Report - 9animetv.to

Report Overview

Visited public
2025-02-22 18:50:25
Tags
URL
9animetv.to
Finishing URL
9animetv.to/
IP / ASN
104.21.83.186
#13335 CLOUDFLARENET
Title
9anime - Watch Anime online with DUB and SUB for FREE

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-04-05	2025-02-19	462 B	160 kB	104.18.10.207
9animetv.to	unknown	unknown	2023-01-13	2025-01-26	4.9 kB	634 kB	172.67.180.216
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-02-19	438 B	31 kB	142.250.74.42
readintegralsplit.com	unknown	2025-02-19	2025-02-20	2025-02-21	1.3 kB	1.8 kB	172.240.108.68
use.fontawesome.com	942	2012-10-18	2017-01-30	2025-02-19	1.5 kB	184 kB	172.67.142.245
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-02-19	911 B	194 kB	142.250.74.168
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2025-02-19	462 B	90 kB	104.18.10.207
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-02-19	470 B	66 kB	142.250.74.10
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-02-19	1.6 kB	26 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-02-22	medium	readintegralsplit.com	Sinkholed
2025-02-22	medium	readintegralsplit.com	Sinkholed
2025-02-22	medium	readintegralsplit.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	9animetv.to/	ScriptElement	183 B	2023-03-14	2025-04-07
Pretty URL 9animetv.to/ IP 172.67.180.216 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 18:55 Last Seen2025-04-07 22:18 Times Seen70 Hash 705116e764c78ef7c68e821c0d987e0d 8ef40d8aa09e6083133b752bd5f812136adbba49 b57fa54c589ac6838e199d3f33b19b6f13af4d0fc2e6d56df49c44b04566360d Loading...

	www.googletagmanager.com/gtag/js?id=UA-259169563-1	ScriptElement	245 kB	2025-02-22	2025-02-22
Pretty URL www.googletagmanager.com/gtag/js?id=UA-259169563-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-22 18:50 Last Seen2025-02-22 18:50 Times Seen1 Hash 0de100fe2d71256e674e216b4a9dc45a e41e1b9fa62da3416344729dcdf55d644df06293 b9e7bd446f26396701372609ff82a699f787eb413a3ed415cc5d8fcb9d510135 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-06-12
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-12 10:58 Times Seen59654 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.bundle.min.js	ScriptElement	71 kB	2023-03-07	2025-06-11
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.bundle.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-11 09:05 Times Seen1059 Hash ef58fee438cd2da2c3b33ff6f1cfeebf 41a4836fc0253324e7e583905f47ba7194bac91d 13f578716138aaf01e3b930e863b46b6a0f33e77513b52c193c949fcf47b080e Loading...

	9animetv.to/js/app.ob.min.js	ScriptElement	518 kB	2023-03-07	2025-04-07
Pretty URL 9animetv.to/js/app.ob.min.js IP 172.67.180.216 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17 Last Seen2025-04-07 22:18 Times Seen92 Hash 9ca305f25e7cfef7765ac49d5e368dc3 40f6d291201bff3f0bd61e6ded001f3fc5801d89 a85db9056e43736c9155757b0aa0ff694f44b7768008e24f45d5a61fae56845b Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-12
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-12 10:54 Times Seen352322 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	9animetv.to/sandbox%20eval%20code		147 B	2023-04-11	2025-06-12
Pretty URL 9animetv.to/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-12 10:54 Times Seen353065 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-LQB16P1NTB&l=dataLayer&cx=c&gtm=457e52k0za200	ScriptElement	302 kB	2025-02-22	2025-02-22
Pretty URL www.googletagmanager.com/gtag/js?id=G-LQB16P1NTB&l=dataLayer&cx=c&gtm=457e52k0za200 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-22 18:50 Last Seen2025-02-22 18:50 Times Seen1 Hash fcec15c4d81ef70a5ea88f4481198804 ebfdbc73c838f0525a797cbfa57c0c11c72ee10c c00649eebd2aa09fbbd1a1197c8d14e648a2b2362789b061657d6e7a1f4f441a Loading...

HTTP Transactions (26)

URL IP Response Size

9animetv.to/images/logo.png

172.67.180.216

200 OK

6.9 kB

URL GET HTTP/3
9animetv.to/images/logo.png
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
PNG image data, 744 x 213, 8-bit colormap, non-interlaced
Size
6.9 kB (6852 bytes)
Hash
2fd3571919c45a58ebdacf76f71263da
cee25e922192cfcc05114d01157bf074bac2fda5
46fa11c62a96d54fabdd9228e3bc55dc096e098b7a6db2fb9d111e24fcb1d733

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: image/png
content-length: 6852
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"1ac4-18656336d9e"
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHvMGogb%2Bs6uEJqbBYYZiGdYWvA1U3b2llMD4J7f5icFEty589Ky%2B4ZQ5lsUPh260JGDsAWB1BTl60kf10cfxjVX8iuRYLbyOVn2ZZakAAsWDw1kIWCYHST3BZWg7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d8880569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=14701&min_rtt=1749&rtt_var=9907&sent=19&recv=13&lost=0&retrans=0&sent_bytes=5767&recv_bytes=3015&delivery_rate=339452&cwnd=12000&unsent_bytes=0&cid=9f47677fe8c930af&ts=485&x=1", cfExtPri, cfHdrFlush;dur=0

9animetv.to/images/footer-icon.png

172.67.180.216

200 OK

70 kB

URL GET HTTP/3
9animetv.to/images/footer-icon.png
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
PNG image data, 382 x 542, 8-bit colormap, non-interlaced
Size
70 kB (70261 bytes)
Hash
9d9c41fd3ca4e5c589ccebd936fd06cb
ecb69aa41a9ed64414b6ba6f68a7c727d75019d6
36caec3613799c067358f2377c4e49d3003eea9daa7f7a365b84d27b796e9b9d

HTTP Headers

GET /images/footer-icon.png HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: image/png
content-length: 70261
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"11275-18656336d9d"
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Ftdf1UXjFIujT0mqkFbc9bkyEOMzdiywnzpI3JBl5rx0VWS%2Bf7AVTQXFwiZIPs%2FPdyhLTEgB5Z%2F6K5SQYz3tQ8e8Ek7ErJnE4ZzUWWZwjWhvjvuYSPshB%2Bf9L3Yl8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d8887569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13198&min_rtt=1749&rtt_var=10435&sent=36&recv=14&lost=0&retrans=0&sent_bytes=25583&recv_bytes=3059&delivery_rate=20546&cwnd=12000&unsent_bytes=0&cid=9f47677fe8c930af&ts=490&x=1", cfExtPri, cfHdrFlush;dur=6

9animetv.to/images/icon-register.png

172.67.180.216

200 OK

68 kB

URL GET HTTP/3
9animetv.to/images/icon-register.png
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
PNG image data, 417 x 658, 8-bit colormap, non-interlaced
Size
68 kB (67747 bytes)
Hash
c7aa095e5913e37e8bffc6c3f5e84b06
ad19d4a5f3aaab9b8e151463ccc246097afc47ab
4033271ce46292a9924c2c9b03f68cc2624fef9732f6f2d726b2b8a4f5a67dfe

HTTP Headers

GET /images/icon-register.png HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: image/png
content-length: 67747
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"108a3-18656336d9e"
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2y2ywX%2BfMCa93K%2FAmju1eMQ6jvspMnjOrQTyxhpknvyoTO1%2FoZeLrVF5UjAEjX2wQ8d4ZOJyizSO0ovUcEPNvdFcl6JUZ5s8yb4xBDtLtVLuHbAySZscVUEKjTJuGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d988b569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13198&min_rtt=1749&rtt_var=10435&sent=36&recv=14&lost=0&retrans=0&sent_bytes=25583&recv_bytes=3059&delivery_rate=20546&cwnd=12000&unsent_bytes=0&cid=9f47677fe8c930af&ts=491&x=1", cfExtPri, cfHdrFlush;dur=10

9animetv.to/images/icon-login2.png

172.67.180.216

200 OK

115 kB

URL GET HTTP/3
9animetv.to/images/icon-login2.png
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
PNG image data, 600 x 755, 8-bit colormap, non-interlaced
Size
115 kB (114658 bytes)
Hash
038bfde569b741495df9ea4baa210194
e464d06ee40deff8f8a5ae9fd1eaee4e6368abf6
05282d2b753229f5b62de96775b303ff8aac10985a7bbdac9b9777f79335f6ce

HTTP Headers

GET /images/icon-login2.png HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: image/png
content-length: 114658
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"1bfe2-18656336d9e"
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EVDCdkyRwK8Xmqg%2Fw7KkfJCcYcuMSHRejNnSiS0uEdNDhG0INPdQsxOhSUg9R7YwAwCWHlSHmssfiXgxR2g%2BEL1QtkhRUbyb0eUpoOldV%2FltE%2BXC6fDBbYVwazYc9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d8889569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13198&min_rtt=1749&rtt_var=10435&sent=36&recv=14&lost=0&retrans=0&sent_bytes=25583&recv_bytes=3059&delivery_rate=20546&cwnd=12000&unsent_bytes=0&cid=9f47677fe8c930af&ts=494&x=1", cfExtPri, cfHdrFlush;dur=2

9animetv.to/images/icon-forgot.png

172.67.180.216

200 OK

62 kB

URL GET HTTP/3
9animetv.to/images/icon-forgot.png
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
PNG image data, 426 x 383, 8-bit colormap, non-interlaced
Size
62 kB (62486 bytes)
Hash
84a9c69f8dec38f5549688ed37e4adbe
f6614a26ed3d5087fdcb26a8ad56142e28a8280f
50e70b0f2ad4a1bb38673a8a79dac2d6441fad081ac11b17d6ad189764728398

HTTP Headers

GET /images/icon-forgot.png HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: image/png
content-length: 62486
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"f416-18656336d9d"
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hoQudW2emjPYMuMgkJjA%2B1lRl5QOO0aTiqyt7ORKEU44CeBWOzi28P0tWWDIVICminB9%2FG56M9VtzNP4ouxgOVmNbgLgKl2FIEBlOP5xSxRmAo9n4O%2BkOmXpDUStqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d888a569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12908&min_rtt=1749&rtt_var=8407&sent=58&recv=15&lost=0&retrans=0&sent_bytes=49583&recv_bytes=3103&delivery_rate=1039324&cwnd=24000&unsent_bytes=0&cid=9f47677fe8c930af&ts=499&x=1", cfExtPri, cfHdrFlush;dur=2

ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js

142.250.74.42

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintD9:DA:31:61:C2:D7:49:CF:50:B6:1B:FE:BA:EC:9D:12:91:8D:10:AC
ValidityMon, 03 Feb 2025 08:37:09 GMT - Mon, 28 Apr 2025 08:37:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
30 kB (30399 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Feb 2025 01:39:58 GMT
expires: Sun, 22 Feb 2026 01:39:58 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 61795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-259169563-1

142.250.74.168

200 OK

87 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-259169563-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintFD:F1:10:28:52:E9:04:06:B0:B4:B4:46:D2:2D:83:CA:9D:67:5E:8D
ValidityMon, 03 Feb 2025 08:36:05 GMT - Mon, 28 Apr 2025 08:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (5268)
Size
87 kB (86808 bytes)
Hash
0de100fe2d71256e674e216b4a9dc45a
e41e1b9fa62da3416344729dcdf55d644df06293
b9e7bd446f26396701372609ff82a699f787eb413a3ed415cc5d8fcb9d510135

HTTP Headers

GET /gtag/js?id=UA-259169563-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 22 Feb 2025 18:49:53 GMT
expires: Sat, 22 Feb 2025 18:49:53 GMT
cache-control: private, max-age=900
last-modified: Sat, 22 Feb 2025 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1003:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1003:0
report-to: {"group":"ascgcycc:1003:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1003:0"}],}
server: Google Tag Manager
content-length: 86808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

readintegralsplit.com/b8/74/92/b87492401a21c9d6cdaf01555dea4f99.js

172.240.108.68

403 Forbidden

0 B

URL GET HTTP/1.1
readintegralsplit.com/b8/74/92/b87492401a21c9d6cdaf01555dea4f99.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://9animetv.to/
Certificate
IssuerLet's Encrypt
Subjectreadintegralsplit.com
FingerprintA4:77:1B:D4:7F:D3:94:8A:5D:E2:14:0E:20:47:2A:66:31:0C:0C:17
ValidityWed, 19 Feb 2025 18:10:29 GMT - Tue, 20 May 2025 18:10:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b8/74/92/b87492401a21c9d6cdaf01555dea4f99.js HTTP/1.1
Host: readintegralsplit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Sat, 22 Feb 2025 18:49:53 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 1
Host: readintegralsplit.com

readintegralsplit.com/5d/b7/8e/5db78e27a7b37e084bd2b98dee575932.js

172.240.108.68

403 Forbidden

0 B

URL GET HTTP/1.1
readintegralsplit.com/5d/b7/8e/5db78e27a7b37e084bd2b98dee575932.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://9animetv.to/
Certificate
IssuerLet's Encrypt
Subjectreadintegralsplit.com
FingerprintA4:77:1B:D4:7F:D3:94:8A:5D:E2:14:0E:20:47:2A:66:31:0C:0C:17
ValidityWed, 19 Feb 2025 18:10:29 GMT - Tue, 20 May 2025 18:10:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5d/b7/8e/5db78e27a7b37e084bd2b98dee575932.js HTTP/1.1
Host: readintegralsplit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Sat, 22 Feb 2025 18:49:53 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 32
Host: readintegralsplit.com

maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.bundle.min.js

104.18.10.207

200 OK

88 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.bundle.min.js
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT

File type
JavaScript source, ASCII text, with very long lines (65297)
Size
88 kB (88539 bytes)
Hash
ef58fee438cd2da2c3b33ff6f1cfeebf
41a4836fc0253324e7e583905f47ba7194bac91d
13f578716138aaf01e3b930e863b46b6a0f33e77513b52c193c949fcf47b080e

HTTP Headers

GET /bootstrap/4.1.3/js/bootstrap.bundle.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: "ef58fee438cd2da2c3b33ff6f1cfeebf"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-proxyver: 1.06
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/15/2024 14:30:03
cdn-edgestorageid: 845
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 606901d0a5d5ff2e987e48547ef29eb2
cdn-cache: HIT
cf-cache-status: HIT
age: 648015
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 9161289ddde756a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600&display=swap

142.250.74.10

200 OK

66 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintD9:DA:31:61:C2:D7:49:CF:50:B6:1B:FE:BA:EC:9D:12:91:8D:10:AC
ValidityMon, 03 Feb 2025 08:37:09 GMT - Mon, 28 Apr 2025 08:37:08 GMT

File type
gzip compressed data, max compression
Size
66 kB (65767 bytes)
Hash
6f0f6ce0593d6e3a90305c54a3cd64ce
0dc43e57657cbcad10f50e4d8172478df0f0064c
6e500ff47f9d85835c356eed68ba564c2196ecab295a5205cc9b083374aad2b9

HTTP Headers

GET /css2?family=Poppins:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 22 Feb 2025 18:49:53 GMT
date: Sat, 22 Feb 2025 18:49:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:4C:7D:BD:65:DC:FC:CD:59:FD:40:F4:A9:EE:C2:BA:91:98:B2:3D
ValidityMon, 03 Feb 2025 08:37:09 GMT - Mon, 28 Apr 2025 08:37:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9animetv.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Feb 2025 13:59:05 GMT
expires: Fri, 20 Feb 2026 13:59:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 04 Dec 2024 06:53:08 GMT
content-type: font/woff2
age: 190249
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

142.250.74.35

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:4C:7D:BD:65:DC:FC:CD:59:FD:40:F4:A9:EE:C2:BA:91:98:B2:3D
ValidityMon, 03 Feb 2025 08:37:09 GMT - Mon, 28 Apr 2025 08:37:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9animetv.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Feb 2025 13:58:09 GMT
expires: Fri, 20 Feb 2026 13:58:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 04 Dec 2024 06:54:05 GMT
content-type: font/woff2
age: 190305
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

9animetv.to/js/app.ob.min.js

172.67.180.216

200 OK

148 kB

URL GET HTTP/3
9animetv.to/js/app.ob.min.js
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
gzip compressed data, from Unix
Size
148 kB (148469 bytes)
Hash
2e404c05d4d52b1e028b0ff2e7479f95
5e6657ed3afc8dd768927367beacce8785276a65
3981ce0326c1acb27312be080cf67d50c460e746b3c367f5b2a8267d63fbed35

HTTP Headers

GET /js/app.ob.min.js HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"7e6ad-18656336da3"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UzouHtB7U3QJCeuLwI6Qe7aqi3EtqfzcRjzbV7YWb8E6yHVdSpd0wccVPlcBP7H5T6FUbtUK15fHyB3l3wJ9Q00tPVMVOYlPhcGN5t%2Futgy3IF%2BhxotMrq%2FjwDh%2BOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289da8b2569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10625&min_rtt=1749&rtt_var=8709&sent=104&recv=17&lost=0&retrans=0&sent_bytes=100744&recv_bytes=3193&delivery_rate=12339956&cwnd=96000&unsent_bytes=0&cid=9f47677fe8c930af&ts=505&x=1", cfExtPri, cfHdrFlush;dur=0

readintegralsplit.com/b8/74/92/b87492401a21c9d6cdaf01555dea4f99.js

172.240.108.68

403 Forbidden

0 B

URL GET HTTP/1.1
readintegralsplit.com/b8/74/92/b87492401a21c9d6cdaf01555dea4f99.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://9animetv.to/
Certificate
IssuerLet's Encrypt
Subjectreadintegralsplit.com
FingerprintA4:77:1B:D4:7F:D3:94:8A:5D:E2:14:0E:20:47:2A:66:31:0C:0C:17
ValidityWed, 19 Feb 2025 18:10:29 GMT - Tue, 20 May 2025 18:10:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b8/74/92/b87492401a21c9d6cdaf01555dea4f99.js HTTP/1.1
Host: readintegralsplit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Sat, 22 Feb 2025 18:49:54 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 1
Host: readintegralsplit.com

www.googletagmanager.com/gtag/js?id=G-LQB16P1NTB&l=dataLayer&cx=c&gtm=457e52k0za200

142.250.74.168

200 OK

105 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LQB16P1NTB&l=dataLayer&cx=c&gtm=457e52k0za200
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintFD:F1:10:28:52:E9:04:06:B0:B4:B4:46:D2:2D:83:CA:9D:67:5E:8D
ValidityMon, 03 Feb 2025 08:36:05 GMT - Mon, 28 Apr 2025 08:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (5960)
Size
105 kB (105380 bytes)
Hash
fcec15c4d81ef70a5ea88f4481198804
ebfdbc73c838f0525a797cbfa57c0c11c72ee10c
c00649eebd2aa09fbbd1a1197c8d14e648a2b2362789b061657d6e7a1f4f441a

HTTP Headers

GET /gtag/js?id=G-LQB16P1NTB&l=dataLayer&cx=c&gtm=457e52k0za200 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 22 Feb 2025 18:49:54 GMT
expires: Sat, 22 Feb 2025 18:49:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1003:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1003:0
report-to: {"group":"ascgcycc:1003:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1003:0"}],}
server: Google Tag Manager
content-length: 105380
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

9animetv.to/images/favicon.png

172.67.180.216

200 OK

5.9 kB

URL GET HTTP/3
9animetv.to/images/favicon.png
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Size
5.9 kB (5903 bytes)
Hash
5aff60f26908ea01c36df16186f6d22f
5001cb8f5ba5d69107af59d13a28c6beadbe7882
f09adbd9868f3f6233eda0c4b2714027a57493b758f5697ef13648fd671f5f76

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:54 GMT
content-type: image/png
content-length: 5903
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"170f-18656336d9d"
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZNhQioefaYZs1JAUDZHHFLZ6bLCzQ%2BMTQKXLIg2yQ3hBRi4ICd7J4AkjBO7i1uuI96QTBa%2FAHTTqAy7uOA%2FwrZ0SiRqQpTT6Hzz%2FyydKBz%2FUR%2B573HzhMqbttYyCJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 916128a2dee0569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7073&min_rtt=686&rtt_var=9134&sent=491&recv=31&lost=0&retrans=0&sent_bytes=508481&recv_bytes=4286&delivery_rate=3955923&cwnd=151200&unsent_bytes=0&cid=9f47677fe8c930af&ts=1345&x=1", cfExtPri, cfHdrFlush;dur=0

9animetv.to/ajax/login-state

172.67.180.216

200 OK

8.8 kB

URL GET HTTP/3
9animetv.to/ajax/login-state
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
JSON text data
Size
8.8 kB (8815 bytes)
Hash
58463d4a1eae8f544845f5a923bb3040
458727b026f814805f06e269e0e63faff795fd32
1ed3d97de71b1f80bdce9c7182501704510e304953fbf6dbf41643b71930aace

HTTP Headers

GET /ajax/login-state HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:54 GMT
content-type: application/json; charset=utf-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
etag: W/"cf-RYcnsCb4FIBfBuJp4OY/r/eV/TI"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=la0JL9RTMDOKb2Cnhij0RbzkuZmwgVTxTwMg4S5ayIHUlu4AHEQOwIaYCajrN1Mja0gtXGiK51ef74efjW2aVRfq9qe67WakjZBAWkKDO1v0tNba1FMBK3h8NQarVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 916128a2dee1569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7073&min_rtt=686&rtt_var=9134&sent=490&recv=31&lost=0&retrans=0&sent_bytes=507511&recv_bytes=4286&delivery_rate=3955923&cwnd=151200&unsent_bytes=0&cid=9f47677fe8c930af&ts=1339&x=1", cfExtPri, cfHdrFlush;dur=0

9animetv.to/css/styles.min.css

172.67.180.216

200 OK

95 kB

URL GET HTTP/3
9animetv.to/css/styles.min.css
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
95 kB (95152 bytes)
Hash
101a250bc98b04a17bc20ef75278ee86
5a7b150562a914e0886c6088710f29b309e88724
6a6325f5e9ecf613e29ccba7c615da9f0dfa031398871cb2a497bf07500b112e

HTTP Headers

GET /css/styles.min.css HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: text/css; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"173b0-18656336d9d"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SZXjuM8lrdcNhSVaYaUf0MH%2B2Clpbaf9BK5GUMFxgWxoMMyeH2i1M7MH%2BhLQMh%2BPVHGcRtTadXx3dUAzmWXwLoaHzaVNtLkd4L47CqU2MLVfdkfoPlPjaovNMb7a8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d887a569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13198&min_rtt=1749&rtt_var=10435&sent=26&recv=14&lost=0&retrans=0&sent_bytes=13583&recv_bytes=3059&delivery_rate=20546&cwnd=12000&unsent_bytes=0&cid=9f47677fe8c930af&ts=490&x=1", cfExtPri, cfHdrFlush;dur=0

9animetv.to/css/home.css?v=0.1

172.67.180.216

200 OK

2.1 kB

URL GET HTTP/3
9animetv.to/css/home.css?v=0.1
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type
ASCII text, with very long lines (2095), with no line terminators
Size
2.1 kB (2068 bytes)
Hash
b1b5bd182293725040d418ffeedf4efa
7343e8c6dca15d18e9c8573efae0a0faa2dc8586
bef99c1c699e9a9f0c4a0d1066f02cd7f8b45d1d7d45cbc3c68edd9fa32ff236

HTTP Headers

GET /css/home.css?v=0.1 HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: text/css; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 15 Feb 2023 17:50:56 GMT
etag: W/"814-18656336d9c"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HsaASyi%2F20hlKGVPPL%2BIvfgOTuUcrwlvO9LntDU9v1XnKvFFrHKPBR%2FB3WLFdx42fVmlyI0tdjOC2I8rRwfPT7%2B92GhYApS0xMLrwgHKgmRXVuf7Jw2ZrYBWGpCdzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289d887e569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=14701&min_rtt=1749&rtt_var=9907&sent=17&recv=13&lost=0&retrans=0&sent_bytes=4198&recv_bytes=3015&delivery_rate=339452&cwnd=12000&unsent_bytes=0&cid=9f47677fe8c930af&ts=484&x=1", cfExtPri, cfHdrFlush;dur=0

fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintE1:4C:7D:BD:65:DC:FC:CD:59:FD:40:F4:A9:EE:C2:BA:91:98:B2:3D
ValidityMon, 03 Feb 2025 08:37:09 GMT - Mon, 28 Apr 2025 08:37:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9animetv.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Feb 2025 14:03:42 GMT
expires: Fri, 20 Feb 2026 14:03:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 04 Dec 2024 06:53:31 GMT
content-type: font/woff2
age: 189972
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2

172.67.142.245

200 OK

67 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 67400, version 1.0
Size
67 kB (67400 bytes)
Hash
14a08198ec7d1eb96d515362293fed36
965d78c34637d1bdab6277805faecb6caa959669
ca3ea16761b7d443c64cfd99dd1cf8aa84790a25bb4709582935956fe71d014d

HTTP Headers

GET /releases/v5.3.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9animetv.to
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Feb 2025 18:49:54 GMT
content-type: font/woff2
content-length: 67400
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "14a08198ec7d1eb96d515362293fed36"
last-modified: Fri, 22 Sep 2023 01:45:31 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 302392
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v7IGhQj9AaWTp4bS4F3CdAf4d52McXxouWXvQB%2F0OMLbPgVn9U8mKCamsZyorrGSGb1Qwv7GtkT%2Bo%2Fd2J3F%2B2eYb%2B6%2BuWB%2BdPS1TG8ogVRxeKpf%2FOE1lRO0wktpikaPSYAl6j3A2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 916128a1594db51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=665&min_rtt=513&rtt_var=292&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3276&recv_bytes=1283&delivery_rate=6862559&cwnd=254&unsent_bytes=0&cid=5c205aff615cff1b&ts=42&x=0"
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.3.1/webfonts/fa-brands-400.woff2

172.67.142.245

200 OK

65 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/webfonts/fa-brands-400.woff2
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 65316, version 1.0
Size
65 kB (65316 bytes)
Hash
48461ea4e797c9774dabb4a0440d2f56
024b7f9afa49a3658ebd7eee4e1c536502db51fa
974956f1b7b82cecd8ae88a0b685f0d5dfe5c8534c2784e59abeea719eadbbc4

HTTP Headers

GET /releases/v5.3.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9animetv.to
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Feb 2025 18:49:54 GMT
content-type: font/woff2
content-length: 65316
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "48461ea4e797c9774dabb4a0440d2f56"
last-modified: Fri, 22 Sep 2023 01:45:30 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 828778
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bzbPHN3Y7HzlFY4osthJvkIi0hwp4bjCUwzHUqrGXdDvtBSfOs5kMVq1qQrhhI4zAtTmqbVnTKXVOyAca0hMesKBWAGtNElrsgtiiFx9auSwZ9kbLcd3WHL8N0WVvi9JeEbJfBxP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 916128a18977b51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1236&min_rtt=513&rtt_var=1019&sent=58&recv=15&lost=0&retrans=0&sent_bytes=72420&recv_bytes=1382&delivery_rate=4119878&cwnd=254&unsent_bytes=0&cid=5c205aff615cff1b&ts=58&x=0"
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.10.207

200 OK

160 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint53:78:04:46:B4:48:0A:28:30:67:23:9B:D5:25:73:FE:FA:81:58:19
ValidityThu, 16 Jan 2025 00:27:53 GMT - Wed, 16 Apr 2025 01:27:34 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 03/18/2024 12:50:34
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: bae7f19455fe160afc3fea6ed1fffa09
cdn-cache: HIT
cf-cache-status: HIT
age: 916649
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 9161289ddde056a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.3.1/css/all.css

172.67.142.245

200 OK

49 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/css/all.css
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9animetv.to/
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
ASCII text, with very long lines (48464)
Size
49 kB (48649 bytes)
Hash
10519cfd3206802f58315b877a9beab5
03232d7095b4a14b88810a0ffe76ae50726c23c6
604dcf1f11698655f75046bb92f98aaa9477e1c16b01c5fc415e78794393ffb9

HTTP Headers

GET /releases/v5.3.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9animetv.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"10519cfd3206802f58315b877a9beab5"
last-modified: Fri, 22 Sep 2023 01:45:29 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 644826
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UkC%2FhmXXRL3WE6XhHMsEnqGo0dz1bv6K0E0y5p61rMmngy44%2FuZZsFA9WJFK9P4mSX90wMMGBswpLgx5l8s2e%2FJOIo2QqO5b5%2BCrCdxjXNAcRYdPp9AlWOnA%2BE%2FY4pGSvPwtxfj4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289dea5db51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1814&min_rtt=517&rtt_var=2370&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3202&recv_bytes=1088&delivery_rate=7541666&cwnd=254&unsent_bytes=0&cid=f55e1d9bfe826b40&ts=41&x=0"
X-Firefox-Spdy: h2

9animetv.to/

172.67.180.216

200 OK

38 kB

URL User Request GET HTTP/2
9animetv.to/
IP
172.67.180.216:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subject9animetv.to
FingerprintBB:B9:00:D2:14:A5:0F:46:6A:76:B9:95:3A:A7:AC:10:3B:A6:AE:51
ValidityMon, 17 Feb 2025 18:19:16 GMT - Sun, 18 May 2025 19:17:51 GMT

File type

Size
38 kB (38232 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: 9animetv.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Feb 2025 18:49:53 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qeZwNWEfq%2FegpqbisH4DoRFtyp26OWeQ4qVLf8JXi8Otz9D%2BxTIiLmElVsMPcEJcYFP1hzBjxgDQgsFYiNH4sGqnaML%2F1mOeXpLZFKhT467uFu9GVNbKxDg7FhCgbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9161289a68e15695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6085&min_rtt=442&rtt_var=11281&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3273&recv_bytes=1246&delivery_rate=7489655&cwnd=254&unsent_bytes=0&cid=a52949b11806419a&ts=87&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (26)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP