www.gaming-adult.com/3c21d880-c63d-40be-892a-82e214982225/2
18.194.134.212302 0 B URL HTTP/1.1 www.gaming-adult.com/3c21d880-c63d-40be-892a-82e214982225/2
IP 18.194.134.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3c21d880-c63d-40be-892a-82e214982225/2 HTTP/1.1
Host: www.gaming-adult.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Thu, 26 Jan 2023 21:03:46 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Pragma: no-cache
Set-Cookie: 3c21d880-c63d-40be-892a-82e214982225-v4=I3c9hpIrm2GCHvVOEN-la5r2S7SoPhpu-G9g_TbPHlQ; Max-Age=86400; Expires=Fri, 27-Jan-2023 21:03:46 GMT; Domain=www.gaming-adult.com; Path=/; HttpOnly
cep-v4=zDyt-sCWHWI81FhVxmHVcjhSN5oi-YxGOtWIOPunmJay-JduNI2imWUncT3oCwtsfZTJpfz8DO0G7P6EOzcvIemYcF4ucC6yOvRPFYpDWof6Fpb8WrtUjot5KxGYqrpKYc9HZ-lT4o0jINeS8DG6uRH_XywC6oiWEjOIJimqvbMb_7DRh___9QQR7v8A9z_FRsOHKW6_bnPidh850EzGPK-r9KsA20AYNpjJ65BDVD8dWRgePKAZhlj5imbTGjFDTsz4tk-9bvkc8N9Q5MjLLB1M3d8OAAmGbvN6265dv0A07-nHGLlvxNrrQt8vHYLe446baOdb5RCQUINabkOKxGsCgz9v3QgOqmjQcCZOfpI; Max-Age=86400; Expires=Fri, 27-Jan-2023 21:03:46 GMT; Domain=www.gaming-adult.com; Path=/; HttpOnly
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2861
Expires: Thu, 26 Jan 2023 21:51:28 GMT
Date: Thu, 26 Jan 2023 21:03:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4104
Expires: Thu, 26 Jan 2023 22:12:11 GMT
Date: Thu, 26 Jan 2023 21:03:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 20:35:16 GMT
content-type: application/json
age: 1711
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2244
Expires: Thu, 26 Jan 2023 21:41:11 GMT
Date: Thu, 26 Jan 2023 21:03:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1aqvpT1s+PfrsbvsamZkHwibly6mvRL9nJi63SclPMV1pwY/x7amSOWVSqd678K0u0mWojjNlU8=
x-amz-request-id: 65W3FZN7S3RVDZ6G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 20:20:15 GMT
age: 2612
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 21:03:47 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83c72619ad059f7160bf1408959cbd8e
0669392ae728060d2442cefba08d74ccc65b287c
17831ec3f82d499b19ac922be70dd38bc5d6022174a1b93ea1393e6105d9a37d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17831EC3F82D499B19AC922BE70DD38BC5D6022174A1B93EA1393E6105D9A37D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4947
Expires: Thu, 26 Jan 2023 22:26:14 GMT
Date: Thu, 26 Jan 2023 21:03:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 20:49:01 GMT
age: 886
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3047
Expires: Thu, 26 Jan 2023 21:54:34 GMT
Date: Thu, 26 Jan 2023 21:03:47 GMT
Connection: keep-alive
landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
149.56.38.113200 OK 6.5 kB URL HTTP/1.1 landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
IP 149.56.38.113:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8047)
Hash fc0ba82d3d541d5c7debf72695dc7abe
495b3829278267366d1d7de9105fb9e22faff571
931b616c215c9b184ba7ff4ba9cb25b23c93fb6d18e05f27e63f68b047ef6602
GET /en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:47 GMT
Server: Apache
Link: <https://landing.hentaiheroes.com/wp-json/>; rel="https://api.w.org/", <https://landing.hentaiheroes.com/wp-json/wp/v2/pages/54080>; rel="alternate"; type="application/json", <https://landing.hentaiheroes.com/en/?p=54080>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6515
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
landing.hentaiheroes.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
149.56.38.113200 OK 12 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 149.56.38.113:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:47 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:31:39 GMT
ETag: "15b64-5e92a18e45cf8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11681
Content-Type: text/css
landing.hentaiheroes.com/wp-content/themes/elementor-hello-theme-master/style.css?ver=6.0.2
149.56.38.113200 OK 2.9 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/themes/elementor-hello-theme-master/style.css?ver=6.0.2
IP 149.56.38.113:0
File type ASCII text, with very long lines (8795)
Hash 80b2eb0bb4e18debb039a36eb3eb1f56
5970f98411739816d1354831cafb62feaad50d7b
f64a02b1ccc0fce8cf3c8304d31f6158ea648fdec215156b11639dc68915f04b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elementor-hello-theme-master/style.css?ver=6.0.2 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 13:20:41 GMT
ETag: "24bb-580d5027d3342-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2943
Content-Type: text/css
push.services.mozilla.com/
52.88.138.244101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.138.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kr0fIyPB8fYQWKLqvmU0MA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dop6srff4AQQmSxBr6mMvYP0qAE=
landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
149.56.38.113200 OK 313 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1
IP 149.56.38.113:0
File type ASCII text, with very long lines (850)
Hash 1dd1129795df6e900fecbe2d73ac3068
9adafd827ba7c5a59f41d466862547c45508a0a8
9dfdac78c0115c8877fbe917d83f5ade1e64af7c50c3167ecae8e139efe1edd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 12:07:44 GMT
ETag: "353-5aaa2013068f2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 313
Content-Type: text/css
landing.hentaiheroes.com/wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css?ver=2.9.9
149.56.38.113200 OK 113 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css?ver=2.9.9
IP 149.56.38.113:0
Hash 8bd858d224c135ea74666d7f05df248e
5ef009ed8087ce73a4912d9749d7f041bc16961b
77e5f04f2f5d3a83c50b55652151182633e799d0daf2280c85e4650a0b06d8ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css?ver=2.9.9 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 12:07:47 GMT
ETag: "70-5aaa2015313f1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 113
Content-Type: text/css
landing.hentaiheroes.com/wp-content/uploads/elementor/css/post-58008.css?ver=1656070629
149.56.38.113200 OK 534 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/elementor/css/post-58008.css?ver=1656070629
IP 149.56.38.113:0
File type ASCII text, with very long lines (1562), with no line terminators
Hash 32bca46e2a4736dce3216e0bdffd3160
a6c5eed7a9e57a75372956c05e0c150399b5a722
a85c14856b1d17da603c11964ed1d13b1d120504cf4d3dc473c03c86be7ce8ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-58008.css?ver=1656070629 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:37:09 GMT
ETag: "61a-5e22ffd97c576-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 534
Content-Type: text/css
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
149.56.38.113200 OK 4.0 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 149.56.38.113:0
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "4b4f-5e92a158a6307-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3961
Content-Type: text/css
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7
149.56.38.113200 OK 855 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (13766)
Hash b67ce014664ad80f61a78b2721f5001f
80a3c23a3643598f590765c091f16008c834eb18
77f77a21706b27952b789ff364c6322da6675363d50bb0f9cdff7c4b6db6ec40
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "35ed-5e92a158a8247-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 855
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7
149.56.38.113200 OK 4.2 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "684e-5e92a158a43c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4229
Content-Type: text/css
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
149.56.38.113200 OK 13 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (59158)
Hash d7913fc87c4606f82b4ee77a8d47fc2f
62a54acf7535ae53425b44dadfe5fdabf3d8300a
bb05c88bb0b82e2f14f1efb94b4c3511292f74c3bb7cb0b104d300a42a49492f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "e7d0-5e92a158a43c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12869
Content-Type: text/css
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7
149.56.38.113200 OK 20 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (65497)
Hash aabd344581399563134b985f514a1cd8
6b5a37930501a8b1ed54dd5f6c41251dd1943ecf
b4dee2a7a178a601312478f2b97c5b8aff205c8930669a9bf90825bb4a2a9bb1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "28722-5e92a158a8247-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20219
Content-Type: text/css
landing.hentaiheroes.com/wp-content/uploads/elementor/css/global.css?ver=1656070629
149.56.38.113200 OK 2.9 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/elementor/css/global.css?ver=1656070629
IP 149.56.38.113:0
File type ASCII text, with very long lines (12340)
Hash 77435b39885bbd38aa06b53f2fe0341e
56c77fde4f56884914712c96f3eeada4a04d9d9b
9fad07bfc1f261fb481a79615eee17c35e3eb5e8521418d6af36344f0e88c6ce
GET /wp-content/uploads/elementor/css/global.css?ver=1656070629 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:37:09 GMT
ETag: "9f18-5e22ffd9eab16-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2931
Content-Type: text/css
landing.hentaiheroes.com/wp-content/uploads/elementor/css/post-54080.css?ver=1656070631
149.56.38.113200 OK 874 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/elementor/css/post-54080.css?ver=1656070631
IP 149.56.38.113:0
File type ASCII text, with very long lines (2218), with CRLF, LF line terminators
Hash 2b6d7829ac94215704a4daa72057094b
f10b9adc650d659c620f60d194afd63024bab189
3ef4e050a102b27ad192f2514d79520ea0d6164c3989b0e2080841e4593aceea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-54080.css?ver=1656070631 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:37:11 GMT
ETag: "df5-5e22ffdb78277-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 874
Content-Type: text/css
landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.7
149.56.38.113200 OK 41 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (65493)
Hash 0f96fcabd409b41b5856861df80db999
5b306dde023f7dc771c40b4db0e2f3b0534d7e51
4e35df015ada698444e32130938fc8d9dee84572fe7ff78c5a3c9061853fd86f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:32:15 GMT
ETag: "75771-5e92a1b0fd8e5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 41398
Content-Type: text/css
landing.hentaiheroes.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
149.56.38.113200 OK 4.2 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 149.56.38.113:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "2bd8-5e22ffbae0661-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js?ver=4.3.16
149.56.38.113200 OK 1.1 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js?ver=4.3.16
IP 149.56.38.113:0
Hash d2c9e62ba741c5dc1cd388f4cb4322c1
57ad65e2ffdb51d2751763b8bee9ad67f372e2a7
0ad3c73c3eaf52b9deb1941a12db921002dbfb2326ca007c6838d9a936a31b02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js?ver=4.3.16 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 12:07:44 GMT
ETag: "b01-5aaa2012e4612-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1109
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.3.16
149.56.38.113200 OK 155 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.3.16
IP 149.56.38.113:0
Hash d3453f9d25d07fae0b6919f644988971
dba21fa483385a873ca38d99bf2433b77dd17fb0
f0fa5140f70a19702bdf6bbf7d495857cadc158e12975983212a36068cab241d
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.3.16 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 12:07:44 GMT
ETag: "e3-5aaa2012e4612-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 155
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7
149.56.38.113200 OK 4.2 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "3acf-5e92a158a5367-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4205
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7
149.56.38.113200 OK 2.6 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "4824-5e92a158a14e7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2592
Content-Type: text/css
landing.hentaiheroes.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
149.56.38.113200 OK 5.0 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 149.56.38.113:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "48b9-5e22ffbadd781-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5009
Content-Type: application/javascript
landing.hentaiheroes.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
149.56.38.113200 OK 31 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 149.56.38.113:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "15db1-5e22ffbadf6c1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/dist/js/browser-redirect/app.js?ver=4.3.16
149.56.38.113200 OK 28 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/sitepress-multilingual-cms/dist/js/browser-redirect/app.js?ver=4.3.16
IP 149.56.38.113:0
File type ASCII text, with very long lines (33809)
Hash ebc7d938b0da802ed92cda0f232bc36a
7229a708a939d9c0b114fb9998f9efd3e96e856c
8f53d8b7f4ea23067a028fe7c5e12f3a0c72b091735a7d89ffc331c6b1b6ca82
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/dist/js/browser-redirect/app.js?ver=4.3.16 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 12:07:44 GMT
ETag: "14735-5aaa2012d4c12-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 27781
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
149.56.38.113200 OK 2.2 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (4918)
Hash ac5286e01cb948466083b4a9db3725b1
158ee166465804fafaf226ed85b2243bb34d5fb1
e4ab2a0069a89260933d5fc4235c352cd504a7fe88d14c95ef66f46a680718b3
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "135d-5e92a158aefa7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2193
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
149.56.38.113200 OK 11 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
IP 149.56.38.113:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 540ab7a81306a8a45622d154e9df498b
f06d1223e432a8d648d15008c4dcd7306553e0ac
9f5782726439ecaa602bfb3f5d4762d50409899eb22562da187e252a3eaf0df9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "80a1-5e92a158ae007-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10742
Content-Type: application/javascript
landing.hentaiheroes.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
149.56.38.113200 OK 2.5 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 149.56.38.113:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "194b-5e22ffbad9901-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2457
Content-Type: application/javascript
landing.hentaiheroes.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
149.56.38.113200 OK 7.1 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 149.56.38.113:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "4ac6-5e22ffbad9901-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7095
Content-Type: application/javascript
landing.hentaiheroes.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
149.56.38.113200 OK 3.9 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 149.56.38.113:0
Hash ca0cf10a1d933e4262c732da8f9008c1
d6fdc041e650cf096841671884db8854490dba72
fbd145cb64d3185e42b8a3f6fff22b3e4cc3550934b63a4f874c21c44f920702
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "27ee-5e22ffbad4ae1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3865
Content-Type: application/javascript
landing.hentaiheroes.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
149.56.38.113200 OK 1.7 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 149.56.38.113:0
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "132e-5e22ffbad5a81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1661
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7
149.56.38.113200 OK 5.7 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (21374)
Hash db3b93dd49507a7f0b1b95bbbc0cc450
89116e1953551e4c544c4f68c069b628b2580fe8
002eed6e37695cc5d9b76667f8b2708643bf0d0c9fb24fa88b48eacbfe1841b7
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:32:15 GMT
ETag: "53a9-5e92a1b104645-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5714
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
149.56.38.113200 OK 3.0 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 149.56.38.113:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "2fa6-5e92a158a14e7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2993
Content-Type: application/javascript
landing.hentaiheroes.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
149.56.38.113200 OK 6.9 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 149.56.38.113:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2022 11:36:37 GMT
ETag: "50eb-5e22ffbadf6c1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6914
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
149.56.38.113200 OK 36 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 149.56.38.113:0
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "21f91-5e92a158a2487-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35491
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://landing.hentaiheroes.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 91794
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7
149.56.38.113200 OK 1.1 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "a3c-5e92a158a14e7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1139
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
149.56.38.113200 OK 3.4 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 149.56.38.113:0
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "29ba-5e92a158a5367-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3446
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
149.56.38.113200 OK 12 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (40474)
Hash 9f98d9eb97acbaa6fdbecb9086f0eba1
b8f3c7e68de9fcbc87c3bb232f71800e62a2c2f7
1eff8a686486469b581f8ea377acaaedb79cc6339976d17c9392752be4c4a993
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "9e41-5e92a158aefa7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12045
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7
149.56.38.113200 OK 13 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (43101)
Hash 227f3f29a5ac2d74fec28aeb97d0768a
2a7516811b58b46c0ee982c7c6616c76433e19c5
dbc5b4077a4e85e9dedec28dd5c513cfdfbc672d16f8eb3eb7d2340188bcd6c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:30:42 GMT
ETag: "a884-5e92a158ad067-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13121
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.7
149.56.38.113200 OK 1.6 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (3703)
Hash dbb7b7eb1f27ef159dcd3e20d95d0ccf
fef3645e4691734fee4bac5a58c1d5d70acd6a1b
dd5eb456aa6a6ccad9a7eebd497a816aa22f73e5007a507ff8929192cd7d7c8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:32:15 GMT
ETag: "e78-5e92a1b0fb9a5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1586
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11a_bg_desk.jpg
149.56.38.113302 Found 0 B URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11a_bg_desk.jpg
IP 149.56.38.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2019/11/LP11a_bg_desk.jpg HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Found
Cache-Control: no-cache
Content-length: 0
Location: https://landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11a_bg_desk.jpg
landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.7
149.56.38.113200 OK 31 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.7
IP 149.56.38.113:0
File type ASCII text, with very long lines (65493)
Hash f6dda4694e20958cdb9eacd1a73bd140
e337470b9511ce1888fc37331f9699da69ee7a3b
966166a0f07b717271b6f9a4cfd1f0ffe471630d1944d882bb841f546fac426b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.7 HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Wed, 21 Sep 2022 06:32:15 GMT
ETag: "20de6-5e92a1b102705-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 31439
Content-Type: application/javascript
landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11_button.png
149.56.38.113200 OK 38 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11_button.png
IP 149.56.38.113:0
File type PNG image data, 760 x 219, 8-bit/color RGBA, non-interlaced\012- data
Hash 6518ea7c225ef0aa92d22f1d834ca661
418b04381127205791c4a49020bcf66e6e5f9ff7
2560b539d6571553823c561c04616022d82ab493fe5a337eee7a6099cd0d48c9
GET /wp-content/uploads/2019/11/LP11_button.png HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 09:54:06 GMT
ETag: "9378-596d2c340ac26"
Accept-Ranges: bytes
Content-Length: 37752
Content-Type: image/png
landing.hentaiheroes.com/wp-content/uploads/2019/02/HH_Favicon.png
149.56.38.113200 OK 1.2 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/2019/02/HH_Favicon.png
IP 149.56.38.113:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c7e0f160b63872c310a51f467128902
72ab794ae1a37710d37026d9f428f1398eb1b7f1
aac3968945a774991bf001827933e44e611fb28025e55edce9aa96805fa13f53
GET /wp-content/uploads/2019/02/HH_Favicon.png HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/en/lp11a/?cep=Q-v-fIxWwni4wPR8cN3azi4oPWYEEWSBAyHEV3zcckfln7YlvgjR8Ck1ow4Nn9mJSvcE7BFoRtUaQrdQAOgEMaEQp7XLkDwN8c-A0pKsyLDpgzUZTMx7tho6SMAZ9tGzpPs-jkdF85PCZ3V1pyXfPek9VH7Fv1iHSwk8XGRFme9em0akb_LQQxqboEGXNEiQFdykFu97EpXhxcYfi52lzdrkJnahBuGS-9HA6vqsqnudxXBGiBZTgSZvP3q4JTynsChX4HjF_1qYWsa05sQ3yeaHVGqhywNRn7Wh_n7O8kS_H1XJWvVtTs02MdjtrAFbz-S9wNt159s67ELwk3qmXp0zUh_TihhT729gFi3JSoE&lptoken=167e746b768888a52648
Cookie: wpml_browser_redirect_test=0; _icl_visitor_lang_js=en-us; wp-wpml_current_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:49 GMT
Server: Apache
Last-Modified: Thu, 07 Feb 2019 12:57:07 GMT
ETag: "486-5814d613a9a44"
Accept-Ranges: bytes
Content-Length: 1158
Content-Type: image/png
landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11a_bg_desk.jpg
149.56.38.113200 OK 389 kB URL HTTP/1.1 landing.hentaiheroes.com/wp-content/uploads/2019/11/LP11a_bg_desk.jpg
IP 149.56.38.113:0
File type JPEG image data, baseline, precision 8, 1920x1080, components 3\012- data
Size 389 kB (388952 bytes)
Hash e2027ce9223c83a81d687ca2a25604aa
d1a1c5428c24968289052a3e49306646e31cc68c
ba87819e073344285b14e444f1bd6827ed825394c418d2fc1f5c0c77e27b8e04
GET /wp-content/uploads/2019/11/LP11a_bg_desk.jpg HTTP/1.1
Host: landing.hentaiheroes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 21:03:48 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 09:41:27 GMT
ETag: "5ef58-596d29605c605"
Accept-Ranges: bytes
Content-Length: 388952
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18252
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:03:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18252
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:03:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18252
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:03:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d59b0db3cc1f31f9154d32804a8e3940
498c310e0f4a84c1350bae55aec0d2a0192f8dda
14a2b4e9763a62478015d8f61bf9e44eb67dfe08a58cc94dc836dc8ff3f1b6cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7014
x-amzn-requestid: 689ad8b2-4ec8-4f61-a31e-7813c9143f9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyFHmEIAMFsHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-7ce5fef1456ecc73690eff07;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t-84fZv6Btjp5l37tn35lW8fY-jNChCVD6qeKV23KtUwnBSphyRkOw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 17:55:36 GMT
age: 11293
etag: "498c310e0f4a84c1350bae55aec0d2a0192f8dda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hUp-Y119Uly8FlGe1Wr8b-_pNoyg_iV-KaNaC7Fo44iN_sDU3BnCbA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:35:29 GMT
age: 48500
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62e9b7bdca82d18c945851912d8fea8
a7ca44d337c43bc5c6145b26778661c71cc50484
5da02cc405c1cada55813ffe376844375f1d6ad222cbb63405348b1f5132a0b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: c257bfbe-1bd7-4540-bbfa-e4c49a2624a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfGigoAMFvBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-226c08656eeefbfa3c2dddb6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k9njnQmggD7UkVJzZqSzo90HJJjTjGK0QIoPU0HWYKrSstjM6s1rOw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:57:18 GMT
age: 83191
etag: "a7ca44d337c43bc5c6145b26778661c71cc50484"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 83481
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 83707
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 653bf5a34e9f99c9eef73a21d98d792f
c70d46aa2210c4f7c397fa20e1225b7d0734ac35
9f928ec6f194340e5543a4bf757aac31d545def67a56ae804a2039a3effd3fe0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10379
x-amzn-requestid: 419e5a80-cb6d-4904-9545-a0f815149701
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYMREwmIAMFhQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0b4-64c49f7d49687d9e5324ec64;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rZHSgPIPZyea2griEvL-3semlrUDichGSL8Rin4YeYKN909f9e0lyQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:41:09 GMT
age: 84160
etag: "c70d46aa2210c4f7c397fa20e1225b7d0734ac35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Carter+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Carter+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.106:0
GET /css?family=Carter+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.hentaiheroes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 21:03:48 GMT
date: Thu, 26 Jan 2023 21:03:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2