQDZqdmbWHm91ZzezsXiyKiCCUgkhHRbv3nO3wYUXwB4DQGapISDkqFxiEBKJHco3OtjC8zfu%2Bz%2FMUzzzzfjR2%2B8SHo3vLr%2BkNqRRdajf9xrm3g%2BB8Y0VmbtgY9jrvdqLzDVO%2BGPj9pv9c4xXBBnop9APfD%2FygsSyNSPRwKQiCpg%2BZ7%2FSDZt9vRmEzaEcYmv%2Fu1p2CpR54uU%2BegOSzMzsPIkg2RZZ%2BdVnYQaHzF15OnaKFNij5%2FTeyQaarDOnJmBgPSXb%2FWA1tHy1%2FC51tHRqGLv8RxnJGvN9%2FQ5zdP3aJuNw6MhoriAwxfwxVOYVQU0g6BdN3IPkjAjCOq6vI0u2r2lT01hFL5%2ByMnD74C7KakdM%2FP4ksfXBRyWHjhlaukDqzGCY15HAKuTZF7nZRbJyCrHbBig8g%2BY9k6WAFWbq5apWG5HvPxlFPRIHwF1uizRejqN1bpJQni343EUknSnp%2B5yghKaeQyRRKjEDtApz14KQHl3hwuYeU7zW6LOr1eK%2FNqWAsjJOgl0RJ1KfMT5jf6odwbP6GEYp8BKZGYObDTZcxOw4%2By%2Fl6MSjD1mZhnNieg2FrHGwfwYcgcnMbAzmCcd%2FBrtew%2FP%2BwxYx4r5coeY1KEFSWoKIElSSoCoKqrLe4sqGtt7myLg6Oe3jcW%2FVEF2tjuqWLNZGRcb5PHp%2FH7D1%2F8xwGYq%2BRMNHlLGQsbotOELIeC%2FthqxskvBN125zByhrSngK1HjbkjJy9t4xczsj%2F9n5ATHdh1S6YfArUPQNaTbqhD7o%2BiXo%2BNrIdmslUJKpspjoF1zXy4jSKW95Y7ZOnD7%2B7%2F8cCBHt44dN7q7%2Bc5%2B%2BAmRq5qfGe%2FJ5gTd2dXNcV2byuK0u%2BXs0LmcoNOj%2BFGwUtxMIXr4pblTb8ymU7%2BvwlNifm485NYYsVmnGZrVny5UXJuTDL2jBBvrli3xLxNWfXLzqTuXzl2qXlK2luhLVSZ1NQ%2BejN98HkjJwxg8MjP%2FvnJUgzhXE1UveQHBeknoLlt2HzE%2FdWExh1oolzD5WrJyaMT0AlCZQ42Wlcw%2F5rj0%2Fmsb2LNeOBFneQpTVKU6NUNagawbqFSZGbhxd%2Bah0WYuVNYmW8zVgZ9clRtFbuNRjzBQ3ibiAEF%2B0WY1GH9eJO0oq6otfmbRR2xj8%2B%2BPVvAAAA%2F%2F8BAAD%2F%2F%2BV7NQKxBAAA HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 003461f9c9e432a042f48cc2b9d40f84
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f15247b894a1208e9114096e5471926e
9a0866397ba8755ce3feb083c203794575e3cab1
8fe29e24b8a4a510ea04168e92e9134e03d52b292b8616ecd4e02b334247ae07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Jun 2023 23:57:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 694 B URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintA4:D0:2E:0C:FB:98:7C:38:24:ED:CC:2B:FE:74:AA:48:C4:9A:27:90
ValidityMon, 22 May 2023 08:22:04 GMT - Mon, 14 Aug 2023 08:22:03 GMT
Hash cb2c9df74facee436bb99358b04d9bab
4bf65a78e6a0566051b5b47b75e8b0deac478071
e40dbc6da95b47d932014e5a93f35b13a341a37ea6fe7559dca041dc77271cd6
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Jun 2023 23:57:21 GMT
date: Fri, 16 Jun 2023 23:57:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fjs%2Fscript.js&l=444&fd=366
173.233.137.52200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fjs%2Fscript.js&l=444&fd=366
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fjs%2Fscript.js&l=444&fd=366 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzUzMjU4NCwiayI6ImE0Zjc2OGM4OGM4MGFhYmNjZWU2MjgzMjZiY2JlZmM2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTQwNTk0LCJwaWQiOjUxNDUwMSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjoyMywicHQiOjQsInBrIjoic3RnczFneHdhcyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYW5pbWVmbHYubW9tL21vdmllL2JsYWNrLWNsb3Zlci10di12YXNicHZhOS8_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fanimate.css&l=79245&fd=366
173.233.137.52200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fanimate.css&l=79245&fd=366
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fanimate.css&l=79245&fd=366 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC9:2E:2A:45:EE:CD:C4:04:39:8F:FA:80:3A:30:4F:97:C2:F4:BF:E4
ValidityMon, 22 May 2023 08:22:04 GMT - Mon, 14 Aug 2023 08:22:03 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Jun 2023 03:11:48 GMT
expires: Sun, 09 Jun 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 593133
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC9:2E:2A:45:EE:CD:C4:04:39:8F:FA:80:3A:30:4F:97:C2:F4:BF:E4
ValidityMon, 22 May 2023 08:22:04 GMT - Mon, 14 Aug 2023 08:22:03 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Jun 2023 07:44:41 GMT
expires: Sun, 09 Jun 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 576760
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
toldclassifiedhardware.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTgLfL%2FGkiODBMAcPEd3Z7p6emR5ziMY4ElyzMYk%2F8CLVVdWTcqq7mqr%2BMVk8BAOSg4Hx5LX3TTaLugT9AxSZ1dOCsONpDq4iKN6FPcvsLo5%2BLp%2F3%2Br3D6%2FepjzeLA%2BKioPP%2BG3pDKkVX2023cf5dz7vQWJNpMWqMws77neBCw5Qvem6v6T7XeE2woV71Xc91Pddr9KURsR6tep7XdCGznZ7X7LnNwG967QAj819uCweWOuDlAXkCks%2FO7jwKINkUafLVZWGHuc5eeDUpFM21Qcm330qHqa5SJEsYGwdxun3ihrb7%2FW%2Bh062jwNDlP8ZIzojz%2B2%2BI0u2TlIjKreOgkYJIEfHHUJVTCDWFpFMwfReS7xOAcVxdR5o8vKpNRW8fq3ShzsiZw78gqxk58%2FOTSJNHl5QcNW5oVeRSpxajuIYcTSEHU2TFLvKNU5DVLlj%2BEST%2FkaweriFNHqxbpSH5%2FNkoCEXgCXelJdp8JQja4QqlPF5xu7GIO0Ecup3jhqScQsZTKDEGtadRWAeFdFDEDorMQcLnjS4LwpCHbU4FY34Ue2EcxEGPMjdmbqvno2CLfxgjz8Zgagxm7iAzdzCUY5jiO9hbNSz%2FP2w%2BI86bJUpeoxIElSWoKEElCaqcoCrrLa6sb%2BuHXNki8k62f7Jb9UTng026pfOBSMlmdkAeX5TnPH%2FzPIZi3oiZ6HLmMxa1RcfzWcj8nt%2FqejHvBN02Z7CyhrSnQK2DDTkj5%2B73kckZ%2Bd%2F8B0R0F1btgsmnQItnQKtJ13dBb02C0MVGukNTmYhYlc1EJ%2BC6RpafQX7b2VQH5OmjI%2Fb%2BIBBs7%2BJn99d%2FucDfAzM1MlPjA%2Fk9wUDdm1zXFXlwXVeWfL2e5TKRG3Rx4Bs5zcXpL14Xtytt%2BJXLdvz5y2whLODOTWHzNZpymQ4s%2BfKS5FyYvjZMkG%2Bu2HdEdK2wty4VJi2ytWuv9K8kmRHWSp1OQeX%2B2x%2BCyRk5a4ZHT%2Ffcny9BmilMUSMp9sjJQOopWHYHNlumt5rAqKUnyhxURT0xfrT8qCSBEktOoxr2Xzxa4k17DwPjgOZ3kSY1SlOjVDWoGsMWpyd5ZvYu%2FtQ6GkTKmUTKOA8iZdSnx9VaOW8w5grqRV1PCC7aLcaCDgujTtwKuiJs8zZyO%2BOfHP76NwAAAP%2F%2FAQAA%2F%2F%2B8HbjQhwQAAA%3D%3D
173.233.139.164200 OK 7 B URL GET HTTP/1.1 toldclassifiedhardware.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTgLfL%2FGkiODBMAcPEd3Z7p6emR5ziMY4ElyzMYk%2F8CLVVdWTcqq7mqr%2BMVk8BAOSg4Hx5LX3TTaLugT9AxSZ1dOCsONpDq4iKN6FPcvsLo5%2BLp%2F3%2Br3D6%2FepjzeLA%2BKioPP%2BG3pDKkVX2023cf5dz7vQWJNpMWqMws77neBCw5Qvem6v6T7XeE2woV71Xc91Pddr9KURsR6tep7XdCGznZ7X7LnNwG967QAj819uCweWOuDlAXkCks%2FO7jwKINkUafLVZWGHuc5eeDUpFM21Qcm330qHqa5SJEsYGwdxun3ihrb7%2FW%2Bh062jwNDlP8ZIzojz%2B2%2BI0u2TlIjKreOgkYJIEfHHUJVTCDWFpFMwfReS7xOAcVxdR5o8vKpNRW8fq3ShzsiZw78gqxk58%2FOTSJNHl5QcNW5oVeRSpxajuIYcTSEHU2TFLvKNU5DVLlj%2BEST%2FkaweriFNHqxbpSH5%2FNkoCEXgCXelJdp8JQja4QqlPF5xu7GIO0Ecup3jhqScQsZTKDEGtadRWAeFdFDEDorMQcLnjS4LwpCHbU4FY34Ue2EcxEGPMjdmbqvno2CLfxgjz8Zgagxm7iAzdzCUY5jiO9hbNSz%2FP2w%2BI86bJUpeoxIElSWoKEElCaqcoCrrLa6sb%2BuHXNki8k62f7Jb9UTng026pfOBSMlmdkAeX5TnPH%2FzPIZi3oiZ6HLmMxa1RcfzWcj8nt%2FqejHvBN02Z7CyhrSnQK2DDTkj5%2B73kckZ%2Bd%2F8B0R0F1btgsmnQItnQKtJ13dBb02C0MVGukNTmYhYlc1EJ%2BC6RpafQX7b2VQH5OmjI%2Fb%2BIBBs7%2BJn99d%2FucDfAzM1MlPjA%2Fk9wUDdm1zXFXlwXVeWfL2e5TKRG3Rx4Bs5zcXpL14Xtytt%2BJXLdvz5y2whLODOTWHzNZpymQ4s%2BfKS5FyYvjZMkG%2Bu2HdEdK2wty4VJi2ytWuv9K8kmRHWSp1OQeX%2B2x%2BCyRk5a4ZHT%2Ffcny9BmilMUSMp9sjJQOopWHYHNlumt5rAqKUnyhxURT0xfrT8qCSBEktOoxr2Xzxa4k17DwPjgOZ3kSY1SlOjVDWoGsMWpyd5ZvYu%2FtQ6GkTKmUTKOA8iZdSnx9VaOW8w5grqRV1PCC7aLcaCDgujTtwKuiJs8zZyO%2BOfHP76NwAAAP%2F%2FAQAA%2F%2F%2B8HbjQhwQAAA%3D%3D
IP 173.233.139.164:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecttoldclassifiedhardware.com
Fingerprint3E:D7:76:BB:BC:8B:7A:F5:34:8F:8E:81:F8:46:0D:EE:80:73:85:FE
ValidityWed, 14 Jun 2023 02:03:11 GMT - Tue, 12 Sep 2023 02:03:10 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTgLfL%2FGkiODBMAcPEd3Z7p6emR5ziMY4ElyzMYk%2F8CLVVdWTcqq7mqr%2BMVk8BAOSg4Hx5LX3TTaLugT9AxSZ1dOCsONpDq4iKN6FPcvsLo5%2BLp%2F3%2Br3D6%2FepjzeLA%2BKioPP%2BG3pDKkVX2023cf5dz7vQWJNpMWqMws77neBCw5Qvem6v6T7XeE2woV71Xc91Pddr9KURsR6tep7XdCGznZ7X7LnNwG967QAj819uCweWOuDlAXkCks%2FO7jwKINkUafLVZWGHuc5eeDUpFM21Qcm330qHqa5SJEsYGwdxun3ihrb7%2FW%2Bh062jwNDlP8ZIzojz%2B2%2BI0u2TlIjKreOgkYJIEfHHUJVTCDWFpFMwfReS7xOAcVxdR5o8vKpNRW8fq3ShzsiZw78gqxk58%2FOTSJNHl5QcNW5oVeRSpxajuIYcTSEHU2TFLvKNU5DVLlj%2BEST%2FkaweriFNHqxbpSH5%2FNkoCEXgCXelJdp8JQja4QqlPF5xu7GIO0Ecup3jhqScQsZTKDEGtadRWAeFdFDEDorMQcLnjS4LwpCHbU4FY34Ue2EcxEGPMjdmbqvno2CLfxgjz8Zgagxm7iAzdzCUY5jiO9hbNSz%2FP2w%2BI86bJUpeoxIElSWoKEElCaqcoCrrLa6sb%2BuHXNki8k62f7Jb9UTng026pfOBSMlmdkAeX5TnPH%2FzPIZi3oiZ6HLmMxa1RcfzWcj8nt%2FqejHvBN02Z7CyhrSnQK2DDTkj5%2B73kckZ%2Bd%2F8B0R0F1btgsmnQItnQKtJ13dBb02C0MVGukNTmYhYlc1EJ%2BC6RpafQX7b2VQH5OmjI%2Fb%2BIBBs7%2BJn99d%2FucDfAzM1MlPjA%2Fk9wUDdm1zXFXlwXVeWfL2e5TKRG3Rx4Bs5zcXpL14Xtytt%2BJXLdvz5y2whLODOTWHzNZpymQ4s%2BfKS5FyYvjZMkG%2Bu2HdEdK2wty4VJi2ytWuv9K8kmRHWSp1OQeX%2B2x%2BCyRk5a4ZHT%2Ffcny9BmilMUSMp9sjJQOopWHYHNlumt5rAqKUnyhxURT0xfrT8qCSBEktOoxr2Xzxa4k17DwPjgOZ3kSY1SlOjVDWoGsMWpyd5ZvYu%2FtQ6GkTKmUTKOA8iZdSnx9VaOW8w5grqRV1PCC7aLcaCDgujTtwKuiJs8zZyO%2BOfHP76NwAAAP%2F%2FAQAA%2F%2F%2B8HbjQhwQAAA%3D%3D HTTP/1.1
Host: toldclassifiedhardware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=19616808; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e9228e127daa60a8d82a04fd91272ed4
Strict-Transport-Security: max-age=0; includeSubdomains
peachywaspish.com/pixel/sbs?c=1
173.233.137.52200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbs?c=1
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fstyle.css&l=5644&fd=285
173.233.137.52200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fstyle.css&l=5644&fd=285
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fstyle.css&l=5644&fd=285 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fjs%2Fscript.js&l=386&fd=298
173.233.137.52200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fjs%2Fscript.js&l=386&fd=298
IP 173.233.137.52:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fjs%2Fscript.js&l=386&fd=298 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzUzMjU4NCwiayI6ImE0Zjc2OGM4OGM4MGFhYmNjZWU2MjgzMjZiY2JlZmM2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTQwNTk0LCJwaWQiOjUxNDUwMSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjoyMywicHQiOjQsInBrIjoic3RnczFneHdhcyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYW5pbWVmbHYubW9tL21vdmllL2JsYWNrLWNsb3Zlci10di12YXNicHZhOS8_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
toldclassifiedhardware.com/pixel/sbs?c=1
173.233.137.44200 OK 0 B URL GET HTTP/1.1 toldclassifiedhardware.com/pixel/sbs?c=1
IP 173.233.137.44:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecttoldclassifiedhardware.com
Fingerprint3E:D7:76:BB:BC:8B:7A:F5:34:8F:8E:81:F8:46:0D:EE:80:73:85:FE
ValidityWed, 14 Jun 2023 02:03:11 GMT - Tue, 12 Sep 2023 02:03:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: toldclassifiedhardware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=19616808; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
animeflv.mom/wp-content/litespeed/css/fb7b34734b9330dd8de051a32a9b8ffb.css?ver=b8ffb
104.21.49.54200 OK 1.4 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/fb7b34734b9330dd8de051a32a9b8ffb.css?ver=b8ffb
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1444), with no line terminators
Hash 02116db210fb0c339aea53cdbae0f51b
2886a7ac1c57e566c0e14401fdda1c41145cc552
dc7433be7f795f679637af8b497a5828eac3bd172134916ff8cd830c27df6310
GET /wp-content/litespeed/css/fb7b34734b9330dd8de051a32a9b8ffb.css?ver=b8ffb HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"5a4-648cf6d2-6595c2;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ttLzEbQvyvPdhPlXRmhex7P2s7EGjd3bmwHWU5MIMYfxV4NECNHDM%2FH%2Fi6p1rVHuSArPHtJB9McMpMedUi73XIGq2azUqfSZYFdlFgn4wUoOrRwtdMRiCBZRk7OUDxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe603e51b524-OSL
content-encoding: br
aniflv.me/assets/jquery/cldaly2.js
188.114.97.1200 OK 269 B URL GET HTTP/3 aniflv.me/assets/jquery/cldaly2.js
IP 188.114.97.1:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerLet's Encrypt
Subjectaniflv.me
Fingerprint4D:04:E9:A1:5A:71:3B:A5:FB:E8:D7:A1:2B:C2:39:47:FB:CC:BF:48
ValidityFri, 09 Jun 2023 02:51:33 GMT - Thu, 07 Sep 2023 02:51:32 GMT
File type ASCII text, with no line terminators
Hash f3960419a364bab377aaa61d85f5ac3e
9449d1216efad04d66c920eafba4aeff9804bd86
f1ba24c3aef2c19c1a4f14737838d89d9ee88222df3d38ed52863d606e444994
GET /assets/jquery/cldaly2.js HTTP/1.1
Host: aniflv.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/javascript; charset=UTF-8
expires: Thu, 15 Jun 2023 23:57:12 GMT
set-cookie: lang=1; domain=.aniflv.me; path=/; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kCu18yTseBHviWBCH50WtxynPqawdD%2FLw9pk8rT4DTtv5Youf763%2FIzoDVPUSYWffq8unyZi8jsjSWP9PRptnopi%2F6YD9ItGat4CKfkZBdXD9HTRAcb4hFvVWhk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe6b4fd9b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/js/script.js
172.64.197.23200 OK 386 B URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/js/script.js
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
File type ASCII text, with very long lines (399), with no line terminators
Hash 022602a468da44628060800173771da2
9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c
6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc
GET /sb/notifications/software/us/windows/flash-all/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:21 GMT
content-type: application/javascript
last-modified: Wed, 17 Feb 2021 11:46:52 GMT
etag: W/"602d022c-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JAF88clPY77CwuZSDiHSOpJIZv6KNHL29reQTaodRHWS09OlbP5Le9BEEgQNCi5MilumRrhthsFjJAEqZsEwwU44KTuJssALdXCBa1Sjs0E10ZpSm1VleKPN15fSDT9uNVc7K2sTY8rq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9dd946731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
nullboatloo.com/watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.137.36307 Temporary Redirect 3.3 kB URL GET HTTP/1.1 nullboatloo.com/watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectnullboatloo.com
Fingerprint73:FF:4A:99:88:8D:44:4F:65:92:BA:85:FC:6E:26:65:D1:F2:AF:60
ValidityTue, 13 Jun 2023 00:40:31 GMT - Mon, 11 Sep 2023 00:40:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: nullboatloo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://nullboatloo.com/watch.42418066758.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=6b6afa488786218bdeebcbfd2b2a664b3ec2ebc946f21a4bdfafd39ffa810a49693498ce3083a56f9d647ab34312e560e007a4089a8f814e1513f94c040f752328f0679018993cd0bbcd0a3078ab14aa582605032fba0f149bbc28c42a12&pst=1686959892&rmtc=t
Set-Cookie: u_pl=17532583; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU; expires=Fri, 16 Jun 2023 23:58:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b5966a08c0f6974ee8d945940422efe4
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/animate.css
172.64.197.23200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/animate.css
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET /sb/notifications/software/us/windows/flash-all/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:21 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:46:51 GMT
etag: W/"602d022b-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FtGZm%2BPv3%2FU1ZY4RQt%2BJ1aXKpF8lyWj74yki3OHkd3Y8nLahHFFECz372yADSKrau%2B0uaIbuY%2FlFqZNkl5YV4ByaIN31caQBwMvZYNmjLSPv5BcoN781%2FN4qQ9WddCcL3LL5%2FiKj7qS%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9dc936731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
104.21.49.54200 OK 77 kB URL GET HTTP/3 animeflv.mom/wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/animeflv_mom/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/wp-content/litespeed/css/19369bc395757a34b9db664c1041f203.css?ver=1f203
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: font/woff2
content-length: 77160
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:10 GMT
etag: "12d68-6242daa9-5018fd;;;"
last-modified: Tue, 29 Mar 2022 10:08:41 GMT
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k2NY9HgKmwD%2BkRmJQlGIPjuB02hXJOhgXDb8VKu56eycYWP6X08Jmzg7ZvUjGHzZbMIv05ZQ95KB8SkMsckMbUVS5HAjZj0ofP549BXro8gdmeq1FZgSjDYbmDLY1e8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe61ff92b524-OSL
cdn.barscreative1.com/sb/au/50/77/d2/5077d2a4de96d9464e3c0d2ecf8bb3de/1601543282.html
45.133.44.3200 OK 1.2 kB URL GET HTTP/2 cdn.barscreative1.com/sb/au/50/77/d2/5077d2a4de96d9464e3c0d2ecf8bb3de/1601543282.html
IP 45.133.44.3:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint0B:AE:8A:C0:29:EA:B0:86:29:66:F6:7E:76:63:66:57:38:88:FC:E6
ValidityMon, 15 May 2023 04:01:53 GMT - Sun, 13 Aug 2023 04:01:52 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1289), with no line terminators
Hash 098bfc2177ebd9189f3d5dc38b23f0d2
607d7fdb827b338f84527f508b51f1f399cd3939
acf00da377ebcbe6babf5b91dbaad7dcbd9e2aa38c0b612d7407840e1680991e
GET /sb/au/50/77/d2/5077d2a4de96d9464e3c0d2ecf8bb3de/1601543282.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Sat, 07 May 2022 03:21:28 GMT
etag: W/"6275e5b8-4b9"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 17 Jun 2023 00:57:20 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
esanimes.com/assets/player/style.css?v=1
172.67.153.134200 OK 9.3 kB URL GET HTTP/2 esanimes.com/assets/player/style.css?v=1
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type ASCII text, with very long lines (9628), with no line terminators
Hash 9c8ac5ee4732710a8e8aac3b8f21d3ec
05cf6b6b71808e0df17b7f5580ff0adfe025a1ad
2724f22b4470f786b0bde06b23256b3ce544a43546409864bc286dd59cc2465f
GET /assets/player/style.css?v=1 HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 21 Dec 2021 16:11:34 GMT
etag: W/"61c1fcb6-2429"
expires: Sat, 17 Jun 2023 11:57:10 GMT
cache-control: max-age=86400
x-cache: BYPASS
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQ9tCbbURd3DdHMm4pxi1a1giqxczX80njACfipeig63cptUnesvG3yEZ%2FC%2FlCZWMwY0Vb7cQDlZ9NVBwNMOYMBOhVWxoyxtWobxGXTpbpMmLaZ3XexX49Y45XkIZrs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe68581eb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fd3%2F55%2Ffb%2Fd355fb06fa4f4907609b7d285fa07f7a%2F1664530003.html&l=1175&fd=96
192.243.59.12200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fd3%2F55%2Ffb%2Fd355fb06fa4f4907609b7d285fa07f7a%2F1664530003.html&l=1175&fd=96
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fd3%2F55%2Ffb%2Fd355fb06fa4f4907609b7d285fa07f7a%2F1664530003.html&l=1175&fd=96 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzUzMjU4NCwiayI6ImE0Zjc2OGM4OGM4MGFhYmNjZWU2MjgzMjZiY2JlZmM2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTQwNTk0LCJwaWQiOjUxNDUwMSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjoyMywicHQiOjQsInBrIjoic3RnczFneHdhcyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYW5pbWVmbHYubW9tL21vdmllL2JsYWNrLWNsb3Zlci10di12YXNicHZhOS8_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:20 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fanimate.css&l=79245&fd=286
192.243.59.12200 OK 0 B URL GET HTTP/1.1 peachywaspish.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fanimate.css&l=79245&fd=286
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fanimate.css&l=79245&fd=286 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=17532584,19616808; ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=2; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:21 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
animeflv.mom/wp-content/litespeed/css/7454a435df9395ab48f040cda8d24e3f.css?ver=24e3f
104.21.49.54200 OK 42 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/7454a435df9395ab48f040cda8d24e3f.css?ver=24e3f
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (41533), with no line terminators
Hash 5e42533ef47cda14c7427de80776ccc0
a7ac4605c2ee04f011c6ce3a9c40ad2d4108fc63
9636623e3f7bbb658fed4a530c7fb3b1f12e4d42fcda3e086210c199919e52c2
GET /wp-content/litespeed/css/7454a435df9395ab48f040cda8d24e3f.css?ver=24e3f HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"a23d-648cf6d2-6595bb;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HWnfBIXPBSESPrbhvYJsNS1f%2F%2BFwhg%2BRhimehhj5zk6TsNk3kSVrwBMVOXJPyUrgxS48J5VOHZDMJlYKcFEvownYt3YXCkq%2BShtPuPtpmIsjALWiW8i5YV9tbACjc9Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe601e36b524-OSL
content-encoding: br
animeflv.mom/wp-content/litespeed/css/19369bc395757a34b9db664c1041f203.css?ver=1f203
104.21.49.54200 OK 1.5 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/19369bc395757a34b9db664c1041f203.css?ver=1f203
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1506), with no line terminators
Hash 002fe9167032e6a50b66ee7dc0b57cf8
97ff0d18f38a6094066f5c15296b6bc3988b505b
3618fcf677542195b196a837f96fb05ac61fd6bc67c6807666c3a0e7b87e3eea
GET /wp-content/litespeed/css/19369bc395757a34b9db664c1041f203.css?ver=1f203 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"5c9-648cf6d2-6595bf;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ZPhMfPmsYHdZ%2FcLpzRj7gtWfFFJzqKwe940JywzLjUrg%2Fz7gQSqAK4LB1oSZ%2BFBDSClwwrXb3l4zdviqTaqzoC%2B4cEqTWKoOCw%2BT4kpq2MOZKSj%2B5JQ%2FYCl0lGj8Hs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe602e3fb524-OSL
content-encoding: br
animeflv.mom/wp-content/litespeed/css/3cc4c21456282d7eb75fabed775cd922.css?ver=cd922
104.21.49.54200 OK 30 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/3cc4c21456282d7eb75fabed775cd922.css?ver=cd922
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (28942)
Hash 7305c8baa4b4b6f53dc66ec065d88771
5c74910ba51343f236bb6aa444ab7feb7d277912
3def0521a49631a59921388e528dbe7b0dc3ef09839a2c130b0e864abbbbf050
GET /wp-content/litespeed/css/3cc4c21456282d7eb75fabed775cd922.css?ver=cd922 HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"7364-648cf6d2-6595c1;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h7%2FSoDuGbGFH6K9EJfA3j%2Brd17TCIpnzeXiGrYyE62V%2Fl%2BKUoJaOqDRZM8dVy2TGnDH9VAMGKhCsICoCx7MnY4gb5GdD9OwZA2qvOT%2B5yUTbS8fSzbyRXZuMkY1zpos%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe602e42b524-OSL
content-encoding: br
peachywaspish.com/watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
192.243.59.12307 Temporary Redirect 3.3 kB URL GET HTTP/1.1 peachywaspish.com/watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectpeachywaspish.com
Fingerprint97:D5:C0:30:FB:E5:3D:37:A8:C2:9E:3F:EF:FA:48:D5:3F:61:97:0E
ValidityWed, 03 May 2023 21:30:49 GMT - Tue, 01 Aug 2023 21:30:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: peachywaspish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://peachywaspish.com/watch.938186120779.js?key=a4f768c88c80aabccee628326bcbefc6&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=3deb49fa2b8430c248582bd4f0ebd63124a91f204a0831bf8fdcaa9907dc6751b627f424067f3a174718b714052b6430d4227a87434cdc47c90747827198e897d688f46ece32d93ccbf1f949f9eafbd70af6c4ca&pst=1686959892&rmtc=t
Set-Cookie: u_pl=17532584; expires=Sat, 17 Jun 2023 23:57:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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_ZXA9NDAifX0.k2mTUAh45A4nGq2vDpo8ePoY09-yGWK8K3f54qLSfFY; expires=Fri, 16 Jun 2023 23:58:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 91d289befb0060519fb11f3f6761aa0b
Strict-Transport-Security: max-age=0; includeSubdomains
aniflv.me/css/app.v1.5.css?v=1
188.114.97.1200 OK 12 kB URL GET HTTP/3 aniflv.me/css/app.v1.5.css?v=1
IP 188.114.97.1:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerLet's Encrypt
Subjectaniflv.me
Fingerprint4D:04:E9:A1:5A:71:3B:A5:FB:E8:D7:A1:2B:C2:39:47:FB:CC:BF:48
ValidityFri, 09 Jun 2023 02:51:33 GMT - Thu, 07 Sep 2023 02:51:32 GMT
File type ASCII text, with CRLF line terminators
Hash 85d4db2b1387c093225b0fda2543d3b4
19daee010d3cef97451faed6c09d6dda3aa13484
30e34f078f4b1eb1dfcf9db25cf454e902aadc7586f937b0135442ea57ba58a6
GET /css/app.v1.5.css?v=1 HTTP/1.1
Host: aniflv.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/css
last-modified: Sun, 26 Feb 2023 19:25:53 GMT
etag: W/"63fbb241-2d43"
expires: Fri, 23 Jun 2023 23:57:12 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wgpdC52rr7cGApeaaUhjSkePz5l2y2j%2FySp09UDy7vBOOfs%2BJatMg5fetnQvmu7cGAWCrxYOaslzFfBH0N148hTRkTsvicIlBBkl8iLU4Y5l3UpUj%2Fb8xjiinJ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6b2f9db4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
aniflv.me/player8/jwplayer.8.9.5.js
188.114.97.1200 OK 109 kB URL GET HTTP/3 aniflv.me/player8/jwplayer.8.9.5.js
IP 188.114.97.1:443
Requested by https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Certificate IssuerLet's Encrypt
Subjectaniflv.me
Fingerprint4D:04:E9:A1:5A:71:3B:A5:FB:E8:D7:A1:2B:C2:39:47:FB:CC:BF:48
ValidityFri, 09 Jun 2023 02:51:33 GMT - Thu, 07 Sep 2023 02:51:32 GMT
File type ASCII text, with very long lines (65142)
Size 109 kB (108637 bytes)
Hash 276612f7feaf29b652ccc818eb133d90
55fed74a3c41c4577256138572efe3cb730f3059
42134f93416be42cff23952942d6141c8a74c75e438b5194ddf52e9cfe300393
GET /player8/jwplayer.8.9.5.js HTTP/1.1
Host: aniflv.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 08 Mar 2023 09:04:18 GMT
etag: W/"64084f92-1a85d"
expires: Fri, 23 Jun 2023 23:57:12 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=urmvThZMYMtNyPncyn%2FH30Zt%2FyZ2EhenBuXAirh4nDte9n8RT36sYrubhmZawkvDtsdoDQa3XKCU60rmFSdToNX8xr4KtNUNf6v%2FuDMVq78dYud3TklVqFsUSjY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6b4fdeb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
animeflv.mom/wp-content/litespeed/css/173ba2cd6509c5702b33d088905c04cc.css?ver=c04cc
104.21.49.54200 OK 4.2 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/173ba2cd6509c5702b33d088905c04cc.css?ver=c04cc
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (4533), with no line terminators
Hash 060bc1bcbc124edd920687938c6fbb8c
54a0fecbe68f12c7bdc229cc8596702093e76e46
198a46eb909716efc0466fa7849c05b99104d8d7721a312efd8d9b6fcc2dbe6f
GET /wp-content/litespeed/css/173ba2cd6509c5702b33d088905c04cc.css?ver=c04cc HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"1083-648cf6d2-6595bd;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lDXtU1PFrEnGV2siOugj0qSLESSP0%2Be9ofhZzD9mBq99yP3crxbdKFktTnGz9UMytwrsqF7QuH%2FTe1NBSscgLyp1RdY1OIKMcau5iMPB9HPW1PBaiWZWKtJ6o4pS8Xk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe602e3bb524-OSL
content-encoding: br
animeflv.mom/wp-content/litespeed/css/f9f37143743648a14eead97b433a68fc.css?ver=a68fc
104.21.49.54200 OK 2.2 kB URL GET HTTP/3 animeflv.mom/wp-content/litespeed/css/f9f37143743648a14eead97b433a68fc.css?ver=a68fc
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (2155), with no line terminators
Hash b44b4766569681a290d3fb8b8f830a31
5e92e87d1df23dc8d3c6210ebab208f5b40af909
a4c105edf8bf6c00b270fdfaf3a8db76857579a67e1e1df00797bdfe5e4c1824
GET /wp-content/litespeed/css/f9f37143743648a14eead97b433a68fc.css?ver=a68fc HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:11 GMT
content-type: text/css
cache-control: max-age=43200
expires: Sat, 17 Jun 2023 11:57:11 GMT
etag: W/"86b-648cf6d2-6595be;gz"
last-modified: Fri, 16 Jun 2023 23:57:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-cache: BYPASS
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2vgM7qBsJjbe7wmnyOF%2BVpGNeEs%2BIRmBSczy9qiV0rIgvECCFHsFHmZCe0H2WwH0OAZtuJUrZBo0XvgGXyE7FKoiAKCss0W1ginnLjAdqS%2FQLt4TmanNVoIUzblyLYs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe602e3eb524-OSL
content-encoding: br
aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
188.114.97.1200 OK 508 kB URL GET HTTP/2 aniflv.me/e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg
IP 188.114.97.1:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerLet's Encrypt
Subjectaniflv.me
Fingerprint4D:04:E9:A1:5A:71:3B:A5:FB:E8:D7:A1:2B:C2:39:47:FB:CC:BF:48
ValidityFri, 09 Jun 2023 02:51:33 GMT - Thu, 07 Sep 2023 02:51:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (39036), with CRLF line terminators
Size 508 kB (508524 bytes)
Hash 51a5186c9795c0d532f742e5f76c51a7
a1efca94f40b9a369b4fffee49346655c17216fa
ca0618d25c1f176066d53a1630db52400cc3646c99464d7a3965fb47139d66e8
GET /e/i54oz1d4bqys?poster=https%3A%2F%2Fesanimes.com%2F%2Fupload%2Fblack-clover-tv.jpg HTTP/1.1
Host: aniflv.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 16 Jun 2023 18:36:22 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cf7Sjl%2B88tmXn3wgAiv07fQpUBpooNl83PbO8OOovxiGIPthA81eRzWIuh3Va0dNgkBP0rV%2BH%2FoTrMIziG9VmK%2FWu%2FB6P7TWOqhBUd7%2FZNiNXxXO6REDfQiPxq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe69cfcf1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css
172.64.197.23200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET /sb/ssp/utility/social-media/instagram/new/4/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 10:05:22 GMT
etag: W/"63317962-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O2KwYeXOB3wBBf9DxRRubbsjRt96Pm6rk58rdVixF1JlGCJQbtW1TPx6MJlIe3d58WnvX7wA8xnYKkZ5kS%2BUv5%2Bw0kgO%2BAM9DKiPo0mJYF2dQY%2BmPt7ypdaadULGt4nNgwSdrdhiqUCf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9c887a731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
animeflv.mom/favicon.ico
104.21.49.54200 OK 1.2 kB IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 388b6463077fc4a5385b5aa8d81bddc9
c2221a40c719a88c6e8b3c04dc452ba1fd944720
b6f6f1c6bfeb52ccebbce82eb7817ada0647bce78b060218dea238c8a1829641
GET /favicon.ico HTTP/1.1
Host: animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Cookie: _lscache_vary=ea233830ae4cfc46c90bbdb979441b80; dom3ic8zudi28v8lr6fgphwffqoz0j6c=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/x-icon
cache-control: public, max-age=43200
expires: Sat, 17 Jun 2023 11:57:15 GMT
etag: W/"47e-6242daa8-1d5e07;gz"
last-modified: Tue, 29 Mar 2022 10:08:40 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jHoJ2raHM6vADmZEFjDHwBt8uz%2FbC%2FvcRlI6ALpeEo7Ca34UkofdAtJw7%2BtF2ojdLvRlauzwbWlZkKvGZ4xyjfFC5VkHJ6dCn93bPtLCcv4Uwh5cCrNfmbQ9H2%2FES%2Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d86fe77ee38b524-OSL
content-encoding: br
cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/style.css
172.64.197.23200 OK 5.6 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/style.css
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
File type ASCII text, with very long lines (5983), with no line terminators
Hash c0eb152420a493bd0d10e54638958364
59788cf2f3782bd13249f6991141ff7159d970f8
d854731843ffc4c65b2986ace63cbf3183000b7e155abdea3451df0388b2e032
GET /sb/notifications/software/us/windows/flash-all/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:21 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 11:41:22 GMT
etag: W/"614c67e2-160c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vnSii4WEu8WqhbPriUAnkBzec%2FXr7PLvWyoJzcy0VqP47dvv%2Fy9FmNhDfIwdM%2Boc8eoG47Lblx16%2FMd0dRVdzgk2Du8SJEW7jipkXi38Zwm6X2FUwIjNu5u%2BUGUg9TjvftjZoBMILgWn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9dc938731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sufficedetentionhols.com/fc/e7/dc/fce7dc2ccb5e612c8c292371fd6475dc.js
173.233.139.164200 OK 37 kB URL GET HTTP/1.1 sufficedetentionhols.com/fc/e7/dc/fce7dc2ccb5e612c8c292371fd6475dc.js
IP 173.233.139.164:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectsufficedetentionhols.com
FingerprintCB:43:FB:78:FD:A2:7B:30:46:A4:6A:BC:70:FD:E9:E0:04:B4:6D:11
ValidityFri, 19 May 2023 19:01:27 GMT - Thu, 17 Aug 2023 19:01:26 GMT
File type ASCII text, with very long lines (37121), with no line terminators
Hash 9edff455969b21472338eb989d201f0f
bb5c48afd3e5be1e592f6bc008073a27d9ee6bc1
1af80e91bd51813be756db23bd61eed57d22625d23d1292d60386efa3e142755
Analyzer Verdict Alert Public Nextron yara rules malware Detects JS obfuscation done by the js obfuscator (often malicious)
quad9 Sinkholed
GET /fc/e7/dc/fce7dc2ccb5e612c8c292371fd6475dc.js HTTP/1.1
Host: sufficedetentionhols.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1546fe1f2e57ad77fe28c59c4ec013cd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js
172.64.197.23200 OK 444 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
File type ASCII text, with very long lines (458), with no line terminators
Hash 982ab6e275f01f07609f7a83b9ded288
00cae17857fd26867610c5287a75c107ab8a150f
2f60a6c44dff7939447126884982a613420b55459abf4ddc27144c2d09fe992c
GET /sb/ssp/utility/social-media/instagram/new/4/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 10:05:24 GMT
etag: W/"63317964-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=daQhbUgBZzzvD4Cn%2FfSZQ7GRiW%2FjZieAabQpj8u8a07PKij1VkF7Z6zL2L6etgSJsw7jMl7%2Fyevk1V51t8e4PHFadpfB5XBlXkJ6MMffcYfclvRvWD0HcoPqsmVzYcgzGBCeS0OxVFEf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9c8870731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
roasttroopdilapidation.com/watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
173.233.137.36307 Temporary Redirect 3.4 kB URL GET HTTP/1.1 roasttroopdilapidation.com/watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1
IP 173.233.137.36:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjectroasttroopdilapidation.com
FingerprintF3:DD:FC:01:BF:35:C2:A2:49:4F:55:58:92:55:58:93:AA:EB:03:63
ValidityWed, 31 May 2023 18:40:54 GMT - Tue, 29 Aug 2023 18:40:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1 HTTP/1.1
Host: roasttroopdilapidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Location: https://roasttroopdilapidation.com/watch.266997089533.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=d35017ee9fd36ce45087e1607af024dc9beed192897c6293a27014dbccb44811465188ac2c84a51b5d1ca1c2a9bb69aff2b5b65a4351728c16860f592a2325a82d5802a0e466f2216bf6748167448b41ae23fda9416c3fec135e217e25578254e68ed2&pst=1686959893&rmtc=t
Set-Cookie: u_pl=17532583; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU; expires=Fri, 16 Jun 2023 23:58:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c68cd59b1c9f37655326c09ffd2126c8
Strict-Transport-Security: max-age=0; includeSubdomains
hospitalitydisorder.com/watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=29f03f79e1b0dea1fc4790eda103b27b7288fd4cf0c5c3001c7d94089ed1f0e3ec0193599054f8928005b5102f73636db5c2dc2a46f09b6a2be3b2c44d3098e3d3b776e321d4eaa78a259752bf6607e15f245d34736aba80f7300925d52503&pst=1686959893&rmtc=t
173.233.137.60200 OK 3.8 kB URL GET HTTP/1.1 hospitalitydisorder.com/watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=29f03f79e1b0dea1fc4790eda103b27b7288fd4cf0c5c3001c7d94089ed1f0e3ec0193599054f8928005b5102f73636db5c2dc2a46f09b6a2be3b2c44d3098e3d3b776e321d4eaa78a259752bf6607e15f245d34736aba80f7300925d52503&pst=1686959893&rmtc=t
IP 173.233.137.60:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecthospitalitydisorder.com
Fingerprint21:EF:91:84:FD:DD:BC:EF:6F:49:0B:90:3B:71:DF:F2:24:C8:58:B1
ValidityWed, 14 Jun 2023 02:11:29 GMT - Tue, 12 Sep 2023 02:11:28 GMT
File type HTML document, ASCII text, with very long lines (3821), with no line terminators
Hash d12f38633ca054588152648ceb7ed97d
2937f2164f6b29af7cba01d52150758241e46b37
395091d3853bb0e028f3d191f8890f86e9cae745f0f8fde667523c445994ca7f
GET /watch.777100891710.js?key=52745c63a7e914c27169172df62c4006&kw=%5B%22black%22%2C%22clover%22%2C%22tv%22%2C%22episodio%22%2C%2240%22%2C%22online%22%2C%22-%22%2C%22animeflv%22%5D&refer=https%3A%2F%2Fanimeflv.mom%2Fmovie%2Fblack-clover-tv-vasbpva9%2F%3Fep%3D40&tz=0&dev=e&res=12.2079&uuid=b48e41e0-3e5d-4458-aadf-07fef64f8064%3A3%3A1&shu=29f03f79e1b0dea1fc4790eda103b27b7288fd4cf0c5c3001c7d94089ed1f0e3ec0193599054f8928005b5102f73636db5c2dc2a46f09b6a2be3b2c44d3098e3d3b776e321d4eaa78a259752bf6607e15f245d34736aba80f7300925d52503&pst=1686959893&rmtc=t HTTP/1.1
Host: hospitalitydisorder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
Referer: https://animeflv.mom/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17532583; ain=eyJhbGciOiJIUzI1NiJ9.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.n5NWni62D0ejXIj6raN_38wjs0deI0P86J2gnERh6lU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animeflv.mom
Access-Control-Allow-Origin: https://animeflv.mom
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; expires=Fri, 23 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 17 Jun 2023 23:57:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6e58845495c2fabfa473e54ed27b81a6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
upload.animeflv.mom/fantasista-stella.jpg
104.21.49.54200 OK 5.8 kB URL GET HTTP/3 upload.animeflv.mom/fantasista-stella.jpg
IP 104.21.49.54:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA2:AA:0C:DA:A1:2B:88:97:02:3E:C3:DE:34:4F:8B:83:3F:AA:A8:13
ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 166x236, components 3\012- data
Hash 352d90de52a03deb1581805161c510f0
0ab5cfae899b399c00a177a9a9a76449cd29d8a6
f82792694b4af1de5ead5ba6a7bb0dac73a40b30a6bd6db336e6db83e7c31d48
GET /fantasista-stella.jpg HTTP/1.1
Host: upload.animeflv.mom
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:15 GMT
content-type: image/jpeg
content-length: 5809
last-modified: Fri, 15 Oct 2021 21:29:27 GMT
etag: "6169f2b7-16b1"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BFvxquoxaKnvZHhYh61XaPYSgJ0nUgOM%2Bbxr6sLSuAqouROe0HsL9j8Dp9Fjp1jvEXcq%2FBNbezxW6UOBywQOR4pVPwbnhJxrW%2FBNm43P97ndjW%2B9XWS9kAHpULPKluREjMQv3Q%2Fp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe785e7ab524-OSL
alt-svc: h3=":443"; ma=86400
esanimes.com/stream?id=556f364e76513d3d
172.67.153.134200 OK 142 B URL GET HTTP/2 esanimes.com/stream?id=556f364e76513d3d
IP 172.67.153.134:443
Requested by https://esanimes.com/player?id=556f364e76513d3d
Certificate IssuerGoogle Trust Services LLC
Subjectesanimes.com
FingerprintCC:C1:73:DC:BD:47:63:13:AA:CC:67:F7:C3:A4:2A:8A:14:35:21:CB
ValidityMon, 22 May 2023 23:21:33 GMT - Sun, 20 Aug 2023 23:21:32 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 23a58538b695abaec76c1016370fac14
a4de8eee42fcf3b9f360e0eca12ce33394a1a704
586fa83951bf913244d435fd8f4b0a6d2e5aea88a8f789e592ea614ebaf5f15e
GET /stream?id=556f364e76513d3d HTTP/1.1
Host: esanimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:12 GMT
content-type: application/json
cache-control: max-age=86400
cf-cache-status: HIT
age: 1
last-modified: Fri, 16 Jun 2023 23:57:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z5sks4g%2BZvC89e3WRoz9hJHBjon5WUudW46DOk%2FCOr0uJ6ItNNyScC8z0vadDV9313vSIk3jvpXSyuvA631E0UDayoSdtfZgNbPCt0NTkms%2FhEEBA9IZB%2FctnCo6OXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe6938dbb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css
172.64.197.23200 OK 7.6 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
File type ASCII text, with very long lines (8106), with no line terminators
Hash 83de8b4bf040e193fcc2cae881ad9bfa
6da4ac90cb0059a2dd698ad9ecb294f3dae99a4a
88e65386dff64696b61a8f5a62281b94e1b27c79458177f2f375190a7b78e460
GET /sb/ssp/utility/social-media/instagram/new/4/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animeflv.mom
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Jun 2023 23:57:20 GMT
content-type: text/css
last-modified: Fri, 30 Sep 2022 09:41:34 GMT
etag: W/"6336b9ce-1dda"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ddN0J02peELzwCVq4FDi%2Fq%2ByepkUxLyo1bFWYvuzNfeq6ouAMHadiRXUH%2FFKzr8YUkyG3x8hMy3pwXCNnsXIHmBCR%2Fhx9jKB%2Bp8%2FHj8K%2FyHHkf0H6p%2BZfQhjijUihcvDIiD1ZxUB063r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9c887c731e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/img/close.png
172.64.197.23200 OK 4.0 kB URL GET HTTP/3 cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/img/close.png
IP 172.64.197.23:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint88:10:E4:38:7C:46:CF:44:7C:D0:C8:1F:06:39:9F:7E:A5:2E:27:4A
ValidityThu, 27 Apr 2023 15:05:54 GMT - Wed, 26 Jul 2023 15:05:53 GMT
File type PNG image data, 500 x 500, 8-bit gray+alpha, non-interlaced\012- data
Hash 23e9690b0e7ac26868363a6248f44467
d7ad0eae64e0c1e65b12eda0aa9d2b91996dd64f
f362c67320d739ccf3bea21f857b9620075bd20ceacda8c51261b9612fe28395
GET /sb/notifications/software/us/windows/flash-all/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Jun 2023 23:57:21 GMT
content-type: image/png
content-length: 4022
last-modified: Wed, 17 Feb 2021 11:46:53 GMT
etag: "602d022d-fb6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 10505640
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=joUSAbZ6LFi6q8i8ppZPPmymLbU1AJ4BTa6BTupqk6AJ4j7i8cCfw3AIDiqBGbOwBMDYjuWoL%2FBcYu1kgj8IVzZFt3wc9%2FE59Osawmgys6GI82ScojYgrY3KAS8j4SWVtQc3jpiuqT3%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d86fe9e7ec9d170-LHR
alt-svc: h3=":443"; ma=86400
toldclassifiedhardware.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTgLfL%2FGkiODBMAcPEd3Z7p6eX%2BYQjXEkuGZjEn%2FgRaqrqmfLqe5qqvrH7OJhMSA5GBhPXnvf7GZRl6B%2FgCKzeloQdjzNwVUExbuwZ5ndxdHP5fNev3d4%2FT718VZ%2BRFzkdNZ7Q29Ipehys%2B7WLr%2FreVdqKzLJh7Vhp%2FV%2BK7hSM8WLntutu8%2FVXhNsoJd913Ndz%2FVqPWlEpIfLnufVXch0r%2BvVu2498OteM8DQ%2FJfb3IGlDnhxRJ6A5NOLe48CSDZBEn91XdhBptMXXo1zRTNtUPDdt5JBossE8QJGxkGU7J65oe1h71voZOckMHTxjzGUU%2BL8%2FhvCZPcsJcJi5zRoqCAShPwxlMUEQk0g6QRM34PkhwRgHDdXkcQPb2pT0vVTlc7VKblw%2FBdkOSUXfn4SSfzompLD2h2t8kzqxGIYVZDDCWR%2FgjTfR7ZxDrLcB8s%2BguQ%2FkuXjFSTx9qpVGpLPng2Djgg84S41RJMvBUGzs0Qpj5bcdiSiVhB13NZpQ1JOIKMJlBiB2vPIrYNcOsgjB3nqIOazWpsFnQ7vNDkVjPlh5HWiIAq6lLkRcxtdHzmb%2F8MIWToCUyMws4nUbGIgRzD5d7BrFSz%2FP2w2Jc6bBQpeoRQEpSUoKUEpCcqMoCyqHa6sb6uHXNk89M62f7Yb1Vhn%2FS26o7O%2BSMhWekQen5fnPH%2F3MgZiVouYaHPmMxY2RcvzWYf5Xb%2FR9iLeCtpNzmBlBWnPgVoHG3JKLj3oIZVT8r%2FZDwjpPqzaB5NPgebPgJbjtu%2BCro2DjouNZI8mMhaRKuqxjsF1hTS7gGzd2VJH5OmTI3b%2FIBDs4OpnD1Z%2FucLfAzMVUlPhA%2Fk9QV%2FdH9%2FWJdm%2BrUtLvl5NMxnLDTo%2F8J2MZuL8F6%2BL9VIbfuO6HX3%2BMpsLc7h3V9hshSZcJn1LvrwmORempw0T5Jsb9h0R3srt2rXcJHm6cuuV3o04NcJaqZMJqDx8%2B0MwOSUXzeDk6V768yVIM4HJK8T5ATkbSD0BSzdh00V6qwmMWnjC1EGZV2Pjh4uPShIoseA0rGD%2FxcMF3rL30TcOaHYPSVyhMBUKVYGqEWx%2Bfpyl5uDqT42TQaiccaiMsx0qoz49rdbKWU20RavbDdygzV03DLjve03BaCOgXer7URuZnfJPjn%2F9GwAA%2F%2F8BAAD%2F%2F0M6EMCHBAAA
173.233.139.164200 OK 0 B URL GET HTTP/1.1 toldclassifiedhardware.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTgLfL%2FGkiODBMAcPEd3Z7p6eX%2BYQjXEkuGZjEn%2FgRaqrqmfLqe5qqvrH7OJhMSA5GBhPXnvf7GZRl6B%2FgCKzeloQdjzNwVUExbuwZ5ndxdHP5fNev3d4%2FT718VZ%2BRFzkdNZ7Q29Ipehys%2B7WLr%2FreVdqKzLJh7Vhp%2FV%2BK7hSM8WLntutu8%2FVXhNsoJd913Ndz%2FVqPWlEpIfLnufVXch0r%2BvVu2498OteM8DQ%2FJfb3IGlDnhxRJ6A5NOLe48CSDZBEn91XdhBptMXXo1zRTNtUPDdt5JBossE8QJGxkGU7J65oe1h71voZOckMHTxjzGUU%2BL8%2FhvCZPcsJcJi5zRoqCAShPwxlMUEQk0g6QRM34PkhwRgHDdXkcQPb2pT0vVTlc7VKblw%2FBdkOSUXfn4SSfzompLD2h2t8kzqxGIYVZDDCWR%2FgjTfR7ZxDrLcB8s%2BguQ%2FkuXjFSTx9qpVGpLPng2Djgg84S41RJMvBUGzs0Qpj5bcdiSiVhB13NZpQ1JOIKMJlBiB2vPIrYNcOsgjB3nqIOazWpsFnQ7vNDkVjPlh5HWiIAq6lLkRcxtdHzmb%2F8MIWToCUyMws4nUbGIgRzD5d7BrFSz%2FP2w2Jc6bBQpeoRQEpSUoKUEpCcqMoCyqHa6sb6uHXNk89M62f7Yb1Vhn%2FS26o7O%2BSMhWekQen5fnPH%2F3MgZiVouYaHPmMxY2RcvzWYf5Xb%2FR9iLeCtpNzmBlBWnPgVoHG3JKLj3oIZVT8r%2FZDwjpPqzaB5NPgebPgJbjtu%2BCro2DjouNZI8mMhaRKuqxjsF1hTS7gGzd2VJH5OmTI3b%2FIBDs4OpnD1Z%2FucLfAzMVUlPhA%2Fk9QV%2FdH9%2FWJdm%2BrUtLvl5NMxnLDTo%2F8J2MZuL8F6%2BL9VIbfuO6HX3%2BMpsLc7h3V9hshSZcJn1LvrwmORempw0T5Jsb9h0R3srt2rXcJHm6cuuV3o04NcJaqZMJqDx8%2B0MwOSUXzeDk6V768yVIM4HJK8T5ATkbSD0BSzdh00V6qwmMWnjC1EGZV2Pjh4uPShIoseA0rGD%2FxcMF3rL30TcOaHYPSVyhMBUKVYGqEWx%2Bfpyl5uDqT42TQaiccaiMsx0qoz49rdbKWU20RavbDdygzV03DLjve03BaCOgXer7URuZnfJPjn%2F9GwAA%2F%2F8BAAD%2F%2F0M6EMCHBAAA
IP 173.233.139.164:443
Requested by https://animeflv.mom/movie/black-clover-tv-vasbpva9/?ep=40
Certificate IssuerLet's Encrypt
Subjecttoldclassifiedhardware.com
Fingerprint3E:D7:76:BB:BC:8B:7A:F5:34:8F:8E:81:F8:46:0D:EE:80:73:85:FE
ValidityWed, 14 Jun 2023 02:03:11 GMT - Tue, 12 Sep 2023 02:03:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTgLfL%2FGkiODBMAcPEd3Z7p6eX%2BYQjXEkuGZjEn%2FgRaqrqmfLqe5qqvrH7OJhMSA5GBhPXnvf7GZRl6B%2FgCKzeloQdjzNwVUExbuwZ5ndxdHP5fNev3d4%2FT718VZ%2BRFzkdNZ7Q29Ipehys%2B7WLr%2FreVdqKzLJh7Vhp%2FV%2BK7hSM8WLntutu8%2FVXhNsoJd913Ndz%2FVqPWlEpIfLnufVXch0r%2BvVu2498OteM8DQ%2FJfb3IGlDnhxRJ6A5NOLe48CSDZBEn91XdhBptMXXo1zRTNtUPDdt5JBossE8QJGxkGU7J65oe1h71voZOckMHTxjzGUU%2BL8%2FhvCZPcsJcJi5zRoqCAShPwxlMUEQk0g6QRM34PkhwRgHDdXkcQPb2pT0vVTlc7VKblw%2FBdkOSUXfn4SSfzompLD2h2t8kzqxGIYVZDDCWR%2FgjTfR7ZxDrLcB8s%2BguQ%2FkuXjFSTx9qpVGpLPng2Djgg84S41RJMvBUGzs0Qpj5bcdiSiVhB13NZpQ1JOIKMJlBiB2vPIrYNcOsgjB3nqIOazWpsFnQ7vNDkVjPlh5HWiIAq6lLkRcxtdHzmb%2F8MIWToCUyMws4nUbGIgRzD5d7BrFSz%2FP2w2Jc6bBQpeoRQEpSUoKUEpCcqMoCyqHa6sb6uHXNk89M62f7Yb1Vhn%2FS26o7O%2BSMhWekQen5fnPH%2F3MgZiVouYaHPmMxY2RcvzWYf5Xb%2FR9iLeCtpNzmBlBWnPgVoHG3JKLj3oIZVT8r%2FZDwjpPqzaB5NPgebPgJbjtu%2BCro2DjouNZI8mMhaRKuqxjsF1hTS7gGzd2VJH5OmTI3b%2FIBDs4OpnD1Z%2FucLfAzMVUlPhA%2Fk9QV%2FdH9%2FWJdm%2BrUtLvl5NMxnLDTo%2F8J2MZuL8F6%2BL9VIbfuO6HX3%2BMpsLc7h3V9hshSZcJn1LvrwmORempw0T5Jsb9h0R3srt2rXcJHm6cuuV3o04NcJaqZMJqDx8%2B0MwOSUXzeDk6V768yVIM4HJK8T5ATkbSD0BSzdh00V6qwmMWnjC1EGZV2Pjh4uPShIoseA0rGD%2FxcMF3rL30TcOaHYPSVyhMBUKVYGqEWx%2Bfpyl5uDqT42TQaiccaiMsx0qoz49rdbKWU20RavbDdygzV03DLjve03BaCOgXer7URuZnfJPjn%2F9GwAA%2F%2F8BAAD%2F%2F0M6EMCHBAAA HTTP/1.1
Host: toldclassifiedhardware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeflv.mom/
Cookie: u_pl=19616808; uid_id2=b48e41e0-3e5d-4458-aadf-07fef64f8064:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Jun 2023 23:57:20 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1e327a8f6494720fcdcd7d83a75f9f4f
Strict-Transport-Security: max-age=0; includeSubdomains