Report - ianime-fr.com/magical-sempai-episode-1-vostfr/

Report Overview

Submitted URL
ianime-fr.com/magical-sempai-episode-1-vostfr/
IP
104.21.64.133
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-24 14:29:29
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	543 B	2.6 kB	142.250.74.10
offerimage.com	304078	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	66 kB	172.67.22.216
interstitial-07.com	36198	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.5 kB	122 kB	139.45.197.151
fleraprt.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	472 B	481 B	139.45.195.254
tzegilo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	343 B	828 B	104.21.84.149
cdn.embed.ly	16539	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	352 B	556 B	104.16.89.50
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	652 B	1.5 kB	23.36.76.226
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	11 kB	142.250.74.3
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.9 kB	104.18.32.68
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	6.2 kB	104.18.10.207
onmarshtompor.com	24517	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	977 B	139.45.197.243
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	36 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	13.224.245.35
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	65 kB	142.250.74.163
thumbs2.sendvid.com	359072	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	29 kB	64.210.135.116
pseepsie.com	132332	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.7 kB	190 kB	139.45.197.250
unphionetor.com	54035	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	4.3 kB	139.45.197.236
ianime-fr.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	828 B	1.3 kB	104.21.64.133
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
sendvid.com	145811	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	290 kB	46.166.142.86
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.7 kB	139.45.195.8
www2.animecomplet.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	6.0 kB	172.67.179.172
dozubatan.com	33479	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	100 kB	139.45.197.237
inklinkor.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	1.1 kB	104.21.91.63
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.3 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.217.237.91
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	20 kB	142.250.74.174
cdn.itskiddoan.club	24539	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	740 B	3.8 kB	139.45.197.236
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
videos2-h.sendvid.com	383352	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508 B	1.1 kB	64.210.135.148
s4.histats.com	12782	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	366 B	192.99.0.58
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	330 B	1.0 kB	104.18.32.68
bedrapiona.com	34930	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	886 B	4.1 kB	139.45.197.234
tovanillitechan.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.1 kB	180 kB	139.45.197.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-24	medium	pseepsie.com/custom	Malware
2022-09-24	medium	pseepsie.com/custom	Malware
2022-09-24	medium	pseepsie.com/custom	Malware
2022-09-24	medium	pseepsie.com/custom	Malware
2022-09-24	medium	pseepsie.com/pfe/current/defaultSkin.min.js	Malware
2022-09-24	medium	pseepsie.com/custom	Malware
2022-09-24	medium	pseepsie.com/custom	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-24	medium	fleraprt.com	Sinkholed
2022-09-24	medium	unphionetor.com	Sinkholed
2022-09-24	medium	unphionetor.com	Sinkholed
2022-09-24	medium	unphionetor.com	Sinkholed

Files detected

URL
r3.o.lencr.org/
IP
23.36.77.32
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.0 kB (1024 bytes)
Hash
4d9825a3dcda38ccbaf69f635a29e888
f1ff725ac580f8c48d1f6e774e3def53a1f023e7
2c7ef055d7b8837394d29fbd1d401afc148ece104d11f9530fd5a7b78060741a

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

URL
my.rtmark.net/gid.js?userId=656fa0616a8f40b68af316cd3fc808e1
IP
139.45.195.8
ASN
#9002 RETN Limited

File type
gzip compressed data, max compression\012- data
Size
586 B (586 bytes)
Hash
5c9d19240fd067f82b3ae83615475c40
8c150aca0090d5bf009134ac73007abc667df382
cb2389f72ebdcb6ed057c5a872feb833033669507d85ed875d692c833a024f14

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

URL
www2.animecomplet.net/wp-content/uploads/2019/07/Tejina-Senpai-img.jpg
IP
172.67.179.172
ASN
#13335 CLOUDFLARENET

File type
gzip compressed data, max compression\012- data
Size
5.3 kB (5250 bytes)
Hash
48bd328320bddd41bc83f0a0f220a4c8
7b62bc98cb10cdeefd416c36f1b052956c250e0a
f2e0a5a241488bb805a931d92d4ba1401950cf96badfdf967ab452649cae6f91

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (40)

	URL	Size	First Seen	Last Seen
	cdn.embed.ly/player-0.0.10.min.js	15 kB	2023-03-07	2024-02-24
Pretty URL cdn.embed.ly/player-0.0.10.min.js IP 104.16.89.50 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:55 Last Seen2024-02-24 17:28:02 Times Seen20 Hash c613d6445cca8cf218e42bc06f189b3b 562c9df4190545308b6b1d92a9349d806c0957d8 0f8bd3aba6d60f6596e924b2208b0005d7ac50a74e009fe01606036d93661d0f Loading...

	sendvid.com/assets/zeroclipboard-5534ae3798279739b2e29b14f0eed44b.js	30 kB	2023-03-07	2024-02-24
Pretty URL sendvid.com/assets/zeroclipboard-5534ae3798279739b2e29b14f0eed44b.js IP 46.166.142.86 ASN #43350 NForce Entertainment B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:55 Last Seen2024-02-24 17:28:01 Times Seen27 Hash dba4989663875d0931a3a795a575f115 61cd12381056df30da490d1021e3458180091485 32b40b5540af51a67dc1fbff0c2cfc6ae6471f7c3d8e108473faabf07cdd3163 Loading...

	unphionetor.com/fv.js?t=72747&cb=937254196	5.2 kB	2023-03-07	2024-04-13
Pretty URL unphionetor.com/fv.js?t=72747&cb=937254196 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-13 15:30:51 Times Seen2350 Hash 563d777535ce88943a94a6be86f378c8 8753745424d367275e3fe55a5661fe51b1e1fb72 0f467a48a494f7f63968707dc43785b728d0c17f93c12937c1e5b12798f3a98a Loading...

	interstitial-07.com/?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	1.4 kB	2023-03-08	2023-03-08
Pretty URL interstitial-07.com/?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 0aa91726d3f41df4faa505569701b7c0 1d6f18272640c512c1c7b395e7efb2ebbc12fb61 9850922a94eb8997f94b21d1bc897ad87cb3070c1398fff7d64b164012b72f77 Loading...

	sendvid.com/embed/p0f2o0gu	404 B	2023-03-07	2024-02-24
Pretty URL sendvid.com/embed/p0f2o0gu IP 46.166.142.86 ASN #43350 NForce Entertainment B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:55 Last Seen2024-02-24 17:28:00 Times Seen11 Hash 0d3c5dc6727229461db4551ad4bfedaa 06fdc40b96952cd1a9885f917824b5f216b85741 3db8bd83dd7dc9cb9ef36b471127d17d818229af87f05280124c6f1d74d6d044 Loading...

	sendvid.com/site_ads.js	17 B	2023-03-07	2023-06-03
Pretty URL sendvid.com/site_ads.js IP 46.166.142.86 ASN #43350 NForce Entertainment B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:41:08 Last Seen2023-06-03 08:24:22 Times Seen5 Hash 139eff990c985526831b9bedb50efaf0 b033ac2c5301e36746aa7f341a7eb133d6b4fe69 2349eef06e446004512c226b8c5e89eadf92bd02c8a660ef8a72d28c106de4f1 Loading...

	s10.histats.com/js15_as.js	11 kB	2023-03-07	2024-03-25
Pretty URL s10.histats.com/js15_as.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-03-25 09:24:29 Times Seen1978 Hash e959fbdd13def4b9a9d0a5fc9a7de4d4 1e39712307e3673b40c0bdb8c7d3e86a3e8b60a0 2defe59e357a7d0683c8283ac42841db404a0884cae2eaecebf4b676e559dede Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	424 B	2023-03-08	2023-03-08
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 2128b37e801ad8babba7e35020ff71b9 c0449a5b474f81c5e59bcf360596d1a6e118b0a1 e056169f15dd60189a8c9a39bc3f1c4177f3ee11b638d8b1f17042772611c344 Loading...

	tovanillitechan.com/1?z=5170166	8.7 kB	2023-03-08	2023-03-08
Pretty URL tovanillitechan.com/1?z=5170166 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 6eef1f908a3f09ad67ab361bba22a7a4 228f807d5fd7d271df8e53808aaa625f13e2cc6c d2f96c5f1ad373c995a7c9dc5a9578e8abd7c7e00113ce05a1930fe115ea64c8 Loading...

	tovanillitechan.com/1?z=5170166	8.7 kB	2023-03-08	2023-03-08
Pretty URL tovanillitechan.com/1?z=5170166 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash a3def52689354b92eaf9690fc082a9d9 06bd7f1b699d77ffb51b2506585a1f2b3122453e 318eab029de7bbd14dbaa11695b30dc4a44ebc4164801a96c3a65c98663bd3eb Loading...

	s4.histats.com/stats/0.php?4513633&@f16&@g0&@h2&@i1&@j1664029758659&@k102&@l2&@mMagical%20Sempai%20-%20Episode%201%20VOSTFR%20streaming%20-%20IAnime&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:117494642&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@w	51 B	2023-03-08	2023-03-13
Pretty URL s4.histats.com/stats/0.php?4513633&@f16&@g0&@h2&@i1&@j1664029758659&@k102&@l2&@mMagical%20Sempai%20-%20Episode%201%20VOSTFR%20streaming%20-%20IAnime&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:117494642&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@w IP 192.99.0.58 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-13 03:49:43 Times Seen1 Hash 12e78f2be2426ac8cba05c57e545ea0f 1b5cd8131766fca9871be208c3c73c6bce34918a 846591883ac03b9c4f9a665762b37d84be65f02d52422ddd897827d1495d1711 Loading...

	ianime-fr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-16 18:22:04 Times Seen68435 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	3.4 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-16 12:06:21 Times Seen6133 Hash a94b76e45c11675df9f26fd25a8e4359 1cd29363bb1b514e6f7ef031f1831008df181f17 4569f5c3704a88394335b0fabccd6460ba5e582c3058f9286f42cc589da02899 Loading...

	unknown	0 B	2023-03-07	2024-04-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-16 19:18:42 Times Seen36903377 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	dozubatan.com/400/5170165	80 kB	2023-03-08	2023-03-08
Pretty URL dozubatan.com/400/5170165 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 30237eef3f58afaff9873d2eb67464aa 91907ba66cbdf5c77b4a65094fb25b919ac5870b 1dde427a5b212a44f8ac988119665af0e29ea656d92837545a7f672f4ce25a65 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	102 kB	2023-03-07	2023-03-08
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:39:59 Last Seen2023-03-08 02:29:44 Times Seen1 Hash 46fea135d8779c679c2d0706a22f08a3 5cd54121aef1c771b1bad8e8340e69cd52c81f6e ed9cf62d154e465aca23b89b91a888b5646d703d91072a8db940b6bf5026d285 Loading...

	ianime-fr.com/v/my4jxu57dn15d-2	26 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/v/my4jxu57dn15d-2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:51 Last Seen2024-04-16 04:29:39 Times Seen2057 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	ianime-fr.com/wp-content/plugins/wp-captcha//assets/js/c4wp-public.js?ver=6.0.2	606 B	2023-03-07	2024-03-19
Pretty URL ianime-fr.com/wp-content/plugins/wp-captcha//assets/js/c4wp-public.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33:57 Last Seen2024-03-19 16:44:41 Times Seen134 Hash 0469280df1b5db2c0d798262ffd4bac2 7373b100d21b43c3aa85ad87e1391c388f10fe26 17fcd166df6ce7d93463627e2c7308d5f933098e71b6542433f50fa06326e5de Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	1.6 kB	2023-03-07	2024-04-10
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:28 Last Seen2024-04-10 20:59:22 Times Seen235 Hash 05bc964c065d6fc030b180185bc97ece 2f3f0b54ee68047a4de27b40eb1f7e6646065f77 00ca86ab31db6d1607d4c69cdc953c8c9f24f5247c6461ada24a138434dc19b8 Loading...

	sendvid.com/assets/preflight-6f76d03e855720c167da7b77c432ed64.js	104 kB	2023-03-07	2024-02-24
Pretty URL sendvid.com/assets/preflight-6f76d03e855720c167da7b77c432ed64.js IP 46.166.142.86 ASN #43350 NForce Entertainment B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:55 Last Seen2024-02-24 17:28:01 Times Seen27 Hash 9070c37aeb36fadbdf3da53c9a54fd06 ee0018963c252b86c45cd38a8f9b9ad9edc8e240 970064da1494ce66c0164cc01c1c532e6720c6b5a870edaebf5da7eddba901c5 Loading...

	tzegilo.com/stattag.js	33 kB	2023-03-07	2023-03-17
Pretty URL tzegilo.com/stattag.js IP 104.21.84.149 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:21 Last Seen2023-03-17 12:47:57 Times Seen1 Hash df875929410d71d763e9fa10b830bb2a b0711a8d2bf6ad4ffa4640534588b423f2ef7fec 0be796b658c6cee0d55aa164994d0d83f9ec7aa7ecf1eb41c1ddf208bba9e3b1 Loading...

	tovanillitechan.com/27/b7bd02994a2771796f8a835cfb750d4b	408 kB	2023-03-07	2023-03-08
Pretty URL tovanillitechan.com/27/b7bd02994a2771796f8a835cfb750d4b IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:17:47 Last Seen2023-03-08 05:35:44 Times Seen1 Hash 7ab89f78b6aefbb5652eabbe8b71c1c6 f558db93cba76989a8daa5498bcb9f5357e892e4 296c8334bfec54e3a1a0772e1efe387735181b85d04557ac3befd33e69ce6640 Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	103 B	2023-03-08	2023-03-08
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash bfa52e39711baa983a33b3ae1dab5715 36ab45b277c584a5294c9019843699c56ff099be 0fcbd15216a877c7e44c2a0d3458e3e17667d2b704bca658fb8f03fde153c57d Loading...

	ianime-fr.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-16 14:38:20 Times Seen30921 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	426 B	2023-03-08	2023-03-08
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash b3ea5766fc55d40ef241171e1c5b6f2d 6bd0455b2eb4b3237a3f18d45f13ac673a3b1a8a 94f49483ee18f55d43edb22cb4ba1f5802600dc1fada4462d7ffc1cbf3139961 Loading...

	pseepsie.com/pfe/current/tag.min.js?z=5170167	15 kB	2023-03-07	2023-03-08
Pretty URL pseepsie.com/pfe/current/tag.min.js?z=5170167 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:39:59 Last Seen2023-03-08 02:29:44 Times Seen1 Hash b9e91cdb7ebdcf6f7fab4ba420bc0279 7b8168c8e63f7f19f3aa0fd6e9f7de2bda94fc75 b6cfd864214290df187cfdda0bc4245b59615e2e13d3442470eb9224a8845fc5 Loading...

	cdn.itskiddoan.club/apu.php?zoneid=5307276	968 B	2023-03-08	2023-03-08
Pretty URL cdn.itskiddoan.club/apu.php?zoneid=5307276 IP 139.45.197.236 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 5399824d020fe6d02a52b9cbc8adb26f 7a8ec0daaa8865ca8bea06908a9a2fc6dbf87cc8 b75abfa215e335534e2799eaffd541975cecd6d3aebefbd6a090e0db6959a76c Loading...

	ianime-fr.com/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/wp-includes/js/masonry.min.js?ver=4.2.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-16 08:06:30 Times Seen15163 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	ianime-fr.com/wp-content/themes/celebrate/js/script.js?ver=20130115	251 B	2023-03-08	2023-03-08
Pretty URL ianime-fr.com/wp-content/themes/celebrate/js/script.js?ver=20130115 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 015985b3b2f28e6e36add4c400ef3db9 da733ce74495a9c922d59f7480d5f93761005101 7c153dd7c590308ea2ec1597d8271bf527098234be6c89bf6e31941433cdacc9 Loading...

	ianime-fr.com/wp-includes/js/comment-reply.min.js?ver=6.0.2	3.0 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/wp-includes/js/comment-reply.min.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-16 16:05:09 Times Seen29114 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	inklinkor.com/tag.min.js	72 kB	2023-03-07	2023-03-08
Pretty URL inklinkor.com/tag.min.js IP 104.21.91.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:57:49 Last Seen2023-03-08 03:00:48 Times Seen1 Hash 358577206ea5e0fe901c1d1a575ee1e2 f7c4551ad5da3008c4a7455610c9491c44800683 b8b180ddafc5463d3a58ae6643b320e0247aca1934c6073a8e54de784f32880a Loading...

	interstitial-07.com/?l=BsffwaFC63kXM5A&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D3429122312%26z%3D5170166%26b%3D14812988%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D371f6a11-6bed-4d29-b8c3-0c8c675fb0fa%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	1.4 kB	2023-03-08	2023-03-08
Pretty URL interstitial-07.com/?l=BsffwaFC63kXM5A&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D3429122312%26z%3D5170166%26b%3D14812988%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D371f6a11-6bed-4d29-b8c3-0c8c675fb0fa%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 4be49e58012928494c7c63bba530820c 2e77ac9df8e24a9f533d900a8873ec8216f319f2 fb7cfe849687e9f97d26c6ff9fd693a7195bb352f92d8fa64a8122486850f768 Loading...

	ianime-fr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-16 18:22:03 Times Seen31712 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	193 B	2023-03-08	2023-03-08
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash e6ee0d07321bd0d3f999990a5cbfdd45 23285f2eaf6fc7271a5f7d2d8e624ed5c8d3455e 298fffdf31fcd1601a1e92ee693becc09179180c8ac97fb11fdaeb59150fe6e0 Loading...

	ianime-fr.com/magical-sempai-episode-1-vostfr/	2.1 kB	2023-03-07	2024-04-16
Pretty URL ianime-fr.com/magical-sempai-episode-1-vostfr/ IP 104.21.64.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-16 12:06:21 Times Seen6317 Hash 9cd47ac5a0389a37b4d8e7d194e17c9a 9121da7907e37462c10ce8616f06b5c22f640744 ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda Loading...

	ianime-fr.com/v/my4jxu57dn15d-2	406 B	2023-03-08	2023-03-08
Pretty URL ianime-fr.com/v/my4jxu57dn15d-2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 355337f1104b272ff8b4fa108bb6190f 633dd7cd28aca7bcb55823ab8e02b0f933c47bf8 bbfaecbc02eb1b7c13704dbb4b48238f3b55bb20d74dddb762970600b564989a Loading...

	sendvid.com/embed/p0f2o0gu	443 B	2023-03-07	2023-05-10
Pretty URL sendvid.com/embed/p0f2o0gu IP 46.166.142.86 ASN #43350 NForce Entertainment B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:45:55 Last Seen2023-05-10 01:29:20 Times Seen5 Hash 47b6b038a2a484802832a97e5357259a aa22a322bbedb995bc7b5a0fd403e9b9826b3e9b 6216892e0fb18fdfb76b99d09a933358f95d8ba58ac5b9355c8ee5d29b4c8d50 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 628b6df208ae6b1f134b29945a2336fb	80 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 628b6df208ae6b1f134b29945a2336fb b8cfa420dd4ad534c0ffad193440e8fff6495c4d fc80e0c945a0a6d37e83cef322a4b244c20e4978b6445623cde132e879552ba7 Loading...

		Size	First Seen	Last Seen
	#1 Write - 6d5e421b1cfa35ed99d712b30a3764d9	51 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 00:28:57 Last Seen2023-03-08 00:28:57 Times Seen1 Hash 6d5e421b1cfa35ed99d712b30a3764d9 4d1ff34926ac66f41024cdfe9ff605241e078149 f076b3b04b58a49095b9bbb3e21f3aab313e9e875a9f4dc2eae8f9420169bfe7 Loading...

HTTP Transactions (102)

URL IP Response Size

ianime-fr.com/magical-sempai-episode-1-vostfr/

104.21.64.133

301 Moved Permanently

0 B

URL HTTP/1.1
ianime-fr.com/magical-sempai-episode-1-vostfr/
IP
104.21.64.133:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /magical-sempai-episode-1-vostfr/ HTTP/1.1
Host: ianime-fr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 14:29:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 24 Sep 2022 15:29:17 GMT
Location: https://ianime-fr.com/magical-sempai-episode-1-vostfr/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uRHG3TcrDd%2FXYpa6z%2Bh5y4AveC5mWMPCvlA1VMzw26SEe%2BtOrGApZScUsyMsCfKt9rwWYSO%2Fi857meGw1giTs7kl4bi3n20KLCy3jZxjnoTMneIREzGxXyZnpZvjQwt8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fc36229a77b51b-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7514
Expires: Sat, 24 Sep 2022 16:34:32 GMT
Date: Sat, 24 Sep 2022 14:29:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16123
Expires: Sat, 24 Sep 2022 18:58:01 GMT
Date: Sat, 24 Sep 2022 14:29:18 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

13.224.245.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
13.224.245.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 14:05:41 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5c6c6b06dd745e052b0c5c0350148e06.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR62-C3
X-Amz-Cf-Id: 8hBjYIZZqg3wpKkqhFtTD_6Z-K1zqpChtq55m-CCghTr0fvSG8w9Ow==
Age: 1417

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: WKgk7ZoqzyYGda+IhQ/t3vhPgp2rYaTCWTuElMDalKEv5RHlViyblXAHCqnk0V/Yu1mBVYrEItQ=
x-amz-request-id: PGV2AFWA11MJ90MX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Sep 2022 13:47:33 GMT
age: 2505
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

13.224.245.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
13.224.245.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 14:20:46 GMT
Expires: Sat, 24 Sep 2022 14:54:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 392aafb38d46b0d6c1710455b6663726.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR62-C3
X-Amz-Cf-Id: 27OmasWPUK5qXtXBV-opSefF4MdpQLkVWGqJHh_i52lCJr2su5ki3g==
Age: 512

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
36b5df232f294ff3c4455a025e867873
8833b855a919ec98601598ed0ba6898ea0595bfa
2c1216bf08a6db939a0e0b904b0e3fa81952e7dd72819e9824ccf76f325620dc

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2C1216BF08A6DB939A0E0B904B0E3FA81952E7DD72819E9824CCF76F325620DC"
Last-Modified: Thu, 22 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9188
Expires: Sat, 24 Sep 2022 17:02:26 GMT
Date: Sat, 24 Sep 2022 14:29:18 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6073
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 14:29:18 GMT
Last-Modified: Sat, 24 Sep 2022 12:48:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
36b5df232f294ff3c4455a025e867873
8833b855a919ec98601598ed0ba6898ea0595bfa
2c1216bf08a6db939a0e0b904b0e3fa81952e7dd72819e9824ccf76f325620dc

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2C1216BF08A6DB939A0E0B904B0E3FA81952E7DD72819E9824CCF76F325620DC"
Last-Modified: Thu, 22 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9188
Expires: Sat, 24 Sep 2022 17:02:26 GMT
Date: Sat, 24 Sep 2022 14:29:18 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

870 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
870 B (870 bytes)
Hash
0cc5ec9ad0ec186ae73fd78e8afbec1e
6320b52fa779fce636caad93994fdbc006685094
bcc9e0334d3fa20aa6f01d1efd0a4a3601110d43655d7439298dc931c9a006a5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 14:29:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Roboto%3Alight%2Cregular%2Cmedium%2Cthin%2Citalic%2Cmediumitalic%2Cbold%7CRoboto%7CSource%20Sans%20Pro%3A400%2C200%7CMontserrat%3A400%2C700%7CPT%20Sans%3A400%2C700&display=swap

142.250.74.10

200 OK

1.8 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3Alight%2Cregular%2Cmedium%2Cthin%2Citalic%2Cmediumitalic%2Cbold%7CRoboto%7CSource%20Sans%20Pro%3A400%2C200%7CMontserrat%3A400%2C700%7CPT%20Sans%3A400%2C700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.8 kB (1809 bytes)
Hash
028c6dd84eaa01bab7838de4eb46a4b7
e2e22891e50c4b8d5c4c3f54726cff9fca034d5a
29dc507381f2351d1f340dfc5af00e0a83f3afaf08ddf6c647b2aec2cb9c525d

HTTP Headers

GET /css?family=Roboto%3Alight%2Cregular%2Cmedium%2Cthin%2Citalic%2Cmediumitalic%2Cbold%7CRoboto%7CSource%20Sans%20Pro%3A400%2C200%7CMontserrat%3A400%2C700%7CPT%20Sans%3A400%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 14:29:18 GMT
date: Sat, 24 Sep 2022 14:29:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

8.1 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
8.1 kB (8097 bytes)
Hash
363f3dc6ef32701d12006ab8cc7dfd28
5d72b111a2eda6f16f172c69af3818304da4fd16
976a6ae7b94b90eaa05d390ad6f0ada2eefbe31212e532b24536115c0073737f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 14:29:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 240910
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 240910
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.217.237.91

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.217.237.91:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fKdOkBwkcuEPBVdrTbHWdA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FbiZi8b8yWHG2DTL/Cdyw+LU2p0=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 14:29:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.usertrust.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
7997e9457cb223804d645a102e5cc3b6
7e6737cbc9841c9a574754f4db123e5750aa4c9b
5cb6ca305634f02c9e5474347cea24aae98aa43efa0185cd51e8b5854b465e1c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 10:59:56 GMT
Expires: Wed, 28 Sep 2022 10:59:55 GMT
Etag: "7e6737cbc9841c9a574754f4db123e5750aa4c9b"
Cache-Control: max-age=603920,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fc3629c8ebb511-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
61a386c86a3ec280912c735e052c4008
0740bae6f964bfa26ab2b7d91013c60ab2e9c12d
30e555d765a8f3175895279cb1ada3ea7267a0578fd05ecf9647de7f00bdee1b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "30E555D765A8F3175895279CB1ADA3EA7267A0578FD05ECF9647DE7F00BDEE1B"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12613
Expires: Sat, 24 Sep 2022 17:59:32 GMT
Date: Sat, 24 Sep 2022 14:29:19 GMT
Connection: keep-alive

sendvid.com/embed/p0f2o0gu

46.166.142.86

200 OK

11 kB

URL HTTP/1.1
sendvid.com/embed/p0f2o0gu
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
11 kB (11009 bytes)
Hash
e56725d3f5066e5bdfeac8be14a12cfc
f3de90b30df66ea8ae070f8017931853cb9614ee
0f9443d5bf748ce4e21291cedfeab0b37052acea78b40d4a5858d9bf14e0bf23

HTTP Headers

GET /embed/p0f2o0gu HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
ETag: "e56725d3f5066e5bdfeac8be14a12cfc"
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Runtime: 0.030936
X-Request-Id: 3b4f7f29-c7be-4e59-afd7-0478ab164b32
Date: Sat, 24 Sep 2022 14:29:19 GMT
Set-Cookie: gsc=ImVlOGUyZmM3LWIxMzYtNGYwZS1iYmY3LTAxMzg4NzU5ZDc3OCI%3D--a6724887b670d7caa6f42bbcfb2c565d095ef94f; domain=.sendvid.com; path=/; expires=Wed, 24 Sep 2042 14:29:19 -0000
adpref=0; path=/; expires=Mon, 26 Sep 2022 14:29:19 -0000
_sendvid_session=M1BvK1lHWWVobkIzOVBHcDlienJwVXAwb3RIT0hiMXRKYm8rVnM0WXE3bmdqdGxWRUJ2S0l5QjRNaEIrVGdacWQ2MkU2SE51eS9KR2dlMlFxN2FFdDFjelBZdXV6c2E2alpWdDF1Uk11bXlkRUFieDcyTXNnNXpNcHMyVzNxQUdxT3BPOXlORGRmc0s1T2hwZkZ2RmZnPT0tLSszT0JwRDdyZmJkNUpOTFhRVURHaGc9PQ%3D%3D--ec4b5a6352a9ebc23061ae5c3804d6d9cbc5e4eb; path=/; expires=Fri, 24 Mar 2023 15:29:19 -0000; HttpOnly
X-Powered-By: Phusion Passenger(R) 6.0.9
Server: nginx/1.20.1 + Phusion Passenger(R) 6.0.9
Cache-Control: max-age=0, private, must-revalidate, no-store, no-cache

sendvid.com/assets/application-b65b6886b2dc28a3f7d72b06ae6bb283.css

46.166.142.86

200 OK

74 kB

URL HTTP/1.1
sendvid.com/assets/application-b65b6886b2dc28a3f7d72b06ae6bb283.css
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type
ASCII text, with very long lines (46353)
Size
74 kB (74322 bytes)
Hash
cef881c30ba6bd4f3f0522c52f063ab8
086601c27b7d2c6863bd81850adb803603a5ac30
e99eb62c2d97a541a291609715e963f5a7462b1efba6331e9dbf3c9173c41cac

HTTP Headers

GET /assets/application-b65b6886b2dc28a3f7d72b06ae6bb283.css HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/embed/p0f2o0gu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: text/css
Content-Length: 74322
Last-Modified: Thu, 28 May 2020 12:37:54 GMT
Connection: keep-alive
Expires: Sun, 24 Sep 2023 14:29:19 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

sendvid.com/site_ads.js

46.166.142.86

200 OK

17 B

URL HTTP/1.1
sendvid.com/site_ads.js
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type
ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
139eff990c985526831b9bedb50efaf0
b033ac2c5301e36746aa7f341a7eb133d6b4fe69
2349eef06e446004512c226b8c5e89eadf92bd02c8a660ef8a72d28c106de4f1

HTTP Headers

GET /site_ads.js HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/embed/p0f2o0gu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: application/javascript
Content-Length: 17
Last-Modified: Tue, 12 Jul 2022 11:39:33 GMT
Connection: keep-alive
ETag: "62cd5d75-11"
Cache-Control: no-store, no-cache
Accept-Ranges: bytes

sendvid.com/assets/zeroclipboard-5534ae3798279739b2e29b14f0eed44b.js

46.166.142.86

200 OK

30 kB

URL HTTP/1.1
sendvid.com/assets/zeroclipboard-5534ae3798279739b2e29b14f0eed44b.js
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type
ASCII text, with very long lines (29581), with no line terminators
Size
30 kB (29581 bytes)
Hash
dba4989663875d0931a3a795a575f115
61cd12381056df30da490d1021e3458180091485
32b40b5540af51a67dc1fbff0c2cfc6ae6471f7c3d8e108473faabf07cdd3163

HTTP Headers

GET /assets/zeroclipboard-5534ae3798279739b2e29b14f0eed44b.js HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/embed/p0f2o0gu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: application/javascript
Content-Length: 29581
Last-Modified: Mon, 08 Jan 2018 13:27:42 GMT
Connection: keep-alive
Expires: Sun, 24 Sep 2023 14:29:19 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

sendvid.com/assets/player-4a21a1e4537969b33c3764b7c0a2ec03.css

46.166.142.86

200 OK

68 kB

URL HTTP/1.1
sendvid.com/assets/player-4a21a1e4537969b33c3764b7c0a2ec03.css
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type
Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size
68 kB (68200 bytes)
Hash
1a4012d78f1987dacff6a9f9f9476fc5
813a2d48ef8f85e55c9605af7275a57a7f575925
3f28bb7fc70e8ae0ec1fa5a9b311d6cc755cb051a56a159b29fedc50735a6ae8

HTTP Headers

GET /assets/player-4a21a1e4537969b33c3764b7c0a2ec03.css HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/embed/p0f2o0gu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: text/css
Content-Length: 68200
Last-Modified: Mon, 11 Jan 2021 12:08:13 GMT
Connection: keep-alive
Expires: Sun, 24 Sep 2023 14:29:19 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

sendvid.com/assets/preflight-6f76d03e855720c167da7b77c432ed64.js

46.166.142.86

200 OK

104 kB

URL HTTP/1.1
sendvid.com/assets/preflight-6f76d03e855720c167da7b77c432ed64.js
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type
ASCII text, with very long lines (32831)
Size
104 kB (104203 bytes)
Hash
9070c37aeb36fadbdf3da53c9a54fd06
ee0018963c252b86c45cd38a8f9b9ad9edc8e240
970064da1494ce66c0164cc01c1c532e6720c6b5a870edaebf5da7eddba901c5

HTTP Headers

GET /assets/preflight-6f76d03e855720c167da7b77c432ed64.js HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/embed/p0f2o0gu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: application/javascript
Content-Length: 104203
Last-Modified: Mon, 08 Jan 2018 13:29:50 GMT
Connection: keep-alive
Expires: Sun, 24 Sep 2023 14:29:19 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

thumbs2.sendvid.com/df/23/p0f2o0gu.jpg

64.210.135.116

200 OK

28 kB

URL HTTP/2
thumbs2.sendvid.com/df/23/p0f2o0gu.jpg
IP
64.210.135.116:0
ASN
#30361 SWIFTWILL2

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc56.48.100", baseline, precision 8, 640x360, components 3\012- data
Size
28 kB (28435 bytes)
Hash
ce7ad13d68fd0f4bce17843798e82d42
a40a2a9a4b433546ad459892f030691efdc0251b
2f5f08fc496ce14e3cfa2102d89205e03bd72083e2441ac4d84f3d205566b5ad

HTTP Headers

GET /df/23/p0f2o0gu.jpg HTTP/1.1
Host: thumbs2.sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: image/jpeg
content-length: 28435
last-modified: Tue, 02 Jul 2019 15:23:55 GMT
etag: "2665739da-6f13-58cb4553398c0"
expires: Wed, 25 Jan 2023 16:10:55 GMT
cache-control: max-age=10695662
accept-ranges: bytes
x-cdn-diag: ams5-6140-2-41701-m-0-0-200-0.004--;6249-23-34054----0-0-2
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

1.0 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.0 kB (1024 bytes)
Hash
4d9825a3dcda38ccbaf69f635a29e888
f1ff725ac580f8c48d1f6e774e3def53a1f023e7
2c7ef055d7b8837394d29fbd1d401afc148ece104d11f9530fd5a7b78060741a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE8C88025F2F19D372AE33D8D82883A27CEA6313E91F5FE79AB2101646BCE8F0"
Last-Modified: Thu, 22 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18176
Expires: Sat, 24 Sep 2022 19:32:15 GMT
Date: Sat, 24 Sep 2022 14:29:19 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

27 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
27 kB (26579 bytes)
Hash
3a2c16d5107db7bc5f8d0085af5a1efc
c282728589cb885b85af3cad25b5e31617cfd482
33224f974f74fd1370b830405aa3303987a66093d9221048111a49da7b8209d2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85FC68415F6B4463CE26531E905D0BC49AF4451DB127EF340B1E9DDBBE06AB64"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16768
Expires: Sat, 24 Sep 2022 19:08:47 GMT
Date: Sat, 24 Sep 2022 14:29:19 GMT
Connection: keep-alive

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
af56ebb29d27fb6a049680fe85c8828b
235a3579a72192a6a1fc0366d6d8671e2630b9f5
68454f522f57ca84315459fbf178251544804533512e9bebb8a6e3f3bce12895

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 18:25:22 GMT
Expires: Thu, 29 Sep 2022 18:25:21 GMT
Etag: "235a3579a72192a6a1fc0366d6d8671e2630b9f5"
Cache-Control: max-age=445561,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74fc362c5da2b51e-OSL

my.rtmark.net/gid.js?userId=656fa0616a8f40b68af316cd3fc808e1

139.45.195.8

200 OK

586 B

URL HTTP/2
my.rtmark.net/gid.js?userId=656fa0616a8f40b68af316cd3fc808e1
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
gzip compressed data, max compression\012- data
Size
586 B (586 bytes)
Hash
5c9d19240fd067f82b3ae83615475c40
8c150aca0090d5bf009134ac73007abc667df382
cb2389f72ebdcb6ed057c5a872feb833033669507d85ed875d692c833a024f14

HTTP Headers

GET /gid.js?userId=656fa0616a8f40b68af316cd3fc808e1 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sendvid.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 164941
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bedrapiona.com/5/5170168/?oo=1&js_build=iclick-v1.430.0

139.45.197.234

200 OK

1.9 kB

URL HTTP/2
bedrapiona.com/5/5170168/?oo=1&js_build=iclick-v1.430.0
IP
139.45.197.234:0
ASN
#9002 RETN Limited

File type
data
Size
1.9 kB (1886 bytes)
Hash
69fa5ccf371f6e1c22b453789191614e
182faa007b5dfa8d561ba7354f9677901ce6989c
d98c3126e5d9bb5d12ef26620897440ed4e059b8cf58e3cbdcac98942ddbc956

HTTP Headers

GET /5/5170168/?oo=1&js_build=iclick-v1.430.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; oaidts=1664029759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/json
x-trace-id: 08fdc8ba70b014f662b48ba83c51445b
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:19 GMT; path=/; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:19 GMT; path=/; secure; SameSite=None
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

pseepsie.com/zone?pub=0&zone_id=5170167&is_mobile=false&domain=ianime-fr.com&var=&ymid=&var_3=

139.45.197.250

200 OK

755 B

URL HTTP/2
pseepsie.com/zone?pub=0&zone_id=5170167&is_mobile=false&domain=ianime-fr.com&var=&ymid=&var_3=
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (754)
Size
755 B (755 bytes)
Hash
817a08730606352f62b98fda7b92d853
a1d1da1d572bfcef8e7294780c958255b06d8cc6
babaee100efa75832345704719876503c36d9a27e490543a96e322f68a7b944d

HTTP Headers

GET /zone?pub=0&zone_id=5170167&is_mobile=false&domain=ianime-fr.com&var=&ymid=&var_3= HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/json; charset=utf-8
content-length: 755
x-trace-id: 7c11eae0194860fbb7963fa4dc83aefd
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www2.animecomplet.net/wp-content/uploads/2019/07/Tejina-Senpai-img.jpg

172.67.179.172

301 Moved Permanently

5.3 kB

URL HTTP/2
www2.animecomplet.net/wp-content/uploads/2019/07/Tejina-Senpai-img.jpg
IP
172.67.179.172:0
ASN
#13335 CLOUDFLARENET

File type
gzip compressed data, max compression\012- data
Size
5.3 kB (5250 bytes)
Hash
48bd328320bddd41bc83f0a0f220a4c8
7b62bc98cb10cdeefd416c36f1b052956c250e0a
f2e0a5a241488bb805a931d92d4ba1401950cf96badfdf967ab452649cae6f91

HTTP Headers

GET /wp-content/uploads/2019/07/Tejina-Senpai-img.jpg HTTP/1.1
Host: www2.animecomplet.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
date: Sat, 24 Sep 2022 14:29:18 GMT
location: https://ianime-fr.com/wp-content/uploads/2019/07/Tejina-Senpai-img.jpg
cache-control: max-age=3600
expires: Sat, 24 Sep 2022 15:29:18 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XMIypDxwEOcM%2FXCzBvvUMXhkvzbAxzpwQ8PD2vkaHhqdYhJ1aCNYGNPoOz3w31HymuIw1Wo6K3gamK09OIGOFZZAeBhMidB9PE3jkmC9sRab0Yox3a6B%2BY%2BiffAKGCY%2FyOAYGWYl7Wo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74fc3628bdc2b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

tovanillitechan.com/42/38?z=5170166

139.45.197.239

200 OK

0 B

URL HTTP/2
tovanillitechan.com/42/38?z=5170166
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /42/38?z=5170166 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=9eb797bc2dc84f5a950f35e01deb6704; oaidts=1664029759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 882610e7a1049340100229315d6c564b
access-control-expose-headers: X-Sc
set-cookie: OAID=9eb797bc2dc84f5a950f35e01deb6704; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
14c4f50e0f41f858e858b124dcc866ec
1ad2814c77a84887c0f1547a775737e3e6c83f01
fa075971e9f184bf8d79929bbd7e981414d78f12ea06e3246ea4adfa2fbf4eeb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4308
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 14:29:19 GMT
Last-Modified: Sat, 24 Sep 2022 13:17:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

tovanillitechan.com/27/b7bd02994a2771796f8a835cfb750d4b

139.45.197.239

200 OK

160 kB

URL HTTP/2
tovanillitechan.com/27/b7bd02994a2771796f8a835cfb750d4b
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
data
Size
160 kB (160548 bytes)
Hash
adac7234a7c7547f0c58f8846d1b7c83
87cad51ab3afdf0ef278d498d197516b2057bb3a
fd553f6522f852e70cdd09cad7756ad1993b1c1adece14b3751ef314efb2573e

HTTP Headers

GET /27/b7bd02994a2771796f8a835cfb750d4b HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=9eb797bc2dc84f5a950f35e01deb6704; oaidts=1664029759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 22 Sep 2022 08:42:06 GMT
expires: Thu, 22 Oct 2082 08:42:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css

104.18.10.207

200 OK

5.3 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21822)
Size
5.3 kB (5282 bytes)
Hash
57a8c33a4c49c507ad02e7fcc83e7cf0
665d4b1a14b5ac47108dc7598a4197de25a0539f
d4a4d991f1751acbec46ab8b107f7f0690f26c4f43b3cd7e5eb5905f144a0ff3

HTTP Headers

GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 718, 718
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-04-23 05:21:01
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 247af5253dedb1b0bd0d1e5b53c5e898
cdn-cache: HIT
cf-cache-status: HIT
age: 12140062
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74fc362e39810b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

pseepsie.com/pfe/current/universal.min.js?v=3.1.395

139.45.197.250

200 OK

107 kB

URL HTTP/2
pseepsie.com/pfe/current/universal.min.js?v=3.1.395
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
data
Size
107 kB (106707 bytes)
Hash
e98de3a0d56c270d24aec8fe297a1d8e
d0311f68573b70d03a57ecc1022192e191f55a5f
ca94427b3449cb609a074babc71e796482723067052a8ede7c2bc7f543f76fde

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.395 HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 07:25:49 GMT
etag: W/"63296afd-1fafa"
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

tovanillitechan.com/1?z=5170166

139.45.197.239

200 OK

4.0 kB

URL HTTP/2
tovanillitechan.com/1?z=5170166
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
data
Size
4.0 kB (4018 bytes)
Hash
a7853d44cff52b309b425c3c3c5f9a8b
fb6f9a3fb4f1e5b514f09e2d593f2cac80457f1c
9e4eda6d72abd4ff1c197b25e6106d1817fa9c36740abe4e36211100957ff9bd

HTTP Headers

GET /1?z=5170166 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: a93f2b26ff38d9ad833f454897b267cb
access-control-expose-headers: X-Sc
x-sc: KmNNeXWnHGn_vOcizQpDKSds7eXt-1faKDvPTHk3JOcI5YFSosX6EeeMTr1u4jUfUU0f9M7bB5zsOkiQ6TXZgMGlCHs=
set-cookie: scm=1; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
OAID=9eb797bc2dc84f5a950f35e01deb6704; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sat, 24 Sep 2022 12:41:09 GMT
expires: Sat, 24 Sep 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 6490
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f81d321c15c87e7147d792d08ebb7513
47f30d4ca38e6753a393965219321b0394ebb597
390ae5f5435d3f8c8b7f1fa8d7e2a3ebf55ea5dbe98aa3528dd562df4c295753

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 14:29:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tovanillitechan.com/9?z=5170166&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1

139.45.197.239

204 No Content

0 B

URL HTTP/2
tovanillitechan.com/9?z=5170166&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /9?z=5170166&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

pseepsie.com/pfe/current/tag.min.js?z=5170167

139.45.197.250

304 Not Modified

0 B

URL HTTP/2
pseepsie.com/pfe/current/tag.min.js?z=5170167
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pfe/current/tag.min.js?z=5170167 HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 20 Sep 2022 07:25:49 GMT
If-None-Match: W/"63296afd-39be"
TE: trailers

HTTP/2 304 Not Modified
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
last-modified: Tue, 20 Sep 2022 07:25:49 GMT
etag: "63296afd-39be"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

videos2-h.sendvid.com/hls/df/23/p0f2o0gu.mp4/master.m3u8?validfrom=1664026159&validto=1664033359&rate=250k&ip=91.90.42.154&hdl=-1&hash=kasgYcF5q8oq9qLpelm5M6o4Xho%3D

64.210.135.148

200 OK

471 B

URL HTTP/2
videos2-h.sendvid.com/hls/df/23/p0f2o0gu.mp4/master.m3u8?validfrom=1664026159&validto=1664033359&rate=250k&ip=91.90.42.154&hdl=-1&hash=kasgYcF5q8oq9qLpelm5M6o4Xho%3D
IP
64.210.135.148:0
ASN
#30361 SWIFTWILL2

File type
M3U playlist, ASCII text
Size
471 B (471 bytes)
Hash
3ad1215af3fe458faa59bf7ebe0577e3
9875ac9d7a92675df2c08edcd3e3c5b54c937b5d
d0eb14a82f3b64ad3e395ac1654f59e64c52ffbb2291ee1bd3f45c0c9d421185

HTTP Headers

GET /hls/df/23/p0f2o0gu.mp4/master.m3u8?validfrom=1664026159&validto=1664033359&rate=250k&ip=91.90.42.154&hdl=-1&hash=kasgYcF5q8oq9qLpelm5M6o4Xho%3D HTTP/1.1
Host: videos2-h.sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sendvid.com
Connection: keep-alive
Referer: https://sendvid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/vnd.apple.mpegurl
expires: Fri, 30 Dec 2022 19:02:43 GMT
access-control-allow-methods: GET,HEAD,OPTIONS
access-control-allow-headers: Server,Range,Content-Length,Content-Range,x-cdn-diag
cache-control: max-age=8640000
content-length: 471
x-cdn-diag-p: ams5-7737-7-46566-m-0-0-200-0.000--
accept-ranges: bytes
access-control-allow-origin: https://sendvid.com
access-control-expose-headers: Server,Range,Content-Length,Content-Range,x-cdn-diag
x-avs-status: MISS
x-cdn-diag: ams5-7737-7-46566-x-0-0---;7403-22-16009----0-0-4
X-Firefox-Spdy: h2

tovanillitechan.com/1?z=5170166

139.45.197.239

200 OK

4.1 kB

URL HTTP/2
tovanillitechan.com/1?z=5170166
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (7767)
Size
4.1 kB (4058 bytes)
Hash
ca3ebe4bc25e45ddc1d27f1779d11c8f
20925a76055bd11367a696c70ee59b21f89fb877
576886e799978a4828bf6479a4ddfc7df99dff7158f7950575b1d05e0aea4fa4

HTTP Headers

GET /1?z=5170166 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=9eb797bc2dc84f5a950f35e01deb6704; oaidts=1664029759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 1cc1a36f0ffea49fb9daf93a2d1e16ff
access-control-expose-headers: X-Sc
set-cookie: OAID=9eb797bc2dc84f5a950f35e01deb6704; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:19 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

dozubatan.com/400/5170165

139.45.197.237

200 OK

32 kB

URL HTTP/2
dozubatan.com/400/5170165
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
data
Size
32 kB (31732 bytes)
Hash
0312853197c981b38a42423c0d2b90a7
8ab3a75930a4e86b1744b999c34bc1d09874ded4
85e8806d10af89c092f6fbad4d7b73eebb33c51e341cb8561328cb37a7e85163

HTTP Headers

GET /400/5170165 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: OAID=b908c58a55c34e45ab9ac2336c50f10f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/javascript
x-trace-id: 88f8b2005bab24bbc29e6224fc4de857
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b908c58a55c34e45ab9ac2336c50f10f; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a8ec9b0cda958f50ce8fd56fc578350
3a550a21aae0b4969b3b0432f597b863de2160c4
90dcf36ff7473bce9aba7370e520531dde85e6612de279b281b3485f7ebfa283

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "90DCF36FF7473BCE9ABA7370E520531DDE85E6612DE279B281B3485F7EBFA283"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=173
Expires: Sat, 24 Sep 2022 14:32:13 GMT
Date: Sat, 24 Sep 2022 14:29:20 GMT
Connection: keep-alive

tovanillitechan.com/42/38?z=5170166

139.45.197.239

200 OK

0 B

URL HTTP/2
tovanillitechan.com/42/38?z=5170166
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /42/38?z=5170166 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: OAID=9eb797bc2dc84f5a950f35e01deb6704; oaidts=1664029759; scm=1; OAID=9eb797bc2dc84f5a950f35e01deb6704; oaidts=1664029759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 0d3607b62bd5ce762fd2c8c3adf390d7
access-control-expose-headers: X-Sc
set-cookie: OAID=9eb797bc2dc84f5a950f35e01deb6704; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
49e5ce5b845b02f2812fd5e0e90657ab
b25b1883b0f0e02956c3eb5beb98552f814ee6ab
626d35b4cb1b83b59e4ee11e274ba2e82d81a7357d085012401623d088bc3985

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 22 Sep 2022 12:52:21 GMT
Expires: Thu, 29 Sep 2022 12:52:20 GMT
Etag: "b25b1883b0f0e02956c3eb5beb98552f814ee6ab"
Cache-Control: max-age=425579,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74fc36306991b51e-OSL

dozubatan.com/500/5170165?excludes=&oaid=656fa0616a8f40b68af316cd3fc808e1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.237

200 OK

0 B

URL HTTP/2
dozubatan.com/500/5170165?excludes=&oaid=656fa0616a8f40b68af316cd3fc808e1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/5170165?excludes=&oaid=656fa0616a8f40b68af316cd3fc808e1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

s4.histats.com/stats/0.php?4513633&@f16&@g1&@h1&@i1&@j1664029758557&@k0&@l1&@mPage%20non%20trouv%C3%A9e%20-%20IAnime&@n0&@ohttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-178071309&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fv%2Fmy4jxu57dn15d-2&@w

192.99.0.58

200 OK

51 B

URL HTTP/1.1
s4.histats.com/stats/0.php?4513633&@f16&@g1&@h1&@i1&@j1664029758557&@k0&@l1&@mPage%20non%20trouv%C3%A9e%20-%20IAnime&@n0&@ohttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-178071309&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fv%2Fmy4jxu57dn15d-2&@w
IP
192.99.0.58:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
12e78f2be2426ac8cba05c57e545ea0f
1b5cd8131766fca9871be208c3c73c6bce34918a
846591883ac03b9c4f9a665762b37d84be65f02d52422ddd897827d1495d1711

HTTP Headers

GET /stats/0.php?4513633&@f16&@g1&@h1&@i1&@j1664029758557&@k0&@l1&@mPage%20non%20trouv%C3%A9e%20-%20IAnime&@n0&@ohttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-178071309&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fv%2Fmy4jxu57dn15d-2&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:20 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://ianime-fr.com
Content-Length: 1541
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 24 Sep 2022 14:29:37 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://ianime-fr.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10630
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:29:20 GMT
Connection: keep-alive

dozubatan.com/400/5170165

139.45.197.237

200 OK

63 kB

URL HTTP/2
dozubatan.com/400/5170165
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
data
Size
63 kB (63439 bytes)
Hash
52c973391eeaab011b73855430e2ecd8
2224602d05a6909249c56f6ee4a652d7d59915e7
45135803389f87b77d3910f23576e177f0640c5e19f7364ee838c3368cdc7775

HTTP Headers

GET /400/5170165 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/javascript
x-trace-id: 7cfa84832a84267f0d562d5d3cdaba94
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b908c58a55c34e45ab9ac2336c50f10f; expires=Sun, 24 Sep 2023 14:29:19 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10630
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:29:20 GMT
Connection: keep-alive

139.45.197.239

200 OK

3.2 kB

URL HTTP/2
tovanillitechan.com/9?z=5170166&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
data
Size
3.2 kB (3166 bytes)
Hash
03b98b8fa8b893fa0cbb1f0644a9b20f
bf57afe92c9d87679035ef0f781fe98bf65f01ff
55ad929551e09408429f5d90f923b044e638f9334ea4ba0faee6ae70525282d9

HTTP Headers

POST /9?z=5170166&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 261
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=9eb797bc2dc84f5a950f35e01deb6704; oaidts=1664029759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 1ac92c2cb98049e5a51ffb2ec6e5bbb2
access-control-expose-headers: X-Sc
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10630
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:29:20 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8354 bytes)
Hash
e1087dcce202bbbc8c84196bd2050662
670d89082f8da643e1196b11fb64bf71707f0e8d
f6a7b6e07177431d7845e2f2b7b1b3b76088671db32aeef580a72e9bd3ddae00

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8354
x-amzn-requestid: 3ec3470c-2268-4102-af88-27dcfed76bfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPCGOcoAMF2xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-481aa98b413690636fc3a2f0;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dXqPCGTGK8gW86McTltPuNYKXQgUuSqcL_XbyRQitinH5LsUscmU2w==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 60091
etag: "670d89082f8da643e1196b11fb64bf71707f0e8d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10032 bytes)
Hash
aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 59544
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9935 bytes)
Hash
55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 59730
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10279 bytes)
Hash
8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:12:38 GMT
age: 37002
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6386 bytes)
Hash
d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:52:36 GMT
age: 59804
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7963 bytes)
Hash
5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:02 GMT
age: 59538
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

s4.histats.com/stats/0.php?4513633&@f16&@g0&@h2&@i1&@j1664029758659&@k102&@l2&@mMagical%20Sempai%20-%20Episode%201%20VOSTFR%20streaming%20-%20IAnime&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:117494642&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@w

192.99.0.58

200 OK

51 B

URL HTTP/1.1
s4.histats.com/stats/0.php?4513633&@f16&@g0&@h2&@i1&@j1664029758659&@k102&@l2&@mMagical%20Sempai%20-%20Episode%201%20VOSTFR%20streaming%20-%20IAnime&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:117494642&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@w
IP
192.99.0.58:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
12e78f2be2426ac8cba05c57e545ea0f
1b5cd8131766fca9871be208c3c73c6bce34918a
846591883ac03b9c4f9a665762b37d84be65f02d52422ddd897827d1495d1711

HTTP Headers

GET /stats/0.php?4513633&@f16&@g0&@h2&@i1&@j1664029758659&@k102&@l2&@mMagical%20Sempai%20-%20Episode%201%20VOSTFR%20streaming%20-%20IAnime&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:117494642&@b3:1664029759&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:20 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close

tovanillitechan.com/9?z=5170166&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1

139.45.197.239

204 No Content

0 B

URL HTTP/2
tovanillitechan.com/9?z=5170166&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /9?z=5170166&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

pseepsie.com/custom

139.45.197.250

200 OK

0 B

URL HTTP/2
pseepsie.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

tovanillitechan.com/11?rnd=1914906899&z=5170166&b=14812988&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=aNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ==&ruid=371f6a11-6bed-4d29-b8c3-0c8c675fb0fa&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=300

139.45.197.239

200 OK

0 B

URL HTTP/2
tovanillitechan.com/11?rnd=1914906899&z=5170166&b=14812988&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=aNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ==&ruid=371f6a11-6bed-4d29-b8c3-0c8c675fb0fa&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=300
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=1914906899&z=5170166&b=14812988&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=aNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ==&ruid=371f6a11-6bed-4d29-b8c3-0c8c675fb0fa&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=300 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=656fa0616a8f40b68af316cd3fc808e1; oaidts=1664029759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 5f0c5ee7d176923290e5b3788cce2f98
access-control-expose-headers: X-Sc
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

pseepsie.com/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
pseepsie.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /custom HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Content-Type: application/json
Origin: https://ianime-fr.com
Content-Length: 395
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 5ac2f14f9fd4cf5cf4e79522fb83b35f
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

pseepsie.com/custom

139.45.197.250

200 OK

2.5 kB

URL HTTP/2
pseepsie.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
data
Size
2.5 kB (2541 bytes)
Hash
717ae398be453ce7c2b0dff363e89540
2316c3505185de21db46ce6bfa714fb1244ba757
1f987545535d44c00eb0caed7927e791c8ca38c9c9a0e43800f3a7518c8ef6d7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /custom HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Content-Type: application/json
Origin: https://ianime-fr.com
Content-Length: 380
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: e77d272d63e4021687cb5c1b42921c07
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

pseepsie.com/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
pseepsie.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /custom HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Content-Type: application/json
Origin: https://ianime-fr.com
Content-Length: 747
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c61bdaf3f73e4788e6039f55c154126e
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
339f86b358be62defb0f6165028a0b46
d583ede88621d0169802ebdf94d8da131572066e
de1b914bc0b575f9dcda2abcdfef76f849e371f858bf07011b04b23404260c24

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE1B914BC0B575F9DCDA2ABCDFEF76F849E371F858BF07011B04B23404260C24"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17046
Expires: Sat, 24 Sep 2022 19:13:26 GMT
Date: Sat, 24 Sep 2022 14:29:20 GMT
Connection: keep-alive

my.rtmark.net/gid.js?pub=0&userId=518b91286dd84983be5e62544e81eb82&zoneId=5170167&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=518b91286dd84983be5e62544e81eb82&zoneId=5170167&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
44a2379cfc2175aa16f323644e57202f
f8769df01a8dd033e48d2c9e5afb76a37ef8bafa
52062bbe21d8d9eaf27c71378e747f93c14dad851ff35e69f0a995f92815e486

HTTP Headers

GET /gid.js?pub=0&userId=518b91286dd84983be5e62544e81eb82&zoneId=5170167&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Cookie: ID=656fa0616a8f40b68af316cd3fc808e1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png

172.67.22.216

200 OK

66 kB

URL HTTP/2
offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png
IP
172.67.22.216:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
66 kB (66121 bytes)
Hash
3d08aacb36c7474e0d13b60f8f4adc14
e4af2de372b5e3a2211579a5973ef7ed160e7be4
54b0569cf052e12dd373e86031009d0a54a893275a21c2ef863277a9a978ab1c

HTTP Headers

GET /www/images/3d08aacb36c7474e0d13b60f8f4adc14.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: image/png
content-length: 66121
last-modified: Thu, 10 Dec 2020 17:24:49 GMT
etag: "5fd259e1-10249"
expires: Sun, 25 Sep 2022 13:33:25 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 3355
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74fc3632b8b1b51d-OSL
X-Firefox-Spdy: h2

tovanillitechan.com/11?rnd=2411778403&z=5170166&b=14505327&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=ezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA==&ruid=cf094b14-5786-4c0d-90b4-4c0075ca0318&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=218

139.45.197.239

200 OK

0 B

URL HTTP/2
tovanillitechan.com/11?rnd=2411778403&z=5170166&b=14505327&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=ezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA==&ruid=cf094b14-5786-4c0d-90b4-4c0075ca0318&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=218
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=2411778403&z=5170166&b=14505327&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=ezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA==&ruid=cf094b14-5786-4c0d-90b4-4c0075ca0318&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=218 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=656fa0616a8f40b68af316cd3fc808e1; oaidts=1664029759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: f0444cf475f833b2f06c0f9d3c6117a9
access-control-expose-headers: X-Sc
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
96740ddd9ff9e0bee4d7e614ed52d31b
b2673f83983c7590c1898a953c55e41b100dfea5
8fda915148fb50320311ac62a5c5c2a9272082163301ec77c59c53026b1055e5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 03:02:15 GMT
Expires: Fri, 30 Sep 2022 03:02:14 GMT
Etag: "b2673f83983c7590c1898a953c55e41b100dfea5"
Cache-Control: max-age=476573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74fc36323b68b51e-OSL

interstitial-07.com/contents/s/5b/f4/e6/f22046109fdc23a5aac1620be3/0829937400067.jpeg

139.45.197.151

200 OK

25 kB

URL HTTP/2
interstitial-07.com/contents/s/5b/f4/e6/f22046109fdc23a5aac1620be3/0829937400067.jpeg
IP
139.45.197.151:0
ASN
#9002 RETN Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Size
25 kB (24846 bytes)
Hash
5bf4e6f22046109fdc23a5aac1620be3
2b5d2dce336d86c63f6dfde19cd130166d29b221
11753e6268755b305837fe7e6f8c740862b68bc32ff79a2e86e18c6b5ebb60cc

HTTP Headers

GET /contents/s/5b/f4/e6/f22046109fdc23a5aac1620be3/0829937400067.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=BsffwaFC63kXM5A&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D3429122312%26z%3D5170166%26b%3D14812988%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D371f6a11-6bed-4d29-b8c3-0c8c675fb0fa%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: image/jpeg
content-length: 24846
last-modified: Wed, 01 Jun 2022 16:33:28 GMT
etag: "629794d8-610e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

interstitial-07.com/?l=BsffwaFC63kXM5A&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D3429122312%26z%3D5170166%26b%3D14812988%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D371f6a11-6bed-4d29-b8c3-0c8c675fb0fa%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.151

200 OK

3.4 kB

URL HTTP/2
interstitial-07.com/?l=BsffwaFC63kXM5A&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D3429122312%26z%3D5170166%26b%3D14812988%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D371f6a11-6bed-4d29-b8c3-0c8c675fb0fa%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.151:0
ASN
#9002 RETN Limited

File type
data
Size
3.4 kB (3427 bytes)
Hash
9208cfa2ad98679a71e167e41d73efa0
3766c9167ce3988ba0606ca57ba0200c5c5c20c2
1218d67e8323560c1906167894ba058ad846ba25fbca68fe246b2a89863363d8

HTTP Headers

GET /?l=BsffwaFC63kXM5A&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D3429122312%26z%3D5170166%26b%3D14812988%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaNEGMaM9nTZZ7jDPa3VaVyAMafz0BK7RwM-hLqSaY8tIFIoG2qKdUutX_mrpEnQ3Q4B7JRlS13eKVVZ9MFlyDp3fKxa9QgnhaaO0sxr6PktlwSWpvLnhbUWjcZNIfDxd0pqEmFJOTNRRr-eIjV47DlTv1kshTtl4rw94AF23LgV8FsHaVOdDhkiYwKxqP071K8pSmBDLFIuD0ENpi751fLuav9aCjfkE8399o6D0tjMB1BP8my25cpLxYO1ZZic73dxI98AaSkJpzPvHWJQXGY08zr3cA2LKgVwLCkiLu88ErbRbO2bD7RvYtFJSao2ioJkcf-o6jQpF291tYKE0rqMIJEbPotJ8PvRFQhQFukYwNt_vhgzqg1oaAWu_edIoxSO-T6w921UPvnvx6TppHi56-FSwEJjJkk00qQtYNT-zLy607YI21b-czdhcVh0PT7nHQ9l65b8YEnm42YZHjcIkrJ64Pis9oRrQZJHgzJcPr_o1MIoY6pGMMhI6O6l3JM4feZMZeoKNAcWe6exeMVA7Fcik9RM-OphccnkLWlQay1Ux6shiNyz9rQzzivhCDxFGdAthNOoPZZSVbDPthLP0nJVUtHvvXQkqnuN0qrSAAzMv02TKLek7ZkDNt0ePEt1Wvxy33Hnb0wi-5bBmrQ%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D371f6a11-6bed-4d29-b8c3-0c8c675fb0fa%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=qqqoqdoKQjNkumkvQoE_ZWxagZGRCck7hQc6eOEUdNE; expires=Sat, 24-Sep-2022 15:29:20 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2

pseepsie.com/pfe/current/defaultSkin.min.js

139.45.197.250

200 OK

76 kB

URL HTTP/2
pseepsie.com/pfe/current/defaultSkin.min.js
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
data
Size
76 kB (75935 bytes)
Hash
3519062eb7242e7e298c8d961189c9d7
2bcd362d9307d23ec829e7343d19d8c582afc064
43855dd9ee3f65045e40679ca115c4ede7c71d01c6d270cc6edadda6c7285437

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 07:25:49 GMT
etag: W/"63296afd-df63"
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

interstitial-07.com/contents/s/22/c3/d7/36b6f5657cde24feae14c9773b/0608422639029.jpeg

139.45.197.151

200 OK

25 kB

URL HTTP/2
interstitial-07.com/contents/s/22/c3/d7/36b6f5657cde24feae14c9773b/0608422639029.jpeg
IP
139.45.197.151:0
ASN
#9002 RETN Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Size
25 kB (25424 bytes)
Hash
22c3d736b6f5657cde24feae14c9773b
126151dc35c149dad2aa1e7ad40856eda756a0a3
686dabfa96f39e22f655edd3bf99484caf1aa3b63165e6d47ae6c6c2de974bec

HTTP Headers

GET /contents/s/22/c3/d7/36b6f5657cde24feae14c9773b/0608422639029.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: image/jpeg
content-length: 25424
last-modified: Mon, 21 Mar 2022 17:16:40 GMT
etag: "6238b2f8-6350"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
96740ddd9ff9e0bee4d7e614ed52d31b
b2673f83983c7590c1898a953c55e41b100dfea5
8fda915148fb50320311ac62a5c5c2a9272082163301ec77c59c53026b1055e5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 14:29:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 03:02:15 GMT
Expires: Fri, 30 Sep 2022 03:02:14 GMT
Etag: "b2673f83983c7590c1898a953c55e41b100dfea5"
Cache-Control: max-age=476573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74fc3632fcd00b31-OSL

cdn.itskiddoan.club/apu.php?zoneid=5307276

139.45.197.236

200 OK

968 B

URL HTTP/2
cdn.itskiddoan.club/apu.php?zoneid=5307276
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (801)
Size
968 B (968 bytes)
Hash
5399824d020fe6d02a52b9cbc8adb26f
7a8ec0daaa8865ca8bea06908a9a2fc6dbf87cc8
b75abfa215e335534e2799eaffd541975cecd6d3aebefbd6a090e0db6959a76c

HTTP Headers

GET /apu.php?zoneid=5307276 HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/javascript
content-length: 968
x-trace-id: 65ca7dd63937994532e19e736df71b6b
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=d0fad27212844739a7da86c7141f8d9e; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
oaidts=1664029760; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

interstitial-07.com/contents/s/ad/18/0b/3aac326b9289a67e128b909273/0826749865589.jpeg

139.45.197.151

200 OK

65 kB

URL HTTP/2
interstitial-07.com/contents/s/ad/18/0b/3aac326b9289a67e128b909273/0826749865589.jpeg
IP
139.45.197.151:0
ASN
#9002 RETN Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Size
65 kB (64787 bytes)
Hash
ad180b3aac326b9289a67e128b909273
ba733f261d913ab102602e449058a72d515f943b
202defc20d82c83f15257ccaac9cf945e9802406c4f8288178e46d8977920536

HTTP Headers

GET /contents/s/ad/18/0b/3aac326b9289a67e128b909273/0826749865589.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: image/jpeg
content-length: 64787
last-modified: Tue, 12 Apr 2022 16:09:22 GMT
etag: "6255a432-fd13"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

pseepsie.com/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
pseepsie.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /custom HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Content-Type: application/json
Origin: https://ianime-fr.com
Content-Length: 377
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 02bd6609e0d392999ca5c5ce3bea3f91
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

cdn.itskiddoan.club/apu.php?zoneid=5307276

139.45.197.236

200 OK

968 B

URL HTTP/2
cdn.itskiddoan.club/apu.php?zoneid=5307276
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (801)
Size
968 B (968 bytes)
Hash
5399824d020fe6d02a52b9cbc8adb26f
7a8ec0daaa8865ca8bea06908a9a2fc6dbf87cc8
b75abfa215e335534e2799eaffd541975cecd6d3aebefbd6a090e0db6959a76c

HTTP Headers

GET /apu.php?zoneid=5307276 HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/javascript
content-length: 968
x-trace-id: bc8597be150291d54e711f52703929c8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=a3049c1f68fd467a90d1bcd38346aa0b; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
oaidts=1664029760; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

139.45.197.237

200 OK

1.2 kB

URL HTTP/2
dozubatan.com/500/5170165?excludes=&oaid=656fa0616a8f40b68af316cd3fc808e1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1458), with no line terminators
Size
1.2 kB (1173 bytes)
Hash
99d8e59dd2c71f8af2700b5c4f0719e0
4207519547fb82f8bc4c6eb6a8a9c71a38c60eef
44da132393744e3a432171e7a5e2d50d19f1eac24dd469de27806dc6cbd4cf65

HTTP Headers

GET /500/5170165?excludes=&oaid=656fa0616a8f40b68af316cd3fc808e1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: OAID=b908c58a55c34e45ab9ac2336c50f10f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/javascript
x-trace-id: 55234bd114f0bee4ae2565e779894587
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://ianime-fr.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

unphionetor.com/fv.js?t=72747&cb=686929384

139.45.197.236

200 OK

2.2 kB

URL HTTP/2
unphionetor.com/fv.js?t=72747&cb=686929384
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (5213), with no line terminators
Size
2.2 kB (2153 bytes)
Hash
0254fb1dad74628b7ad0f97d304fac92
35f7af13a08eb87023ec7df4d3c35c21b2cde79d
47fb6ce428ca80ea69b772e4f66e4e5c622a4005db601746033d04511bd27536

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /fv.js?t=72747&cb=686929384 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 522179bae08abaa133e44e6ecb3902e6
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 645853069377ec9b99fd9a722b39bca3
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 35d6679b2d6d954690c5ffcde197a1ba
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

dozubatan.com/impression/OYDi5M61GwFSdqHkxoZPP3yuabso3ZQzhJd0ZihoYi1QgbxHGG2lmIPQa4rJjNMro-oeNaaIMXsQcG4SlZFp8qJ-w8O3DLNrrEjMFmenmp1sKaRzUvAtgVD-a6VE-bd12_fH2sHpza1LsCL0JVGTHvug-zK-rRRgy6ehVeEYf4CeK9bZRgCQC5-RaQYICjLDQixzDxD0qQskYEwOsuEXountLdqbZF2q7pzUYjU52gdfNesr0kFsGoFraSBj7tmIFwe5j5x_a1JcmNIpLrERKFHUWQdf_X9Qcr1jtBad5SHN9Me3jqCGClGg0eiii5AwgHt0Cr27o9RCE9xeo4qex_K4_eefP_wBmPnIWHRH6qXxK6PtYUtKGz_x_qpd55a2wHuHy3xGSpX2gR1UOIUSRMIUScB7N_rkhpmTqMjg93KcoIETsAMLMkzKo3vi4RCDRv4sZ_i7EhCQlB4dkMtOs4A3reVYSHUFQ-p9eNELjYr52iL7bSmDZsjRlKpTl_VYhHsiVBXp3uh8uCdvND3wbgneaUylo8O8-cw1JuK95UCi4Z1u1E2ylbM9fG_WcGPW5wiYNWaaCphi3IuyJAj5dmV-FfFixQOd?_z=5170165&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.237

200 OK

43 B

URL HTTP/2
dozubatan.com/impression/OYDi5M61GwFSdqHkxoZPP3yuabso3ZQzhJd0ZihoYi1QgbxHGG2lmIPQa4rJjNMro-oeNaaIMXsQcG4SlZFp8qJ-w8O3DLNrrEjMFmenmp1sKaRzUvAtgVD-a6VE-bd12_fH2sHpza1LsCL0JVGTHvug-zK-rRRgy6ehVeEYf4CeK9bZRgCQC5-RaQYICjLDQixzDxD0qQskYEwOsuEXountLdqbZF2q7pzUYjU52gdfNesr0kFsGoFraSBj7tmIFwe5j5x_a1JcmNIpLrERKFHUWQdf_X9Qcr1jtBad5SHN9Me3jqCGClGg0eiii5AwgHt0Cr27o9RCE9xeo4qex_K4_eefP_wBmPnIWHRH6qXxK6PtYUtKGz_x_qpd55a2wHuHy3xGSpX2gR1UOIUSRMIUScB7N_rkhpmTqMjg93KcoIETsAMLMkzKo3vi4RCDRv4sZ_i7EhCQlB4dkMtOs4A3reVYSHUFQ-p9eNELjYr52iL7bSmDZsjRlKpTl_VYhHsiVBXp3uh8uCdvND3wbgneaUylo8O8-cw1JuK95UCi4Z1u1E2ylbM9fG_WcGPW5wiYNWaaCphi3IuyJAj5dmV-FfFixQOd?_z=5170165&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/OYDi5M61GwFSdqHkxoZPP3yuabso3ZQzhJd0ZihoYi1QgbxHGG2lmIPQa4rJjNMro-oeNaaIMXsQcG4SlZFp8qJ-w8O3DLNrrEjMFmenmp1sKaRzUvAtgVD-a6VE-bd12_fH2sHpza1LsCL0JVGTHvug-zK-rRRgy6ehVeEYf4CeK9bZRgCQC5-RaQYICjLDQixzDxD0qQskYEwOsuEXountLdqbZF2q7pzUYjU52gdfNesr0kFsGoFraSBj7tmIFwe5j5x_a1JcmNIpLrERKFHUWQdf_X9Qcr1jtBad5SHN9Me3jqCGClGg0eiii5AwgHt0Cr27o9RCE9xeo4qex_K4_eefP_wBmPnIWHRH6qXxK6PtYUtKGz_x_qpd55a2wHuHy3xGSpX2gR1UOIUSRMIUScB7N_rkhpmTqMjg93KcoIETsAMLMkzKo3vi4RCDRv4sZ_i7EhCQlB4dkMtOs4A3reVYSHUFQ-p9eNELjYr52iL7bSmDZsjRlKpTl_VYhHsiVBXp3uh8uCdvND3wbgneaUylo8O8-cw1JuK95UCi4Z1u1E2ylbM9fG_WcGPW5wiYNWaaCphi3IuyJAj5dmV-FfFixQOd?_z=5170165&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: OAID=656fa0616a8f40b68af316cd3fc808e1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:24 GMT
content-type: image/gif
content-length: 43
x-trace-id: 1ae537321315f5a909a9ef02d8434390
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

pseepsie.com/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
pseepsie.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /custom HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Content-Type: application/json
Origin: https://ianime-fr.com
Content-Length: 403
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:26 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: b603274e312680041feaf52ea0eb61cc
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=518b91286dd84983be5e62544e81eb82&zoneId=5170167&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=518b91286dd84983be5e62544e81eb82&zoneId=5170167&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
44a2379cfc2175aa16f323644e57202f
f8769df01a8dd033e48d2c9e5afb76a37ef8bafa
52062bbe21d8d9eaf27c71378e747f93c14dad851ff35e69f0a995f92815e486

HTTP Headers

GET /gid.js?pub=0&userId=518b91286dd84983be5e62544e81eb82&zoneId=5170167&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Cookie: ID=656fa0616a8f40b68af316cd3fc808e1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:26 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:26 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

onmarshtompor.com/?rb=1MC15Uxc5ZdMZa2CIPWtWBoeFy8-cbG2uUqbEsoKuNd5eLr97tk8mQTHwxtBKvPUYIBlr6tzkO0_IJsam5_-WnI22jzGlxVeeNmVhV87rKYtgHHZerITtpCp_zLf9Io3ZBrDoUsUhbuJ5OLPgS3os-eUetGlDjLdToRkjmvciQTUb6J68nGTK4k8yzgbHrJsQSqvRT9n_F4lh4OB-WSRBA%3D%3D&request_ab2=0&zoneid=5170168&js_build=iclick-v1.430.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1080&wiw=1080&wih=608&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fv%2Fmy4jxu57dn15d-2&drf=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&js_build=iclick-v1.430.0&bs=0edb54ab-7671-4c34-a717-73aa8dc9a9de&userId=656fa0616a8f40b68af316cd3fc808e1&m=link

139.45.197.243

200 OK

0 B

URL HTTP/2
onmarshtompor.com/?rb=1MC15Uxc5ZdMZa2CIPWtWBoeFy8-cbG2uUqbEsoKuNd5eLr97tk8mQTHwxtBKvPUYIBlr6tzkO0_IJsam5_-WnI22jzGlxVeeNmVhV87rKYtgHHZerITtpCp_zLf9Io3ZBrDoUsUhbuJ5OLPgS3os-eUetGlDjLdToRkjmvciQTUb6J68nGTK4k8yzgbHrJsQSqvRT9n_F4lh4OB-WSRBA%3D%3D&request_ab2=0&zoneid=5170168&js_build=iclick-v1.430.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1080&wiw=1080&wih=608&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fv%2Fmy4jxu57dn15d-2&drf=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&js_build=iclick-v1.430.0&bs=0edb54ab-7671-4c34-a717-73aa8dc9a9de&userId=656fa0616a8f40b68af316cd3fc808e1&m=link
IP
139.45.197.243:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?rb=1MC15Uxc5ZdMZa2CIPWtWBoeFy8-cbG2uUqbEsoKuNd5eLr97tk8mQTHwxtBKvPUYIBlr6tzkO0_IJsam5_-WnI22jzGlxVeeNmVhV87rKYtgHHZerITtpCp_zLf9Io3ZBrDoUsUhbuJ5OLPgS3os-eUetGlDjLdToRkjmvciQTUb6J68nGTK4k8yzgbHrJsQSqvRT9n_F4lh4OB-WSRBA%3D%3D&request_ab2=0&zoneid=5170168&js_build=iclick-v1.430.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1080&wiw=1080&wih=608&wfc=2&pl=https%3A%2F%2Fianime-fr.com%2Fv%2Fmy4jxu57dn15d-2&drf=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&js_build=iclick-v1.430.0&bs=0edb54ab-7671-4c34-a717-73aa8dc9a9de&userId=656fa0616a8f40b68af316cd3fc808e1&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ianime-fr.com/
Origin: https://ianime-fr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json
x-trace-id: 756ff5a8a7b14cf9720daf697db389d2
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
oaidts=1664029760; expires=Sun, 24 Sep 2023 14:29:20 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 01 Oct 2022 14:29:20 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

inklinkor.com/tag.min.js

104.21.91.63

200 OK

0 B

URL HTTP/2
inklinkor.com/tag.min.js
IP
104.21.91.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:18 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 3481c6005e902120c56b4e49188e568e
cache-control: max-age=86400
last-modified: Fri, 23 Sep 2022 16:05:00 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sun, 25 Sep 2022 13:44:58 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 2660
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oOiFmygu%2BM1yOzJkXVXMpAJ0GdnfLvMBzZUIB5gZ1M7aEIAJNRRpw%2BldZ7QDUqbObebOPojyCRWnmjMp7mGaLS2bx5o59WYmFH5Xip%2B92njajR8qhJx%2Bo1ZuXoyYDyij"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74fc36293c9ab500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ianime-fr.com/magical-sempai-episode-1-vostfr/

172.67.151.11

200 OK

0 B

URL HTTP/2
ianime-fr.com/magical-sempai-episode-1-vostfr/
IP
172.67.151.11:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /magical-sempai-episode-1-vostfr/ HTTP/1.1
Host: ianime-fr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:18 GMT
content-type: text/html; charset=UTF-8
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Sat, 24 Sep 2022 08:27:56 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s9NcVfngG7Eb5Eb9PnzGiIcQPrDlABA6rLQhjX3CIEiUE%2BmCP3El2PTdR2CvaWvC70duUA1KyJ7ZvLAdXS6kjcQGFeR%2BxBUn1D4qyGZL9VrSDTSU%2BWlOiCdxfag2W8le"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74fc3626ffb7b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bedrapiona.com/5/5170168/?oo=1&js_build=iclick-v1.430.0

139.45.197.234

200 OK

0 B

URL HTTP/2
bedrapiona.com/5/5170168/?oo=1&js_build=iclick-v1.430.0
IP
139.45.197.234:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /5/5170168/?oo=1&js_build=iclick-v1.430.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/json
x-trace-id: 51acf0884e2cd999d0a559a0518d2933
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://ianime-fr.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:19 GMT; path=/; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:19 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

139.45.197.239

200 OK

0 B

URL HTTP/2
tovanillitechan.com/9?z=5170166&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /9?z=5170166&ng=1&ix=1&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fianime-fr.com%2Fmagical-sempai-episode-1-vostfr%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=656fa0616a8f40b68af316cd3fc808e1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 69
Origin: https://ianime-fr.com
Connection: keep-alive
Referer: https://ianime-fr.com/
Cookie: scm=1; OAID=656fa0616a8f40b68af316cd3fc808e1; oaidts=1664029759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://ianime-fr.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: e05aba0324988ae4e39f52a7429e3584
access-control-expose-headers: X-Sc
set-cookie: OAID=656fa0616a8f40b68af316cd3fc808e1; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
oaidts=1664029759; expires=Sun, 24 Sep 2023 14:29:20 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

104.21.84.149

200 OK

0 B

URL HTTP/2
tzegilo.com/stattag.js
IP
104.21.84.149:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2444
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BedMF47mll%2F7DO50SQXo3ZVLq6v8wl%2FFAaMn2qcQKhvW2mBpZ4c2XTlg8bjLmT6Y987Ts30EDX8MvOvwG4lL%2Bg2UnFCaKwaiZphpG89n1JdT9VHKGCyvrx4HdlORjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74fc362d897eb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.embed.ly/player-0.0.10.min.js

104.16.89.50

200 OK

0 B

URL HTTP/2
cdn.embed.ly/player-0.0.10.min.js
IP
104.16.89.50:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /player-0.0.10.min.js HTTP/1.1
Host: cdn.embed.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/javascript
x-amz-id-2: 2ekDMzp17cq+gx1XMEIjDm/2Yqub/sluON7pfkIdmWy0/vD4wg7dmdpaKc19xTumUNMmib4Juf8=
x-amz-request-id: 52W0RSDB5W1CQYN1
cache-control: public, max-age=14400
last-modified: Wed, 07 May 2014 11:38:57 GMT
x-amz-version-id: null
etag: W/"c613d6445cca8cf218e42bc06f189b3b"
cf-cache-status: HIT
age: 72
expires: Sat, 24 Sep 2022 18:29:19 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74fc362afa57b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

pseepsie.com/pfe/current/tag.min.js?z=5170167

139.45.197.250

200 OK

0 B

URL HTTP/2
pseepsie.com/pfe/current/tag.min.js?z=5170167
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /pfe/current/tag.min.js?z=5170167 HTTP/1.1
Host: pseepsie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:19 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 07:25:49 GMT
etag: W/"63296afd-39be"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

sendvid.com/assets/player-9fec1f58351fca04074257d19bf19803.js

46.166.142.86

200 OK

0 B

URL HTTP/1.1
sendvid.com/assets/player-9fec1f58351fca04074257d19bf19803.js
IP
46.166.142.86:0
ASN
#43350 NForce Entertainment B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/player-9fec1f58351fca04074257d19bf19803.js HTTP/1.1
Host: sendvid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendvid.com/embed/p0f2o0gu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 24 Sep 2022 14:29:19 GMT
Content-Type: application/javascript
Content-Length: 877017
Last-Modified: Tue, 19 Apr 2022 14:59:08 GMT
Connection: keep-alive
Expires: Sun, 24 Sep 2023 14:29:19 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

interstitial-07.com/?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.151

200 OK

0 B

URL HTTP/2
interstitial-07.com/?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.151:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?l=LwdKU8Wvki6zNcF&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D1708554391%26z%3D5170166%26b%3D14505327%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DezCWK0912-_bCVNGOJ_9syPHTusTZctHeZ3P8MrISB4OZO6u6WlfcGN6Av5gCwMukAZEDjOI70qhiKjvArclAY_fWEmeUw6cu5CmDc_4VvOmLZYXd8Om5xLkoHoSgtIEjJ33s7fC7IJQ2TLhrjiVNVQaJY3aXmhJ1se10dRg7u0UH6d23lg1Wcq7yY0F_hNRLMq2AVtJA0Gl_RigU9l8aH1difmY-J4GMihLkP9SsUNrWiJRuWnV1uFjjfo6T6fGOBxz1YtVEClSQJc1yImsqD_dOd4yQqKISp672e6voJ3yg8IyPi4YzlKGRnJbKTR7OnWjUwJbUZsr-EdCXRiyOTki8rxgM6bUYKJ4H_c07b5xwuM_vx_djv7lhS1GiwiKL_OSU-sfYvf64LtrBv-VFflhyyHfBAhxl_GKCh7xQ8MlsN8y8jrpXyD31G4yiH4XQA1vb5dRR5jW0DcAJC1cGBj27U81fYiqWROmpikXc00pQccMCKY7lNYeU9b3OUdWXxVJIPTvkl3VhgdCjIUV0SOLxszxqFHer8XSUEtkymKiE50xeIYOu2YkhY3QwPVmCG_RVJ76f3O-_0lrJ31va2jzF-hvZGxCAGByfELfySCXa8-YSDpIN9VidWucyTfWmAQa1MJ-ZnQ2PWTrbwbejA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcf094b14-5786-4c0d-90b4-4c0075ca0318%26ng%3D1%26ix%3D1%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fianime-fr.com%252Fmagical-sempai-episode-1-vostfr%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ianime-fr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 14:29:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.25
set-cookie: reverse=mmYuCRBNHsPF2wKlrEqQ_Hdt4D-6iswaLiNcXJigkTM; expires=Sat, 24-Sep-2022 15:29:20 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

URL

IP

ASN

File type

Size

Hash

Detections

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML