Report - pomocdrogowabieszczady24.pl/videos-sex-ilovesexary-at-hote.html

Report Overview

Submitted URL
pomocdrogowabieszczady24.pl/videos-sex-ilovesexary-at-hote.html
IP
172.67.188.15
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-30 23:51:30
Access
public
Website Title
Lust Goddes
Final URL
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
rivalbuffetdifferently.com	unknown	2024-03-29	2024-03-31	2024-04-20	2.4 kB	4.0 kB	172.240.108.76
animeplaynow.com	unknown	2022-11-29	2022-11-30	2024-04-18	8.5 kB	498 kB	104.21.19.67
ln.gamesrevenue.com	117740	2014-05-30	2017-01-29	2024-04-30	401 B	5.3 kB	5.161.79.44
holdhostel.space	unknown	2024-02-21	2024-02-21	2024-04-24	559 B	2.4 kB	104.21.76.98

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-30	medium	rivalbuffetdifferently.com	Sinkholed
2024-04-30	medium	rivalbuffetdifferently.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/libs/jquery.min.js	87 kB	2023-03-07	2024-05-22
Pretty URL animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/libs/jquery.min.js IP 104.21.19.67 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-22 02:03:46 Times Seen115984 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	ln.gamesrevenue.com/px1.js	15 kB	2023-12-23	2024-05-22
Pretty URL ln.gamesrevenue.com/px1.js IP 5.161.79.44 ASN #213230 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-23 09:34:48 Last Seen2024-05-22 01:28:44 Times Seen1411 Hash b01fc426cbc4f33a52a28ee9ca2e2050 577332c8c5f62167ad432c5d20b3ca285e75c91e d40fc3bebe2dc3c28f08f2f4f5a6059425ccc5541ada3f0945f7539e90374441 Loading...

	animeplaynow.com/awpx_click.js?v=005	1.5 kB	2023-03-26	2024-05-22
Pretty URL animeplaynow.com/awpx_click.js?v=005 IP 104.21.19.67 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 01:11:56 Last Seen2024-05-22 01:28:44 Times Seen1456 Hash 7aeb87811ad3a82fde3e2783544819ee d1d9174cbcbb1abdccee6841f170ba21f899925b 7fff603702e9bea03cf47ba47947bb7f8655eb7fcb1c8f7091e9a38d8f5d949c Loading...

	animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/scripts/main.js	292 B	2023-03-08	2024-05-22
Pretty URL animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/scripts/main.js IP 104.21.19.67 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:19:27 Last Seen2024-05-22 00:43:46 Times Seen452 Hash 7d34f846662d075cf9776018c9168a7e f3f5f181061268bb7e4bc326dbaec7f2c84d7857 adab57bc821cebfedc845c7b18ca9f55287eff4ef3a11f7f9dd5eda572418628 Loading...

HTTP Transactions (17)

URL IP Response Size

rivalbuffetdifferently.com/f8i0y9867?key=4d653a9e3fa7d43758414d521b077d1e

172.240.108.76

1.3 kB

URL
rivalbuffetdifferently.com/f8i0y9867?key=4d653a9e3fa7d43758414d521b077d1e
IP
172.240.108.76:0
ASN
#7979 SERVERS-COM

File type
HTML document, ASCII text, with very long lines (419)
Size
1.3 kB (1347 bytes)
Hash
a8caea4bf33d4f65f625a1fdd1c3ac2c
ba940aad79163db84cb5a90fd7b7f1883fda1acc
ecc540212c827d827d093624ab2cd67e514ec9232d01abee641fe1fff6c5d91b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f8i0y9867?key=4d653a9e3fa7d43758414d521b077d1e HTTP/1.1
Host: rivalbuffetdifferently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Apr 2024 23:51:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=22235094; expires=Wed, 01 May 2024 23:51:04 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.-t5qhw-i1hbRy5rnS6OPt_YGM-3m9OXbwfhoaFkPTTU; expires=Tue, 30 Apr 2024 23:52:04 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a0963ec2ce5f80aab6a1e9f485a76de5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

rivalbuffetdifferently.com/api/users?token=L2Y4aTB5OTg2Nz9rZXk9NGQ2NTNhOWUzZmE3ZDQzNzU4NDE0ZDUyMWIwNzdkMWUmcHN0PTE3MTQ1MjExMjQmcm10Yz10JnNodT01ZjQ2OGQ3NWQxYWVjMzUyMTNlMWIyZmViNDgyMWZlYjA3YjU2MjMyYjA4OTE3ZDMwY2I3ZmY3Njk0NmQxMGQ1NmM0NmNkNWFlYjRlNjMyMTg4YzU1NGFmMTE3MzQ2NDc3MDk4NWViYjc2N2I5MzRhZjRkODVlYTI0YjE3YjVlNDc2ODA2ZTk4YjQzOTNjZWJiZjY0YzU0ZTE3Mzk4NjRiMGE4ZTk1OWI0NDhmNTJhNmM0ZDYyNTk3ZjFjNTE0NzdhOWQ4MjA&uuid=&pii=&in=false

192.243.59.20

302 Found

0 B

URL User Request GET HTTP/1.1
rivalbuffetdifferently.com/api/users?token=L2Y4aTB5OTg2Nz9rZXk9NGQ2NTNhOWUzZmE3ZDQzNzU4NDE0ZDUyMWIwNzdkMWUmcHN0PTE3MTQ1MjExMjQmcm10Yz10JnNodT01ZjQ2OGQ3NWQxYWVjMzUyMTNlMWIyZmViNDgyMWZlYjA3YjU2MjMyYjA4OTE3ZDMwY2I3ZmY3Njk0NmQxMGQ1NmM0NmNkNWFlYjRlNjMyMTg4YzU1NGFmMTE3MzQ2NDc3MDk4NWViYjc2N2I5MzRhZjRkODVlYTI0YjE3YjVlNDc2ODA2ZTk4YjQzOTNjZWJiZjY0YzU0ZTE3Mzk4NjRiMGE4ZTk1OWI0NDhmNTJhNmM0ZDYyNTk3ZjFjNTE0NzdhOWQ4MjA&uuid=&pii=&in=false
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectrivalbuffetdifferently.com
FingerprintB1:7E:41:4A:34:81:91:85:71:F8:6A:E8:59:9F:9F:FE:D5:CE:9E:56
ValidityFri, 29 Mar 2024 16:09:48 GMT - Thu, 27 Jun 2024 16:09:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/users?token=L2Y4aTB5OTg2Nz9rZXk9NGQ2NTNhOWUzZmE3ZDQzNzU4NDE0ZDUyMWIwNzdkMWUmcHN0PTE3MTQ1MjExMjQmcm10Yz10JnNodT01ZjQ2OGQ3NWQxYWVjMzUyMTNlMWIyZmViNDgyMWZlYjA3YjU2MjMyYjA4OTE3ZDMwY2I3ZmY3Njk0NmQxMGQ1NmM0NmNkNWFlYjRlNjMyMTg4YzU1NGFmMTE3MzQ2NDc3MDk4NWViYjc2N2I5MzRhZjRkODVlYTI0YjE3YjVlNDc2ODA2ZTk4YjQzOTNjZWJiZjY0YzU0ZTE3Mzk4NjRiMGE4ZTk1OWI0NDhmNTJhNmM0ZDYyNTk3ZjFjNTE0NzdhOWQ4MjA&uuid=&pii=&in=false HTTP/1.1
Host: rivalbuffetdifferently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rivalbuffetdifferently.com/api/users?token=L2Y4aTB5OTg2Nz9rZXk9MGYyMmMxZmQ2MDlmMTNjYjc5NDdjOGNhYmZlMWE5MGQmc3VibWV0cmljPTIyMjM1MDk0
Cookie: u_pl=22235094; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjIzNTA5NCwiayI6IjRkNjUzYTllM2ZhN2Q0Mzc1ODQxNGQ1MjFiMDc3ZDFlIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzA4NjMzLCJwaWQiOjEwMzg5OTIsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MywiYWlkIjoyOCwicHQiOjQsInBrIjoiZjhpMHk5ODY3IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiIiLCJhciI6W119fQ.-t5qhw-i1hbRy5rnS6OPt_YGM-3m9OXbwfhoaFkPTTU; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Tue, 30 Apr 2024 23:51:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://holdhostel.space/?660db1accda89&ag_custom_domain=22235094
Set-Cookie: iprc7e633d03c3ce19fed5e2a3020cae63af=5190494; expires=Wed, 01 May 2024 23:51:05 GMT
pdhtkv=true; expires=Wed, 01 May 2024 23:51:05 GMT
uncs=1; expires=Wed, 01 May 2024 23:51:05 GMT
pdhtkv28=true; expires=Wed, 01 May 2024 23:51:05 GMT
uncs28=1; expires=Wed, 01 May 2024 23:51:05 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6047795e91bbbd3e1a341b0f4d7d447b
Strict-Transport-Security: max-age=0; includeSubdomains

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079

104.21.19.67

200 OK

4.9 kB

URL User Request GET HTTP/2
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
HTML document, ASCII text
Size
4.9 kB (4927 bytes)
Hash
26e2c163e9860be9ef568cb2c003f374
ebe570d7a1438819b36a9e243fca7e1d29516787
688486cadd0a3d9b7657ac22f5e2ac48afd1c434c72a6807ceb51a06bb43b8f2

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079 HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rivalbuffetdifferently.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qyrHS4OYtcr%2BH5TprM3TBCwTk%2BKgUc4i1ysUsyahLCwPNe0xUKHu5MpugnzUGujlKN9XIqAH68q0%2FjHVSAO7AJOkeTEiwU8TcoeoTMWVm3UCQArxkOaN%2FSv8aa1NnaJi8Vzn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87cb70131800b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/notice.png

104.21.19.67

200 OK

36 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/notice.png
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
PNG image data, 867 x 112, 8-bit colormap, non-interlaced
Size
36 kB (36380 bytes)
Hash
7316951b03c50f8b19d2581f000987b4
59d77ce4daafcfe93ae80690eada76cfdf31c655
06b413f4ed23c6076f4d636d99fcb1c7226caa7e78ebac86d8975b0d4ea1eaf6

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/notice.png HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: image/png
content-length: 36380
last-modified: Tue, 09 Apr 2024 10:16:44 GMT
etag: "6615158c-8e1c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4273
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UDZ6kyzT%2FbYjDKPc%2FRFCoJxCQSyU658C35YfR9IfYtFapDua2eV2nS6frlIMPsuK3iu539t1UC%2Buwvi%2BnZ%2BDF%2Ft2iW7u9PA%2FyO9PCJ%2FW3yWwnvXPRHRAgvAWOgWcR0SFZtoy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70160e5ab518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/1.jpg

104.21.19.67

200 OK

72 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/1.jpg
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 334x494, components 3
Size
72 kB (71793 bytes)
Hash
9d738671bb20e0ec0c4fdedf5de6b93b
4c1ee9079ce3cedba9bacedb7d7c4ae905950b74
5fcb8cd6dcdabf9ade4815082a4660dcf3ce8a855158333bbc9fa62b159a5023

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/1.jpg HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: image/jpeg
content-length: 71793
last-modified: Tue, 09 Apr 2024 10:16:43 GMT
etag: "6615158b-11871"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1336
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OMuvlGVKOGaNunIEbYhkzeu98gFgCn%2BYRrhUWR9CgV%2BRO8hjfB4%2BZk2IWC2%2FpXFOBaY2SmTWDxcadpRUZT2Xg8TcxL7cqet%2Fif05MpA87lU%2FNe5XEonyHobl5aabqA5h3n6q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70160e5cb518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/2.jpg

104.21.19.67

200 OK

50 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/2.jpg
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 334x494, components 3
Size
50 kB (49537 bytes)
Hash
a9360b486d00c4b54141f771cb6b9e15
3b2a2a875a4092177d255c730305a74a6a41cd47
52c4eaad31fd8f4e44f277a7f0ffb9482c9161a9d8f1c27104c966b7dd825526

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/2.jpg HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: image/jpeg
content-length: 49537
last-modified: Tue, 09 Apr 2024 10:16:43 GMT
etag: "6615158b-c181"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5374
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K5dPSM%2FXgzxmaCD4N5aNHIOA34jV4mCZ741lnIzGCuJpC8K5L30fasO49f6aKPUJ5xRP51s%2B446z3eUA3G5ofY24n7zMpzvsgXQRRrvCDKPzTHQkJCHUdV8GZOvbnJ%2B76e8S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70160e5eb518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/3.jpg

104.21.19.67

200 OK

53 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/3.jpg
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 334x494, components 3
Size
53 kB (52840 bytes)
Hash
c5b788a968daa49f2a16f4a17ff1bd54
063c627db9380f0fdd684fb8dd6bae6f23cd8a99
7c22805907b49c7df53cf260ac79335e1258c6b157a2d7f4e1bc97dd636a91a9

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/3.jpg HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: image/jpeg
content-length: 52840
last-modified: Tue, 09 Apr 2024 10:16:43 GMT
etag: "6615158b-ce68"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5374
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BsZ6Tl%2BwenXjV8cCtyX6vpSwtqqzz0ZBGTYfSDIYtCGNgf%2F9IaRLRbcSJugB4Ip01HT316Vk7148DNA8wURUV1XVpXhF6VXyocQ%2BGUGIRGRLUwL2EAkwuVvxZTOKLu1OXtf7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70161e65b518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/4.jpg

104.21.19.67

200 OK

52 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/4.jpg
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 334x494, components 3
Size
52 kB (51567 bytes)
Hash
a9b9952b04fdea67a56591ab3e8617da
60d8405e1c39271ce8213fbdaa2602a9d7501c27
d13272a392a9282e364cb625c85138eecc933ee47f91e973872e03ecbc2fa92d

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/4.jpg HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: image/jpeg
content-length: 51567
last-modified: Tue, 09 Apr 2024 10:16:43 GMT
etag: "6615158b-c96f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4273
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cti0Jv%2BwkgRykhLlWEqlAjkxQTaKQEb72NW9Ejzp58o%2BXZGU3UqFLG2GLuy6a93ccXtDYwxY4iHWiVW4VMl3Pdbc%2FN7mYKF%2BWPRgAw2iK%2BEPB85Ta5ZOjUDfz5018dTBi3j5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70161e66b518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/button.png

104.21.19.67

200 OK

12 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/button.png
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
PNG image data, 345 x 124, 8-bit/color RGBA, non-interlaced
Size
12 kB (11908 bytes)
Hash
72ac404291d1849aac0aa1330297e7df
9206af27feba8f502823472c7a73e8f4fe0437c5
750619c204c2d4eb7654f9f7d7a8c34c57333b95214168ec43065a2d58744135

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/button.png HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: image/png
content-length: 11908
last-modified: Tue, 09 Apr 2024 10:16:44 GMT
etag: "6615158c-2e84"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4273
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eZtFfiq7P8rAkHXtZbtNjXNtz5VJVIbyVLymhTRrNTSWrYmJk%2B5TPNddjguf8U3B2KFgh8r7nOgH0b0Oh6p%2BviIhBqed3Q4Zi7DZ6GyinS1eRQwSVna0WYFUSEtt0k1kn%2Frq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70161e69b518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/awpx_click.js?v=005

104.21.19.67

200 OK

1.1 kB

URL GET HTTP/3
animeplaynow.com/awpx_click.js?v=005
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
ASCII text
Size
1.1 kB (1104 bytes)
Hash
7aeb87811ad3a82fde3e2783544819ee
d1d9174cbcbb1abdccee6841f170ba21f899925b
7fff603702e9bea03cf47ba47947bb7f8655eb7fcb1c8f7091e9a38d8f5d949c

HTTP Headers

GET /awpx_click.js?v=005 HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 09:50:55 GMT
etag: W/"6409abff-5d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4341
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nxOEIHLBhv%2FFsOWV1T9OmfcNZFBStYpKFEtkzWYZiDPgOh6CGmJN0jeGoJBDQ8ZgCQGFTzJ7nwwhE2eAItMrLhXdyDqLkHJ2ut3gvEe3KwhcW5PdmmTSKdGvtiYx48h2YcCT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70160e59b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/bg2.jpg

104.21.19.67

200 OK

118 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/bg2.jpg
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
118 kB (118536 bytes)
Hash
5f15f0226a2b3cf86657db5a17d5fe69
181efc71b7dafd77d4d30223b8ee0e226ca9b5fb
27de51b5adad56c63e574f2adac30b406a446f4458718c3ed9d8f377ac869817

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/bg2.jpg HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/css/main.css?v=4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:06 GMT
content-type: image/jpeg
content-length: 118536
last-modified: Wed, 17 Apr 2024 12:53:05 GMT
etag: "661fc631-1cf08"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5238
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TXv%2B7pVwSEoQBYeIdibnVLUOlDabltiX2h4%2BFC7F7qSODkE0o%2FJGuEMCMuK4ktfaHigEhkVtBwWr8WUo3LVIcNcbalk08z4oEM9owVZBgNTukVe6vjCIXH4f60GE8w%2FoguvB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70182f7ab518-OSL
alt-svc: h3=":443"; ma=86400

ln.gamesrevenue.com/px1.js

5.161.79.44

200 OK

5.1 kB

URL GET HTTP/2
ln.gamesrevenue.com/px1.js
IP
5.161.79.44:443
ASN
#213230 Hetzner Online GmbH

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerLet's Encrypt
Subject*.gamesrevenue.com
FingerprintB2:A3:99:AD:22:46:FC:93:41:E9:59:40:F5:09:B0:23:B7:5B:FA:67
ValidityWed, 13 Mar 2024 09:55:06 GMT - Tue, 11 Jun 2024 09:55:05 GMT

File type
gzip compressed data, max speed, from Unix
Size
5.1 kB (5096 bytes)
Hash
7abdc78bf7f3e7ea96ebf377eae2c147
2ba3689ab7729b2ee7164e6d784ded3b1d82bdc2
7539e642de1905fdceb8845fa071cd404fb3a4c9e1aa8886efef38f516758f0a

HTTP Headers

GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 30 Apr 2024 23:51:06 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 10:12:56 GMT
etag: W/"65856128-3b88"
content-encoding: gzip
X-Firefox-Spdy: h2

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/fav.png

104.21.19.67

200 OK

1.4 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/image/fav.png
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
1.4 kB (1425 bytes)
Hash
10c5dd857fd3653492ef5eeaa86cd48b
193484a907a40d7b145af2136ef83bef593d2f21
a689201508b9dc7b2cc3049c7d89947f96a19790411506ecd6eb1875374fe329

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/image/fav.png HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:06 GMT
content-type: image/png
content-length: 1425
last-modified: Tue, 09 Apr 2024 10:16:44 GMT
etag: "6615158c-591"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1079
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZLCVRwAU3vrw1YsUagYiqrM8V2jfqdMJQOU%2BirH2tK3D0BeD3eL7puKk3XdlMutIYrKBerJACS05s4ioehn%2FYp2kACUPLbLhrNmkF5fVClsQsFljYsxx74wx%2FupVV%2Fhm0lNH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70184fafb518-OSL
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/css/main.css?v=4

104.21.19.67

200 OK

2.1 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/css/main.css?v=4
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
ASCII text, with very long lines (2094), with no line terminators
Size
2.1 kB (2094 bytes)
Hash
6f057a735542d656736b9b47571cf0ea
290de597b8b7c24198e41ca01034569fe01d2d78
f69b92f1d6616a937d52e3fb6f8f84a953780b5cafb5e0843384fae0c47232fe

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/css/main.css?v=4 HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: text/css
last-modified: Wed, 17 Apr 2024 12:53:11 GMT
etag: W/"661fc637-82e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5857
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UN7Uux7xEVh7jWpxY0UJu2BFLBrqQATtk%2BPnleUIAj34ierU0PkhNl4FRBetI2jTTgNGOZXW5o0ZT3EFo1BSU82GajEn6B37BfBa1QsWTWBHkEwhNSFbDLQAEHVCZnqB6Oet"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb7015fe56b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/libs/jquery.min.js

104.21.19.67

200 OK

87 kB

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/libs/jquery.min.js
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/libs/jquery.min.js HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: application/javascript
last-modified: Tue, 09 Apr 2024 10:16:46 GMT
etag: W/"6615158e-1538f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5383
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vgp4HicaOX2fbHdqglAwK%2BKAckx77czM6Dz7gEyQYt7cZdOt5vZPXSihosr%2BbHVOAv2IDA79E1fTAw6aeswcuHW80%2BnumOASatFOP8JxbHyg1ShGXnQ9%2B78o%2FZbuwaSqg9bx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb7015fe57b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/scripts/main.js

104.21.19.67

200 OK

292 B

URL GET HTTP/3
animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/scripts/main.js
IP
104.21.19.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Certificate
IssuerGoogle Trust Services LLC
Subjectanimeplaynow.com
Fingerprint52:29:26:C8:42:AC:A1:04:3B:02:6C:31:EB:F5:8D:14:2A:88:74:BD
ValiditySun, 17 Mar 2024 01:39:57 GMT - Sat, 15 Jun 2024 01:39:56 GMT

File type
JavaScript source, ASCII text, with very long lines (312), with no line terminators
Size
292 B (292 bytes)
Hash
e0c5f909c7b1d6ecd7c0d944091d6d34
8627c5b393db081344850b627e9117a70acfdfaf
df14f7f57354b74ce353256eaa88007d605df3177a1465303fa6cd5633f4473a

HTTP Headers

GET /lg/lg_0424/land_lg_090424_na_en/scripts/main.js HTTP/1.1
Host: animeplaynow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: application/javascript
last-modified: Tue, 09 Apr 2024 10:16:47 GMT
etag: W/"6615158f-124"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5857
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cddoloeredmefyVia%2BswWjxCacSldyjfgk%2F13yo0qRdkXE5Jo25dHGyI8Zzyjz8sWb8mEfSYD3DbE268dnv0j1Q9UTcqA8FTdXhfuYPotlktRYRbX11vLke7G3FEW4DoNG%2B9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87cb70162e6cb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

holdhostel.space/?660db1accda89&ag_custom_domain=22235094

104.21.76.98

302 Found

1.4 kB

URL User Request GET HTTP/2
holdhostel.space/?660db1accda89&ag_custom_domain=22235094
IP
104.21.76.98:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectholdhostel.space
Fingerprint30:62:41:BC:7C:17:FC:EE:0D:5B:5B:39:AE:06:1C:8A:08:6D:67:D6
ValiditySat, 20 Apr 2024 18:12:17 GMT - Fri, 19 Jul 2024 18:12:16 GMT

File type

Size
1.4 kB (1378 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?660db1accda89&ag_custom_domain=22235094 HTTP/1.1
Host: holdhostel.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rivalbuffetdifferently.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 30 Apr 2024 23:51:05 GMT
content-type: text/html
location: https://animeplaynow.com/lg/lg_0424/land_lg_090424_na_en/?utm_campaign=pu_lg_terra_ww_na&utm_medium=click&utm_source=pu&utm_content=22235094&bnid=land_lg_090424_na_en&land=land_lg_090424_na_en&noadult=1&crID=2503205&zID=100079
set-cookie: c_5c22f2b5ad78126c97860f58c4cb0359=1; Expires=Wed, 01-May-24 23:51:05 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
z_2b2f1687240f43a33d8c766932c1b8a5=1; Expires=Wed, 01-May-24 23:51:05 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PoxG5e9VGjZ%2FuX9oxhN9smRT6TPCtwq4UD6cY3asC9PUtxOdVpvltEMwrKNWhio6xelbrPogq8j1R3Ct6ZQRpb%2B%2Fx9MVF9UBYdhn3D3k64EevgnubrzYaT0NGkG213Lx08dv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87cb7012aed556c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (17)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers