| hentai-manga.su/furry/ | 104.21.95.157 | 301 Moved Permanently | 8 B |
IP104.21.95.157:0
File typeASCII text, with no line terminators Hash4202ef115ebede37eb22297113f5fb32 58cfcdca5ed542240131e60e7a5af5e83f61e786 171a10659e4f55415bf9eca0b9310d69e3df6ea85ee20419e0d6f4d95d98621f
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related |
GET /furry/ HTTP/1.1
Host: hentai-manga.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 07:44:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=b19bfa9d3320d1ec6d58cc479b849450; path=/; secure; HttpOnly
Location: https://hentai-manga.su/furry/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uZEH9xVNLHGnlrCGoG8kJhpREmv7dtNDD774EINtBVRCI55j99A%2BANXudeB8Z2Zl0FH%2Fz%2Fw6XrVhLlJ18e%2B6PnGoP6UvC9256QOfWq%2FBI97DzKiS6e32TePn8aIgO9wAnIQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79081a138a221c12-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20362
Expires: Sat, 28 Jan 2023 13:23:38 GMT
Date: Sat, 28 Jan 2023 07:44:16 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10456
Expires: Sat, 28 Jan 2023 10:38:32 GMT
Date: Sat, 28 Jan 2023 07:44:16 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 07:35:29 GMT
content-type: application/json
age: 527
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash69f73ac59327cd9ad7d99816ccfcc03e c54844f82dbee0d5ee4c8ce344eb0139373e6c6b e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2309
Expires: Sat, 28 Jan 2023 08:22:45 GMT
Date: Sat, 28 Jan 2023 07:44:16 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6aYQ61Y9Vvw5aq4lI9jh80ctdnhEXSat5t+9hXdjwJAo7xj5zpbykSLGUhzmB8nQ/T+utQaLzp0=
x-amz-request-id: GTZN8016G6EZ14G2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 07:20:53 GMT
age: 1403
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:44:16 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.33.119.27 | 200 OK | 345 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash84895fae7ad7e72dce0b2a9844dce1d7 7bbed7bc635a67ab8d1c390f1e0ded08d6db3553 dfd326cb48d810492d341e52512b361855c1e5b69f75b4a5b23ac02dd713f8f3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "DFD326CB48D810492D341E52512B361855C1E5B69F75B4A5B23AC02DD713F8F3"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 28 Jan 2023 13:44:16 GMT
Date: Sat, 28 Jan 2023 07:44:16 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.33.119.27 | 200 OK | 345 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash84895fae7ad7e72dce0b2a9844dce1d7 7bbed7bc635a67ab8d1c390f1e0ded08d6db3553 dfd326cb48d810492d341e52512b361855c1e5b69f75b4a5b23ac02dd713f8f3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "DFD326CB48D810492D341E52512B361855C1E5B69F75B4A5B23AC02DD713F8F3"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 28 Jan 2023 13:44:16 GMT
Date: Sat, 28 Jan 2023 07:44:16 GMT
Connection: keep-alive
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css | 104.17.25.14 | 200 OK | 15 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css IP104.17.25.14:0
File typeASCII text, with very long lines (65311) Hash1201d85f25136b687e48b5c47c69e1ab a054a126169ae99d19e2449de4b5cb8f3f439730 715dd041182920f894f96779030573777c231ec1c97215f6d6d51a3f8cf8cec2
GET /ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:16 GMT
content-type: text/css; charset=utf-8
content-length: 14850
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "619c057b-3a02"
last-modified: Mon, 22 Nov 2021 21:02:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 117241
expires: Thu, 18 Jan 2024 07:44:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GzOr%2BpRpxdR5CwJw3J70TWezPU2%2BSiB3decEIsHC4LoYKGVxUm7XlGQV7DBfE88YP47vNBaq39ZsXGA%2F0%2Bi9Uv38YQ4qYbKAxYHlPYBcAVoPDQ5ws%2Bih2N9r32PyKKWPvLaetZhY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79081a18dc9ab517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 30 kB |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash41968075c4d19568bc375a283d0d16dc acbad5d4c47a6eb97a6815711f5bdc00f6bce4ff 5929cdeebdbb2ffa782ef0c174ace82bb3db021e05d9f607cb96607e1c8f449f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14432
Expires: Sat, 28 Jan 2023 11:44:48 GMT
Date: Sat, 28 Jan 2023 07:44:16 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash7da8f9a23d8c05f64f248e4e3427c76e e2d001c2909cd9403173cbb0e288d55fbc8e4d0a db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 06:49:03 GMT
age: 3313
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash7da8f9a23d8c05f64f248e4e3427c76e e2d001c2909cd9403173cbb0e288d55fbc8e4d0a db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:44:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 35.163.182.245 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.163.182.245:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h3aOJrMYvqWT/ryp1mJvvg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8Ah+lXCkV2Qib4ElsOn0BwGTFwQ=
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-regular-400.woff2 | 104.17.25.14 | 200 OK | 24 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-regular-400.woff2 IP104.17.25.14:0
File typeWeb Open Font Format (Version 2), TrueType, length 23760, version 768.67\012- data Hash82bafee9dcc7b6fb7bca7ed323f9b7ae ffd3b574cb7db4e2cd0cc2ea9214f0bb8989207f 886fd1e6ce992ede514743a826fa71fefdb577047a2a899ca95f6f28f3305d09
GET /ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:18 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 23760
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "619c057b-5cd0"
last-modified: Mon, 22 Nov 2021 21:02:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3699646
expires: Thu, 18 Jan 2024 07:44:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=saUHDvwbY2FnORFmWSG8eC5r6ZosCweTDyh32QWuK%2BU51ZmJ5sofKTisHVL5F1d1%2B9lqrUqTzbzcBwa1G84x8KXt71OVNwkbJGClVd9eJvvNbUHTidmJQvACE8oYRNdegBy%2BLy5h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79081a225a5d1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 125 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2 IP104.17.25.14:0
File typeWeb Open Font Format (Version 2), TrueType, length 125064, version 768.67\012- data Size125 kB (125064 bytes) Hash57b380d27f14f16e737bcca7e849cf79 2e4280929d4d76fc0e31601c98f167f14630c209 94e1bbc1c2a41ebc73fa5253fd563256c0035b4d69181e48f9aef9e474a11251
GET /ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:18 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 125064
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "619c057b-1e888"
last-modified: Mon, 22 Nov 2021 21:02:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3288764
expires: Thu, 18 Jan 2024 07:44:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QO%2B2c5XUR5kR%2F1R84EBNITlmnqQ0O9pgIG28uX5GRODCyFkp5ZdmjkeO7Sa03%2Bog3eXO%2BiXqxkqZa1ZIUWHj7DMN84lHSdUbM50dwMxbMs0ywj22xX%2FMJYY52hRfi1GpJ2fhJsZi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79081a22eaae1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| svkmxwssih.com/solid.gif?z=1905231&abvar=0 | 62.122.171.6 | 200 OK | 43 B |
URL HTTP/2svkmxwssih.com/solid.gif?z=1905231&abvar=0 IP62.122.171.6:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash28e463819a210071de3b45ebe7633613 6dccd571828ec0912629119cf7eabfea9f33ddbc 44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /solid.gif?z=1905231&abvar=0 HTTP/1.1
Host: svkmxwssih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:44:18 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15805
Expires: Sat, 28 Jan 2023 12:07:43 GMT
Date: Sat, 28 Jan 2023 07:44:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15805
Expires: Sat, 28 Jan 2023 12:07:43 GMT
Date: Sat, 28 Jan 2023 07:44:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15805
Expires: Sat, 28 Jan 2023 12:07:43 GMT
Date: Sat, 28 Jan 2023 07:44:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15805
Expires: Sat, 28 Jan 2023 12:07:43 GMT
Date: Sat, 28 Jan 2023 07:44:18 GMT
Connection: keep-alive
|
|
| svkmxwssih.com/get/1905231?zoneid=1905231&jp=_clokcu4big3tkgxjuyrghd&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=4331890363636442 | 62.122.171.6 | 200 OK | 1.5 kB |
URL HTTP/2svkmxwssih.com/get/1905231?zoneid=1905231&jp=_clokcu4big3tkgxjuyrghd&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=4331890363636442 IP62.122.171.6:0
Hashc9f7c435bb5f2decd711286b5cdcd31e 6076a7ed9f166ade9ec7c4adc31aa6897cb14eb0 cbdf3ed297a3a206a056051aec0a7acc2f790ea8a31197e9e17e85fc4d35b212
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /get/1905231?zoneid=1905231&jp=_clokcu4big3tkgxjuyrghd&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=4331890363636442 HTTP/1.1
Host: svkmxwssih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:44:18 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=23012802447d41fbc2853f408880a31f7b1e; Path=/; Expires=Sun, 28 Jan 2024 07:44:18 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashea24bcba583bd8bd139559448a343e68 b9d37c2b14f890d41983a59f352e8f7caa9c94bb e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 34098
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash195316042e7f798eeeb7993fecb3a383 4aeca24ad4702f87feaf9674ea0c1ff6d71826a3 b7e0a61060455241fce844d2c91eca500d409804361063ddb61053cbc9c7b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jqb6G21QeTDiI0HWT9Fd87D-HkAOiesyfN9vr7vMxrOUADBxV-_Fug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:42 GMT
age: 35316
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash131eb343c5abd61939457d69bd371348 ffb2035cf64fc83f01db5c6f26ffa264b6aac95b 8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 8655
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 35252
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7df68b7-44d9-4227-aedc-8e03fd23edd9.jpeg | 34.120.237.76 | 200 OK | 4.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7df68b7-44d9-4227-aedc-8e03fd23edd9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash01d78e0bafdf4cbe227afc503124bc55 e2d21a694342773ccbace4742c4b047e7ce92e1c 3e9027f35134d811a50144a9b70c6de2dc97cbade941a5364717b403bcaf3eb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7df68b7-44d9-4227-aedc-8e03fd23edd9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4641
x-amzn-requestid: b2e2ba60-21e7-4304-a354-2b49b8162cf2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5FJGoAMFwlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-4b292f801433239340edab33;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: irkZKPRcil7YVMxVJXNkIn18zBSt2JWyxo9ZFMfz6aZer4_lnqG8oA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:38 GMT
age: 35260
etag: "e2d21a694342773ccbace4742c4b047e7ce92e1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg IP34.120.237.76:0
Hashbcda20cc261ead02fb5f5d020a64f484 397b4142647a841c26d45d2a730702f34212de9c fbd46e55cf4a4fba78d7ad1c42660d005af505c863eece44dba48517bd374d3d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4975
x-amzn-requestid: 633350b7-4686-40d5-8c9d-3c097f8e2d34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EBGuaoAMFbSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b3-4201212c1a0eb2a65d3f494c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XRAeWdoEkbnzXKOs_EdgQ1r9BGOeDNh4FRXm-fv0KiCz4juqk8UKIw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:35 GMT
age: 35084
etag: "0f93acb5bee53670cc4ef486922f7333d96a2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp2.globalsign.com/gsorganizationvalsha2g2 | 104.18.20.226 | 200 OK | 17 kB |
URL HTTP/1.1ocsp2.globalsign.com/gsorganizationvalsha2g2 IP104.18.20.226:0
Hash0c260d5347e5ae23ff5f0fb0ce83be0f 90ac8e3aae3b2039a69026fe79504291805856e7 9c37046480d755bed4df320b2af1280de1a03850414a8112a47d633941ff679f
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 01 Feb 2023 03:52:29 GMT
ETag: "c78a377802a5efd1f8c49f21c65a00595bd4174d"
Last-Modified: Sat, 28 Jan 2023 03:52:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2526
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79081a276b71b51d-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hash3766b635f7572c9bb51898106edf8792 1277c703a4229bb0e67b611cdf4a00425e717ea1 67723168a47fd1dd0288eefd0fa9d0163c962679cdcd26bc35fdf49552109c1e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 01 Feb 2023 05:49:39 GMT
ETag: "1277c703a4229bb0e67b611cdf4a00425e717ea1"
Last-Modified: Sat, 28 Jan 2023 05:49:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2835
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79081a27696f1c0e-OSL
|
|
| limurol.com/ssp/req/1905231/?pb=1cfa6f0bc47797c90480d788c16cee221674899058&psp=B12ggln7HN9Bl4z1CEJggpr36iVAQ7bV1YzOTP_2xq8Ud60JbTL_BY94udUem0wMVubFULTOHv5fjeEG_5-MvQ9RG95LxiUmgySc6WwUC7Je-OLrm1YtIBOfjJDgEdXAjHqvvkUqRWp82Tq30_RzBJ3V6EO8Vm9meKJvaXGuKVZorYVR88SyzcqQGGbFpl5ZYEOYIA4765em0PRK5XHWZL7GH4uyP0lODnoAXXQ7gk-_y31lqAHUX3t2HYcOmkthpGwRC-DHyZaM4W4wIozISC8lF0oukK37_TQstQLWBubLnxiAYRkXND1QOVkXP-nf-SLb2Trwq_WOI0FPJfugNAI_RnzpGRlsWDh08xCjBPRNzx2OO7HqyjbzQXMFbZR_kGPxSTKdPpw4SKWRIYFhqs_a0TiBOwkpAkKsJTS7BgtRGczKRRmVCF1Q2jhKkQLF3qix3d5FO0qRPYPB3m--Lob2ewL5Ti--RmMafb8fsJd13bdWMGFzjd9-dWhLdk0tr8T-qzjsdIPmZ_9kdur4HL8ri8nqhBAqHi7a5I0fJdvpf_ZWa_37UmXqAoG-Q3rGgrtj2HmhoF2MnPHms77NbwT9dgSYXNyd1S8rsa2AL7SkWqG5nsxmPgUz0IntpJklOGK70_kiaxnBjwS678E3VGMjJgbs-VCfIr1fsfvAMFMzk5jbXLbuNbfmIeU2RQYR2mIm5E8D3P6KLvPNyg==&cb=_clnvzwqzpo9hvw8a2ddg5i&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 | 62.122.171.6 | 200 OK | 7 B |
URL HTTP/2limurol.com/ssp/req/1905231/?pb=1cfa6f0bc47797c90480d788c16cee221674899058&psp=B12ggln7HN9Bl4z1CEJggpr36iVAQ7bV1YzOTP_2xq8Ud60JbTL_BY94udUem0wMVubFULTOHv5fjeEG_5-MvQ9RG95LxiUmgySc6WwUC7Je-OLrm1YtIBOfjJDgEdXAjHqvvkUqRWp82Tq30_RzBJ3V6EO8Vm9meKJvaXGuKVZorYVR88SyzcqQGGbFpl5ZYEOYIA4765em0PRK5XHWZL7GH4uyP0lODnoAXXQ7gk-_y31lqAHUX3t2HYcOmkthpGwRC-DHyZaM4W4wIozISC8lF0oukK37_TQstQLWBubLnxiAYRkXND1QOVkXP-nf-SLb2Trwq_WOI0FPJfugNAI_RnzpGRlsWDh08xCjBPRNzx2OO7HqyjbzQXMFbZR_kGPxSTKdPpw4SKWRIYFhqs_a0TiBOwkpAkKsJTS7BgtRGczKRRmVCF1Q2jhKkQLF3qix3d5FO0qRPYPB3m--Lob2ewL5Ti--RmMafb8fsJd13bdWMGFzjd9-dWhLdk0tr8T-qzjsdIPmZ_9kdur4HL8ri8nqhBAqHi7a5I0fJdvpf_ZWa_37UmXqAoG-Q3rGgrtj2HmhoF2MnPHms77NbwT9dgSYXNyd1S8rsa2AL7SkWqG5nsxmPgUz0IntpJklOGK70_kiaxnBjwS678E3VGMjJgbs-VCfIr1fsfvAMFMzk5jbXLbuNbfmIeU2RQYR2mIm5E8D3P6KLvPNyg==&cb=_clnvzwqzpo9hvw8a2ddg5i&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 IP62.122.171.6:0
File typeASCII text, with no line terminators Hasha97eb6fbe6f13b601d5d48c0eba8baae 736efb938caf3d0edec406932ada889f1a4f2268 a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ssp/req/1905231/?pb=1cfa6f0bc47797c90480d788c16cee221674899058&psp=B12ggln7HN9Bl4z1CEJggpr36iVAQ7bV1YzOTP_2xq8Ud60JbTL_BY94udUem0wMVubFULTOHv5fjeEG_5-MvQ9RG95LxiUmgySc6WwUC7Je-OLrm1YtIBOfjJDgEdXAjHqvvkUqRWp82Tq30_RzBJ3V6EO8Vm9meKJvaXGuKVZorYVR88SyzcqQGGbFpl5ZYEOYIA4765em0PRK5XHWZL7GH4uyP0lODnoAXXQ7gk-_y31lqAHUX3t2HYcOmkthpGwRC-DHyZaM4W4wIozISC8lF0oukK37_TQstQLWBubLnxiAYRkXND1QOVkXP-nf-SLb2Trwq_WOI0FPJfugNAI_RnzpGRlsWDh08xCjBPRNzx2OO7HqyjbzQXMFbZR_kGPxSTKdPpw4SKWRIYFhqs_a0TiBOwkpAkKsJTS7BgtRGczKRRmVCF1Q2jhKkQLF3qix3d5FO0qRPYPB3m--Lob2ewL5Ti--RmMafb8fsJd13bdWMGFzjd9-dWhLdk0tr8T-qzjsdIPmZ_9kdur4HL8ri8nqhBAqHi7a5I0fJdvpf_ZWa_37UmXqAoG-Q3rGgrtj2HmhoF2MnPHms77NbwT9dgSYXNyd1S8rsa2AL7SkWqG5nsxmPgUz0IntpJklOGK70_kiaxnBjwS678E3VGMjJgbs-VCfIr1fsfvAMFMzk5jbXLbuNbfmIeU2RQYR2mIm5E8D3P6KLvPNyg==&cb=_clnvzwqzpo9hvw8a2ddg5i&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:44:19 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=23012802441b5cd63d39f14f9583174886c1; Path=/; Expires=Sun, 28 Jan 2024 07:44:19 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| vk.com/js/api/openapi.js?154 | 87.240.132.67 | 200 OK | 27 kB |
URL HTTP/2vk.com/js/api/openapi.js?154 IP87.240.132.67:0
Hash1fd00f445a85cfac559f42219e8c038a 0d52ee662e7f69c100f70786e63be735cad68de8 c119629eb45a72299a8a85aa000278afa03e82c4499648a9fe5b19d569d228de
GET /js/api/openapi.js?154 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 28 Jan 2023 07:44:19 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Wed, 01 Feb 2023 07:44:19 GMT
cache-control: max-age=345600
x-frontend: front220004
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
|
|
| 6.adsco.re/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:19 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://hentai-manga.su
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 79081a2858b60afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash728246afd5fbed2d58a1c482f73f6f54 1959c9947165a2ae813ba1ea5621899bbc12780a 031df385fbec25082680255028082f5d2a02538c7328f0e34c0674960166f2b8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "031DF385FBEC25082680255028082F5D2A02538C7328F0E34C0674960166F2B8"
Last-Modified: Thu, 26 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11175
Expires: Sat, 28 Jan 2023 10:50:34 GMT
Date: Sat, 28 Jan 2023 07:44:19 GMT
Connection: keep-alive
|
|
| 4.adsco.re/ | 162.252.214.5 | 200 OK | 608 kB |
IP162.252.214.5:0
Size608 kB (608225 bytes) Hashac9b1f2253e6f938bf85abf1a34bfb70 7d24d7a2e560a3647eb7e673c098fd077b7e8fe0 f64bb48af5ed76f6275188fdaa21f0a071a500b79dc2df6b1886460f07cde2d8
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://hentai-manga.su
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| 4r4jmlbtuqb9.l4.adsco.re/ | 185.200.118.90 | 200 OK | 0 B |
URL HTTP/1.14r4jmlbtuqb9.l4.adsco.re/ IP185.200.118.90:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 4r4jmlbtuqb9.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
|
|
| limurol.com/ssp/req/1905231/?pb=1cfa6f0bc47797c90480d788c16cee221674899058&psp=B12ggln7HN9Bl4z1CEJggpr36iVAQ7bV1YzOTP_2xq8Ud60JbTL_BY94udUem0wMVubFULTOHv5fjeEG_5-MvQ9RG95LxiUmgySc6WwUC7Je-OLrm1YtIBOfjJDgEdXAjHqvvkUqRWp82Tq30_RzBJ3V6EO8Vm9meKJvaXGuKVZorYVR88SyzcqQGGbFpl5ZYEOYIA4765em0PRK5XHWZL7GH4uyP0lODnoAXXQ7gk-_y31lqAHUX3t2HYcOmkthpGwRC-DHyZaM4W4wIozISC8lF0oukK37_TQstQLWBubLnxiAYRkXND1QOVkXP-nf-SLb2Trwq_WOI0FPJfugNAI_RnzpGRlsWDh08xCjBPRNzx2OO7HqyjbzQXMFbZR_kGPxSTKdPpw4SKWRIYFhqs_a0TiBOwkpAkKsJTS7BgtRGczKRRmVCF1Q2jhKkQLF3qix3d5FO0qRPYPB3m--Lob2ewL5Ti--RmMafb8fsJd13bdWMGFzjd9-dWhLdk0tr8T-qzjsdIPmZ_9kdur4HL8ri8nqhBAqHi7a5I0fJdvpf_ZWa_37UmXqAoG-Q3rGgrtj2HmhoF2MnPHms77NbwT9dgSYXNyd1S8rsa2AL7SkWqG5nsxmPgUz0IntpJklOGK70_kiaxnBjwS678E3VGMjJgbs-VCfIr1fsfvAMFMzk5jbXLbuNbfmIeU2RQYR2mIm5E8D3P6KLvPNyg==&cb=_clnvzwqzpo9hvw8a2ddg5i&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 | 62.122.171.6 | 200 OK | 7 B |
URL HTTP/2limurol.com/ssp/req/1905231/?pb=1cfa6f0bc47797c90480d788c16cee221674899058&psp=B12ggln7HN9Bl4z1CEJggpr36iVAQ7bV1YzOTP_2xq8Ud60JbTL_BY94udUem0wMVubFULTOHv5fjeEG_5-MvQ9RG95LxiUmgySc6WwUC7Je-OLrm1YtIBOfjJDgEdXAjHqvvkUqRWp82Tq30_RzBJ3V6EO8Vm9meKJvaXGuKVZorYVR88SyzcqQGGbFpl5ZYEOYIA4765em0PRK5XHWZL7GH4uyP0lODnoAXXQ7gk-_y31lqAHUX3t2HYcOmkthpGwRC-DHyZaM4W4wIozISC8lF0oukK37_TQstQLWBubLnxiAYRkXND1QOVkXP-nf-SLb2Trwq_WOI0FPJfugNAI_RnzpGRlsWDh08xCjBPRNzx2OO7HqyjbzQXMFbZR_kGPxSTKdPpw4SKWRIYFhqs_a0TiBOwkpAkKsJTS7BgtRGczKRRmVCF1Q2jhKkQLF3qix3d5FO0qRPYPB3m--Lob2ewL5Ti--RmMafb8fsJd13bdWMGFzjd9-dWhLdk0tr8T-qzjsdIPmZ_9kdur4HL8ri8nqhBAqHi7a5I0fJdvpf_ZWa_37UmXqAoG-Q3rGgrtj2HmhoF2MnPHms77NbwT9dgSYXNyd1S8rsa2AL7SkWqG5nsxmPgUz0IntpJklOGK70_kiaxnBjwS678E3VGMjJgbs-VCfIr1fsfvAMFMzk5jbXLbuNbfmIeU2RQYR2mIm5E8D3P6KLvPNyg==&cb=_clnvzwqzpo9hvw8a2ddg5i&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 IP62.122.171.6:0
File typeASCII text, with no line terminators Hasha97eb6fbe6f13b601d5d48c0eba8baae 736efb938caf3d0edec406932ada889f1a4f2268 a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ssp/req/1905231/?pb=1cfa6f0bc47797c90480d788c16cee221674899058&psp=B12ggln7HN9Bl4z1CEJggpr36iVAQ7bV1YzOTP_2xq8Ud60JbTL_BY94udUem0wMVubFULTOHv5fjeEG_5-MvQ9RG95LxiUmgySc6WwUC7Je-OLrm1YtIBOfjJDgEdXAjHqvvkUqRWp82Tq30_RzBJ3V6EO8Vm9meKJvaXGuKVZorYVR88SyzcqQGGbFpl5ZYEOYIA4765em0PRK5XHWZL7GH4uyP0lODnoAXXQ7gk-_y31lqAHUX3t2HYcOmkthpGwRC-DHyZaM4W4wIozISC8lF0oukK37_TQstQLWBubLnxiAYRkXND1QOVkXP-nf-SLb2Trwq_WOI0FPJfugNAI_RnzpGRlsWDh08xCjBPRNzx2OO7HqyjbzQXMFbZR_kGPxSTKdPpw4SKWRIYFhqs_a0TiBOwkpAkKsJTS7BgtRGczKRRmVCF1Q2jhKkQLF3qix3d5FO0qRPYPB3m--Lob2ewL5Ti--RmMafb8fsJd13bdWMGFzjd9-dWhLdk0tr8T-qzjsdIPmZ_9kdur4HL8ri8nqhBAqHi7a5I0fJdvpf_ZWa_37UmXqAoG-Q3rGgrtj2HmhoF2MnPHms77NbwT9dgSYXNyd1S8rsa2AL7SkWqG5nsxmPgUz0IntpJklOGK70_kiaxnBjwS678E3VGMjJgbs-VCfIr1fsfvAMFMzk5jbXLbuNbfmIeU2RQYR2mIm5E8D3P6KLvPNyg==&cb=_clnvzwqzpo9hvw8a2ddg5i&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:44:19 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=23012802449f7c6db17c434768aa4fb63c50; Path=/; Expires=Sun, 28 Jan 2024 07:44:19 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash8df27b7a601d90962a00b17e8fdd5ccb ffe1dd64e769cdf09bd86ce6318604b278af8a41 7d2cad32154d5fafced5b5b9dd83420ae4d6dd04006f0b08957139aeaee0b8b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D2CAD32154D5FAFCED5B5B9DD83420AE4D6DD04006F0B08957139AEAEE0B8B2"
Last-Modified: Thu, 26 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13540
Expires: Sat, 28 Jan 2023 11:29:59 GMT
Date: Sat, 28 Jan 2023 07:44:19 GMT
Connection: keep-alive
|
|
| 4r4jmlbtuqb9.n4.adsco.re/ | 38.132.109.186 | 200 OK | 0 B |
URL HTTP/1.14r4jmlbtuqb9.n4.adsco.re/ IP38.132.109.186:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 4r4jmlbtuqb9.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 7.8 kB |
IP162.252.214.5:0
Hasha3645d0fd84de4d9bddb6714379b60f1 48254698e084e708a40660f655bd526edd096a0b 7beebc0df6b7e8646663842c2650b0ad934b2b3fe1f594b52213453acb0fc675
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1893
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://hentai-manga.su
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 940 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hash8958007dbb0db467cfc8f9ae79f7d2dc 01873aa58550177560b78f3463506781f15eb007 fd59498f2a1d2ed4735f258a482f7a2e0fb9dc226a242bd8f1816ceae0685b54
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:19 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 01 Feb 2023 03:50:12 GMT
ETag: "01873aa58550177560b78f3463506781f15eb007"
Last-Modified: Sat, 28 Jan 2023 03:50:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2735
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79081a2beba61c0e-OSL
|
|
| mc.yandex.ru/metrika/tag.js | 87.250.251.119 | 200 OK | 86 kB |
URL HTTP/2mc.yandex.ru/metrika/tag.js IP87.250.251.119:0
File typePNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data Hash7e8786ec2d1a6bd419e544357a56a909 cb4a61d44675c8858318b259a8383d05efec3051 db2dc1c595cb14d6b7462faa091a8220871c344062c82f195a924a93876c69f0
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Sat, 28 Jan 2023 07:44:19 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sat, 28 Jan 2023 08:44:19 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash97c8f853674aa4f46349f987349cda66 2dfd92125cb118d935441270547cc0524fec1b55 e452852b1ed2b4fa6e2575a00142ecce9a52104b4d327d78a00de3b3991beeb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E452852B1ED2B4FA6E2575A00142ECCE9A52104B4D327D78A00DE3B3991BEEB8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12269
Expires: Sat, 28 Jan 2023 11:08:48 GMT
Date: Sat, 28 Jan 2023 07:44:19 GMT
Connection: keep-alive
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash18f687f84d0a801ba5bcbd4c72bea410 2decf195d4e2a89bf1c09a3ad769209a1bf6d136 2486be9abd22185a12c8dc3aa6d2fb98a9ac1e92a672fd628fc73e82de87f30b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 03:58:25 GMT
Expires: Fri, 03 Feb 2023 03:58:24 GMT
Etag: "2decf195d4e2a89bf1c09a3ad769209a1bf6d136"
Cache-Control: max-age=504243,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79081a2d2e380b06-OSL
|
|
| displayvertising.com/p.htm?_=BQFiAAAAAAAACZUAAs0uL-1h5fOcKobnxhb5KM-tEzoREGQUsMJB3-rI2SBru4Db1ls1HOQzSIUrwqiENfu2DWbzVS1USwghUsMPXw_d7rl8xUciXkNEbVGuMI7tzjc-Gf9lWZj6oiA82eR3JzuhExQf7YxpOm7ydfOfv4-OxOHriksDWquIE7WMChIVPn1-gzyBLvJJnklCil7j9LNZnT_V4t-LJOzhzsfpCBKQ4DoeRWVwPEakL-Jl6LFvKBUKttbEsoOXBQu_zJ2ikysBg7cgbvSRpKlIjRCUA24DdNvkwc3n8t_JnGykZGcMi80Ph5O5hh68hF42y54nxiH-REOQErfU5KAq3Cjv0EN7Txv74xk7MH9jafkcNpBmyOW_43Z0eOlqbxJald4Okgm5bp-sdn-F42sl9KAQJUKUF-5RSaE_Vds3VMXQneBo4_vwZzLOmxzLp3a_xDzQz37sWpGMftsQ-FyvFBeEzCU&v=4&zqbVuACH=4874180&minBid=&NVEsoily=3,3,0&svSjGwgi=&flHsNrBU=&s=1280,1024,1,1280,1024,0 | 216.59.56.9 | 200 OK | 44 B |
URL HTTP/2displayvertising.com/p.htm?_=BQFiAAAAAAAACZUAAs0uL-1h5fOcKobnxhb5KM-tEzoREGQUsMJB3-rI2SBru4Db1ls1HOQzSIUrwqiENfu2DWbzVS1USwghUsMPXw_d7rl8xUciXkNEbVGuMI7tzjc-Gf9lWZj6oiA82eR3JzuhExQf7YxpOm7ydfOfv4-OxOHriksDWquIE7WMChIVPn1-gzyBLvJJnklCil7j9LNZnT_V4t-LJOzhzsfpCBKQ4DoeRWVwPEakL-Jl6LFvKBUKttbEsoOXBQu_zJ2ikysBg7cgbvSRpKlIjRCUA24DdNvkwc3n8t_JnGykZGcMi80Ph5O5hh68hF42y54nxiH-REOQErfU5KAq3Cjv0EN7Txv74xk7MH9jafkcNpBmyOW_43Z0eOlqbxJald4Okgm5bp-sdn-F42sl9KAQJUKUF-5RSaE_Vds3VMXQneBo4_vwZzLOmxzLp3a_xDzQz37sWpGMftsQ-FyvFBeEzCU&v=4&zqbVuACH=4874180&minBid=&NVEsoily=3,3,0&svSjGwgi=&flHsNrBU=&s=1280,1024,1,1280,1024,0 IP216.59.56.9:0
File typeASCII text, with no line terminators Hashd5f0a25e4d3522d56d48ce7bc3e518fb 86794caff58f7fee6e684c2ba7195f970a8d6f4c 9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /p.htm?_=BQFiAAAAAAAACZUAAs0uL-1h5fOcKobnxhb5KM-tEzoREGQUsMJB3-rI2SBru4Db1ls1HOQzSIUrwqiENfu2DWbzVS1USwghUsMPXw_d7rl8xUciXkNEbVGuMI7tzjc-Gf9lWZj6oiA82eR3JzuhExQf7YxpOm7ydfOfv4-OxOHriksDWquIE7WMChIVPn1-gzyBLvJJnklCil7j9LNZnT_V4t-LJOzhzsfpCBKQ4DoeRWVwPEakL-Jl6LFvKBUKttbEsoOXBQu_zJ2ikysBg7cgbvSRpKlIjRCUA24DdNvkwc3n8t_JnGykZGcMi80Ph5O5hh68hF42y54nxiH-REOQErfU5KAq3Cjv0EN7Txv74xk7MH9jafkcNpBmyOW_43Z0eOlqbxJald4Okgm5bp-sdn-F42sl9KAQJUKUF-5RSaE_Vds3VMXQneBo4_vwZzLOmxzLp3a_xDzQz37sWpGMftsQ-FyvFBeEzCU&v=4&zqbVuACH=4874180&minBid=&NVEsoily=3,3,0&svSjGwgi=&flHsNrBU=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sat, 28 Jan 2023 07:44:20 GMT
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/advert.gif | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/metrika/advert.gif IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 28 Jan 2023 07:44:20 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 28 Jan 2023 08:44:20 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| 4r4jmlbtuqb9.s4.adsco.re/ | 185.200.116.90 | 200 OK | 0 B |
URL HTTP/1.14r4jmlbtuqb9.s4.adsco.re/ IP185.200.116.90:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 4r4jmlbtuqb9.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 07:44:20 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
|
|
| mc.yandex.ru/watch/26812653?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22c%2Fn%2Fo%2Fj%2Fk%2Fl%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A119501072986%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A1052335672%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Anp%3ATGludXggeDg2XzY0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) | 87.250.251.119 | 302 Found | 407 B |
URL HTTP/2mc.yandex.ru/watch/26812653?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22c%2Fn%2Fo%2Fj%2Fk%2Fl%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A119501072986%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A1052335672%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Anp%3ATGludXggeDg2XzY0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) IP87.250.251.119:0
File typeJSON data\012- , ASCII text, with very long lines (407), with no line terminators Hashbedd12aa5eb7dda08cd0eba6c9f43896 32356555d6ec1d0d685d524077d2f24f1f26fe29 1580c93985835f733fc7813790439ace09921ee59fa689a9932d916d5e876899
GET /watch/26812653?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22c%2Fn%2Fo%2Fj%2Fk%2Fl%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A119501072986%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A1052335672%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Anp%3ATGludXggeDg2XzY0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/26812653/1?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&site-info=%7B%22shareVersion%22%3A2%2C%22strategy%22%3A%22c%2Fn%2Fo%2Fj%2Fk%2Fl%2Ft%22%7D&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A119501072986%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A1052335672%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Anp%3ATGludXggeDg2XzY0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8%21&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 28 Jan 2023 07:44:20 GMT
access-control-allow-origin: https://hentai-manga.su
set-cookie: yabs-sid=561063621674891860; Path=/; SameSite=None; Secure
i=rjSlr8IZkkkIUwRFASL07OxLY+rL1Ncl4Bfl+t7+JJvGWggNFr/GPOXeCFWnauRpqho5QcBsDYROSg1vZd3FPYXZduA=; Expires=Tue, 25-Jan-2033 07:44:19 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=3646813141674891860; Expires=Sun, 28-Jan-2024 07:44:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3646813141674891860; Expires=Sun, 28-Jan-2024 07:44:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706427860.yc.1674891860#1706427860.yrts.1674891860#1706427860.yrtsi.1674891860; Expires=Sun, 28-Jan-2024 07:44:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28-Jan-2023 07:44:20 GMT
last-modified: Sat, 28-Jan-2023 07:44:20 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/90863308?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1010388440996%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A438877184%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) | 87.250.251.119 | 302 Found | 407 B |
URL HTTP/2mc.yandex.ru/watch/90863308?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1010388440996%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A438877184%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) IP87.250.251.119:0
File typeJSON data\012- , ASCII text, with very long lines (407), with no line terminators Hash464ee2a1874a6eda8cc56028b66d1abe 39f19bed05fa76f5410dc8eb70364ee546d65a93 520bbc0dca90533a0b50330078ff9419a8bd675ee9fb88ab5cdb4fdeae8d8b9d
GET /watch/90863308?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1010388440996%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A438877184%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/90863308/1?wmode=7&page-url=https%3A%2F%2Fhentai-manga.su%2Ffurry%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A2457%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1010388440996%3Ahid%3A544499895%3Az%3A0%3Ai%3A20230128074421%3Aet%3A1674891862%3Ac%3A1%3Arn%3A438877184%3Arqn%3A1%3Au%3A1674891862762306506%3Aw%3A1268x898%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C189%2C212%2C0%2C387%2C0%2C%2C1694%2C2%2C3641%2C3641%2C1%2C3639%3Aco%3A0%3Ans%3A1674891857467%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674891862%3At%3A%D0%A4%D1%83%D1%80%D1%80%D0%B8%20%C2%BB%20Hentai-Manga.su%20-%20%D0%9A%D1%80%D1%83%D0%BF%D0%BD%D0%B5%D0%B9%D1%88%D0%B8%D0%B9%20%D0%BA%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%85%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%20%D0%BC%D0%B0%D0%BD%D0%B3%D0%B8%21&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 28 Jan 2023 07:44:20 GMT
access-control-allow-origin: https://hentai-manga.su
set-cookie: yabs-sid=507135941674891860; Path=/; SameSite=None; Secure
i=7v6KaKliLiLHMo/FuVmne2nvueQIFxQ0kvMpVHuo+Wtp6hKcO7zi6fOFVgJf2oOXF47XE/2ftlUTLoDfP+eMFMHKpKc=; Expires=Tue, 25-Jan-2033 07:44:19 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5793182241674891860; Expires=Sun, 28-Jan-2024 07:44:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5793182241674891860; Expires=Sun, 28-Jan-2024 07:44:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706427860.yc.1674891860#1706427860.yrts.1674891860#1706427860.yrtsi.1674891860; Expires=Sun, 28-Jan-2024 07:44:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28-Jan-2023 07:44:20 GMT
last-modified: Sat, 28-Jan-2023 07:44:20 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| hentai-manga.su/furry/ | 104.21.95.157 | 200 OK | 0 B |
IP104.21.95.157:0
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related |
GET /furry/ HTTP/1.1
Host: hentai-manga.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:16 GMT
content-type: text/html; charset=windows-1251
x-powered-by: PHP/7.3.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=db3d13a06471d6ab65258c0577ce3266; path=/; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7669yANMBt45F0twjDGZO%2BxJzah2ANl7abGME%2BN7DfaQv2TsPaP4nqXRdZPrIVdSRdnk9NeqsTE56y%2FBCBumVS5I7Lkx7BJqwVfLDjOyjr6QuPwXNkD1hK%2BP06pkPvhYmTE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79081a168a06b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| svkmxwssih.com/t/9/fret/meow4/1905231/819262c0.js | 62.122.171.6 | 200 OK | 0 B |
URL HTTP/2svkmxwssih.com/t/9/fret/meow4/1905231/819262c0.js IP62.122.171.6:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /t/9/fret/meow4/1905231/819262c0.js HTTP/1.1
Host: svkmxwssih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:44:16 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 13:21:09 GMT
vary: Accept-Encoding
etag: W/"63d27e45-10d38"
x-js-ab1: current
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:400,700,900&subset=cyrillic | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:400,700,900&subset=cyrillic IP142.250.74.106:0
GET /css?family=Roboto:400,700,900&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 07:44:17 GMT
date: Sat, 28 Jan 2023 07:44:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.displayvertising.com/stacktable.min.js | 185.76.9.24 | 200 OK | 0 B |
URL HTTP/2www.displayvertising.com/stacktable.min.js IP185.76.9.24:0 ASN#60068 Datacamp Limited
GET /stacktable.min.js HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hentai-manga.su
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:18 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Tue, 31 Jan 2023 00:50:15 GMT
access-control-allow-origin: *
link: <https://displayvertising.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1675126215
server: CDN77-Turbo
x-77-nzt: AblMCRR4GGP/C6cFAA
x-77-nzt-ray: af585630cd0d681252d2d463d11b3c22
x-cache: HIT
x-age: 370443
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| yastatic.net/share2/share.js | 178.154.131.215 | 200 OK | 0 B |
URL HTTP/2yastatic.net/share2/share.js IP178.154.131.215:0
GET /share2/share.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 28 Jan 2023 07:44:19 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=216009
content-encoding: br
etag: W/"d62795f125042b279514d9fb23f826fc"
expires: Mon, 30 Jan 2023 19:42:42 GMT
last-modified: Tue, 21 Jun 2022 14:09:09 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-robots-tag: noindex, noarchive, nofollow
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hentai-manga.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 07:44:18 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Tue, 28 Feb 2023 07:44:18 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2281819
vary: Accept-Encoding
server: cloudflare
cf-ray: 79081a26af6db4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|