Report - animedao.to/view/388343646/

Report Overview

Submitted URL
animedao.to/view/388343646/
IP
104.21.74.4
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-28 21:48:39
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
prebid.a-mo.net	1148	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	312 B	147.75.85.234
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	944 B	143.204.42.156
acdn.adnxs.com	573	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	482 B	17 kB	95.101.172.253
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.21.226
cdn.psdn.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	87 kB	205.185.216.42
vidstreaming.link	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	2.9 kB	104.21.44.37
script.4dex.io	2135	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	359 B	684 B	104.26.8.169
imp9.bidgear.com	34078	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.4 kB	104.26.3.107
tt.smirkydiff.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	1.4 kB	172.255.6.139
demand.bidgear.com	118418	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	796 B	130 kB	104.26.3.107
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	104.18.32.68
ib.adnxs.com	241	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	3.8 kB	37.252.171.84
animedao.to	82402	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	502 kB	172.67.194.56
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	61 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	4.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
platform.bidgear.com	30367	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	4.2 kB	104.26.3.107
contextual.media.net	513	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	918 B	8.5 kB	23.38.200.22
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.3
imp-dsp.bidgear.com	144697	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	818 B	538 B	104.26.3.107
pixel-dsp.bidgear.com	127673	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	475 B	542 B	104.26.3.107
wwwx19.gogocdn.stream	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	921 B	214 kB	185.193.88.20
prebid.media.net	1256	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	446 B	553 B	34.107.148.139
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.2 kB	23.36.76.226
cdn.purpleads.io	185817	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	536 B	15 kB	143.204.55.49
api.purpleads.io	146037	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	2.2 kB	34.200.59.30
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.77.32
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.86.38.2
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	28 kB	151.101.85.229
prolatecyclus.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	1.4 kB	23.109.87.153

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-28	medium	prolatecyclus.com/tRBIZsm9QOL/36415	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	animedao.to/build/runtime.d954a16b.js	1.2 kB	2023-03-11	2023-04-27
Pretty URL animedao.to/build/runtime.d954a16b.js IP 104.21.74.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-04-27 01:40:59 Times Seen2 Hash b948b3af0c4170c29c3b15d97d861b6b 4c696116f817ff7d376d8550c0b8f8eb35f50bad 4062e404840f78733d7bb6fb86d7cf85edbac695ca5453a7250c7628a2baddfc Loading...

	vidstreaming.link/js/hls.js	348 kB	2023-03-11	2023-03-11
Pretty URL vidstreaming.link/js/hls.js IP 104.21.44.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash 9714ea9c2ef8898775a419a9ec1ce1af e3f2617ce0b297d210cc1ab88eb1c376c235e6a0 ed11bd25324b3250ed291e46ea3bf5b18581d679a7d9b7e36f050f6506922cd5 Loading...

	demand.bidgear.com/tag?z=1417&k=635f79f01e5fd	2.3 kB	2023-03-11	2023-03-11
Pretty URL demand.bidgear.com/tag?z=1417&k=635f79f01e5fd IP 104.26.3.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash 2db28e13092d7c134fd36c0c724b7c52 56fe4034cab99100ba7671ae41876de9cadc33e2 42588a30c843de6ce655a6ded14241078e07292a30b7914998aa8274ed4eeab3 Loading...

	cdn.purpleads.io/video-agent.js?publisherId=267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149	43 kB	2023-03-08	2023-03-11
Pretty URL cdn.purpleads.io/video-agent.js?publisherId=267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149 IP 143.204.55.49 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:38 Last Seen2023-03-11 23:47:05 Times Seen1 Hash 819056c1bbc448fb5969d2ee8a65e2ee 4f134b8af6da8e9b0e5ba4cff3c345488d6b8b3e 6f5efd9d897aa861e4139ae9d6ae83e0f2b5af7c882c8152659e5a193c8b3c5b Loading...

	animedao.to/view/388343646/	44 B	2023-03-11	2023-08-13
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-08-13 21:03:24 Times Seen7 Hash b67b93b0c114295c2b9e4f872e968367 c4f2892ce16bb5bb0885c0ba82ce8b7ec867d0d3 8daf1c4a33c42a95fecafcbe36b04ace6e359a2f098709368799409c44ff1b40 Loading...

	animedao.to/view/388343646/	304 B	2023-03-11	2023-06-11
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-06-11 00:24:16 Times Seen3 Hash cffc7309df06d6938605502dd724d513 661a33561560f4e4fd75b9c683110d993af291ca 9b1b2aa1dd404db762757420360447c52b96c67f7a18c1fe197548249eead79f Loading...

	script.4dex.io/localstore.js	483 B	2023-03-07	2024-03-04
Pretty URL script.4dex.io/localstore.js IP 104.26.8.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-03-04 13:07:26 Times Seen5600 Hash 922cffdd75f7192f75231d92684885aa 48ae21017844de388e0a32206a2691fa4c109669 e8fe64429e5900c16c7f8dd7861704e2f4d38e00cbb16bc18820b46d92461389 Loading...

	animedao.to/view/388343646/	304 B	2023-03-11	2023-06-11
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-06-11 00:24:16 Times Seen3 Hash abacba02a3654cece109f01afe60d444 f15adb9300997a926d1b588e0e4c9df0c954f476 9ec109eaa623930cfb0335ab360e8043f1b6962bb704665a9e7b6fe13e6b97fe Loading...

	animedao.to/view/388343646/	3.0 kB	2023-03-11	2023-03-11
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash 2eafe5a70940a8a810d8a08116f3618d 5e918df46573056b24bdedc5123860a2a38c607c f340754f615a3054feb1a648f14640685827329262c208323bcd06020425e3f4 Loading...

	imasdk.googleapis.com/js/sdkloader/ima3.js	379 kB	2023-03-11	2023-03-11
Pretty URL imasdk.googleapis.com/js/sdkloader/ima3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:41:27 Last Seen2023-03-11 23:05:09 Times Seen1 Hash 39456b650832a319efa4c2e1ec75f0cc 0c27b6a62b6739e4a2bae00bee31c37e1eb110dd 2fb94cc5f4e050854cd18abcf65c8e58f62f512e141acf6b256aadbc27f1a48e Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 18:23:46 Times Seen37023560 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	animedao.to/view/388343646/	304 B	2023-03-11	2023-06-11
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-06-11 00:24:16 Times Seen3 Hash 520142a5951452c3719ce6aacb2798b3 9109ae4711ef07a2ad7bedcdc9eacd42bc33266e 1067f0d2ca32dfdbd78b7940509050c55b6f65c248c00dfed69e2bc38cacecc1 Loading...

	cdn.jsdelivr.net/npm/lozad/dist/lozad.min.js	3.1 kB	2023-03-07	2024-04-22
Pretty URL cdn.jsdelivr.net/npm/lozad/dist/lozad.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-22 22:48:51 Times Seen1920 Hash 0f856c2800426884c2acdd3e1819f3f7 fc2b43e560c45bb887add98f17b084068a9232cb 98e15110586a9877906d7a4ada5a789c0deaa285600027e1f3c7e925fb4b05b7 Loading...

	vidstreaming.link/vplayer/Mzg4MzQzNjQ2/1	1.2 kB	2023-03-11	2023-03-11
Pretty URL vidstreaming.link/vplayer/Mzg4MzQzNjQ2/1 IP 104.21.44.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash 650f42fde9958c5ca50f5d7c0107dd3f a6338bcc37e87994e6ca45f39027223ca56877de 6bb79e039d4bdd548674ddf2e3de5d97bf6e87334055d0e69c595bcdc8d6bd67 Loading...

	acdn.adnxs.com/dmp/async_usersync.html	53 kB	2023-03-07	2023-12-07
Pretty URL acdn.adnxs.com/dmp/async_usersync.html IP 95.101.172.253 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:46 Last Seen2023-12-07 18:10:42 Times Seen719 Hash b9209c89b2e3e289b9354d90fe0a28e4 e335cad88fe42d0803d89b9deacee8925cc1d75c eb465362ecc5bb3962677fd3fe5b096d57864d446f4d2cdee069b8b6556a586d Loading...

	animedao.to/view/388343646/	879 B	2023-03-11	2023-03-11
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash e9a01b9795936e4b9c552a6b07ad3f0c ae1505d5d2d39ce88313b19918a8f5b246ff5b24 446a9aa5c51f1498e3af438138b39d139a8091f850c3657eb371a6859a6fcba4 Loading...

	platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5432&k=1669672109054	4.3 kB	2023-03-11	2023-03-11
Pretty URL platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5432&k=1669672109054 IP 104.26.3.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash ba0dc452dfd9fcd02c4b048a4bf94f2a 39b061a2b22b1706b4facc95bf0e73b4f52fec93 21b1635fe404cffa9d00b44dd93ff39ed80ed37d8dbfcc2ab0a66a6df0b23ee8 Loading...

	animedao.to/view/388343646/	87 B	2023-03-11	2023-07-16
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-07-16 22:56:22 Times Seen6 Hash d1322204cbe9973f19f580372e5be9b2 685b7b741852efda29b0f1261bde1df3a029a705 820b69b8fdc4ae3f84675828c432d7db0f66d59bddd8970b90c0961d5f0a6299 Loading...

	platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5314&k=1669672109053	4.5 kB	2023-03-11	2023-03-11
Pretty URL platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5314&k=1669672109053 IP 104.26.3.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2023-03-11 22:04:29 Times Seen1 Hash 0bc1262dbfe1926b805ddd2889797e39 f7763403055d388828edcfd44a192dc081925ef6 ec25c275821adaa1a35cdc89253490989008d8bfc60ec4265e39288eba682ddb Loading...

	vidstreaming.link/js/plyr.polyfilled.min.js	193 kB	2023-03-11	2023-10-29
Pretty URL vidstreaming.link/js/plyr.polyfilled.min.js IP 104.21.44.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:30 Last Seen2023-10-29 19:19:00 Times Seen3 Hash d0e5d4f504f1dc05ca2ef6985024e934 591bbcbd4dccb8b52382014ae7e58be02646b3a2 53c979baa68c9b4fcd97af1e6cb20df6991400f3f2a59c67af3b9758aa4b702b Loading...

	animedao.to/view/388343646/	727 B	2023-03-11	2023-03-11
Pretty URL animedao.to/view/388343646/ IP 172.67.194.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:30 Last Seen2023-03-11 22:04:30 Times Seen1 Hash 4a3b8271fc69dc68a20472ce054dbf49 c1931f28204e4515163fbe6439a3bf7a88574ed4 bb96a4813e4ce3ad00583c2b8d3725d57b2e50f9229cfdffe1777712969eb186 Loading...

	animedao.to/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-23
Pretty URL animedao.to/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.21.74.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 16:16:36 Times Seen43001 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js	80 kB	2023-03-07	2024-04-19
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:55 Last Seen2024-04-19 12:56:25 Times Seen1042 Hash 2faceb2d3db75ced808545e78fab94ed c663baa051856b64d746629a961e23bbf0fbaf8c c0c09020adb6f602b16d48374166b9e38ca92383a81650b6a9097c43cc43f31f Loading...

	animedao.to/build/710.9846e6b7.js	8.6 kB	2023-03-11	2023-07-16
Pretty URL animedao.to/build/710.9846e6b7.js IP 104.21.74.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-07-16 22:56:22 Times Seen4 Hash f045c6287574d323bc119568b70d73d7 43653402cc6a4f3ca38eca2f3474994228700604 5a626248f135945dfd57d270d58eaa96f338104377bdf40ceb849aa1cb37c771 Loading...

	animedao.to/build/app-light.4b9775df.js	1.1 kB	2023-03-11	2023-04-27
Pretty URL animedao.to/build/app-light.4b9775df.js IP 104.21.74.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:14:25 Last Seen2023-04-27 01:40:59 Times Seen2 Hash 3d6e3aa225a1392abdffe486b0099e9a d383c127ff209ef3d341d6602c783f1c215267bf 4835b8e12c2e141aabbfa7c34316d845932b51f16d1c7e22fde0885625605dde Loading...

	platform.bidgear.com/async.php?domainid=4377&sizeid=1&zoneid=5313&k=1669672109057	3.5 kB	2023-03-11	2023-03-11
Pretty URL platform.bidgear.com/async.php?domainid=4377&sizeid=1&zoneid=5313&k=1669672109057 IP 104.26.3.107 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:30 Last Seen2023-03-11 22:04:30 Times Seen1 Hash 253aefa2eb7bd3d79d782a6942b776b3 d7510dd6d558dc1e254361f560e8f2750dcaecdd fb82d5af777f76b24fd81cb10a03c910bd466691ec0b5da8fd47b93d18dc63ab Loading...

	contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1	23 kB	2023-03-08	2023-03-11
Pretty URL contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1 IP 23.38.200.22 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:58:32 Last Seen2023-03-11 23:45:27 Times Seen1 Hash 3e3fbe5df218c1dee10d863f807a4d42 8535a6a8b55fd6c0889f16e9658e677d50493676 d615efdc3f4fb91df4cd6dc7d44c5c9e57de323afb59923ab199cf53ecda6f04 Loading...

		Size	First Seen	Last Seen
	#1 Write - 065cd585af9e08203b79a2571a46c89a	2.0 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:04:30 Last Seen2023-03-11 22:04:30 Times Seen1 Hash 065cd585af9e08203b79a2571a46c89a 37156bd6923bc86cfcc90c3c556ff9bed7b02bd0 97ec0de3ead684ef54325d0f7fb8bb67242f88dea8a59009609dc839678de744 Loading...

	#2 Write - f5874730f44ebca3f8271d69ac843793	2.4 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:04:30 Last Seen2023-03-11 22:04:30 Times Seen1 Hash f5874730f44ebca3f8271d69ac843793 a21f4e5c678f7967c5b9d2300ced517df3463050 c27de24dc461fb60505e65a9c61713b77508695d20f0770cfa1dd154d1318426 Loading...

	#3 Write - f1a1397b3b5d4efba8e0c220c0bdb407	411 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:04:30 Last Seen2023-03-11 22:04:30 Times Seen1 Hash f1a1397b3b5d4efba8e0c220c0bdb407 db15d96209549853d1bb6b0c0f113027653f18ab 897ec6a04d340eb3b82c6acd8337445f47909ac9402dbb8655e2cb7f70fd2156 Loading...

	#4 Write - 0e32bfb4d49953ac2ebfe97320f8d773	2.2 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:04:30 Last Seen2023-03-11 22:04:30 Times Seen1 Hash 0e32bfb4d49953ac2ebfe97320f8d773 ec0160a743b5f5d7dc6133be1f2cda84fd5191e7 2ed720a11bfb8791fc4a96db0681229c0d554bc9cdc1998aabe4aead87140b70 Loading...

HTTP Transactions (91)

URL IP Response Size

animedao.to/view/388343646/

172.67.194.56

301 Moved Permanently

0 B

URL HTTP/1.1
animedao.to/view/388343646/
IP
172.67.194.56:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /view/388343646/ HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 28 Nov 2022 21:48:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 28 Nov 2022 22:48:28 GMT
Location: https://animedao.to/view/388343646/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nuyEwgJY3CGXPgIwtSJL%2F9DoQoQqZst0solNmHOMm7NGpy68EyUXj6FvGJXCBgYWP7tiysIOIU0zzDRNRo%2FeObpvWXyo8HR8OnOujXr1781BHjsvn7NmjZEdkRuAYA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77164ed48ea3b512-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4895
Expires: Mon, 28 Nov 2022 23:10:03 GMT
Date: Mon, 28 Nov 2022 21:48:28 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5024
Cache-Control: max-age=137197
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:28 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:55:05 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 21:17:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1839
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3721
Expires: Mon, 28 Nov 2022 22:50:29 GMT
Date: Mon, 28 Nov 2022 21:48:28 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: kqNzmqK3bDXgGR8bBa6D6pitANZiy6HOcI5pDNApPcpGyDmoHhlW3VFwa0/+AQByUYl7pR0yUXs=
x-amz-request-id: 0QK1H5H900CNJZ82
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 21:45:11 GMT
age: 197
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 21:48:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
8ff5622eb3687d1147cd13440b5eb764
33b12f609618afba2d28586d3e80bcde2faabcc1
87ca3250f4559cd643f559fc7131baa4622aef934cde515008942addf86cc339

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "87CA3250F4559CD643F559FC7131BAA4622AEF934CDE515008942ADDF86CC339"
Last-Modified: Mon, 28 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7445
Expires: Mon, 28 Nov 2022 23:52:33 GMT
Date: Mon, 28 Nov 2022 21:48:28 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 21:11:12 GMT
cache-control: public,max-age=3600
age: 2236
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2797
Cache-Control: max-age=129903
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:53:32 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

animedao.to/img/empty.png

104.21.74.4

200 OK

4.8 kB

URL HTTP/2
animedao.to/img/empty.png
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 400 x 561, 8-bit/color RGBA, non-interlaced\012- data
Size
4.8 kB (4792 bytes)
Hash
ed56339ad31b1cc878d07c0493522e83
b80d39f867f2cf7400fafb16e69ed475c86b3881
c104e4de1dd7d9429ed44b36f3ab2412930ef5e89d38b5b16572853d45c5e630

HTTP Headers

GET /img/empty.png HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: image/png
content-length: 4792
last-modified: Thu, 25 Aug 2022 21:29:46 GMT
etag: "6307e9ca-12b8"
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 3211
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D%2B%2B4VsbepsinLgiUtRJ4%2FR%2FQUkxGDwParP4YYrkHKHbvUevpnTK7aRmFpz0KFCJWLlLtToEgw2DGPxCq3NRgXgOyq5Mjg1mQdFKLpkQ%2FUU7%2FRsLpQF3R22InE2KR%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edb8dceb521-OSL
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.86.38.2

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.86.38.2:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KlrB3VYPrRrB7BDvJqgABw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IkGT7leE1M1xMvRbudIsWlJfB9w=

cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css

151.101.85.229

200 OK

28 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65305)
Size
28 kB (27464 bytes)
Hash
7888a9c5ee7f0dcbc252f18ea9205250
56fab9f4b3bf2422446e394be042eb29ef6a15bf
5da8436a211d7384f5a0ce219c548d245ae077f3474c95a66f25852bb9aa28d1

HTTP Headers

GET /npm/bootstrap@5.2.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animedao.to
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.0
x-jsd-version-type: version
etag: W/"2f88b-Yz6bIW1g1A6raHMXUTTpNbVU+JE"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 28 Nov 2022 21:48:29 GMT
age: 11426368
x-served-by: cache-fra19139-FRA, cache-bma1636-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27464
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
49a11f998f204866cc5d30171ebb179d
ee2accac405fcd9ee730a6dd647b0cb81db2dd54
149c33a39ac083b9f3c66fced2452d7e3bfa39a6c7c36ba1882dfd32e2ff6183

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:48:29 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "E58EBA9E309F2265B67C2A256DA01909C825CCD2"
Expires: Tue, 29 Nov 2022 09:00:00 GMT
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2397
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77164edc1a1c0b55-OSL

animedao.to/build/app-light.f96fa508.css

104.21.74.4

200 OK

2.5 kB

URL HTTP/2
animedao.to/build/app-light.f96fa508.css
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (7239), with no line terminators
Size
2.5 kB (2490 bytes)
Hash
546ddf55cec4f729b8fdeab2435f38bb
57aba2846b6e6336cdc2596faf18c99965ba31e2
22ca32bdc3e126bf0f2d9814c723279998e12519d0f31fcc4cbec0b974c71413

HTTP Headers

GET /build/app-light.f96fa508.css HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=7247
etag: W/"6320840a-1c4f"
last-modified: Tue, 13 Sep 2022 13:22:18 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 100
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JhzYH076oizlwqfGW5Dyj%2BCgdh0OpTIXKGFFcMR%2FKyJnf5rOOpqcEqO%2BmCPgT1we2ITmVfTT5cdBZE8NXA1RZArZw%2FmQ5c5QsT2RHtn5psMcbX6dsvqvqgGFQl63Qg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edb8dccb521-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/build/images/bg2.f5e8737a.jpg

104.21.74.4

200 OK

23 kB

URL HTTP/2
animedao.to/build/images/bg2.f5e8737a.jpg
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 512x512, components 3\012- data
Size
23 kB (23410 bytes)
Hash
027c82828b5e3cb6792510465759a734
1d375c8ef50ea0fb20ce672b73f35abe5bf0a3b1
68692ce6585845f947a1bcee9c562ada3dec85a9fe48dc41777fdf311fa793aa

HTTP Headers

GET /build/images/bg2.f5e8737a.jpg HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/build/app-light.f96fa508.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: image/jpeg
content-length: 23410
last-modified: Thu, 25 Aug 2022 21:29:46 GMT
etag: "6307e9ca-5b72"
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 4214
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8bXoKIoMM58q5B6pn1TyEO6ae0mpeZSEQ9L3fuLflZI8ilv%2B9r%2B0yzq%2FuUpaG5i7kEVDX6YPUwMoJrJzs6lClXEIXrpk4ky5hPv3gbvi89nJpjz2E005%2FcAc04foRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edc8f2db521-OSL
X-Firefox-Spdy: h2

animedao.to/build/fonts/fa-solid-900.aa49e3dd.woff2

104.21.74.4

200 OK

328 kB

URL HTTP/2
animedao.to/build/fonts/fa-solid-900.aa49e3dd.woff2
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 328480, version 769.256\012- data
Size
328 kB (328480 bytes)
Hash
988a9731afe6bb99003283038799f4d3
e62b834496e8808e09d69b157dd8d30767ab281d
86f3981f7218b89863ef8f6308268144f450b3b4ccc8da51139e01fc791bd685

HTTP Headers

GET /build/fonts/fa-solid-900.aa49e3dd.woff2 HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://animedao.to/build/485.141d4f4a.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/octet-stream
content-length: 328480
last-modified: Thu, 25 Aug 2022 21:29:46 GMT
etag: "6307e9ca-50320"
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6782
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ogckQLS4RuPXLFspchkPuFK7HGTzX7bWlavQ2a9Yy78jQRdGJgihz2Dlv1Kp7LjRDlicyK0feMTl4y8AOiXLkvkvZWrC54JhVCINDaZsik1lk0MCdFSNDtZd96GrUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edcaf54b521-OSL
X-Firefox-Spdy: h2

animedao.to/build/app-light.4b9775df.js

104.21.74.4

200 OK

885 B

URL HTTP/2
animedao.to/build/app-light.4b9775df.js
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1084), with no line terminators
Size
885 B (885 bytes)
Hash
56c095eec63d8eda50b9f954a23e7e43
25b5425dff9e058c0d7d2ca72f3729005af42940
cecd1367be3470a72d6351476409a37c925a4b5f57aed0c5c2380d2bb06020fe

HTTP Headers

GET /build/app-light.4b9775df.js HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"630d599d-43c"
last-modified: Tue, 30 Aug 2022 00:28:13 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1516
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iEEfTkRY01JSLH2nasqGmNOYMLtqNsqe9Bo0QU99KxJR9M%2B2D77QvBW5%2BzQnnEU8NJ5BbUksd6wVuK6oUnySHRHzkse8FsCIorzCEOjxetdngmcbZRFPQB2mynJFpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edcaf50b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

animedao.to/build/710.9846e6b7.js

104.21.74.4

200 OK

39 kB

URL HTTP/2
animedao.to/build/710.9846e6b7.js
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (8580), with no line terminators
Size
39 kB (39167 bytes)
Hash
6ded673277c324c7f6f4f10df6ead291
5201ab70efea2ea17e4c977136ee3aeb79032a3a
c015994e4af782051c0a9d351491d02a3b67c7075523253c41f4ecc6a242548f

HTTP Headers

GET /build/710.9846e6b7.js HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"630d599d-2185"
last-modified: Tue, 30 Aug 2022 00:28:13 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 176
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s1IRnJjJW8chCeWHHxgYqMtPyKepn3cHOfAQL9fqJLUOEgtlotueFkeHpehVyNnWG3YuC1XFBBoK69ta0flvRj0YPjbNbX6rgr0hNwzuHdG2L%2Btuh1g4CrT5qKh9dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edcaf51b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/apple-touch-icon-512x512.png

104.21.74.4

200 OK

39 kB

URL HTTP/2
animedao.to/apple-touch-icon-512x512.png
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39035 bytes)
Hash
ecd865863f4c436e8efa8e280288d4f0
9dad99ebfbf4417ac578ae62521cc5be42760e64
1b228fcfb449a2776d258802a0af69a4ab6a19bc5caef1ac338d804a3cb06314

HTTP Headers

GET /apple-touch-icon-512x512.png HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: image/png
content-length: 39035
last-modified: Thu, 25 Aug 2022 21:29:46 GMT
etag: "6307e9ca-987b"
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6024
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZAqn3YYdCnVRqQ7t9cQg%2F9tSeiCtbkK%2BLuIsRSB3PgfM1QGNZqT%2BZH1XiKzlxbsqjsXw%2B93%2BVn9%2Fr2WpuEveWPjCSktL2FftV5IHQF%2BJKV%2FVYUIHgYOeobE4thEt7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edd6879b521-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
9a77cb951ab0b26bf50f6920feb0b308
a0a6d4b13feb0e46e78aa29dafaf7ddf20b83ce4
e856a0d203dbffab464544d8c3736bd782b64bae6c42d0a64974daeb05e0d36e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2786
Cache-Control: max-age=114795
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Etag: "63843f36-117"
Expires: Wed, 30 Nov 2022 05:41:44 GMT
Last-Modified: Mon, 28 Nov 2022 04:55:18 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
9a77cb951ab0b26bf50f6920feb0b308
a0a6d4b13feb0e46e78aa29dafaf7ddf20b83ce4
e856a0d203dbffab464544d8c3736bd782b64bae6c42d0a64974daeb05e0d36e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5276
Cache-Control: max-age=117285
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Etag: "63843f36-117"
Expires: Wed, 30 Nov 2022 06:23:14 GMT
Last-Modified: Mon, 28 Nov 2022 04:55:18 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
9a77cb951ab0b26bf50f6920feb0b308
a0a6d4b13feb0e46e78aa29dafaf7ddf20b83ce4
e856a0d203dbffab464544d8c3736bd782b64bae6c42d0a64974daeb05e0d36e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2786
Cache-Control: max-age=114795
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:29 GMT
Etag: "63843f36-117"
Expires: Wed, 30 Nov 2022 05:41:44 GMT
Last-Modified: Mon, 28 Nov 2022 04:55:18 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

animedao.to/images/cowboy-bebop.jpg

104.21.74.4

200 OK

52 kB

URL HTTP/2
animedao.to/images/cowboy-bebop.jpg
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 400x561, components 3\012- data
Size
52 kB (52292 bytes)
Hash
c3809aa24ee24da08ba4f7ace9624462
959aeae75be90e98313791b8a67444972123b673
126f8e804607c2f1f590a2a8f086516f6b046205162d1220baeb294b691e7d69

HTTP Headers

GET /images/cowboy-bebop.jpg HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: darkmodestatus=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: image/jpeg
content-length: 52292
last-modified: Thu, 29 Apr 2021 08:35:28 GMT
etag: "608a6fd0-cc44"
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=twUEGyxIr%2B6u0dAY%2FNZ3uppclLxaoz%2FlbbF57pSgCMlvEYROnsFH3MwdjbYbE%2Facz6YacqFIOCoaMRm6m5ATel1InYYkafV2csDcwH547pW1TGSGgiNTjjWUsmiwpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edeca45b521-OSL
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
2890f5380e45b409ad5a8d60f5767c1f
d0dd386231926416c0cd04c1378857c87fb64b50
eb9d019eb6d02a069ead2bb5e90a4eef4517ca1a8b0eea8412f07d6a30d40a33

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EB9D019EB6D02A069EAD2BB5E90A4EEF4517CA1A8B0EEA8412F07D6A30D40A33"
Last-Modified: Mon, 28 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Mon, 28 Nov 2022 23:24:11 GMT
Date: Mon, 28 Nov 2022 21:48:29 GMT
Connection: keep-alive

platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5432&k=1669672109054

104.26.3.107

200 OK

2.3 kB

URL HTTP/2
platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5432&k=1669672109054
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document, ASCII text, with very long lines (4316), with no line terminators
Size
2.3 kB (2318 bytes)
Hash
479e9f9a591c304281afe3719bd235fb
7e76a53da379b219929e24477c2c332d3027824d
8643095bbe3b7d30026d7fbcfd9f6ce9ed75e5a54bb9a610f636366a598bf5c1

HTTP Headers

GET /async.php?domainid=4377&sizeid=2&zoneid=5432&k=1669672109054 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=otSpLrSrGMr1uF2d56jZHC1u3Wgf%2FMbPzWfAZKDzAIiVj3qBBtslqjjssdfntrp7Qjn6yKMJa5YBET7lQx%2FodXTCsxoAwCuaof5z3KHkgW7jDAhivJl%2FFMTgAkoY6tJqNCqoI6xs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ede6f62b527-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.purpleads.io/video-agent.js?publisherId=267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149

143.204.55.49

200 OK

15 kB

URL HTTP/2
cdn.purpleads.io/video-agent.js?publisherId=267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (43290), with no line terminators
Size
15 kB (14935 bytes)
Hash
7fc0d255881423d2a1fac4caa027bd71
ef65f30cc165b3359e9abae7dcabe14e624a4efc
053acf5077e8aeab1e2277c5f00d9d7936064ca2b1b77e35e25148ea32f07502

HTTP Headers

GET /video-agent.js?publisherId=267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149 HTTP/1.1
Host: cdn.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 14935
last-modified: Wed, 23 Nov 2022 14:06:42 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Mon, 28 Nov 2022 08:42:17 GMT
etag: "7fc0d255881423d2a1fac4caa027bd71"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qWvj_wkjPuvurwgp7bZTs1xWDmIZStAu_-2o5Ft5Zm7wBpoHrhEfwg==
age: 47174
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
2890f5380e45b409ad5a8d60f5767c1f
d0dd386231926416c0cd04c1378857c87fb64b50
eb9d019eb6d02a069ead2bb5e90a4eef4517ca1a8b0eea8412f07d6a30d40a33

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EB9D019EB6D02A069EAD2BB5E90A4EEF4517CA1A8B0EEA8412F07D6A30D40A33"
Last-Modified: Mon, 28 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5741
Expires: Mon, 28 Nov 2022 23:24:11 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

imp9.bidgear.com/rec?t=1&z=5314&uuid=4754d77c92e34db8aa5c3d928fc1bb2b&p=79&g=NO&token=4a44335432&tbg=1669672109

104.26.3.107

200 OK

599 B

URL HTTP/2
imp9.bidgear.com/rec?t=1&z=5314&uuid=4754d77c92e34db8aa5c3d928fc1bb2b&p=79&g=NO&token=4a44335432&tbg=1669672109
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 1x1, components 3\012- data
Size
599 B (599 bytes)
Hash
ca49a7e783b806a4e8576ea80346203d
6fe9d083221dae98f6c76f7121c37bc884b02d82
3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28

HTTP Headers

GET /rec?t=1&z=5314&uuid=4754d77c92e34db8aa5c3d928fc1bb2b&p=79&g=NO&token=4a44335432&tbg=1669672109 HTTP/1.1
Host: imp9.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: image/jpeg
content-length: 599
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mu9HxZ7uU1phd3DyO20E7OVkn2DTdM3DiZuHbqtU4DK7RLmACy8RBSnQl5ttVseCvUSRhFJnn7s7QK3V1E9D0%2Fu9EA5gkK9v1%2Bg2tN9GRKFvSSZApAEjmTbxMDBNOZYiUFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164edf4893b527-OSL
X-Firefox-Spdy: h2

imp9.bidgear.com/rec?t=1&z=5313&uuid=f16454acd118442e9844ee2d75b6bbd9&p=85&g=NO&token=4a44335432&tbg=1669672109

104.26.3.107

200 OK

599 B

URL HTTP/2
imp9.bidgear.com/rec?t=1&z=5313&uuid=f16454acd118442e9844ee2d75b6bbd9&p=85&g=NO&token=4a44335432&tbg=1669672109
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 1x1, components 3\012- data
Size
599 B (599 bytes)
Hash
ca49a7e783b806a4e8576ea80346203d
6fe9d083221dae98f6c76f7121c37bc884b02d82
3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28

HTTP Headers

GET /rec?t=1&z=5313&uuid=f16454acd118442e9844ee2d75b6bbd9&p=85&g=NO&token=4a44335432&tbg=1669672109 HTTP/1.1
Host: imp9.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: image/jpeg
content-length: 599
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F05C5Nh3J67Hm7rC6TQx3DkMYI0c27xXLUIeuoNFYAaIBOvKyioPOhGfMfzDOBg8e0yzERfT5gKtlYcR5x5oidpKK7LeqMaCjr0fzt1xrzve982SbSPREgIrzAaTZe3yRqo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164edf68d8b527-OSL
X-Firefox-Spdy: h2

imp9.bidgear.com/rec?t=1&z=5432&uuid=46fc01734edb4f6ea5adbc0329151e1b&p=85&g=NO&token=4a44335432&tbg=1669672109

104.26.3.107

200 OK

599 B

URL HTTP/2
imp9.bidgear.com/rec?t=1&z=5432&uuid=46fc01734edb4f6ea5adbc0329151e1b&p=85&g=NO&token=4a44335432&tbg=1669672109
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 1x1, components 3\012- data
Size
599 B (599 bytes)
Hash
ca49a7e783b806a4e8576ea80346203d
6fe9d083221dae98f6c76f7121c37bc884b02d82
3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28

HTTP Headers

GET /rec?t=1&z=5432&uuid=46fc01734edb4f6ea5adbc0329151e1b&p=85&g=NO&token=4a44335432&tbg=1669672109 HTTP/1.1
Host: imp9.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: image/jpeg
content-length: 599
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6RFwvWmekao2IhenzkVa60s17x2ZTuD7UdvBiC4GWKvbmpfC90iog%2BJiV6GXm0wIZRZAPt%2F6FABZX7s%2FbK9nyFSTSmyvz%2FcB5DXLfbnzF4X7ZOmNJUymaru9arGO%2Fh93zSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164edf88f3b527-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
006ff75f17540942427f60d98d79092d
0bb0339a92be7176caa1890e2839c8b35582f45e
421dcf2725790506e1ba872446135ea3b3caab14056b5dc022842d1614c9e5d9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "421DCF2725790506E1BA872446135EA3B3CAAB14056B5DC022842D1614C9E5D9"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7547
Expires: Mon, 28 Nov 2022 23:54:17 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
72c315bd31a03ceb943cca931cac972e
90e2d79b630a9a27d931ad890c03ad6f99fda0de
0bbfd89fc385e3c5104a1eaba2c1bf760e5508563b693e73dc4476e3d59ef763

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BBFD89FC385E3C5104A1EABA2C1BF760E5508563B693E73DC4476E3D59EF763"
Last-Modified: Sun, 27 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18418
Expires: Tue, 29 Nov 2022 02:55:28 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

prolatecyclus.com/tRBIZsm9QOL/36415

23.109.87.153

200 OK

25 B

URL HTTP/1.1
prolatecyclus.com/tRBIZsm9QOL/36415
IP
23.109.87.153:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /tRBIZsm9QOL/36415 HTTP/1.1
Host: prolatecyclus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 21:48:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://animedao.to
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Tue, 29-Nov-2022 21:48:30 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Tue, 29-Nov-2022 21:48:30 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

tt.smirkydiff.com/tRdalxMzQqc6Gq3s/52475

172.255.6.139

200 OK

25 B

URL HTTP/1.1
tt.smirkydiff.com/tRdalxMzQqc6Gq3s/52475
IP
172.255.6.139:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60

HTTP Headers

GET /tRdalxMzQqc6Gq3s/52475 HTTP/1.1
Host: tt.smirkydiff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 21:48:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://animedao.to
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Tue, 29-Nov-2022 21:48:30 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Tue, 29-Nov-2022 21:48:30 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

imp-dsp.bidgear.com/rec?viewId=YSRWukNo3BDKFIEDdjmB000GAB000GDcszB000GSuu5SaorjcwZYZZStcNXk5MhECpB000GB001GB000GjilYPn0JDfSEHxKEjdsh5nubhnCZC1nzkYXCF8d65PqS7W5tgO8PAn9P5gylp8jms9s3eeecbOSRUIy9vX8rAM5aOudHavTkYk38K4EvsdavIZfjIDPVfFONqJu8r3xCYyL2F5jI75SbSk0PrEFDHr9xKCWCKTSncoHOAxDlTMrojuzmo4b2ONalWd5yQWVnbaZ9VOcpv5dGQB002GB002G&token=86e827a641&time=1669672110

104.26.3.107

200 OK

1 B

URL HTTP/2
imp-dsp.bidgear.com/rec?viewId=YSRWukNo3BDKFIEDdjmB000GAB000GDcszB000GSuu5SaorjcwZYZZStcNXk5MhECpB000GB001GB000GjilYPn0JDfSEHxKEjdsh5nubhnCZC1nzkYXCF8d65PqS7W5tgO8PAn9P5gylp8jms9s3eeecbOSRUIy9vX8rAM5aOudHavTkYk38K4EvsdavIZfjIDPVfFONqJu8r3xCYyL2F5jI75SbSk0PrEFDHr9xKCWCKTSncoHOAxDlTMrojuzmo4b2ONalWd5yQWVnbaZ9VOcpv5dGQB002GB002G&token=86e827a641&time=1669672110
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

GET /rec?viewId=YSRWukNo3BDKFIEDdjmB000GAB000GDcszB000GSuu5SaorjcwZYZZStcNXk5MhECpB000GB001GB000GjilYPn0JDfSEHxKEjdsh5nubhnCZC1nzkYXCF8d65PqS7W5tgO8PAn9P5gylp8jms9s3eeecbOSRUIy9vX8rAM5aOudHavTkYk38K4EvsdavIZfjIDPVfFONqJu8r3xCYyL2F5jI75SbSk0PrEFDHr9xKCWCKTSncoHOAxDlTMrojuzmo4b2ONalWd5yQWVnbaZ9VOcpv5dGQB002GB002G&token=86e827a641&time=1669672110 HTTP/1.1
Host: imp-dsp.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: text/plain; charset=utf-8
content-length: 1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OKDob8VEYSFZFYUIqso4dQMk3zUu4m3onZR3lYyqVOH9mLvvr6LBIdIfGK4ffnnGT8d4%2BN6PFCuSdzUgfBIBg%2FEVplvU4vCxksVy6hMNlByhlWPnmRRC4wW4zOl2u100%2B4SvkFk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ee11b60b527-OSL
X-Firefox-Spdy: h2

demand.bidgear.com/css/ad/ad.20190411.2.css?v=1

104.26.3.107

200 OK

128 kB

URL HTTP/2
demand.bidgear.com/css/ad/ad.20190411.2.css?v=1
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
128 kB (128547 bytes)
Hash
2e063a518af5b45376804ca71086d571
816c3ce7de2a5da225ad1889d39eb8cdbf3b91e9
6628746305ae129cb04d66b79bff32ae190a25eb62909875f19b5cba5941b8a3

HTTP Headers

GET /css/ad/ad.20190411.2.css?v=1 HTTP/1.1
Host: demand.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: text/css
last-modified: Tue, 25 Jan 2022 08:46:11 GMT
vary: Accept-Encoding
etag: W/"61efb8d3-38b1"
cf-cache-status: HIT
age: 2612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dPXHd3bzhWH7%2Bq7bzaHEAM%2BcCdV9agfrnUQIYtvIJ10wDX8w9n88cc0vW8O2pqh96W0ACclwIM2o1SHLtObDtdfm3xhvlobdIwDaZzTLzRQYtlKpD4FezULcfQkrhmArfwy5PA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ee11b5eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js

205.185.216.42

200 OK

86 kB

URL HTTP/2
cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65020)
Size
86 kB (86507 bytes)
Hash
700d1de734b4979c4c3059b613e9d7b1
0a7d2ad10cba258cfc2e0376240852a4ae5f4012
2031fbefbf1b070dcf0ebb746438e628fdd59c7daac6952000ef9056b7294eb6

HTTP Headers

GET /prebid-video-7.22.0-2022-10-26.gz.js HTTP/1.1
Host: cdn.psdn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-encoding: gzip
content-length: 86507
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 13:24:00 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "700d1de734b4979c4c3059b613e9d7b1"
cache-control: max-age=31536000
x-amz-request-id: tx0000000000001178867eb-00635934f6-34c6886a-nyc3b
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669672110.dop224.sk1.t,1669672110.cds069.sk1.hn,1669672110.cds218.sk1.c
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
8e0ef3346be720d5eea52862344c7095
26699a52707a0b72075a2abdd7a41baafce799b8
cd8d61c59e904a7cd1df32ad37e439b64ff7ce9e2d70d1662652559faf16be83

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:48:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 22:06:14 GMT
Expires: Sat, 03 Dec 2022 22:06:13 GMT
Etag: "26699a52707a0b72075a2abdd7a41baafce799b8"
Cache-Control: max-age=432462,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77164ee1b908b4f9-OSL

pixel-dsp.bidgear.com/rec?t=1417&p=1&l1=3272&l2=19737&d1=3187&d2=3188&b=3124&token=86e827a641&time=1669672110

104.26.3.107

200 OK

1 B

URL HTTP/2
pixel-dsp.bidgear.com/rec?t=1417&p=1&l1=3272&l2=19737&d1=3187&d2=3188&b=3124&token=86e827a641&time=1669672110
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

GET /rec?t=1417&p=1&l1=3272&l2=19737&d1=3187&d2=3188&b=3124&token=86e827a641&time=1669672110 HTTP/1.1
Host: pixel-dsp.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: text/plain; charset=utf-8
content-length: 1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QzvlmPgsdFeWY9uPFgYfTYNCADymgutwhaQMu622Xay25JzaXS1ObO3m7IdZBsd33AlMRG0i94sFAH3Ft3cwaEvOFSjtA8UahqszHBzLEgbuOqTOdT5DaZImiQdJu72%2Byfwuna%2Fr7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ee15baeb527-OSL
X-Firefox-Spdy: h2

wwwx19.gogocdn.stream/videos/hls/M09lsDtVm-Um_vs9Pf4lRA/1669686485/14328/334ff10f2eac9773b951c0373b65a355/ep.1.1662458242.360.m3u8

185.193.88.20

200 OK

16 kB

URL HTTP/1.1
wwwx19.gogocdn.stream/videos/hls/M09lsDtVm-Um_vs9Pf4lRA/1669686485/14328/334ff10f2eac9773b951c0373b65a355/ep.1.1662458242.360.m3u8
IP
185.193.88.20:0
ASN
#49505 OOO Network of data-centers Selectel

File type
M3U playlist, ASCII text
Size
16 kB (15971 bytes)
Hash
082159a0085776a3bc991468a13c71e0
a050694c60d5167dc577ed54b899f950633447bc
9b5ed633ff6bd97536c7181542c397ece15a1aa385920671203b994bed2c8fad

HTTP Headers

GET /videos/hls/M09lsDtVm-Um_vs9Pf4lRA/1669686485/14328/334ff10f2eac9773b951c0373b65a355/ep.1.1662458242.360.m3u8 HTTP/1.1
Host: wwwx19.gogocdn.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidstreaming.link
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 21:48:30 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 15971
Last-Modified: Tue, 06 Sep 2022 09:57:23 GMT
Connection: keep-alive
ETag: "63171983-3e63"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Accept-Ranges: bytes

ocsp.pki.goog/s/gts1p5/EWg-zhOv62k

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4440b4656e7a79f86571159b0d0f37a0
a5f743f6d4a2eb1c77b251bbd2beb70312c4f6bc
3fadee6178dbba8543de621eed6b9ef68f307ff69655eac7406376f4cdd3a4a2

HTTP Headers

POST /s/gts1p5/EWg-zhOv62k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

wwwx19.gogocdn.stream/videos/hls/M09lsDtVm-Um_vs9Pf4lRA/1669686485/14328/334ff10f2eac9773b951c0373b65a355/ep.1.1662458242.3600.ts

185.193.88.20

200 OK

196 kB

URL HTTP/1.1
wwwx19.gogocdn.stream/videos/hls/M09lsDtVm-Um_vs9Pf4lRA/1669686485/14328/334ff10f2eac9773b951c0373b65a355/ep.1.1662458242.3600.ts
IP
185.193.88.20:0
ASN
#49505 OOO Network of data-centers Selectel

File type
data
Size
196 kB (196460 bytes)
Hash
9cd389e52f76c5573d312ac4c59f6e84
01aa2516995a4544f61d37d42e96ea732556d05e
1b30c72d40947c25526714579acad3ac75355e96704b9ccb80f04a4b258a70b0

HTTP Headers

GET /videos/hls/M09lsDtVm-Um_vs9Pf4lRA/1669686485/14328/334ff10f2eac9773b951c0373b65a355/ep.1.1662458242.3600.ts HTTP/1.1
Host: wwwx19.gogocdn.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidstreaming.link
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 21:48:30 GMT
Content-Type: video/mp2t
Content-Length: 196460
Last-Modified: Tue, 06 Sep 2022 09:57:22 GMT
Connection: keep-alive
ETag: "63171982-2ff6c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12618
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12618
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12618
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12618
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 21:48:30 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8885 bytes)
Hash
3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 49011
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9546 bytes)
Hash
9a6e5f60b87d3879606a6707feb37a73
373c96c2e0006d70954d4b4ebd850f62f558e92c
1ae48f692f44d357e21eec708b46f22c36a3de21be8d0f1c2035d197e0aa89de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9546
x-amzn-requestid: 60e352b5-ab38-4975-bf26-500f0a639a2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFfulExwIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637edff6-1364912f7fd292da6453a83e;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 03:07:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qtRAIXoswvTgNWZzaQE1WHZQXoJRtK9nKpusFtXH3pDRHH_DZtsLFw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 11:59:09 GMT
age: 35361
etag: "373c96c2e0006d70954d4b4ebd850f62f558e92c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9430 bytes)
Hash
1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 85634
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6376 bytes)
Hash
78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:26 GMT
age: 85624
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10119 bytes)
Hash
15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 86033
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10199 bytes)
Hash
2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:43 GMT
age: 86207
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/EWg-zhOv62k

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4440b4656e7a79f86571159b0d0f37a0
a5f743f6d4a2eb1c77b251bbd2beb70312c4f6bc
3fadee6178dbba8543de621eed6b9ef68f307ff69655eac7406376f4cdd3a4a2

HTTP Headers

POST /s/gts1p5/EWg-zhOv62k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b897c8573a9c7a46773b33a946248e38
93c7850c918aae1b5fc89832d8ec0de318d1d483
62e57cb5ef85e825e45ec971f559019fb15dc3ccc759bab54635be5b3695c1a4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1190
Cache-Control: max-age=90138
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:31 GMT
Etag: "6383e523-117"
Expires: Tue, 29 Nov 2022 22:50:49 GMT
Last-Modified: Sun, 27 Nov 2022 22:30:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
4ec7a8448287459c3db61a15e098a518
941b78a56d3c59ada17c9bb6ade518d1eeafa2b7
21e03d8abe1dbdfed2b614709203f1b9c82c597ebd5938d0e043177129c1a188

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2519
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:48:31 GMT
Last-Modified: Mon, 28 Nov 2022 21:06:32 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
38eb09afa09351c1b589f6497f8e9562
b523415b505bfbee2e5d7b3a114bace61509549d
24e75f655eafc22419fe464382c210172a715a10dfc77d04e339400f9d0fdfd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24E75F655EAFC22419FE464382C210172A715A10DFC77D04E339400F9D0FDFD8"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15584
Expires: Tue, 29 Nov 2022 02:08:15 GMT
Date: Mon, 28 Nov 2022 21:48:31 GMT
Connection: keep-alive

api.purpleads.io/x/v/?ts=1669672109924

34.200.59.30

200 OK

597 B

URL HTTP/2
api.purpleads.io/x/v/?ts=1669672109924
IP
34.200.59.30:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with very long lines (1392), with no line terminators
Size
597 B (597 bytes)
Hash
33a032e2413bef57e1a88ea6925e13f7
d3966c2721f4d71f50b4e19fb58446a5aa259ef1
aebbdbc8436c308aa85233801a609c396440007d5104646f3abc85ff5456ec57

HTTP Headers

GET /x/v/?ts=1669672109924 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animedao.to/
Content-Type: application/json
x-purpleads-version: 2.0.21
x-request-url: aHR0cHM6Ly9hbmltZWRhby50by92aWV3LzM4ODM0MzY0Ni8=
Authorization: Bearer 267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149
Origin: https://animedao.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:31 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://animedao.to
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: a2388110-5194-4204-963b-6cae42de2d27
etag: W/"570-sZ53oat3sR2t0Vbw1ysbGLN8QTU"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

prebid.a-mo.net/a/c

147.75.85.234

204 No Content

0 B

URL HTTP/2
prebid.a-mo.net/a/c
IP
147.75.85.234:0
ASN
#54825 PACKET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1012
Origin: https://animedao.to
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://animedao.to
cache-control: max-age=0, private, must-revalidate
date: Mon, 28 Nov 2022 21:48:31 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2

ib.adnxs.com/ut/v3/prebid

37.252.171.84

200 OK

138 B

URL HTTP/1.1
ib.adnxs.com/ut/v3/prebid
IP
37.252.171.84:0
ASN
#29990 ASN-APPNEX

File type
JSON data\012- , ASCII text, with no line terminators
Size
138 B (138 bytes)
Hash
bf557217d4343e9fdcc05bdfd81ac7f8
d170d1e7592c5508e94044c5c77f48f2cd117338
3f9ca3cde5f71aa914c3c159b505471bb503662ccc789056bca391d5e1f37166

HTTP Headers

POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 565
Origin: https://animedao.to
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 28 Nov 2022 21:48:31 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 138
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://animedao.to
AN-X-Request-Uuid: 4af98041-cb50-4dbb-8d62-26445b6e28a2
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
6cc761aefded9f4a50bca59754041d2f
216c80b9a57a89b3c17f2cbd10149c4befea87ea
94cf4b4090f50f8bb6821cdc07635d0f11ebc4c7616d4ea1675c948352fa9a4b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:48:31 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 07:45:27 GMT
Expires: Sat, 03 Dec 2022 07:45:26 GMT
Etag: "216c80b9a57a89b3c17f2cbd10149c4befea87ea"
Cache-Control: max-age=380814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77164ee86ab2b4f9-OSL

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9bdcad4b9a1ac0e887031ad059c60f77
3513445015a4bedaef6f428f8ce6c55abf2cf023
8678cbc91f5f17df2dab9a4e28d6fddd799603024a76ec82dc0327d88d8edb92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 28 Nov 2022 21:48:31 GMT
Last-Modified: Mon, 28 Nov 2022 20:08:44 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K0Um7tleq7gV-MgDqDonDaoHsx2C3dWZ1ukYH5pWIn_pCw0ViaVhTw==
Age: 5987

api.purpleads.io/x/v/?ts=1669672109924

34.200.59.30

200 OK

105 B

URL HTTP/2
api.purpleads.io/x/v/?ts=1669672109924
IP
34.200.59.30:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
105 B (105 bytes)
Hash
fd43b32916eb806a818cc73ab0c72615
6a57f979dfbf75b1919c8f6d9026ef700c232c5c
bf3a1ee028e42cc91f9a02e11d08cf1081265e89d755ec28dd28231f18b6e88f

HTTP Headers

OPTIONS /x/v/?ts=1669672109924 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://animedao.to/
Origin: https://animedao.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:31 GMT
access-control-allow-origin: https://animedao.to
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: bb5c2e5f-4d1b-4f33-9284-e829752a7d93
X-Firefox-Spdy: h2

api.purpleads.io/x/v/?demand=unifiedPb&ts=1669672111128

34.200.59.30

204 No Content

0 B

URL HTTP/2
api.purpleads.io/x/v/?demand=unifiedPb&ts=1669672111128
IP
34.200.59.30:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /x/v/?demand=unifiedPb&ts=1669672111128 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animedao.to/
Content-Type: application/json
x-purpleads-version: 2.0.21
x-request-url: aHR0cHM6Ly9hbmltZWRhby50by92aWV3LzM4ODM0MzY0Ni8=
Authorization: Bearer 267f37f34622aeee999ac4caaba52867:e98c1be9b12c9d175f8ce51ec5bda34f73851deaf6c1ebe841ee1b9fac40c9ec6405769d183f773c5b83e09e777869db6b46eb6e71e5bf8d01d2b82682e26149
Origin: https://animedao.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Mon, 28 Nov 2022 21:48:32 GMT
access-control-allow-origin: https://animedao.to
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: 8b0fbffb-cd98-437e-b114-578963d18ff4
X-Firefox-Spdy: h2

contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1

23.38.200.22

200 OK

8.2 kB

URL HTTP/2
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1
IP
23.38.200.22:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Size
8.2 kB (8209 bytes)
Hash
afdbbbf58678a5d787afe7dd1b697eca
1e39091e0ab41dbb8c8d85e0f49d9c4fba5b3148
f6b03b8bf1594d80e14c4795932c701728f5b3debd15f47f4d605b84f72ac162

HTTP Headers

GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Wed, 30 Nov 2022 21:48:34 GMT
date: Mon, 28 Nov 2022 21:48:34 GMT
content-length: 8209
X-Firefox-Spdy: h2

acdn.adnxs.com/dmp/async_usersync.html

95.101.172.253

200 OK

17 kB

URL HTTP/1.1
acdn.adnxs.com/dmp/async_usersync.html
IP
95.101.172.253:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Size
17 kB (17053 bytes)
Hash
9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc

HTTP Headers

GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: "623de86a-cf34"
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 17053
Cache-Control: max-age=86402
Expires: Tue, 29 Nov 2022 21:48:36 GMT
Date: Mon, 28 Nov 2022 21:48:34 GMT
Connection: keep-alive
Vary: Accept-Encoding

ib.adnxs.com/async_usersync?cbfn=queuePixels

37.252.171.84

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/async_usersync?cbfn=queuePixels
IP
37.252.171.84:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 28 Nov 2022 21:48:34 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 23c753f0-6561-4762-9acd-40c767b9ca15
Set-Cookie: uuid2=1539951158460238197; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 26-Feb-2023 21:48:34 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels

37.252.171.84

200 OK

0 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP
37.252.171.84:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 28 Nov 2022 21:48:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 27693b6d-6780-4ec6-a9d9-f58815b3017d
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

ib.adnxs.com/async_usersync?cbfn=queuePixels

37.252.171.84

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/async_usersync?cbfn=queuePixels
IP
37.252.171.84:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 28 Nov 2022 21:48:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: d4d307bd-aaf7-41cc-ab5b-f659803ec2aa
Set-Cookie: uuid2=846617752733534505; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 26-Feb-2023 21:48:35 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels

37.252.171.84

200 OK

0 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP
37.252.171.84:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 28 Nov 2022 21:48:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: d2e15458-4a43-4ab5-a45f-e21eca4ce2ac
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

vidstreaming.link/js/hls.js

104.21.44.37

200 OK

0 B

URL HTTP/2
vidstreaming.link/js/hls.js
IP
104.21.44.37:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/hls.js HTTP/1.1
Host: vidstreaming.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=643435
etag: W/"62bf8a27-9d16b"
last-modified: Fri, 01 Jul 2022 23:58:31 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vvnO0JKmBGN8TJJE50EQQC9OoSE8RdE7yAXx0rQfndejE5N7FRWqa75hZPJFIwRgtAGwqnooDe5PMUXm%2B9NAjklsp5Kg3yqmCqqL%2FybdWUSjchwW1dQFmU4zLrx5hl1Y%2F%2FH9ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edfe972b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

demand.bidgear.com/tag?z=1417&k=635f79f01e5fd

104.26.3.107

200 OK

0 B

URL HTTP/2
demand.bidgear.com/tag?z=1417&k=635f79f01e5fd
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag?z=1417&k=635f79f01e5fd HTTP/1.1
Host: demand.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _dsp_8_bg=U2235219f75fd44248647fb43889be461; Domain=bidgear.com; Expires=Tue, 28 Nov 2023 21:48:30 GMT; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lm09f4rGZ9ie43JTBwwketsBPQ6A2IH5T53El4Utu07E4Nx5nQl6grlpwD2U8e6Ccrpar11KHizB5i4HodY4Pb2vuolzkzwj82A2hDOmDCXb07m%2BfuNlPGgqQ5IQVMeA6AVAew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164edf68bab527-OSL
content-encoding: br
X-Firefox-Spdy: h2

platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5314&k=1669672109053

104.26.3.107

200 OK

0 B

URL HTTP/2
platform.bidgear.com/async.php?domainid=4377&sizeid=2&zoneid=5314&k=1669672109053
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /async.php?domainid=4377&sizeid=2&zoneid=5314&k=1669672109053 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TihcVyY02JamBui2ykkXG94AJaDbDhxgBW5u8Omy8%2BSL1ipOQyNmTkeijrLpjkQlVy6nnbbrW2P9D8sSOD6gfIm%2FxJz6hzcjrjD60PAWY1x9x0fWOD3A1bfRGa%2BuJQMGZClOsiaD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ede5f53b527-OSL
content-encoding: br
X-Firefox-Spdy: h2

platform.bidgear.com/async.php?domainid=4377&sizeid=1&zoneid=5313&k=1669672109057

104.26.3.107

200 OK

0 B

URL HTTP/2
platform.bidgear.com/async.php?domainid=4377&sizeid=1&zoneid=5313&k=1669672109057
IP
104.26.3.107:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /async.php?domainid=4377&sizeid=1&zoneid=5313&k=1669672109057 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BXCgUSLeDIByoaoYG6zG2RcQyD9wtrJiERU54GiWGpMRFk2quLRI6UDoXKiWOoGYL2bxsIf%2BkDekl8eAWGa3VQKC39UosgT1e%2BLxi4UD8YCyZIboBg8YwZXDAsKHV89KxjX%2BiP22"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ede6f63b527-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/offline

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/offline
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /offline HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animedao.to/sw.js
Connection: keep-alive
Cookie: darkmodestatus=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate, private
pragma: no-cache
expires: Mon, 28 Nov 2022 21:48:29 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BsW2QrMz3SvtMtT4HpH7lRdyOiUHx6qvH%2BomWgikXAmzfpqTrSZ5udipAjFhqdu8LdAGx%2Fj4jdRLJGtwamvedaDMYQD6W4bwBxuCv0rAAebQBdjDEwuHYCaO67TE8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164edf0aa7b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

vidstreaming.link/vplayer/Mzg4MzQzNjQ2/1

104.21.44.37

200 OK

0 B

URL HTTP/2
vidstreaming.link/vplayer/Mzg4MzQzNjQ2/1
IP
104.21.44.37:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /vplayer/Mzg4MzQzNjQ2/1 HTTP/1.1
Host: vidstreaming.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3TB9f9kGHWpg3F9U5IV0gI2skQaxYtcZDy4r2mn3zMISkFM1f1ux0qUtvVatRETeuzHgIkgQh3JRCNtBjIAOap7%2FrjwQizDzkzgkHjSy2%2FfcSNA%2FbSCBZghPopVZ%2FHRINy%2FDfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164edf58a3b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

vidstreaming.link/css/plyr.css?v1.2

104.21.44.37

200 OK

0 B

URL HTTP/2
vidstreaming.link/css/plyr.css?v1.2
IP
104.21.44.37:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css/plyr.css?v1.2 HTTP/1.1
Host: vidstreaming.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=37641
etag: W/"62bf8a28-9309"
last-modified: Fri, 01 Jul 2022 23:58:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5672
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XILnXCUWGg8gxYzWGKM%2BrtDqJYJF66c11AicA6Jz0wYo5mwY9g4sOrVdVjRSWOt%2F6Vga91kj6IuBHXRGNTNHBdJxHMI5tmM%2FuoYS3Gc3NEOXVNDMoX76TgqYujgdJr3aiL%2FTCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edfe96fb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

prebid.media.net/rtb/prebid?cid=8CU2BX48Z

34.107.148.139

200 OK

0 B

URL HTTP/2
prebid.media.net/rtb/prebid?cid=8CU2BX48Z
IP
34.107.148.139:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /rtb/prebid?cid=8CU2BX48Z HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1058
Origin: https://animedao.to
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 21:48:31 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Mon, 28 Nov 2022 21:48:31 GMT
access-control-allow-origin: https://animedao.to
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

animedao.to/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 13:35:09 GMT
etag: W/"637cd00d-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x3fQNPnw2xs6JguRBXU%2BQvSm%2FuQy6J5TrK22W6ql9x3NLHfrglWwpbjZviRR6xSdS8srfmwtkgodVfbiG%2BUo4OuM8MQkenetDlhV8i3peIgDA%2BUBGVGzqS9BAJQibQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edb8dcfb521-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 30 Nov 2022 21:48:29 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

animedao.to/build/runtime.d954a16b.js

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/build/runtime.d954a16b.js
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /build/runtime.d954a16b.js HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"630d599d-4cd"
last-modified: Tue, 30 Aug 2022 00:28:13 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2548
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P2Nnh2fBoytFV%2BTpALlEV98n390HA5MTF1YfNWh6wYeq%2BH5PauacLTIHBxuaVPgQeDycqtT0TDf9jQ2KtuR9K9nE5FTFiZWZGW8w3HoU4liUN7aI3ceCNrOBcgXQUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edcaf53b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/build/485.141d4f4a.css

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/build/485.141d4f4a.css
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /build/485.141d4f4a.css HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=174816
etag: W/"6310af43-2aae0"
last-modified: Thu, 01 Sep 2022 13:10:27 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2652
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M7Hgk4t7KBj0i3y4g0c2dsUwnTks8vh%2BYbEujGQv%2BAwn74E76tUl97mITzRs8Jt%2BOUscHD8q0fZm7ilXbkjOBCS0N3Y6EXsFjshA4WNFeYWbhwgHGH8AdhOpBh5nbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edb8dcab521-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/redirect/bUtOQ1N1UE90WXlialhsdGRkTWJVelF1RE1UNzdhS1FjU0p3RVFONXVhQVBmbkZpMGluWTUvckowSGZ1NWNZTXJVaTV0Z1k5Wjk5aGc2STg2TXVXQVE9PQ==

104.21.74.4

302 Found

0 B

URL HTTP/2
animedao.to/redirect/bUtOQ1N1UE90WXlialhsdGRkTWJVelF1RE1UNzdhS1FjU0p3RVFONXVhQVBmbkZpMGluWTUvckowSGZ1NWNZTXJVaTV0Z1k5Wjk5aGc2STg2TXVXQVE9PQ==
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /redirect/bUtOQ1N1UE90WXlialhsdGRkTWJVelF1RE1UNzdhS1FjU0p3RVFONXVhQVBmbkZpMGluWTUvckowSGZ1NWNZTXJVaTV0Z1k5Wjk5aGc2STg2TXVXQVE9PQ== HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: text/html; charset=UTF-8
location: https://vidstreaming.link/vplayer/Mzg4MzQzNjQ2/1
cache-control: max-age=0, must-revalidate, private
pragma: no-cache
expires: Mon, 28 Nov 2022 21:48:29 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EK3uA2MvYw3hdiPPXSVHE2H4QgGjXyeIAVUJ7lNmc%2B8dYRHaT3PxVB36eYh43gVzj3rwarbTbKRnqQCWUzIL9iC1%2FyFH%2FYIp5%2BLsbpeY61tnvR8oW%2FwRIEHQelQeIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ede59c3b521-OSL
X-Firefox-Spdy: h2

script.4dex.io/localstore.js

104.26.8.169

200 OK

0 B

URL HTTP/2
script.4dex.io/localstore.js
IP
104.26.8.169:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://animedao.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:31 GMT
content-type: application/javascript
cache-control: public, max-age=1800
etag: W/"922cffdd75f7192f75231d92684885aa"
last-modified: Wed, 23 Nov 2022 15:43:18 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 451040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nWziLsHKuzyQEH54gmokO1ZyZea3p0eZxbXelfaQqS7%2Fii5jooOonH2k3%2BW4N8RNVmjZBF64t1TRNGwJxjGXTtNRQvmI7Oi3xf8IJjmBAjkLxlS78PFQcBCeXtEgL8vL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ee86d21b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2

api.purpleads.io/x/v/?demand=unifiedPb&ts=1669672111128

34.200.59.30

200 OK

0 B

URL HTTP/2
api.purpleads.io/x/v/?demand=unifiedPb&ts=1669672111128
IP
34.200.59.30:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /x/v/?demand=unifiedPb&ts=1669672111128 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://animedao.to/
Origin: https://animedao.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:31 GMT
access-control-allow-origin: https://animedao.to
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: 27400850-156e-4a7c-bebc-ac20e39d6c22
X-Firefox-Spdy: h2

animedao.to/view/388343646/

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/view/388343646/
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /view/388343646/ HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate, private
pragma: no-cache
expires: Mon, 28 Nov 2022 21:48:29 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PDuO7iEwxTzqrEOpJWHbe6p3ZRdzXgngijNwlmUqg605tY3AnSeBANSsN4OmVq6Fv8z69wfkW0GfQ4uxI9tMhIMlyWuO6vmzpYqAkrXJoJnL5dY4rweIbyPuQ0rCyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77164ed7afc5b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/favicon.ico

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/favicon.ico
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: image/x-icon
last-modified: Thu, 25 Aug 2022 21:29:46 GMT
etag: W/"6307e9ca-86be"
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 4020
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=523SUQnRJ2ECmNGlcEMHr1HcuTzmiOjfr6az3B8dx%2BKoPS%2FYnOK3Dh1jTkJASMUf5CHEtYC9OJZ2KQUnDIPrGNm7jf2kMRv7eUChCglFU2KMI46YFm5HrTYNcGnbjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edd7881b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

animedao.to/sw.js

104.21.74.4

200 OK

0 B

URL HTTP/2
animedao.to/sw.js
IP
104.21.74.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sw.js HTTP/1.1
Host: animedao.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=793
etag: W/"6310af43-319"
last-modified: Thu, 01 Sep 2022 13:10:27 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 3512
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6K8wKFCPvotzy%2FTyj4lqTsgNwgPFkmYYsMTmLKrfE8jq9kMGBy6CTKYu%2BGXSsvhqDme%2BjzwkvM4WgH9ooRZIyzwWDg8NpQE1NKD5aPHdJEnP%2Bgxzc6Yjy6tR%2FNBFdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164ede59c5b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

vidstreaming.link/js/plyr.polyfilled.min.js

104.21.44.37

200 OK

0 B

URL HTTP/2
vidstreaming.link/js/plyr.polyfilled.min.js
IP
104.21.44.37:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/plyr.polyfilled.min.js HTTP/1.1
Host: vidstreaming.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:48:30 GMT
content-type: application/javascript
last-modified: Fri, 01 Jul 2022 23:58:31 GMT
etag: W/"62bf8a27-2f169"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5743
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SPG4Vp4DXkDn4fMxJ8U%2BWhIM%2Fj1Q1kkFXMRmZEORHyFiPdDXlr72%2BWy45FN5nCxgwX2Vq1Clwr3AVTJQSj3hI9eQ29kl0EtZ0kYoVM3gzq%2BcbhqQiBkEE4doo0CZmNhDBm9Q7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77164edfe971b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations