www8.gogoanime.me/cover/chiikawa.png
104.26.0.83200 OK 37 kB URL GET HTTP/2 www8.gogoanime.me/cover/chiikawa.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 225x318, components 3
Hash fc3f00c2e76a3b9f31bfbb34ac492d4b
1aa3c3186c5de3b64cd3c6f0c9b3688b99d4ff85
c386356d453dcb2a4b28f749b20098af4e9f9ca5ff63e73b0474a029e79a8062
GET /cover/chiikawa.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 36901
age: 151634
cf-bgj: imgq:100,h2pri
cf-polished: origSize=40231
etag: "9d27-5dc275deb4979"
last-modified: Fri, 08 Apr 2022 16:48:41 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280042197
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CYjxnZYCq3apEg6IJdxUCYIUexZjoUGMunAYtKKq%2FqvstTA87AMFxDUJW6Mr8ju1UONmSAxylBBywE3Lqkzf4c4kCi61HQKg8gAIQWspVyj6AuXMb4swMRIMm1O1KMv04N0R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e07b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/logo.png
104.26.0.83200 OK 2.4 kB URL GET HTTP/2 www8.gogoanime.me/assets/logo.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash c9794b59171eed1069b37c9009af24bd
93e58cf9e0947a3d8aa962a6b948a4619bec156d
35e13f9dba4a4672ce24baa894e6da3ea2bbe6066e81b33d79cd1284d743d491
GET /assets/logo.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/webp
content-length: 2402
age: 155440
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3633
content-disposition: inline; filename="logo.webp"
etag: "e31-5c676a64c1d80"
last-modified: Tue, 06 Jul 2021 16:09:42 GMT
vary: Accept
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280859532 278244315
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DScMCXuKF3BK3Oan5cqOnSIxI6lyX3mIMDnkfOpLaCp2FAY8L6Rc43XZbBofxjBOmCcffgkPF6q9lwAYes%2BIxH3SKClen6tHVFJhxExH4aWimKpxpUb1yqcskavvePd9r3z8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db67e03b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/wind-breaker.png
104.26.0.83200 OK 104 kB URL GET HTTP/2 www8.gogoanime.me/cover/wind-breaker.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 460x651, components 3
Size 104 kB (104212 bytes)
Hash 93e339dbac6c03b8e2a5a3e5126863da
9c97d584b3767b1ad2136f96668b480fad8a42f5
e3d623ea37702b9648f092d5955b707d8b90c0f528550bd80afbdffdcb0f09fe
GET /cover/wind-breaker.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 104212
age: 151635
cf-bgj: imgq:100,h2pri
cf-polished: origSize=105528
etag: "19c38-615539c555334"
last-modified: Fri, 05 Apr 2024 06:31:49 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280375844
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7uIB2pCB7AO03mVNDviC2PwqB8dgNwRk%2FASGT6%2F93lTp2xvooOz21nNsgjbhDwCyY2a4hUQ3hNL0%2FCPD0rGsn1QDHpLzstXpDiXD%2FTcKriO6h0WoOj4m1iJ13X8C2aLiriRb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e0ab4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/hananoi-kun-to-koi-no-yamai.png
104.26.0.83200 OK 74 kB URL GET HTTP/2 www8.gogoanime.me/cover/hananoi-kun-to-koi-no-yamai.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x644, components 3
Hash 8e3cae1f7b23b26124a433b5ba679663
af982d5f4d0c822992d6447efb2a02a1279b44f1
3db01fbe6de49ebe97159cd7b860e0b1853b0ce163ac21230e3c8cfa40b4e9b8
GET /cover/hananoi-kun-to-koi-no-yamai.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 74302
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=74422
etag: "122b6-615539c546104"
last-modified: Fri, 05 Apr 2024 06:31:49 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 281280715
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oY5MF0c7%2F8%2FcgFg8IQudSHrwGztmcJmQ3UabP4mOlOq%2F1e8sdbmTIfOAqBw5zXnN5xijuyofnp21IVUb%2FC%2FqJE2nT%2FX%2Biz3xKzmQzms3BaFiM%2BCJ72K%2BBnO%2BkhuzonZSc3NR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e0db4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/idol-land-pripara.png
104.26.0.83200 OK 50 kB URL GET HTTP/2 www8.gogoanime.me/cover/idol-land-pripara.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 225x316, components 3
Hash 7cd317910d7812c462bf4c00417342c7
ad36dcc37a98b80a2faab3a44b5dca772dded74f
039957c5c0e78129289b35cfa3d4daba70db98ee75d0a2b6a4844bb7ac3e6e98
GET /cover/idol-land-pripara.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 50391
age: 104712
cf-bgj: imgq:100,h2pri
cf-polished: origSize=55659
etag: "d96b-5caad7125aa00"
last-modified: Sun, 29 Aug 2021 07:12:40 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280446527 279954248
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5PPc%2BGNJEM5UEBXdsbcU9z6qKmfC46UC6f4l8lWc%2F9QuHSCS4jz7La36SD0JD71XDr0QXmO7hJvgJzobRTLMrcyJafKEeW2r1Vz8tAzYjrl3QsM2U6Ukk0962BJCQ%2FkVxqLI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e15b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/kenka-dokugaku.png
104.26.0.83200 OK 103 kB URL GET HTTP/2 www8.gogoanime.me/cover/kenka-dokugaku.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x650, components 3
Size 103 kB (103398 bytes)
Hash b371ee33a073a66b00f06d311adf3992
779c50996fc584dd0295267995f2d75f60bb4b37
f30601f93dfd9744dba00d65cce05ff9879bbeb3bfebca65cdf9904f19d11ccd
GET /cover/kenka-dokugaku.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 103398
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=103642
etag: "194da-615cd18983bda"
last-modified: Thu, 11 Apr 2024 07:28:05 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280042213
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=awCkw16WwZmglld7doY%2F6IYnZaRUgIYwhTEbheao73doO1LFL1eF4NvQ74D4y%2FtSd%2FuTAjvSh5cWw%2F4US8Z7LlmFta5MitWned%2Bc64Lifs0H8tbCdaPHq173XKgIhaWjO%2Be9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e1ab4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/urusei-yatsura-2022-2nd-season.png
104.26.0.83200 OK 130 kB URL GET HTTP/2 www8.gogoanime.me/cover/urusei-yatsura-2022-2nd-season.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 460x651, components 3
Size 130 kB (129716 bytes)
Hash d25b386599557b455e268e1abda917ae
bafe250bf20a8889f2ec76825fe830dc9292c384
965ae4fe7e1c3c896dd9c57906535f48fb25f742cc5b9e7c810559036b6fc107
GET /cover/urusei-yatsura-2022-2nd-season.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 129716
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=130220
etag: "1fcac-60eaf3149b8a1"
last-modified: Thu, 11 Jan 2024 17:51:09 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 272193328
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E5j9NX582yYUyr4T7Vi9cW3QumUjKZDuTBdoBVk%2FJa8aRIr65MiQgaE34apB29cxkM%2FiB%2B1cQR0wtwM8jeGKB%2Bsdn7ktB8bmdHVr2DU0P1HK4xZNnpJmTU8JD7vBePrYwc1E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e0bb4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/henjin-no-salad-bowl.png
104.26.0.83200 OK 133 kB URL GET HTTP/2 www8.gogoanime.me/cover/henjin-no-salad-bowl.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 460x656, components 3
Size 133 kB (133250 bytes)
Hash f74ba77fa268cb9281cdf9b8d07dffa2
192ddbe7fde3fa35195a64f2db282da43a7a749e
783335e26d2b9675ab63159ca4fe4ef59516bbb7c8894fd6b9f633e619b88a5c
GET /cover/henjin-no-salad-bowl.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 133250
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=134555
etag: "20d9b-615539c556e8c"
last-modified: Fri, 05 Apr 2024 06:31:49 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278029237
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BH1db9%2BB5UTJIxKgzFCDPpKbrbrOpXGPJsE91lVEQBnLZNR0z1yVlfM1XYOoZQmw5ZbeTqY0xSnEGk%2BjebNNQEE7RiqBFHKg4I%2BxXdZkDWc0r5iCWD%2FlqPdFoNZBDlw81wMx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db67e05b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/yuru-camp-season-3.png
104.26.0.83200 OK 80 kB URL GET HTTP/2 www8.gogoanime.me/cover/yuru-camp-season-3.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x649, components 3
Hash 2202cbbe128a2d1fbfe16cad5f8ad4f9
c2d96a3764de12323333182bf2163490647335ca
390aaa661963418e807b836d3112be07fba682f1bbfe77dbbefc28c6bdb1a769
GET /cover/yuru-camp-season-3.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 79730
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=79876
etag: "13804-6154744a15ce5"
last-modified: Thu, 04 Apr 2024 15:48:18 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 277178741
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kaa4JsEOadUzEHuK8D0WK%2FG2U4TRIC5%2B68CaoAvluvwITq1zTh2dGmB4IkTYRdrYhlVHjDh712qT1kdeoUYYu5UuiZfQiDVaQLQy83PZigDlFtJZKcPVGWdm8NYiGhbKsnGQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e10b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/maou-no-ore-ga-dorei-elf-wo-yome-ni-shitanda-ga-dou-medereba-ii.png
104.26.0.83200 OK 139 kB URL GET HTTP/2 www8.gogoanime.me/cover/maou-no-ore-ga-dorei-elf-wo-yome-ni-shitanda-ga-dou-medereba-ii.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 460x650, components 3
Size 139 kB (138948 bytes)
Hash 3eb8bdeb47f60c171f78222de43e00ee
5d64d3e4f8ec0e1bf2cd9ccd0b5d008ba99f6873
fd457ec22fd30473ab38628afa088bad464318f4edfaeaa91f4b24cdadd3b817
GET /cover/maou-no-ore-ga-dorei-elf-wo-yome-ni-shitanda-ga-dou-medereba-ii.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 138948
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=140620
etag: "2254c-6154744a1977d"
last-modified: Thu, 04 Apr 2024 15:48:18 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280305758
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0bYCMqcf13CMuWENV0pEcP0vtPO83%2B7W3EKd4LremWhNBtwPZkMy5LY%2BBMLgo9ozHusgBxNoZvHir%2F2wAqg6md%2FMmlsGWRYDKD3Afw3JSBs6QL5%2BUQ7Vb3ntIVq%2FS6F6g5Hx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e0eb4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/touken-ranbu-kai-kyoden-moyuru-honnouji.png
104.26.0.83200 OK 443 kB URL GET HTTP/2 www8.gogoanime.me/cover/touken-ranbu-kai-kyoden-moyuru-honnouji.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Size 443 kB (443302 bytes)
Hash 31727381485cd8872e4df47c9d75e750
8ef187645c57800c05e438b9b22434c4943803ea
3600b75a218137ae02fac613db1aa45650d6b0affdd50a42d489ce0af7191906
GET /cover/touken-ranbu-kai-kyoden-moyuru-honnouji.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/webp
content-length: 443302
age: 155431
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=563984
content-disposition: inline; filename="touken-ranbu-kai-kyoden-moyuru-honnouji.webp"
etag: "89b10-6152cc40712fc"
last-modified: Wed, 03 Apr 2024 08:11:11 GMT
vary: Accept
via: 1.1 varnish (Varnish/6.0)
x-varnish: 277858028
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dr%2FZ4Oxb0jdNrjfpnkhspwa1oSGjJAJWmyS1K19uh1wPK2YrdFmyMGURE56sx3J00y4YIioy1Kp8JbBM%2B18Sy1pyPnWDY5wyoBulz2ItNGVNh19uMif9zXXffr6GFJq2tV9f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db69e2bb4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/dungeon-meshi.png
104.26.0.83200 OK 99 kB URL GET HTTP/2 www8.gogoanime.me/cover/dungeon-meshi.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x626, components 3
Hash 7133ad841c7f50b5c2ed62dabe1e4df4
c85a1f501f221b62b162d44fa240d6cda7e33247
ed68b03bd881d73b62e33e1f28717b5a7200719d0bd0ad82feb9c0a8b66d5e91
GET /cover/dungeon-meshi.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 99430
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=99643
etag: "1853b-60e1fcf1d45dc"
last-modified: Thu, 04 Jan 2024 14:47:21 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 279881469
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QA6f3syw1bMbg3iTdQyCwwVobY1t0fhe09gJ5NO1Q0yJ3GjVJm%2F6HHEoYroivVpk6NmCCE3ySk37r9QgqgoT8IY9wGZ7IPD9zN2scU9iFBCktrxqCmfZBJVn7zI9ujkg6ihO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e12b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/beyblade-x.png
104.26.0.83200 OK 56 kB URL GET HTTP/2 www8.gogoanime.me/cover/beyblade-x.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 225x318, components 3
Hash 07e731e80f3f66c51620284f9f974f46
16c8d7d6d6143f9eeccb77c2f140713ae4bc0369
bd871acf5e23a587b43dabefe33e96b074b0f8ba852a88bb42726b665651f68b
GET /cover/beyblade-x.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 55757
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=62237
etag: "f31d-6071df358ae34"
last-modified: Sat, 07 Oct 2023 10:37:58 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 279552166
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SjpFbDLDbOxI8ZO2qWP%2F2CXaQhndxb5vzxFDWlG70t%2BvLfUa1GUzsZJ9HY%2F%2FXIvz6QGyVesuliqav%2BrLxFottGByHSfqXjc8urWwokR0PDGc1Zf5oyen%2B95RCmG7m12rghcR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e16b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/bartender-kami-no-glass.png
104.26.0.83200 OK 67 kB URL GET HTTP/2 www8.gogoanime.me/cover/bartender-kami-no-glass.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 460x650, components 3
Hash 8bb9bb58efdd848f6d4de99dea8b9115
516aed60bf270316c58099b80cbb7d680352d05f
818253cdf7184d83ed60eb4a626881ae0c2505effde175d8d472463cf02e6a94
GET /cover/bartender-kami-no-glass.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 66818
age: 151615
cf-bgj: imgq:100,h2pri
cf-polished: origSize=67004
etag: "105bc-6153e4eb254d4"
last-modified: Thu, 04 Apr 2024 05:06:52 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 276416792
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y1uZdY7KMCi7YEbgKo%2FCFSUMAULDY7ob8FYHDzL5%2FSXHorjVjHwlm%2BZSnZdtCRcxbirl7RrIX%2BATBDY4Y%2FJkfXeMQ7znIU0sJG5Ez9fKrsSqm%2BALTRFC17SQWJ4MQvON1T55"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e1cb4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/yugioh-go-rush.png
104.26.0.83200 OK 181 kB URL GET HTTP/2 www8.gogoanime.me/cover/yugioh-go-rush.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x655, components 3
Size 181 kB (181280 bytes)
Hash c2aae3ee5467157718b37c67e5b114ad
8fdb7c42116ea14e59dc2586c0c418bdf655cc6c
eb3a6a302d89b67165fdcfa055b54fe7f4e90d0122022e7f12fd42b3c3c90a54
GET /cover/yugioh-go-rush.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 181280
age: 155431
cf-bgj: imgq:100,h2pri
cf-polished: origSize=181908
etag: "2c694-5dbbce177283d"
last-modified: Sun, 03 Apr 2022 09:46:06 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278764214
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5cqfadzSpAdFFDrqeu1uNuJJciISoKnWv3ekSV9Oy%2Fuy3EddE3LPRp%2FU2fbIGQFqUnGUDvuMD3tdcT6%2FXGQekQKWp%2BeM9rxUO5H3GCa7xrGC%2F%2ByS6TDSHkS7qXhf0MOfd9rb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db69e2cb4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/date-a-live-v.png
104.26.0.83200 OK 122 kB URL GET HTTP/2 www8.gogoanime.me/cover/date-a-live-v.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 460x651, components 3
Size 122 kB (122279 bytes)
Hash 467002bc03c660230624b810e8729333
e2161d2c8c2301e5b896e93230f8cfea9e00be23
3f1c86b66441ce6f547858c00de0bc1408e7c5f814af5ca018dfed5ae4875d0f
GET /cover/date-a-live-v.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 122279
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=122537
etag: "1dea9-615cd17ae784c"
last-modified: Thu, 11 Apr 2024 07:27:50 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278440199
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yj%2BXdNyWtjA0Abov%2BrQHCnkvefwEnUHHdhHLh5noiAlsiv1z3qRvz0pGuXdvgqA0K4if6CIrjRUU0kNCDt8dwRAKsCti9WS1CniGM6vj%2F6k6OEvmXadUaqZ347114eF9hkPx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e1db4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/grimm-kumikyoku.png
104.26.0.83200 OK 59 kB URL GET HTTP/2 www8.gogoanime.me/cover/grimm-kumikyoku.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 225x333, components 3
Hash da584df1b10eb6d9fbb50711f404daee
536d8c564278a09978f1ef6f65ab8b9f9e1977e1
400ae00f4f4a03a488b5c0853f45e963d1e8b78b7586eff8acad9035b64aa6a9
GET /cover/grimm-kumikyoku.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 59361
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=66195
etag: "10293-6164bac3211d2"
last-modified: Wed, 17 Apr 2024 14:28:47 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278440202
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=83E%2B43rmZCSzOzcqlNg6brBGosxtWbd7XU5nXYXcE6TXH931MP2f7QWVXwnxiY50a%2BGWn1wdd9ZUNXUXjuGGudjbQrdgD%2BBgUymGxNyejeluExqMN7gJKZsnkUOXdg0p8lH3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e20b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/kaii-to-otome-to-kamikakushi.png
104.26.0.83200 OK 75 kB URL GET HTTP/2 www8.gogoanime.me/cover/kaii-to-otome-to-kamikakushi.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 460x673, components 3
Hash f97b85cbdc9ae098e749744131d42341
c17de98fcba3eb3f2e6a06feedfb257fbfa6884d
46600a19a3fb7f17497ca69cce237fe4048739a2334f399d99425064ee2d982e
GET /cover/kaii-to-otome-to-kamikakushi.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 75042
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=75205
etag: "125c5-615cd17af2fe4"
last-modified: Thu, 11 Apr 2024 07:27:50 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278440205
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HV4YUC%2BlBRk3fQJ9Pe1ID0lIC5zWvOPgbYWuZ%2BatDxK6p3n5VcCtMuVny0gs1PeNz2i3R8%2BuWuVRQfQ6wiqDlyW%2BP6pqwklWSrpo%2BghAzh14rpASuf06TQPHuE40fXyA2aLJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db68e22b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/seiyuu-radio-no-uraomote.png
104.26.0.83200 OK 87 kB URL GET HTTP/2 www8.gogoanime.me/cover/seiyuu-radio-no-uraomote.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x658, components 3
Hash cf4dab373155e82db1848a4783e910a9
9c61925415071941ad164d87c6be5eb00ba7a645
ef81dba372e59e80011bf975c9f3a918ed75b8630049db0fd2a3dfef22f9e9ac
GET /cover/seiyuu-radio-no-uraomote.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 87395
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=90866
etag: "162f2-615cd17af2044"
last-modified: Thu, 11 Apr 2024 07:27:50 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278836404
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FfHVLuFZONBNrl28sGeDpaa0%2B5Dw%2FFyW8xo%2BRtzEJdlowEIyVwtzG%2B2ynBz2CR7jKRqWC8QGufwEmD8JYMn79d%2F7I5eal6iXHGQ5BFgEL9s3tZ5aUhGTailWzH8meG96rX3F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db69e26b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/sand-land-the-series.png
104.26.0.83200 OK 56 kB URL GET HTTP/2 www8.gogoanime.me/cover/sand-land-the-series.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 225x318, components 3
Hash b2c12ddff661abd057350fa02377b6b3
8efffb6398fee240aff6855a5ac9a7ecc3d79a24
0cde63c3516044b7a9d2e63b17b06c95b11d69a62fec5992b2a2d2aecb6be5ef
GET /cover/sand-land-the-series.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: image/png
content-length: 55513
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=61940
etag: "f1f4-614175a4ff9ca"
last-modified: Wed, 20 Mar 2024 13:13:12 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 277666444
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GrF8bdSJ9UdbdJsXzwpQ54h4N%2B85xD7VOZxz6RomoVoQW5zmJeNTcS%2B5RDpunVTnzWZrSHGdIieYwVkeMJC7%2FdaV7MDW%2FDWcczhh9B96ysT8NNMofZacurCQjpwaNNeocjYL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db69e29b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/api/seasonal
104.26.0.83200 OK 29 B URL GET HTTP/2 www8.gogoanime.me/api/seasonal
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
Hash 4bbc7084574efa7deda4e3e618c0ede8
4ceed3997d5ff45f1483193d0a409c089c9ede2d
319408d91342486842720043f19a30bb840e6206269c68c5b4314bd0a4a09aa5
GET /api/seasonal HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/json
content-length: 29
x-powered-by: PHP/5.4.45
x-varnish: 280955657
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
last-modified: Wed, 17 Apr 2024 18:07:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s1b5sTmsURmOufNY5%2F5YohExTmIhHdeg%2BlqTa%2FIW3JyNq%2F4T2%2BP%2FEZx4%2BzDSRqUWEMLzFSLoaQyuevFpjBTQEk9Tgc5pI1OhVA6c%2BwTTNjpGkrhJq7eLlFGjhbyd8%2F11W74k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db8a8bab4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/searcch.png
104.26.0.83200 OK 244 B URL GET HTTP/2 www8.gogoanime.me/assets/searcch.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash 62cf237796f3c4ba46db79f8e04a9e88
e75dbe3a0c289a96f8091ea8f56616798133f999
7e36cdcd8d26169bcfa2309c71ff3093219d85dc991b4a4f7a39c299c83b68d8
GET /assets/searcch.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/webp
content-length: 244
age: 155441
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=496
content-disposition: inline; filename="searcch.webp"
etag: "1f0-5c6d9c867c500"
last-modified: Sun, 11 Jul 2021 14:25:56 GMT
vary: Accept
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280041284 276643894
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ze0DZ3jEHs%2Bb5KKgoc283dY2KGlX2otjC0gqgs%2BoVRKKzm7PxAEN9T3lapskXqAI2TuL7w7L0dK3%2BXqmOd0lw773AI99zXbsUFCDIG8rBm3bIDettUn83fQynLjd8XLdjSVW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db8d8e8b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/bg-main-bong.png
104.26.0.83200 OK 38 kB URL GET HTTP/2 www8.gogoanime.me/assets/bg-main-bong.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash 728b14ea4f89f6046d4a8e3010fc64ee
70695a3704f019935ab4712e6e1e4c9c24a4dba3
f77a135f50620b6bdab12e10068091fdb60e8e19e269b4feb02c521b870a80c1
GET /assets/bg-main-bong.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/webp
content-length: 37566
age: 155440
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=60812
content-disposition: inline; filename="bg-main-bong.webp"
etag: "ed8c-5c6d9c8e1d700"
last-modified: Sun, 11 Jul 2021 14:26:04 GMT
vary: Accept
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280041286 280629222
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gPmFA2KPagsERMu19WiJ9ojx6lQjWJ%2BBKWN2RISQ6IQJA%2Bdb9zZ2U2qluHFsTXgYdtCLwFeqv2OeFW9poeg9K5rRI5GNj3D30quYMbNPYXE%2FU7QbD2eKjMXNBvDvNjHKjTTB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db8d8eab4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/bg-main-3.png
104.26.0.83200 OK 76 kB URL GET HTTP/2 www8.gogoanime.me/assets/bg-main-3.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash 4f81a30ccc395e762ac058cda21d1618
fe1d84456124b13255f8613f3f5415e73b7d3d03
24e27067946c4ff424efdf66f25eae9d05e62d3f9407dbe8decb7fde6d814a18
GET /assets/bg-main-3.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/webp
content-length: 76188
age: 155440
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=112704
content-disposition: inline; filename="bg-main-3.webp"
etag: "1b840-5c6d9c8770740"
last-modified: Sun, 11 Jul 2021 14:25:57 GMT
vary: Accept
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280629385 279100334
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g8bUrf9WkLvKE%2BDeQ9B5aqqmwZcACxmXq4W3sNp37wOycU42FE1uXG4hyZFHSTjNzk8FWaXW%2FT%2BhqlhzNucFivOxSgXsg1uV0zwWbfak%2BDE0L6LP9aDaMxD4%2FMHpIRQjwCxH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db8e8ecb4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/vien_footer.png
104.26.0.83200 OK 224 B URL GET HTTP/2 www8.gogoanime.me/assets/vien_footer.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash ff9f109d8b3517ae8bacfe5e32e9ac18
332d33eba8939345a66faa0db774c9b8ceea2d99
3b9dbc476f84d1ede275442e52d0c9a6855f22e0590f6ac617241e27228f173d
GET /assets/vien_footer.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/webp
content-length: 224
age: 155440
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=320
content-disposition: inline; filename="vien_footer.webp"
etag: "140-5c6d9c8864980"
last-modified: Sun, 11 Jul 2021 14:25:58 GMT
vary: Accept
via: 1.1 varnish (Varnish/6.0)
x-varnish: 277112645 280304641
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6dHDXTWaw8ALta8AiGedxR4hVEWB49EkcOgeYBU99YFodESvgJRd151V9tW%2FEGa4ZbazcsgeZZhOWHKm8a8ewC9%2BQZWrKDSYw%2Fw0mC%2BufdYmDrumXkGRCaQvrGnXt33wty9g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db90903b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/MyriadPro-Semibold.otf
104.26.0.83200 OK 96 kB URL GET HTTP/2 www8.gogoanime.me/assets/MyriadPro-Semibold.otf
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
Hash 86bb1295004f3fbe40abef46553807f5
31b31ae6061fca9f368b83ef26e0506bf06feb61
16f5e9896bb8a9b8a6e1b6de4207d27112b3d8083618ed6982cfb88a5d864c9c
GET /assets/MyriadPro-Semibold.otf HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/vnd.oasis.opendocument.formula-template
content-length: 95616
last-modified: Sun, 11 Jul 2021 14:25:56 GMT
etag: "17580-5c6d9c867c500"
x-varnish: 277273074
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xtPn0EtYdk3X264P7SUdMqtS%2B8xuW4bu2T%2BGxabbcOGB48OaUaEI1Z%2BgfAPCGHRczfqVE2PHBqggQTFe6xRRq%2Bf%2FQDCg%2BgBsLwUVs0D5BmRqqRitNjTE1ZlCN43IECyWHW%2FQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db92911b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/jquery.tinyscrollbar.min.js?v=4.8
104.26.0.83200 OK 12 kB URL GET HTTP/2 www8.gogoanime.me/assets/jquery.tinyscrollbar.min.js?v=4.8
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (2785), with no line terminators
Hash f21dac6efc4ab91844303266d926e782
a405f756e20f75ad6ab77ec0039298ee4922089e
887ad483dbb92ca26aa2a7030643c545fe34e525c152db9d8927a8d14c133a82
GET /assets/jquery.tinyscrollbar.min.js?v=4.8 HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: application/javascript
last-modified: Tue, 06 Jul 2021 16:17:15 GMT
etag: W/"ae1-5c676c14c58c0"
x-varnish: 280041281
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DVrYt7aaoKgbyph6%2FXCxCdqxZh%2BD8QUc%2BpipgDhlgSng9PXC%2FoabF4i62v0t%2F0bJYE0xlsmUro4W%2BfcVf52d7xA9JRM7Qqkp7njh7tOjdw5gvbPfhy1C0ZkWYX6Qw4z0TmPy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db6be65b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/the-invincible-great-immortal-at-the-beginning.png
104.26.0.83200 OK 13 kB URL GET HTTP/2 www8.gogoanime.me/cover/the-invincible-great-immortal-at-the-beginning.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 196x258, components 3
Hash cae9f3a96c846376d18a5404d76d8bf4
f6cb589ea357d7f6e789953c4329e28ce6939b5d
822495b9cfa7fd1f8a1a960fb41a846357b3eb5b6c8c62648f02ddb90df941f0
GET /cover/the-invincible-great-immortal-at-the-beginning.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 12976
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=13519
etag: "34cf-60976582c6692"
last-modified: Mon, 06 Nov 2023 06:55:50 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280271319
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=volQrU14ZMSE8Um3imw%2FmZM%2Fi%2F8P2h2ELQBmaFsiqR8YUMdFE1Qnhc0vcjkHcuoIMxL4QtcpbWfe0Bwprmp2eWBs7bre2PrywRYgWeYIDHIoNcFxL0PxPIn8QAbBBud2ke3f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba4a36b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/100000-levels-of-body-refining-all-the-dogs-i-raise-are-the-emperor.png
104.26.0.83200 OK 18 kB URL GET HTTP/2 www8.gogoanime.me/cover/100000-levels-of-body-refining-all-the-dogs-i-raise-are-the-emperor.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 193x278, components 3
Hash 8e44f1b8d2b938262818a3a0877a0b4b
3ec53b144252fcd7ca50c0af9d13b022f535c54f
d3e42ca79d24f684a01b0544f0d9e038a19d014f064b216dd2486cd3b75cd9c5
GET /cover/100000-levels-of-body-refining-all-the-dogs-i-raise-are-the-emperor.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 18440
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=19394
etag: "4bc2-5e03eef0db461"
last-modified: Mon, 30 May 2022 18:36:26 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278321437
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y6q23UhkUBzl3TGHv78RzyRQbLZ%2BOlMwkzOKMfLhlilXH35VxIQLqhY%2F46skVERriucxTdzK2VPpITcX19P%2Fp2v6hVGKV2uiooXvbxh%2BOvW5%2BFziLmyE3skHIp9zzH90dA9H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba4a38b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/15th-anniversary-short-animation-battle-spirits-shounen-toppa-bashin-x-saikyou-ginga-ultimate-zero-battle-spirits.png
104.26.0.83200 OK 57 kB URL GET HTTP/2 www8.gogoanime.me/cover/15th-anniversary-short-animation-battle-spirits-shounen-toppa-bashin-x-saikyou-ginga-ultimate-zero-battle-spirits.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 280x400, components 3
Hash 5210a6202515806c5958ace4a6398d07
05bfdd995e6091befbc3961f4b5a33474b8d6168
7c8109735befecccf8869e45ec56d437430d5fc27a8a3fe0d96e3e841b81ce29
GET /cover/15th-anniversary-short-animation-battle-spirits-shounen-toppa-bashin-x-saikyou-ginga-ultimate-zero-battle-spirits.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 57241
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=61049
etag: "ee79-6057aa16a2e14"
last-modified: Sat, 16 Sep 2023 14:21:52 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280859654
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fRoFkl8UfuGi0wd1zH%2FlidhHJ%2FjE8%2F%2BxAMzsAb9y4W4hIB5ho1aBwNe9Vn1%2FOsTq4Jf0wBNJF9WdFCxvD03FL%2BNKWucAHhn9QYGt3hcu8uNTZqkOz237DBiYfHPqH%2BhACVXr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba4a3db4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/style.css
104.26.0.83200 OK 32 kB URL GET HTTP/2 www8.gogoanime.me/assets/style.css
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (50560), with no line terminators
Hash f39a4e213ed9655257abdbb7881f7aab
4f8936f8df29accb9182dffe86b5fedf2e2058cd
8a3214425ef6872f83fdb0b7630b1e2d953b7289a162f566a542f447a4251ce6
GET /assets/style.css HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: text/css
age: 155440
cf-bgj: minify
cf-polished: origSize=56098
etag: W/"db22-5f3b557124ac0"
last-modified: Thu, 02 Feb 2023 10:50:59 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278084373
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TORgk79hzqfyHomTiEk1MSXGX4WzNfTQi1skcrrxV%2BVeFGwIAE8SYit3vikrrxjcAXn4qqNdCppZEikCk4QY39ZQwGQDCySKlDnZurdK6ppMzzrC%2FvlK1NhO4N5Wq60YE9Wl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db67df9b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/16bit-sensation.png
104.26.0.83200 OK 154 kB URL GET HTTP/2 www8.gogoanime.me/cover/16bit-sensation.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x651, components 3
Size 154 kB (154265 bytes)
Hash 591d7bc329bf5dc1c3d10db92eef9b22
fd18e4817ed42450bb4e2accc6130718506077de
70d0323eea168e086e333659c6e9e490758e3c22210f37f9e586204ebc1bee51
GET /cover/16bit-sensation.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 154265
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=154991
etag: "25d6f-606e89aee4f36"
last-modified: Wed, 04 Oct 2023 18:59:21 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278440211
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ABFR%2BwQ5xwRqjlPyqjdTHJyUIXeHj%2BY0b0Dzqa%2BGoIPmyYdHeniX%2BxT6oHFj2aVCh%2Bfz7uzuiFo202PN6BNDQUJlfEe20GL7IFvRtq%2B1cO9EzQRH%2BkJFPyXewQUBpDU624pL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba5a43b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/86-2nd-season.png
104.26.0.83200 OK 90 kB URL GET HTTP/2 www8.gogoanime.me/cover/86-2nd-season.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 400x600, components 3
Hash 2ce77fcf783e2fd797713543ec752a70
03e606d492bc8f4fe9a969ce23e69e45ab5c4be0
b57dd2e85485abcfc89f611fd3e099de13d4085467071043301894841e6beb4a
GET /cover/86-2nd-season.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 89805
age: 155377
cf-bgj: imgq:100,h2pri
cf-polished: origSize=92364
etag: "168cc-5c9a013c23bc0"
last-modified: Sun, 15 Aug 2021 21:50:47 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278084460
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jnwlqhFdYakNPAXA%2BATEMNc2Qtbuto65KRFYHHycbkOlZ6QS5fM2TnO6x0%2Fy9rYkaDouoAbeXUF4pHwZDKXq1XcqXhvZESd8Gn3vGGcsWnFoaCA76A0i8PqtEuT0tvH%2Fn5l4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba5a46b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/a-master-of-pints.png
104.26.0.83200 OK 15 kB URL GET HTTP/2 www8.gogoanime.me/cover/a-master-of-pints.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 189x267, components 3
Hash ecf8963a383068b172a561d1befcea0e
1a9f9e256cf759a918689bc506ed246e7a653285
9fb077c95323d0a6c41b84a7b0f3306fb5a5df2ebf5505af663723f04a331a07
GET /cover/a-master-of-pints.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 14994
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15454
etag: "3c5e-5ebbf3775d963"
last-modified: Mon, 24 Oct 2022 03:16:25 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 277537346
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qYxTlqZuRbtmNrJVks03J00mMqN5yedEsrvxGEoMIPHZXdzMc2Y7Re1N72oJHkmUwBWrc6Qx%2F%2FW%2BPX1WTv9irUPXf0r3FLlJiFtNmBmcmKAToefRBkUzCbLM1%2BYhjtTbfS2w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba5a48b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/a-playboy-of-exorcist.png
104.26.0.83200 OK 20 kB URL GET HTTP/2 www8.gogoanime.me/cover/a-playboy-of-exorcist.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 280x400, components 3
Hash 5ec1b2b167d05b39b3f9fe3ef233d25c
dfd447d71d61ce6b7712383ac5c7eeb40848185c
999072362f3286caf1d9e2d180df0e6d1bb983178cadc245b78aa6df00777f3e
GET /cover/a-playboy-of-exorcist.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 20485
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=20917
etag: "51b5-5d9c2aa008459"
last-modified: Wed, 09 Mar 2022 05:49:42 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 279199050
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=29vEslWsuEDU0cFLSD4mp9kXZQjo1GIus%2Bx%2BbqSZ%2BcxcyfZx05SPm38wN5typXgv3HvrrENfGY2mkrVXRO8FDBMe14xcbUKQgIZeU9iWkkheksLZcwHR09ELHq0%2FM5ZvW2cC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba6a53b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/above-ten-thousand-people.png
104.26.0.83200 OK 13 kB URL GET HTTP/2 www8.gogoanime.me/cover/above-ten-thousand-people.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 191x264, components 3
Hash 607c91ccfef0de0d46497babb5463c2a
312d3e1075df8e3a3264093904d30570346ddbee
9ac8baee3b2d1d4a781defc9a212cc5829a95e72f40fac0245c84877343f0148
GET /cover/above-ten-thousand-people.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 12558
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=13095
etag: "3327-5fe2c69f645df"
last-modified: Thu, 15 Jun 2023 15:06:33 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 278352702
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AuP2W2EqmXZvnMwHMLg0%2Fec4N6XykBmBHtjcvzrwglD6WTdOZJItmjgiPZlnY%2FZGCANrzxjozPpIXIBDXhEbaQAC9G1%2BdqgJ6tTIB0IcJnCwXCE9v7XRk3Q264uVyBEaxyiS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba6a54b4eb-OSL
X-Firefox-Spdy: h2
inbbredraxing.com/1clkn/29415
23.109.170.68200 OK 26 B URL GET HTTP/1.1 inbbredraxing.com/1clkn/29415
IP 23.109.170.68:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectinbbredraxing.com
FingerprintCF:DB:F8:A2:1A:92:2F:D2:52:29:BE:E0:24:33:23:9B:2E:B2:EE:13
ValidityMon, 19 Feb 2024 23:12:43 GMT - Sun, 19 May 2024 23:12:42 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1clkn/29415 HTTP/1.1
Host: inbbredraxing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 13:18:06 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 20-Apr-2024 13:18:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 20-Apr-2024 13:18:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
parlouractivityattacked.com/37/70/2a/37702aa9c5918dbdc2e88ba53571ba54.js
172.240.253.132200 OK 30 kB URL GET HTTP/1.1 parlouractivityattacked.com/37/70/2a/37702aa9c5918dbdc2e88ba53571ba54.js
IP 172.240.253.132:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectparlouractivityattacked.com
Fingerprint71:55:7C:34:7B:AA:ED:4D:79:E5:11:EA:F0:29:FC:94:19:1A:B5:33
ValiditySun, 14 Apr 2024 09:52:21 GMT - Sat, 13 Jul 2024 09:52:20 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 60e1244a7ce34429a70ea79a520a3327
e37ef6dd0fcdd2be3ab942e7dbb40028d438721a
5bb56a2b66ed2ba426065786ff7f49ffa489507daa9b8703d2724c009a1efaa4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /37/70/2a/37702aa9c5918dbdc2e88ba53571ba54.js HTTP/1.1
Host: parlouractivityattacked.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3428_layer=1; expires=Mon, 22 Apr 2024 13:18:06 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b343b772f2b78b235344c192ee095ae8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
phoenix-widget.com/static/js/builder/w.js?site_id=651d2b816c892d36fcf3d74f&widget_id=65d41e791f5469ff3d413a92
188.166.21.205200 OK 432 B URL GET HTTP/1.1 phoenix-widget.com/static/js/builder/w.js?site_id=651d2b816c892d36fcf3d74f&widget_id=65d41e791f5469ff3d413a92
IP 188.166.21.205:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www8.gogoanime.me/zenny/3ol.html
Certificate IssuerSectigo Limited
Subject*.phoenix-widget.com
FingerprintB3:A6:FD:3B:D0:60:5D:61:53:71:EA:91:7B:F2:B2:5A:09:99:B7:E8
ValidityWed, 13 Mar 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
Hash 3a2d0fae74d361d1a0179e71bad68b3b
32170f487f80372866db0645a6243f3efbf53737
b365ce4abb837b768c2e3cf65b7d6e0b67c43f45a50e73429adf01f170e7f2c1
GET /static/js/builder/w.js?site_id=651d2b816c892d36fcf3d74f&widget_id=65d41e791f5469ff3d413a92 HTTP/1.1
Host: phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 13:18:06 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 Jan 2024 08:35:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"65ba066e-3db"
Expires: Sat, 19 Apr 2025 13:18:06 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip
imp9.bidgear.com/rec?t=1&z=6834&uuid=4b105e69b82b4f0e9397362109b2d08a&p=138&g=NO&token=4a44335432&tbg=1713532686
172.67.74.36200 OK 599 B URL GET HTTP/2 imp9.bidgear.com/rec?t=1&z=6834&uuid=4b105e69b82b4f0e9397362109b2d08a&p=138&g=NO&token=4a44335432&tbg=1713532686
IP 172.67.74.36:443
Requested by https://www8.gogoanime.me/zenny/3ol.html
Certificate IssuerLet's Encrypt
Subjectbidgear.com
Fingerprint3A:1B:89:53:D8:F9:FF:FC:DB:60:64:92:D3:A6:9D:C2:12:8D:AB:43
ValiditySat, 30 Mar 2024 23:48:28 GMT - Fri, 28 Jun 2024 23:48:27 GMT
File type JPEG image data, baseline, precision 8, 1x1, components 3
Hash ca49a7e783b806a4e8576ea80346203d
6fe9d083221dae98f6c76f7121c37bc884b02d82
3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28
GET /rec?t=1&z=6834&uuid=4b105e69b82b4f0e9397362109b2d08a&p=138&g=NO&token=4a44335432&tbg=1713532686 HTTP/1.1
Host: imp9.bidgear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/jpeg
content-length: 599
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ag%2B2icYQqRfISHWRTLNc9gAr0uceqak7M8%2Bf4DMQwi9SZEXqTCaUKd7Ua5FzW5Gz9%2F4GBHW9LPxj0NwcdNSS4rkxtuE65c0G0rUpjLU%2BjxfC1VRpORv3NuoEIfd7AY4mHp0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2dbbc98bb4ed-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/ic-sub.svg
104.26.0.83200 OK 929 B URL GET HTTP/2 www8.gogoanime.me/assets/ic-sub.svg
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash a13c6553352b2e34040f059d8fc2c99d
adeeaf9c935f628e9856aecd2c0926008612fdf2
04bd5e392b62c3a7913cf17dde7158690ec99b70ff680524db0296383d58d36c
GET /assets/ic-sub.svg HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/svg+xml
last-modified: Sun, 11 Jul 2021 14:26:15 GMT
etag: W/"6b4-5c6d9c989afc0"
x-varnish: 262433008
age: 155233
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M4TxGffQ7gqiYM9ZgCdREOjhuXXVvYnPgmAgVOBrztN90MJfzwZco2JQrdbBz9A%2FzExmi1HQ6e9FNAij9ZdaRaLKYLRbxNN1cF19Xjy0I7OPFeB4ECuHqVJagbf46OUg0kUg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db8e8efb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
phoenix-widget.com/static/js/widget_fixed.js
188.166.21.205200 OK 15 kB URL GET HTTP/1.1 phoenix-widget.com/static/js/widget_fixed.js
IP 188.166.21.205:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www8.gogoanime.me/
Certificate IssuerSectigo Limited
Subject*.phoenix-widget.com
FingerprintB3:A6:FD:3B:D0:60:5D:61:53:71:EA:91:7B:F2:B2:5A:09:99:B7:E8
ValidityWed, 13 Mar 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (43066)
Hash ed01958b2ab23122e503a67161770097
3f715e00e51c924c983aee979d0e0ec29930fdb3
9694462243faf15017ea81a09f3f2f188ae0eff9c73c8f626f68845fff0bb724
GET /static/js/widget_fixed.js HTTP/1.1
Host: phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 13:18:06 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 Aug 2022 10:32:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"630f38c2-a83c"
Expires: Sat, 19 Apr 2025 13:18:06 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip
imp9.bidgear.com/rec?t=1&z=7484&uuid=89d3b3caf3ca428e87b94bfe7a52ea8e&p=138&g=NO&token=4a44335432&tbg=1713532686
172.67.74.36200 OK 599 B URL GET HTTP/2 imp9.bidgear.com/rec?t=1&z=7484&uuid=89d3b3caf3ca428e87b94bfe7a52ea8e&p=138&g=NO&token=4a44335432&tbg=1713532686
IP 172.67.74.36:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectbidgear.com
Fingerprint3A:1B:89:53:D8:F9:FF:FC:DB:60:64:92:D3:A6:9D:C2:12:8D:AB:43
ValiditySat, 30 Mar 2024 23:48:28 GMT - Fri, 28 Jun 2024 23:48:27 GMT
File type JPEG image data, baseline, precision 8, 1x1, components 3
Hash ca49a7e783b806a4e8576ea80346203d
6fe9d083221dae98f6c76f7121c37bc884b02d82
3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28
GET /rec?t=1&z=7484&uuid=89d3b3caf3ca428e87b94bfe7a52ea8e&p=138&g=NO&token=4a44335432&tbg=1713532686 HTTP/1.1
Host: imp9.bidgear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/jpeg
content-length: 599
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=72OeWKdq%2BVUXkoIuC3M4dBXaxx7Gn6NOGU2L4695OjZreNDGplBxsskgKtWsQoWTQ2iWOufCk0MoQEzq514sgDBOFW340wh%2BK%2FMUykrrORXQfYAH9VhB34ZuFERYzdzfmU0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2dbbd99cb4ed-OSL
X-Firefox-Spdy: h2
phoenix-widget.com/static/js/builder/widget.js
188.166.21.205200 OK 12 kB URL GET HTTP/1.1 phoenix-widget.com/static/js/builder/widget.js
IP 188.166.21.205:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www8.gogoanime.me/zenny/3ol.html
Certificate IssuerSectigo Limited
Subject*.phoenix-widget.com
FingerprintB3:A6:FD:3B:D0:60:5D:61:53:71:EA:91:7B:F2:B2:5A:09:99:B7:E8
ValidityWed, 13 Mar 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (36828), with no line terminators
Hash 5a9456c7c58598842c473488a4b46378
60daf242a22421895c2881264116b87174329cb2
d0a062c4b2e9c936cea7bfe89fb7af32b615446d295029248282e0e8ea67bf8c
GET /static/js/builder/widget.js HTTP/1.1
Host: phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 19 Apr 2024 13:18:06 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 17 Apr 2024 14:54:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"661fe2b7-8fdc"
Expires: Sat, 19 Apr 2025 13:18:06 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip
www8.gogoanime.me/zenny/3ol.html
104.26.0.83200 OK 110 B URL GET HTTP/2 www8.gogoanime.me/zenny/3ol.html
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash cfc84b991b0b84f828c66be416143ca0
14669c8257117a2c885ac1e3ec5b5660dd83a3c5
a2ce7f0af579dc0e636540bca928459ef32474e5d8b3c22b32fc0e893f9a84e4
GET /zenny/3ol.html HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: text/html; charset=UTF-8
last-modified: Thu, 02 Feb 2023 11:37:44 GMT
x-varnish: 279328695
age: 154766
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F4yE4Fj5kwCC7UGURd2EfqAKT7JMEww3qwDbz3W7Nt8VsEtymBkeMpJU203UvB7UJIhc1tNy6ZD%2FXoKWOjmD%2B0iyLifiUhjH3%2BQbEYmHidTC9HYreb7ui8I4ZIcar5nXDR6M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db898acb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
ascentloinconvenience.com/d422d7c9d2625bc8604133095f66df31/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 ascentloinconvenience.com/d422d7c9d2625bc8604133095f66df31/invoke.js
IP 172.240.108.76:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectascentloinconvenience.com
Fingerprint03:5B:64:1F:FF:93:5E:57:DB:CF:14:E5:D0:37:92:A8:B6:2C:DD:3B
ValidityMon, 04 Mar 2024 11:41:47 GMT - Sun, 02 Jun 2024 11:41:46 GMT
File type JavaScript source, ASCII text, with very long lines (31301), with no line terminators
Hash 5fe93fd952925075404185476bd9e2c5
e3d326645ec1afd49a7c257b59e9f4eba4ab17c2
101e3c12351d9df44fbc141c625204e55929cfac0a7fdc58d91bb29c2c533bcf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /d422d7c9d2625bc8604133095f66df31/invoke.js HTTP/1.1
Host: ascentloinconvenience.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f76851e05552784f6ef0e2d55a8bcb1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
connectionsoathbottles.com/84/17/0a/84170ab3a49de24a68075871d2138d3a.js
192.243.59.13200 OK 16 kB URL GET HTTP/1.1 connectionsoathbottles.com/84/17/0a/84170ab3a49de24a68075871d2138d3a.js
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectconnectionsoathbottles.com
Fingerprint68:98:0D:06:BB:2A:63:40:EA:C8:2E:9C:92:D5:28:92:1A:4A:FB:3B
ValidityTue, 16 Apr 2024 10:35:09 GMT - Mon, 15 Jul 2024 10:35:08 GMT
File type JavaScript source, ASCII text, with very long lines (44072), with no line terminators
Hash 77171fe52eac660791ad514f67068055
305cbdf4c6d90702ddb8963079c64963a054e33e
0dc80034ffac5e064917a14dbb88a291129b144689717e1359725915b8a95615
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /84/17/0a/84170ab3a49de24a68075871d2138d3a.js HTTP/1.1
Host: connectionsoathbottles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08f99717032be2833210c75f3f02d2dc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
api.phoenix-widget.com/api/v2/getdata?callback=phoenix72730&site_id=651d2b816c892d36fcf3d74f&widget_id=65d41e791f5469ff3d413a92&puid=973f5be05775383db02e60aa&url=https://www8.gogoanime.me/&preview=false
143.244.196.143200 OK 1.4 kB URL GET HTTP/2 api.phoenix-widget.com/api/v2/getdata?callback=phoenix72730&site_id=651d2b816c892d36fcf3d74f&widget_id=65d41e791f5469ff3d413a92&puid=973f5be05775383db02e60aa&url=https://www8.gogoanime.me/&preview=false
IP 143.244.196.143:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www8.gogoanime.me/zenny/3ol.html
Certificate IssuerLet's Encrypt
Subjectapi.phoenix-widget.com
Fingerprint88:FD:AA:3C:1B:77:C2:50:6E:83:BA:E7:F7:A0:9F:B5:A2:20:40:2A
ValidityThu, 18 Apr 2024 05:59:18 GMT - Wed, 17 Jul 2024 05:59:17 GMT
Hash 8cfaa9365737ec46ccc13136890dbdc6
092306b701ebf6aa5ab7873ea5880c19cf660e52
2d3de7deec5d58774a5fe300103e49523888cb200db6ea585aa1477bf179e8f7
GET /api/v2/getdata?callback=phoenix72730&site_id=651d2b816c892d36fcf3d74f&widget_id=65d41e791f5469ff3d413a92&puid=973f5be05775383db02e60aa&url=https://www8.gogoanime.me/&preview=false HTTP/1.1
Host: api.phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: application/json
content-length: 1352
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, *
access-control-allow-methods: GET
access-control-allow-origin: https://www8.gogoanime.me
amp-same-origin: true
etag: "092306b701ebf6aa5ab7873ea5880c19cf660e52"
set-cookie: puid=66226f0e20a1f2566dabd614; Path=/; Domain=phoenix-widget.com; Expires=Sat, 19 Apr 2025 13:18:06 GMT; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
api.phoenix-widget.com/api/v2/getdata?callback=phoenix39429&site_id=651d2b816c892d36fcf3d74f&widget_id=65d420087ac5041a1eaaee68&puid=973f5be05775383db02e60aa&url=https://www8.gogoanime.me/&preview=false
143.244.196.143200 OK 1.4 kB URL GET HTTP/2 api.phoenix-widget.com/api/v2/getdata?callback=phoenix39429&site_id=651d2b816c892d36fcf3d74f&widget_id=65d420087ac5041a1eaaee68&puid=973f5be05775383db02e60aa&url=https://www8.gogoanime.me/&preview=false
IP 143.244.196.143:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectapi.phoenix-widget.com
Fingerprint88:FD:AA:3C:1B:77:C2:50:6E:83:BA:E7:F7:A0:9F:B5:A2:20:40:2A
ValidityThu, 18 Apr 2024 05:59:18 GMT - Wed, 17 Jul 2024 05:59:17 GMT
Hash 3981f1a4db19881f58ad0b41a337a08b
07e8fa2fb4c947c77496a9817ba45798d14ce998
503ee5bc28b6901c0e0c89721551b18ed87a2890c1ad6cd75ff1c2ad1661f84e
GET /api/v2/getdata?callback=phoenix39429&site_id=651d2b816c892d36fcf3d74f&widget_id=65d420087ac5041a1eaaee68&puid=973f5be05775383db02e60aa&url=https://www8.gogoanime.me/&preview=false HTTP/1.1
Host: api.phoenix-widget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: application/json
content-length: 1371
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, *
access-control-allow-methods: GET
access-control-allow-origin: https://www8.gogoanime.me
amp-same-origin: true
etag: "07e8fa2fb4c947c77496a9817ba45798d14ce998"
set-cookie: puid=66226f0e97cb952964c6d147; Path=/; Domain=phoenix-widget.com; Expires=Sat, 19 Apr 2025 13:18:06 GMT; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/combo.js?v=4.8
104.26.0.83200 OK 116 kB URL GET HTTP/2 www8.gogoanime.me/assets/combo.js?v=4.8
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1382)
Size 116 kB (116449 bytes)
Hash 5ee723c69fb3ac78f835d07c77ab24d5
aa455a927c3b88f6ef83b5cde150693687c98d91
1f8f9b2ed3706236c7e853dc327f6e97147971e7e4a7ceb3d38def4275ea1fb9
GET /assets/combo.js?v=4.8 HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: application/javascript
last-modified: Tue, 06 Jul 2021 16:17:31 GMT
etag: W/"bdd-5c676c2407cc0"
x-varnish: 280987361
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nbOaJ5qNjW0LsFLG%2FeysJgPwvvuchk8E33wlfoyImkm%2FaVy74osqsptpdKq6F19%2BnJA6t8so%2Fz8Zr6S0JKqX6Eza977MCbAhajJRulC2t%2FvMEGumNEfu6AvKaHRP4F2vSv06"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db6be5db4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
elongatedmiddle.com/watch.1446330783674.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&tz=0&dev=e&res=14.2071&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
192.243.61.227307 Temporary Redirect 0 B URL GET HTTP/1.1 elongatedmiddle.com/watch.1446330783674.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&tz=0&dev=e&res=14.2071&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectelongatedmiddle.com
Fingerprint05:C9:E8:FB:02:88:F9:44:68:36:D3:24:F8:24:E2:CA:1E:BB:9A:90
ValidityTue, 16 Apr 2024 14:02:33 GMT - Mon, 15 Jul 2024 14:02:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1446330783674.js?key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&tz=0&dev=e&res=14.2071&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1 HTTP/1.1
Host: elongatedmiddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www8.gogoanime.me
Access-Control-Allow-Origin: https://www8.gogoanime.me
Access-Control-Allow-Credentials: true
Location: https://elongatedmiddle.com/watch.1446330783674.js?dev=e&key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&pst=1713532747&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&res=14.2071&rmtc=t&shu=606fa0ed818309b9f14006c707ebb700e12a87adc6dbc5d3a86c9a5cb17d410b275784eb001669af98a88fe95437fe1717be20ac8386786509fb1230ef3dddf8f021b4cfddb27aaf9ee97a93e363d2ea0f30f43a19a357c247177b941e22dc&tz=0&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
Set-Cookie: u_pl=16884591; expires=Sat, 20 Apr 2024 13:18:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.TPX_uSrL2DZ6jGAESliqiqQWuIHqQZW1S3p4HFi5zdo; expires=Fri, 19 Apr 2024 13:19:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2fbde30679306923f0d6d53c4345073e
Strict-Transport-Security: max-age=0; includeSubdomains
elongatedmiddle.com/e6/3c/2d/e63c2d9a0061707be059cbc444140775.js
192.243.61.227200 OK 16 kB URL GET HTTP/1.1 elongatedmiddle.com/e6/3c/2d/e63c2d9a0061707be059cbc444140775.js
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectelongatedmiddle.com
Fingerprint05:C9:E8:FB:02:88:F9:44:68:36:D3:24:F8:24:E2:CA:1E:BB:9A:90
ValidityTue, 16 Apr 2024 14:02:33 GMT - Mon, 15 Jul 2024 14:02:32 GMT
File type JavaScript source, ASCII text, with very long lines (44105), with no line terminators
Hash 388419138bd77b967f521550fae46fd1
06de4fbbc9c44079df21cf7dbe03274e2acff8b6
8b4566a2acd0a18eb020f987d9ed69537edc8cc862f645d21a97610443597621
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /e6/3c/2d/e63c2d9a0061707be059cbc444140775.js HTTP/1.1
Host: elongatedmiddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0eb235b4bd944ebb3d734ace0a21781a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
elongatedmiddle.com/watch.1446330783674.js?dev=e&key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&pst=1713532747&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&res=14.2071&rmtc=t&shu=606fa0ed818309b9f14006c707ebb700e12a87adc6dbc5d3a86c9a5cb17d410b275784eb001669af98a88fe95437fe1717be20ac8386786509fb1230ef3dddf8f021b4cfddb27aaf9ee97a93e363d2ea0f30f43a19a357c247177b941e22dc&tz=0&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
192.243.61.227200 OK 2.0 kB URL GET HTTP/1.1 elongatedmiddle.com/watch.1446330783674.js?dev=e&key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&pst=1713532747&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&res=14.2071&rmtc=t&shu=606fa0ed818309b9f14006c707ebb700e12a87adc6dbc5d3a86c9a5cb17d410b275784eb001669af98a88fe95437fe1717be20ac8386786509fb1230ef3dddf8f021b4cfddb27aaf9ee97a93e363d2ea0f30f43a19a357c247177b941e22dc&tz=0&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectelongatedmiddle.com
Fingerprint05:C9:E8:FB:02:88:F9:44:68:36:D3:24:F8:24:E2:CA:1E:BB:9A:90
ValidityTue, 16 Apr 2024 14:02:33 GMT - Mon, 15 Jul 2024 14:02:32 GMT
File type JavaScript source, ASCII text, with very long lines (2443)
Hash 04be670a15a80d986f7fa93f9f5d2338
8a73c2fb23576d25731ffe2f27a3c3f51d4079c9
ac2bda869a805f320a6abb2554dd2789f0f0693f03d5d4e8498de34f1af97950
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1446330783674.js?dev=e&key=d422d7c9d2625bc8604133095f66df31&kw=%5B%22gogoanime%22%2C%22-%22%2C%22watch%22%2C%22free%22%2C%22anime%22%2C%22online%22%2C%22with%22%2C%22english%22%2C%22dub%22%2C%22and%22%2C%22sub%22%2C%22free%22%5D&pst=1713532747&refer=https%3A%2F%2Fwww8.gogoanime.me%2F&res=14.2071&rmtc=t&shu=606fa0ed818309b9f14006c707ebb700e12a87adc6dbc5d3a86c9a5cb17d410b275784eb001669af98a88fe95437fe1717be20ac8386786509fb1230ef3dddf8f021b4cfddb27aaf9ee97a93e363d2ea0f30f43a19a357c247177b941e22dc&tz=0&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1 HTTP/1.1
Host: elongatedmiddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
Referer: https://www8.gogoanime.me/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16884591; ain=eyJhbGciOiJIUzI1NiJ9.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.TPX_uSrL2DZ6jGAESliqiqQWuIHqQZW1S3p4HFi5zdo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www8.gogoanime.me
Access-Control-Allow-Origin: https://www8.gogoanime.me
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; expires=Fri, 26 Apr 2024 13:18:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 20 Apr 2024 13:18:07 GMT; secure; SameSite=None
uncs=1; expires=Sat, 20 Apr 2024 13:18:07 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 20 Apr 2024 13:18:07 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 20 Apr 2024 13:18:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a96605f3890d0d3d96e8ac38a437a934
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
45.133.44.10200 OK 108 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Size 108 kB (107711 bytes)
Hash d5d8bc18ba152c6e850417cdf9dfbbff
888bf155775a9879f26faf0e7faaff5803296e8e
b481f86a9731573e3cfd04880209d5ecb5c163caa0e2656a9f740321c5e637c8
GET /cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: image/png
content-length: 107711
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:51:18 GMT
etag: "61080666-1a4bf"
expires: Sun, 21 Apr 2024 13:18:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
smallestspoutmuffled.com/sbar.json?key=84170ab3a49de24a68075871d2138d3a&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
172.240.108.84200 OK 7.8 kB URL GET HTTP/1.1 smallestspoutmuffled.com/sbar.json?key=84170ab3a49de24a68075871d2138d3a&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
IP 172.240.108.84:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
Hash b0a99948e9c75dae699f14b4f59104aa
be7364795fb0b6272af5105d2ccf43cd9a49e6b9
c5816a4972db28b300ee6ab4e123ae323ae0b82116ed45377c2742fe475fc30f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=84170ab3a49de24a68075871d2138d3a&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1 HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:08 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www8.gogoanime.me
Access-Control-Allow-Origin: https://www8.gogoanime.me
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17186393; expires=Sat, 20 Apr 2024 13:18:08 GMT; secure; SameSite=None
uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; expires=Fri, 26 Apr 2024 13:18:08 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 20 Apr 2024 13:18:08 GMT; secure; SameSite=None
uncs=1; expires=Sat, 20 Apr 2024 13:18:08 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 20 Apr 2024 13:18:08 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 20 Apr 2024 13:18:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 365c00cc60d937df1aa7329ea0d47d2e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
smallestspoutmuffled.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReunl%2FY30EQlcWLCIN4UDGTru6ZnhkXFWOMhI2bdVfRPUl1V%2FWkTHVXU9U9PckpuCB7HILitfNNskENohdvLjJZ8LAgZDzNweD%2FIOxZZgyOvkO9973vFXz1vvr8sLggHgo2XXtP70ml2Eqr4dZf%2BpjSa%2FVNmRaD%2BqATfBI0r9VN%2F7Vu0HBfrr8roh294rnUdalL6%2BvSiFgPVmYkZHbapY2u22h6DdpqYmD%2Bi23hwDIHvH9BnoHkk6WHzlXIaIw0%2BX5N2J1cZ6%2B%2BkxSK5dqgz08%2BTHdSXaZIFmVsHMTpyeU0tD1ffwCdHs%2FlQvf%2FGQzlhDi%2FPECYnlyKRNg%2FmusMFUSKkD%2BBsj%2BGUGNINkak70LycwJEHDe2kCb3b2hTst2%2FWTZjJ2Tp8Z%2BQ5YQs%2FX4VafLdqpKD%2Bm2tilzq1GIQV5CDMWRvjKw4Q75XgyzPEOWfQfJfycrjTaTJ0ZZVGpJPX%2FRpk%2Fo8ipdDzsVyM25Fy2FXdJdpW3he3Ama1G%2FNFyTlGDIeQ4khmK2hsA4K6aCIHRSZg4RP6xGltO3yiLmdbhT5vC3CgLuUtWPKqBt0UESzNwyRZ0NEaojI7CMz%2B9iRBxPi%2FP%2FgnF7AFD%2FDblewvAabT4jzvkCfVygFQWkJSkZQSoIyJyj71TFX1rPVfa5sEdLL7F1mvxrpvHfIjnXeEykBM0MYXh1mF%2BTp2TKdK2%2FcwY6Y1jtN2nZZ6LNmlwuvyYKO22512pR71O9wn8HKCtLWwKyDvZmxZ68jm%2BXtPxCyM1h1hkg%2BC1Y8D1ZWYNsV9tJTlspEKJbyRt4H1xWyfAn5rnOoLshzczuvf%2FUlRPSIXAYiUyEzFT6VDwl66t7oli7J0S1dWvLDVpbLRO6xmdW3c5aLK99cF7ulNnxjzQ6%2FfiuaEbPy9ANh802Wcpn2LPl2VXIuzLo2kSA%2FbdiPRHizsNurhUmLbPPm2%2BsbSWaEtVKnYzB5fucAkZyQJ3%2FcnP%2FhV%2BpTSDOGKSokxUKp1GNE2T5stuhZTWDUAoeZg7KoRsYLF00lCZRYYBZWsP%2FC4aIeGTa7zWR1aO%2BhZ2pg%2BV2kSYW%2BqdBXFZgawhb%2FG%2BWZefTmb%2F48EKraKFSmdhQqow7mS54dX8DKab3t%2By4Lui3abjPRDpteJw4oZ8xrBl4QMB%2B5ncQv6Kf%2BAgAA%2F%2F8BAAD%2F%2F4ieMJWdBAAA
172.240.108.84200 OK 7 B URL GET HTTP/1.1 smallestspoutmuffled.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReunl%2FY30EQlcWLCIN4UDGTru6ZnhkXFWOMhI2bdVfRPUl1V%2FWkTHVXU9U9PckpuCB7HILitfNNskENohdvLjJZ8LAgZDzNweD%2FIOxZZgyOvkO9973vFXz1vvr8sLggHgo2XXtP70ml2Eqr4dZf%2BpjSa%2FVNmRaD%2BqATfBI0r9VN%2F7Vu0HBfrr8roh294rnUdalL6%2BvSiFgPVmYkZHbapY2u22h6DdpqYmD%2Bi23hwDIHvH9BnoHkk6WHzlXIaIw0%2BX5N2J1cZ6%2B%2BkxSK5dqgz08%2BTHdSXaZIFmVsHMTpyeU0tD1ffwCdHs%2FlQvf%2FGQzlhDi%2FPECYnlyKRNg%2FmusMFUSKkD%2BBsj%2BGUGNINkak70LycwJEHDe2kCb3b2hTst2%2FWTZjJ2Tp8Z%2BQ5YQs%2FX4VafLdqpKD%2Bm2tilzq1GIQV5CDMWRvjKw4Q75XgyzPEOWfQfJfycrjTaTJ0ZZVGpJPX%2FRpk%2Fo8ipdDzsVyM25Fy2FXdJdpW3he3Ama1G%2FNFyTlGDIeQ4khmK2hsA4K6aCIHRSZg4RP6xGltO3yiLmdbhT5vC3CgLuUtWPKqBt0UESzNwyRZ0NEaojI7CMz%2B9iRBxPi%2FP%2FgnF7AFD%2FDblewvAabT4jzvkCfVygFQWkJSkZQSoIyJyj71TFX1rPVfa5sEdLL7F1mvxrpvHfIjnXeEykBM0MYXh1mF%2BTp2TKdK2%2FcwY6Y1jtN2nZZ6LNmlwuvyYKO22512pR71O9wn8HKCtLWwKyDvZmxZ68jm%2BXtPxCyM1h1hkg%2BC1Y8D1ZWYNsV9tJTlspEKJbyRt4H1xWyfAn5rnOoLshzczuvf%2FUlRPSIXAYiUyEzFT6VDwl66t7oli7J0S1dWvLDVpbLRO6xmdW3c5aLK99cF7ulNnxjzQ6%2FfiuaEbPy9ANh802Wcpn2LPl2VXIuzLo2kSA%2FbdiPRHizsNurhUmLbPPm2%2BsbSWaEtVKnYzB5fucAkZyQJ3%2FcnP%2FhV%2BpTSDOGKSokxUKp1GNE2T5stuhZTWDUAoeZg7KoRsYLF00lCZRYYBZWsP%2FC4aIeGTa7zWR1aO%2BhZ2pg%2BV2kSYW%2BqdBXFZgawhb%2FG%2BWZefTmb%2F48EKraKFSmdhQqow7mS54dX8DKab3t%2By4Lui3abjPRDpteJw4oZ8xrBl4QMB%2B5ncQv6Kf%2BAgAA%2F%2F8BAAD%2F%2F4ieMJWdBAAA
IP 172.240.108.84:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReunl%2FY30EQlcWLCIN4UDGTru6ZnhkXFWOMhI2bdVfRPUl1V%2FWkTHVXU9U9PckpuCB7HILitfNNskENohdvLjJZ8LAgZDzNweD%2FIOxZZgyOvkO9973vFXz1vvr8sLggHgo2XXtP70ml2Eqr4dZf%2BpjSa%2FVNmRaD%2BqATfBI0r9VN%2F7Vu0HBfrr8roh294rnUdalL6%2BvSiFgPVmYkZHbapY2u22h6DdpqYmD%2Bi23hwDIHvH9BnoHkk6WHzlXIaIw0%2BX5N2J1cZ6%2B%2BkxSK5dqgz08%2BTHdSXaZIFmVsHMTpyeU0tD1ffwCdHs%2FlQvf%2FGQzlhDi%2FPECYnlyKRNg%2FmusMFUSKkD%2BBsj%2BGUGNINkak70LycwJEHDe2kCb3b2hTst2%2FWTZjJ2Tp8Z%2BQ5YQs%2FX4VafLdqpKD%2Bm2tilzq1GIQV5CDMWRvjKw4Q75XgyzPEOWfQfJfycrjTaTJ0ZZVGpJPX%2FRpk%2Fo8ipdDzsVyM25Fy2FXdJdpW3he3Ama1G%2FNFyTlGDIeQ4khmK2hsA4K6aCIHRSZg4RP6xGltO3yiLmdbhT5vC3CgLuUtWPKqBt0UESzNwyRZ0NEaojI7CMz%2B9iRBxPi%2FP%2FgnF7AFD%2FDblewvAabT4jzvkCfVygFQWkJSkZQSoIyJyj71TFX1rPVfa5sEdLL7F1mvxrpvHfIjnXeEykBM0MYXh1mF%2BTp2TKdK2%2FcwY6Y1jtN2nZZ6LNmlwuvyYKO22512pR71O9wn8HKCtLWwKyDvZmxZ68jm%2BXtPxCyM1h1hkg%2BC1Y8D1ZWYNsV9tJTlspEKJbyRt4H1xWyfAn5rnOoLshzczuvf%2FUlRPSIXAYiUyEzFT6VDwl66t7oli7J0S1dWvLDVpbLRO6xmdW3c5aLK99cF7ulNnxjzQ6%2FfiuaEbPy9ANh802Wcpn2LPl2VXIuzLo2kSA%2FbdiPRHizsNurhUmLbPPm2%2BsbSWaEtVKnYzB5fucAkZyQJ3%2FcnP%2FhV%2BpTSDOGKSokxUKp1GNE2T5stuhZTWDUAoeZg7KoRsYLF00lCZRYYBZWsP%2FC4aIeGTa7zWR1aO%2BhZ2pg%2BV2kSYW%2BqdBXFZgawhb%2FG%2BWZefTmb%2F48EKraKFSmdhQqow7mS54dX8DKab3t%2By4Lui3abjPRDpteJw4oZ8xrBl4QMB%2B5ncQv6Kf%2BAgAA%2F%2F8BAAD%2F%2F4ieMJWdBAAA HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b23f632b5df119e5c76dea70c1189745
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=37702aa9c5918dbdc2e88ba53571ba54&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
192.243.59.13200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=37702aa9c5918dbdc2e88ba53571ba54&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=37702aa9c5918dbdc2e88ba53571ba54&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f6b9874ee44896f3d8eddfeb6eb18b7e
Strict-Transport-Security: max-age=0; includeSubdomains
www8.gogoanime.me/assets/MYRIADPROREGULAR.woff
104.26.0.83404 Not Found 13 kB URL GET HTTP/2 www8.gogoanime.me/assets/MYRIADPROREGULAR.woff
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
Hash f9c8808c799aa5c9c57ac7307ef50b03
826156dfec7330f7832d5ce1b4e90a1638942a44
60dd4e36500990b89dc92402d139bd07207cb2532b92e66862160e8194e641c1
GET /assets/MYRIADPROREGULAR.woff HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.4.45
x-varnish: 277857993
age: 155441
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MwuUg2mYvjd03VD%2Fa3HeNdUTbKs%2FryLtt9Yesw0uhqUNTbAiurogK1EWL7D2vzrU4UzCC8id41L8qL1R0lbFnwXcWRja8iTMB0JqlqMjWs78HDW8sW%2FJxuIwPjQugwNU34Gq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db91906b4eb-OSL
X-Firefox-Spdy: h2
smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=615
172.240.108.84200 OK 0 B URL GET HTTP/1.1 smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=615
IP 172.240.108.84:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=615 HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg
188.114.97.1200 OK 28 kB URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3
Hash bd0c89fce24a7f947251ba177af6860b
fae114743fd16313d63c5cc99a220831f88290e6
830443fe11ab663a8c20e09560e69a4a29c8d0266175efc235c3d9882123f209
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:09 GMT
content-type: image/jpeg
content-length: 28348
last-modified: Thu, 01 Feb 2024 14:55:05 GMT
etag: "65bbb0c9-6ebc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5613314
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BhHCZoxLLXHeW69twADOnihcgu20UYKeq5kO%2FQ6xbfqui5sDSKlKougQjIA5jPeArpcvaU%2FtRNOg4r5S%2FExGsgwnBaNyZsQ82KEcOT6LuF1SWmym9bWzOMNsgm8gx2Og8vAGY7KT5Xui"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dcb8a5b7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
downstairsnegotiatebarren.com/sfp.js
188.114.96.1200 OK 28 kB URL GET HTTP/3 downstairsnegotiatebarren.com/sfp.js
IP 188.114.96.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 756e099fb6afa00529884857fa7a0cb1
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 19 Apr 2024 13:18:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0uc6SXJDv6MKexeESWp6iTE9gGOj496W5NoChRAACo9UaQEr96A%2FwMRB6r6T3uKZY3LtTqsCFnEad7XubJEfjn8RVZFKU1grfqth5Q%2BxLR1WpLKV6SeNxoW6snCO78YtcOnJs4lb347QOlRrckZcrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dbf5d34569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 1.2 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File type gzip compressed data, max compression
Hash cd2529fdb6d8c4afc3ca7329a4b81806
d183554cb174688b4bf16bff302e620faa4e73c7
48079c23451e4542d2a26d5f0771dfec27244dc16a1512a34aaa1f5ceb4ff192
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:18:09 GMT
date: Fri, 19 Apr 2024 13:18:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=342
172.240.108.84200 OK 0 B URL GET HTTP/1.1 smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=342
IP 172.240.108.84:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=342 HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
downstairsnegotiatebarren.com/sfp.js
188.114.96.1200 OK 32 kB URL GET HTTP/3 downstairsnegotiatebarren.com/sfp.js
IP 188.114.96.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:18:08 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 88f5912a8360c904f23452f4bdc0e7f9
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 19 Apr 2024 13:18:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NdOozE%2FG17Yfphfnx5tjgo%2B3KSc5dFzUPUQebw94OsyVN8IJQJQ7N6D0Wi5XWNzfslT9VoTfL2v515TszoDG0PxKLtaD424%2FRZzPxNf45GPat4vLY0fjD5iM3RdKa%2BGjU52SA8tBPAIpVTAWxFSMFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dc28906569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
smallestspoutmuffled.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuunl%2FY30EQlcWLCIN4UDGT7vkeFxVjjISNm3VX0T1JffWkTHVXU9U9PckpuCB7HILitfNMskENohdvLjJZ8LAgZDzNweD%2FIOxZegyOvod63%2Bd93oKn3qc%2BP8wuSB0Zna29Z%2FaU1nSlVfOrL30cBNeqmyrOhtVht%2F1Ju3mtagev9do1%2F%2BXqu5LvmJW6H%2Fh%2B4AfVdWVlaIYrJQmVnPaCWs%2BvNeu1oNXE0P4Xu8yDox7E4II8AyWmSw%2B9q1B8gjj6fk26ndQkr74TZZqmxmIgTj6Md2KTx4gWZWg9hPHJ5TSMO19%2FABMfz%2BXCDP4ZZGpKvF8egMUnlyLBBkdznUxDxmDiCeSDCaSeQNEJuLkLJc4JwAVubCGO7t8wNqe7f7O0ZKdk6fGfUPmULP1%2BFXH03apWw%2Bpto7NUmdhhGBZQwwlUf4IkO0O6V4HKz8DTz6DEr2Tl8Sbi6GjLaQMlZi82gmbQEDxcZkLI5WbY4susJ3vLQUfW62G33QwarfmClJpAhRNoOQJ1FWTOQ6Y8ZKGHLPEQiVmVB0HQ8QWnfrfHeUN0JGsLP6CdMKCB3%2B4i4%2BUbRkiTEbgegdt9JHYfO%2BpgSrz%2FH5wHF7DZz3DbBZyowKVT4r0vMRAFckmQO4KcEuSKIE8J8kFxLLSru%2BK%2B0C5jwWWuX%2BZGMTZp%2F5Aem7QvYwJqR7CiOEwuyNPlMr0rb9zBjpxVu82g41PWoM2ekPUmbXf9TqvbCUQ9aHRFg8KpAspVQJ2HvdLYs9eRlHn7DzB6BqfPwNWzoNnzoHkBul1gLz6lsYqkprGopQMIUyBJl5Dueof6gjw3t%2FP6V19C8kfkMsBtgcQW%2BFQ9JOjre%2BNbJidHt0zuyA9bSaoitUdLq2%2BnNJVXvrkud3NjxcaaG339Fi%2BJsjz9QLp0k8ZCxX1Hvl1VQki7biyX5KcN95FkNzO3vZrZOEs2b769vhElVjqnTDwBVed3DsDVlDz54%2Bb8D79SnUHZCWxWIMoWSpWZgCf7cMmi5wyB1QvMEg95VoxtnS2aWhFoucCUFXD%2FwmxRjy0tb1NVHLp76NsKaHoXcVRgYAsMdAGqR3DZ%2F8ZpYh%2B9%2BVtjHmC6MmbaVo6YtvpgvuTy%2BAJOzaoNX3SYDGWHyWarGUouWKvFfB5y1hDdLkfqpuEL5qm%2FAAAA%2F%2F8BAAD%2F%2FwhK5X2dBAAA
172.240.108.84200 OK 7 B URL GET HTTP/1.1 smallestspoutmuffled.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuunl%2FY30EQlcWLCIN4UDGT7vkeFxVjjISNm3VX0T1JffWkTHVXU9U9PckpuCB7HILitfNMskENohdvLjJZ8LAgZDzNweD%2FIOxZegyOvod63%2Bd93oKn3qc%2BP8wuSB0Zna29Z%2FaU1nSlVfOrL30cBNeqmyrOhtVht%2F1Ju3mtagev9do1%2F%2BXqu5LvmJW6H%2Fh%2B4AfVdWVlaIYrJQmVnPaCWs%2BvNeu1oNXE0P4Xu8yDox7E4II8AyWmSw%2B9q1B8gjj6fk26ndQkr74TZZqmxmIgTj6Md2KTx4gWZWg9hPHJ5TSMO19%2FABMfz%2BXCDP4ZZGpKvF8egMUnlyLBBkdznUxDxmDiCeSDCaSeQNEJuLkLJc4JwAVubCGO7t8wNqe7f7O0ZKdk6fGfUPmULP1%2BFXH03apWw%2Bpto7NUmdhhGBZQwwlUf4IkO0O6V4HKz8DTz6DEr2Tl8Sbi6GjLaQMlZi82gmbQEDxcZkLI5WbY4susJ3vLQUfW62G33QwarfmClJpAhRNoOQJ1FWTOQ6Y8ZKGHLPEQiVmVB0HQ8QWnfrfHeUN0JGsLP6CdMKCB3%2B4i4%2BUbRkiTEbgegdt9JHYfO%2BpgSrz%2FH5wHF7DZz3DbBZyowKVT4r0vMRAFckmQO4KcEuSKIE8J8kFxLLSru%2BK%2B0C5jwWWuX%2BZGMTZp%2F5Aem7QvYwJqR7CiOEwuyNPlMr0rb9zBjpxVu82g41PWoM2ekPUmbXf9TqvbCUQ9aHRFg8KpAspVQJ2HvdLYs9eRlHn7DzB6BqfPwNWzoNnzoHkBul1gLz6lsYqkprGopQMIUyBJl5Dueof6gjw3t%2FP6V19C8kfkMsBtgcQW%2BFQ9JOjre%2BNbJidHt0zuyA9bSaoitUdLq2%2BnNJVXvrkud3NjxcaaG339Fi%2BJsjz9QLp0k8ZCxX1Hvl1VQki7biyX5KcN95FkNzO3vZrZOEs2b769vhElVjqnTDwBVed3DsDVlDz54%2Bb8D79SnUHZCWxWIMoWSpWZgCf7cMmi5wyB1QvMEg95VoxtnS2aWhFoucCUFXD%2FwmxRjy0tb1NVHLp76NsKaHoXcVRgYAsMdAGqR3DZ%2F8ZpYh%2B9%2BVtjHmC6MmbaVo6YtvpgvuTy%2BAJOzaoNX3SYDGWHyWarGUouWKvFfB5y1hDdLkfqpuEL5qm%2FAAAA%2F%2F8BAAD%2F%2FwhK5X2dBAAA
IP 172.240.108.84:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuunl%2FY30EQlcWLCIN4UDGT7vkeFxVjjISNm3VX0T1JffWkTHVXU9U9PckpuCB7HILitfNMskENohdvLjJZ8LAgZDzNweD%2FIOxZegyOvod63%2Bd93oKn3qc%2BP8wuSB0Zna29Z%2FaU1nSlVfOrL30cBNeqmyrOhtVht%2F1Ju3mtagev9do1%2F%2BXqu5LvmJW6H%2Fh%2B4AfVdWVlaIYrJQmVnPaCWs%2BvNeu1oNXE0P4Xu8yDox7E4II8AyWmSw%2B9q1B8gjj6fk26ndQkr74TZZqmxmIgTj6Md2KTx4gWZWg9hPHJ5TSMO19%2FABMfz%2BXCDP4ZZGpKvF8egMUnlyLBBkdznUxDxmDiCeSDCaSeQNEJuLkLJc4JwAVubCGO7t8wNqe7f7O0ZKdk6fGfUPmULP1%2BFXH03apWw%2Bpto7NUmdhhGBZQwwlUf4IkO0O6V4HKz8DTz6DEr2Tl8Sbi6GjLaQMlZi82gmbQEDxcZkLI5WbY4susJ3vLQUfW62G33QwarfmClJpAhRNoOQJ1FWTOQ6Y8ZKGHLPEQiVmVB0HQ8QWnfrfHeUN0JGsLP6CdMKCB3%2B4i4%2BUbRkiTEbgegdt9JHYfO%2BpgSrz%2FH5wHF7DZz3DbBZyowKVT4r0vMRAFckmQO4KcEuSKIE8J8kFxLLSru%2BK%2B0C5jwWWuX%2BZGMTZp%2F5Aem7QvYwJqR7CiOEwuyNPlMr0rb9zBjpxVu82g41PWoM2ekPUmbXf9TqvbCUQ9aHRFg8KpAspVQJ2HvdLYs9eRlHn7DzB6BqfPwNWzoNnzoHkBul1gLz6lsYqkprGopQMIUyBJl5Dueof6gjw3t%2FP6V19C8kfkMsBtgcQW%2BFQ9JOjre%2BNbJidHt0zuyA9bSaoitUdLq2%2BnNJVXvrkud3NjxcaaG339Fi%2BJsjz9QLp0k8ZCxX1Hvl1VQki7biyX5KcN95FkNzO3vZrZOEs2b769vhElVjqnTDwBVed3DsDVlDz54%2Bb8D79SnUHZCWxWIMoWSpWZgCf7cMmi5wyB1QvMEg95VoxtnS2aWhFoucCUFXD%2FwmxRjy0tb1NVHLp76NsKaHoXcVRgYAsMdAGqR3DZ%2F8ZpYh%2B9%2BVtjHmC6MmbaVo6YtvpgvuTy%2BAJOzaoNX3SYDGWHyWarGUouWKvFfB5y1hDdLkfqpuEL5qm%2FAAAA%2F%2F8BAAD%2F%2FwhK5X2dBAAA HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e989e3d97459005c67806acfbe9788a4
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.99200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.99:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:01 GMT
expires: Fri, 18 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 124868
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.99200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.99:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 10:46:32 GMT
expires: Wed, 16 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 268297
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html
104.26.6.19200 OK 891 B URL GET HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html
IP 104.26.6.19:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash f8f30ffb2a2a7d300f673a9c573ad94a
2160302bdf15e85c16400b0032a446d46c7f0b97
88197da554d2252c76a55a229216312e2ee61f78692f9d297358a1ee2b3fc155
GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:09 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=madfXn88W7I3MpznNubT096SIYm4KA3VmQCEUU8HX8mISWo6o%2BzN93J16XOZFwqnyTUnnVmATcUB6DL%2F5a1EgoZwZmt3A8DlOJphdsvT7qJN7WjkHf9he43mZpoS8mtYr8knYGs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dc73f745684-OSL
content-encoding: br
X-Firefox-Spdy: h2
smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=364
192.243.59.20200 OK 0 B URL GET HTTP/1.1 smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=364
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=364 HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
smallestspoutmuffled.com/pixel/sbs?c=1
192.243.59.20200 OK 0 B URL GET HTTP/1.1 smallestspoutmuffled.com/pixel/sbs?c=1
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
www8.gogoanime.me/zenny/salapis3.html
104.26.0.83200 OK 6.3 kB URL GET HTTP/2 www8.gogoanime.me/zenny/salapis3.html
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash b43ad6f90283aa5139bb94b940fe06e1
a2abd1f6e4afce14ba7d69b0f7208fabb6134228
a8d368e50e4786a873e555fe2cb1dee139cf3f664fae4f915a54eb8cca4ed156
GET /zenny/salapis3.html HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: text/html; charset=UTF-8
last-modified: Thu, 04 Jan 2024 12:56:39 GMT
x-varnish: 280271316
age: 154766
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dezdGD5hvPjUI8MRrJPpaJdLjhoX2OYraimGyvvMSxto8moc8QIeBlhELRWz%2F0UQkX%2BPL5WNr5gBA55o4xivsl%2FWXyBbFZPEkJWD9yulCMZ5tF8gUtzwZ%2FN7Vh34FYtrW%2Fvw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db898b2b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
downstairsnegotiatebarren.com/sfp.js
188.114.96.1200 OK 38 kB URL GET HTTP/3 downstairsnegotiatebarren.com/sfp.js
IP 188.114.96.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 511bfc3a022214bba1a953e58fd011ae
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 19 Apr 2024 13:18:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jUnleA7bcay%2FwxMXQHLwNONo5wrj2ZOS23Jhb3JjOVoN91AOTvYzLq%2FikMUwpOYY62eHVaxNKD9uT7bxxtFdIY6UuLVl2j9GLWl5iLZm%2B%2BiYJXdsshaZAL58cZjbabn15B5m7wwAMPxpFMBO6EgLDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dbc2a5456ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www8.gogoanime.me/api/recently_added_series
104.26.0.83200 OK 6.8 kB URL GET HTTP/2 www8.gogoanime.me/api/recently_added_series
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
Hash 9b814c31ef930586aabc6375258d29d1
c9d654cafeb3cb41d620b259ea9dbc558f2d8c81
b0b3486f507c9cd527fcd1996c6cce99ea1586456db504416a71e11c296eafda
GET /api/recently_added_series HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/json
x-powered-by: PHP/5.4.45
x-varnish: 280860448
age: 154766
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
last-modified: Wed, 17 Apr 2024 18:18:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e88cvigaUYHwE3EZ7b205hF%2BAuYBipQ8WM1OtA1roZAVih6dDgSBbbTRamxQaU%2F%2FiNu42BFD8VQK1f%2FIR3dg2U3SNo2JCXTOS%2B7u9vMmngWr4%2BUQjqOgZYZs%2FqDb4iWSznxz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db7cfecb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
ajax.gogocdn.net/anclytic-ajax.html?id=1&link_web=http://www8.gogoanime.me/
172.67.69.52 8.3 kB URL ajax.gogocdn.net/anclytic-ajax.html?id=1&link_web=http://www8.gogoanime.me/
IP 172.67.69.52:0
File type HTML document, ASCII text
Hash be1e7d05b7ace24a68775acd33c1b46d
76b0bcc1f338243597afc5472486f0a94836d2a4
9f70d798621419e7b34a9d0443fd5f3857e4e263ff99dbcbb7168dcb1352ef79
GET /anclytic-ajax.html?id=1&link_web=http://www8.gogoanime.me/ HTTP/1.1
Host: ajax.gogocdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.13
set-cookie: gogoanime=0b5dcignl1qheg831alkdf3of0; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MRwF%2FHDwK2R3zfvRWk6DKI5snmeborNYerwI124YPdJXvfy4k6mLs273Ml9K0Ye81ppe4xigxEXGKiGSZg5FhrgA%2Bcef%2FXN3IVivKXkBzVvJr57mCsWumgGTw086BLqe8gY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2dbd7b6a56c3-OSL
content-encoding: br
X-Firefox-Spdy: h2
grinbettyreserve.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSung16EARlEUHEQTyomEl3T093xj2I6xoJGzfrrqKepLqqelJOdVdb1T09ySm4IHsccvHa%2BSbZ4LqKXry5yGTBw4KQ0UsEg%2F9B2LPMGBx9h3rve98r%2BOp99cV%2BeUZ8lPT0yrt6RypFVzott%2FnyR553qbkhs3LYHK6Gn4TBpaYZvN4NW%2B4rzXcE6%2BsV3%2FVc13O95po0ItHDlRkJmd%2Freq2u2wr8ltcJMDT%2Fx7Z0YKkDPjgjT0Py6dID5yIkmyBLv7sibL%2FQ%2BWtvp6WihTYY8KMPsn6mqwzpokyMgyQ7Op%2BGtidr96Gzw7lc6MG%2Fg7GcEufn%2B4izo3ORiAcHc52xgsgQ8ydQDSYQagJJJ2D6FiQ%2FIQDjuLaJLL1zTZuKbv%2FD0hk7JUuP%2FoKspmTpj4vI0m8vKzls3tSqLKTOLIZJDTmcQPYmyMtjFDsNyOoYrPgckv9CVh5tIEsPNq3SkPz0pbYXeG3OkuWYc7EcJB22HHdFd9mLhO8nq2HgtTvzBUk5gUwmUGIEahsorYNSOigTB2XuIOWnTeZ5XuRyRt3VLmNtHok45K5Ho8SjnhuuomSzN4xQ5CMwNQIzu8jNLvpyb0qcx%2FdOvDOY8ifYrRqWX4AtpsR57zMMeI1KEFSWoKIElSSoCoJqUB9yZX1b3%2BHKlrF3nv3z3K7Huujt00Nd9ERGQM0Ihtf7%2BRl5arZMxxnn6IvTpgjbzOdd6rqhF7lRLNxOl8UsCAIvcKOoAytrSNsAtQ525JQ82%2F0d%2BczgrT8R02NYdQwmnwEtnwetatCtGjvZN31p7TLNZCpalQXXNfJiCcW2s6%2FOyHNzP69%2BuQfBHpLzADM1clPjU%2FmAoKduj2%2Foihzc0JUl32%2FmhUzlDp15fbOghXjs7lWxXWnD16%2FY0VdvshkxK%2B%2B9L2yxQTMus54lX1%2BWnAuzpg0T5Md1%2B6GIr5d263JpsjLfuP7W2nqaG2Gt1NkEVJ58vAcmp%2BTJHzbmn%2FjV5m%2BQZgJT1kjLhVKpJ2D5Lmy%2B6FlNYNQCx7mDqqzHxo8XTSUJlFhgGtew%2F8Hxoh4bOrtNZb1vb6NnGqDFLWRpjYGpMVA1qBrBlhfGRW4evvFrex6IVWMcK9M4iJVRe%2FMlz467sPK0GbXbLg27HS%2BKqIjiwF9NQo9T6gehH4a0jcJOkxf1C38DAAD%2F%2FwEAAP%2F%2FTLD5kZ4EAAA%3D
192.243.59.12200 OK 7 B URL GET HTTP/1.1 grinbettyreserve.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSung16EARlEUHEQTyomEl3T093xj2I6xoJGzfrrqKepLqqelJOdVdb1T09ySm4IHsccvHa%2BSbZ4LqKXry5yGTBw4KQ0UsEg%2F9B2LPMGBx9h3rve98r%2BOp99cV%2BeUZ8lPT0yrt6RypFVzott%2FnyR553qbkhs3LYHK6Gn4TBpaYZvN4NW%2B4rzXcE6%2BsV3%2FVc13O95po0ItHDlRkJmd%2Freq2u2wr8ltcJMDT%2Fx7Z0YKkDPjgjT0Py6dID5yIkmyBLv7sibL%2FQ%2BWtvp6WihTYY8KMPsn6mqwzpokyMgyQ7Op%2BGtidr96Gzw7lc6MG%2Fg7GcEufn%2B4izo3ORiAcHc52xgsgQ8ydQDSYQagJJJ2D6FiQ%2FIQDjuLaJLL1zTZuKbv%2FD0hk7JUuP%2FoKspmTpj4vI0m8vKzls3tSqLKTOLIZJDTmcQPYmyMtjFDsNyOoYrPgckv9CVh5tIEsPNq3SkPz0pbYXeG3OkuWYc7EcJB22HHdFd9mLhO8nq2HgtTvzBUk5gUwmUGIEahsorYNSOigTB2XuIOWnTeZ5XuRyRt3VLmNtHok45K5Ho8SjnhuuomSzN4xQ5CMwNQIzu8jNLvpyb0qcx%2FdOvDOY8ifYrRqWX4AtpsR57zMMeI1KEFSWoKIElSSoCoJqUB9yZX1b3%2BHKlrF3nv3z3K7Huujt00Nd9ERGQM0Ihtf7%2BRl5arZMxxnn6IvTpgjbzOdd6rqhF7lRLNxOl8UsCAIvcKOoAytrSNsAtQ525JQ82%2F0d%2BczgrT8R02NYdQwmnwEtnwetatCtGjvZN31p7TLNZCpalQXXNfJiCcW2s6%2FOyHNzP69%2BuQfBHpLzADM1clPjU%2FmAoKduj2%2Foihzc0JUl32%2FmhUzlDp15fbOghXjs7lWxXWnD16%2FY0VdvshkxK%2B%2B9L2yxQTMus54lX1%2BWnAuzpg0T5Md1%2B6GIr5d263JpsjLfuP7W2nqaG2Gt1NkEVJ58vAcmp%2BTJHzbmn%2FjV5m%2BQZgJT1kjLhVKpJ2D5Lmy%2B6FlNYNQCx7mDqqzHxo8XTSUJlFhgGtew%2F8Hxoh4bOrtNZb1vb6NnGqDFLWRpjYGpMVA1qBrBlhfGRW4evvFrex6IVWMcK9M4iJVRe%2FMlz467sPK0GbXbLg27HS%2BKqIjiwF9NQo9T6gehH4a0jcJOkxf1C38DAAD%2F%2FwEAAP%2F%2FTLD5kZ4EAAA%3D
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSung16EARlEUHEQTyomEl3T093xj2I6xoJGzfrrqKepLqqelJOdVdb1T09ySm4IHsccvHa%2BSbZ4LqKXry5yGTBw4KQ0UsEg%2F9B2LPMGBx9h3rve98r%2BOp99cV%2BeUZ8lPT0yrt6RypFVzott%2FnyR553qbkhs3LYHK6Gn4TBpaYZvN4NW%2B4rzXcE6%2BsV3%2FVc13O95po0ItHDlRkJmd%2Freq2u2wr8ltcJMDT%2Fx7Z0YKkDPjgjT0Py6dID5yIkmyBLv7sibL%2FQ%2BWtvp6WihTYY8KMPsn6mqwzpokyMgyQ7Op%2BGtidr96Gzw7lc6MG%2Fg7GcEufn%2B4izo3ORiAcHc52xgsgQ8ydQDSYQagJJJ2D6FiQ%2FIQDjuLaJLL1zTZuKbv%2FD0hk7JUuP%2FoKspmTpj4vI0m8vKzls3tSqLKTOLIZJDTmcQPYmyMtjFDsNyOoYrPgckv9CVh5tIEsPNq3SkPz0pbYXeG3OkuWYc7EcJB22HHdFd9mLhO8nq2HgtTvzBUk5gUwmUGIEahsorYNSOigTB2XuIOWnTeZ5XuRyRt3VLmNtHok45K5Ho8SjnhuuomSzN4xQ5CMwNQIzu8jNLvpyb0qcx%2FdOvDOY8ifYrRqWX4AtpsR57zMMeI1KEFSWoKIElSSoCoJqUB9yZX1b3%2BHKlrF3nv3z3K7Huujt00Nd9ERGQM0Ihtf7%2BRl5arZMxxnn6IvTpgjbzOdd6rqhF7lRLNxOl8UsCAIvcKOoAytrSNsAtQ525JQ82%2F0d%2BczgrT8R02NYdQwmnwEtnwetatCtGjvZN31p7TLNZCpalQXXNfJiCcW2s6%2FOyHNzP69%2BuQfBHpLzADM1clPjU%2FmAoKduj2%2Foihzc0JUl32%2FmhUzlDp15fbOghXjs7lWxXWnD16%2FY0VdvshkxK%2B%2B9L2yxQTMus54lX1%2BWnAuzpg0T5Md1%2B6GIr5d263JpsjLfuP7W2nqaG2Gt1NkEVJ58vAcmp%2BTJHzbmn%2FjV5m%2BQZgJT1kjLhVKpJ2D5Lmy%2B6FlNYNQCx7mDqqzHxo8XTSUJlFhgGtew%2F8Hxoh4bOrtNZb1vb6NnGqDFLWRpjYGpMVA1qBrBlhfGRW4evvFrex6IVWMcK9M4iJVRe%2FMlz467sPK0GbXbLg27HS%2BKqIjiwF9NQo9T6gehH4a0jcJOkxf1C38DAAD%2F%2FwEAAP%2F%2FTLD5kZ4EAAA%3D HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:23 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2127e34bbbcffdcb692fb7d5393e6cf8
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/img/1.jpg
188.114.97.1200 OK 36 kB URL GET HTTP/3 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/img/1.jpg
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3
Hash fc90b66d3831faf345c0a6173f02746f
4f5310e4fb903bdd4dceaa5d4095e48a83673a69
a2b1cc40143d3a9c13f5ffb5040a72ad972bc7d285c7eceef8708efe369fdeb4
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 13:18:24 GMT
content-type: image/jpeg
content-length: 36061
last-modified: Thu, 01 Feb 2024 14:48:15 GMT
etag: "65bbaf2f-8cdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5615798
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AI8OzXR97H1k79ka27aOiZ7zagwNdYdtzGkkM%2Bs5bE7ZNjBz4OsvxwMsRo18DLzaZIZSDD006emLPnVt%2BA5EV6gOL1D26jPMLOwzPppOdpm85FJkb9WL%2FFlVk%2Bzs%2FS8tjNgDeQqzzuSJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2e2b6a36568f-OSL
alt-svc: h3=":443"; ma=86400
grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Findex.html&l=1553&fd=574
192.243.59.12200 OK 0 B URL GET HTTP/1.1 grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Findex.html&l=1553&fd=574
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Findex.html&l=1553&fd=574 HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/css/animate.css
188.114.97.1200 OK 4.8 kB URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/css/animate.css
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:24 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:48:12 GMT
etag: W/"65bbaf2c-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1735123
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qmqHctuBYJBPBavrbWj6anIGEnUpR06XYSYH8igpLGiSHFbJBkKRwmkmWaRwZrbBuDI3HlNdDSRBTPme4C7WwaT6Mpvi2gf%2Bh%2FOPZPTKKFYXut22aLOsuIZGd3FGLkS2ah0k4mHSQXwJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2e2aca467129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 717 B URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash 5e48f11f5e65274412215f94f73f8c49
4dd35e5b5136df76bd7ff9da1f119d0ec0e57ff7
40992eb57d95a0165a6d56399cd9afd60cc2cac6f06579b8d87079ccaab91e29
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 13:18:24 GMT
date: Fri, 19 Apr 2024 13:18:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fjs%2Fscript.js&l=386&fd=300
192.243.61.225200 OK 0 B URL GET HTTP/1.1 grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fjs%2Fscript.js&l=386&fd=300
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fjs%2Fscript.js&l=386&fd=300 HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.99200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.99:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 10:46:32 GMT
expires: Wed, 16 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 268312
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/index.html
104.26.6.19200 OK 17 kB URL GET HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/index.html
IP 104.26.6.19:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash ce4be93e7b99025fb8589f1f77328164
cdf30c3570f7c7ed0840ba7fe72abeeae9c29988
892770f87203561e88170098d4d7bf67c604abc086e165cbe07782aab5514a38
GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:24 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:48:10 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LZHvPeboirJ5lww5rjsTftEa%2BJgdvMRp9NINsHCzpHuiSU8rDJcW1GKqfri3V6jf8IeVIpFFLstkRu3sCL9ytvlkX%2FGuIuSEb%2FYTHJtw4AXtmjit67yVj1j9P%2Bnxrb9HmKPPFV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2e270ff55684-OSL
content-encoding: br
X-Firefox-Spdy: h2
grinbettyreserve.com/pixel/sbs?c=1
192.243.61.225200 OK 0 B URL GET HTTP/1.1 grinbettyreserve.com/pixel/sbs?c=1
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
grinbettyreserve.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSung16EARlEUHEQTyomEn3TM8v9yDGGAkbN%2Buuop6kfvWknOqutqp7epJTcEH2OOTitfNNssF1Fb14c5HJgocFIaOXCAb%2FB2HPMmNw9B3qve99r%2BCr99UXB%2Fk5qSOnZ2vvml2lNV1p1vzqyx8FwZXqpkryYXXYaX3SCq9U7eD1bqvmv1J9R%2FK%2BWan7ge8HflBdV1ZGZrgyI6HSe92g1vVrYb0WNEMM7f%2Bxyz046kEMzsnTUGK69MC7DMUnSOLv1qTrZyZ97e041zQzFgNx%2FEHST0yRIF6UkfUQJccX0zDudP0%2BTHI0lwsz%2BHeQqSnxfr4PlhxfiAQbHM51Mg2ZgIknUAwmkHoCRSfg5haUOCUAF7i2hSS%2Bc83Ygu78w9IZOyVLj%2F6CKqZk6Y%2FLSOJvV7UaVm8anWfKJA7DqIQaTqB6E6T5CbLdClRxAp59DiV%2BISuPNpHEh1tOGyhx9lIjCIOG4NEyE0Iuh1GTL7Ou7C4HbVmvR51WGDSa8wUpNYGKJtByBOoqyJ2HXHnIIw956iEWZ1UeBEHbF5z6nS7nDdGWrCX8gLajgAZ%2Bq4Ocz94wQpaOwPUI3O4htXvoq%2F0p8R7fPw3OYfOf4LZLOHEJLpsS773PMBAlCklQOIKCEhSKoMgIikF5JLSru%2FKO0C5nwUWuX%2BRGOTZZ74AemawnEwJqR7CiPEjPyVOzZXreOEVfnlVlq8Hrokt9vxW0%2FTaTfrPLGQ%2FDMAj9drsJp0ooVwF1HnbVlDzb%2FR3pzODtP8HoCZw%2BAVfPgObPgxYl6HaJ3eSbvnJumSYqlrXCQZgSabaEbMc70OfkubmfV7%2Fch%2BQPyUWA2xKpLfGpekDQ07fHN0xBDm%2BYwpHvt9JMxWqXzry%2BmdFMPnb3qtwpjBUba2701Zt8RszKe%2B9Ll23SRKik58jXq0oIadeN5ZL8uOE%2BlOx67rZXc5vk6eb1t9Y34tRK55RJJqDq9ON9cDUlT%2F6wOf%2FEr1Z%2Fg7IT2LxEnC%2BUKjMBT%2Ffg0kXPGQKrF5ilHoq8HNs6WzS1ItBygSkr4f6D2aIeWzq7TVV54G6jZyug2S0kcYmBLTHQJageweWXxllqH77xa2MeYLoyZtpWDpm2en%2B%2B5NlxF06dVRu%2BaDMZyTaTYTOMJBes2WQ%2BjzhriE6HI3PT6EXzwt8AAAD%2F%2FwEAAP%2F%2FzGQseZ4EAAA%3D
192.243.59.12200 OK 7 B URL GET HTTP/1.1 grinbettyreserve.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSung16EARlEUHEQTyomEn3TM8v9yDGGAkbN%2Buuop6kfvWknOqutqp7epJTcEH2OOTitfNNssF1Fb14c5HJgocFIaOXCAb%2FB2HPMmNw9B3qve99r%2BCr99UXB%2Fk5qSOnZ2vvml2lNV1p1vzqyx8FwZXqpkryYXXYaX3SCq9U7eD1bqvmv1J9R%2FK%2BWan7ge8HflBdV1ZGZrgyI6HSe92g1vVrYb0WNEMM7f%2Bxyz046kEMzsnTUGK69MC7DMUnSOLv1qTrZyZ97e041zQzFgNx%2FEHST0yRIF6UkfUQJccX0zDudP0%2BTHI0lwsz%2BHeQqSnxfr4PlhxfiAQbHM51Mg2ZgIknUAwmkHoCRSfg5haUOCUAF7i2hSS%2Bc83Ygu78w9IZOyVLj%2F6CKqZk6Y%2FLSOJvV7UaVm8anWfKJA7DqIQaTqB6E6T5CbLdClRxAp59DiV%2BISuPNpHEh1tOGyhx9lIjCIOG4NEyE0Iuh1GTL7Ou7C4HbVmvR51WGDSa8wUpNYGKJtByBOoqyJ2HXHnIIw956iEWZ1UeBEHbF5z6nS7nDdGWrCX8gLajgAZ%2Bq4Ocz94wQpaOwPUI3O4htXvoq%2F0p8R7fPw3OYfOf4LZLOHEJLpsS773PMBAlCklQOIKCEhSKoMgIikF5JLSru%2FKO0C5nwUWuX%2BRGOTZZ74AemawnEwJqR7CiPEjPyVOzZXreOEVfnlVlq8Hrokt9vxW0%2FTaTfrPLGQ%2FDMAj9drsJp0ooVwF1HnbVlDzb%2FR3pzODtP8HoCZw%2BAVfPgObPgxYl6HaJ3eSbvnJumSYqlrXCQZgSabaEbMc70OfkubmfV7%2Fch%2BQPyUWA2xKpLfGpekDQ07fHN0xBDm%2BYwpHvt9JMxWqXzry%2BmdFMPnb3qtwpjBUba2701Zt8RszKe%2B9Ll23SRKik58jXq0oIadeN5ZL8uOE%2BlOx67rZXc5vk6eb1t9Y34tRK55RJJqDq9ON9cDUlT%2F6wOf%2FEr1Z%2Fg7IT2LxEnC%2BUKjMBT%2Ffg0kXPGQKrF5ilHoq8HNs6WzS1ItBygSkr4f6D2aIeWzq7TVV54G6jZyug2S0kcYmBLTHQJageweWXxllqH77xa2MeYLoyZtpWDpm2en%2B%2B5NlxF06dVRu%2BaDMZyTaTYTOMJBes2WQ%2BjzhriE6HI3PT6EXzwt8AAAD%2F%2FwEAAP%2F%2FzGQseZ4EAAA%3D
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSung16EARlEUHEQTyomEn3TM8v9yDGGAkbN%2Buuop6kfvWknOqutqp7epJTcEH2OOTitfNNssF1Fb14c5HJgocFIaOXCAb%2FB2HPMmNw9B3qve99r%2BCr99UXB%2Fk5qSOnZ2vvml2lNV1p1vzqyx8FwZXqpkryYXXYaX3SCq9U7eD1bqvmv1J9R%2FK%2BWan7ge8HflBdV1ZGZrgyI6HSe92g1vVrYb0WNEMM7f%2Bxyz046kEMzsnTUGK69MC7DMUnSOLv1qTrZyZ97e041zQzFgNx%2FEHST0yRIF6UkfUQJccX0zDudP0%2BTHI0lwsz%2BHeQqSnxfr4PlhxfiAQbHM51Mg2ZgIknUAwmkHoCRSfg5haUOCUAF7i2hSS%2Bc83Ygu78w9IZOyVLj%2F6CKqZk6Y%2FLSOJvV7UaVm8anWfKJA7DqIQaTqB6E6T5CbLdClRxAp59DiV%2BISuPNpHEh1tOGyhx9lIjCIOG4NEyE0Iuh1GTL7Ou7C4HbVmvR51WGDSa8wUpNYGKJtByBOoqyJ2HXHnIIw956iEWZ1UeBEHbF5z6nS7nDdGWrCX8gLajgAZ%2Bq4Ocz94wQpaOwPUI3O4htXvoq%2F0p8R7fPw3OYfOf4LZLOHEJLpsS773PMBAlCklQOIKCEhSKoMgIikF5JLSru%2FKO0C5nwUWuX%2BRGOTZZ74AemawnEwJqR7CiPEjPyVOzZXreOEVfnlVlq8Hrokt9vxW0%2FTaTfrPLGQ%2FDMAj9drsJp0ooVwF1HnbVlDzb%2FR3pzODtP8HoCZw%2BAVfPgObPgxYl6HaJ3eSbvnJumSYqlrXCQZgSabaEbMc70OfkubmfV7%2Fch%2BQPyUWA2xKpLfGpekDQ07fHN0xBDm%2BYwpHvt9JMxWqXzry%2BmdFMPnb3qtwpjBUba2701Zt8RszKe%2B9Ll23SRKik58jXq0oIadeN5ZL8uOE%2BlOx67rZXc5vk6eb1t9Y34tRK55RJJqDq9ON9cDUlT%2F6wOf%2FEr1Z%2Fg7IT2LxEnC%2BUKjMBT%2Ffg0kXPGQKrF5ilHoq8HNs6WzS1ItBygSkr4f6D2aIeWzq7TVV54G6jZyug2S0kcYmBLTHQJageweWXxllqH77xa2MeYLoyZtpWDpm2en%2B%2B5NlxF06dVRu%2BaDMZyTaTYTOMJBes2WQ%2BjzhriE6HI3PT6EXzwt8AAAD%2F%2FwEAAP%2F%2FzGQseZ4EAAA%3D HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:25 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6bdd8e4f0e72bc40d763bb332eef0c8a
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css
188.114.97.1200 OK 3.6 kB URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (3854), with no line terminators
Hash 1ef6c40dc9237f64e46f930e4b26d112
7e94a725845a7101b17bfc0ff488e27c12060c1d
e23167c1f14d771e6eb40f86085c2f04f52010a5e934cff3f9e214aab984f4b4
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:09 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:03 GMT
etag: W/"65bbb0c7-e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7TU%2FJJOxpqeucZo8q%2BjvZSotwgFkRPFMYmCFqWX9%2B5VHzAMZs%2BBssxQ1TQS1VdipaYiBzD%2FWDKGQywcbDHOMOi2FmQNLEavByK0DVEC81avvK0dsSI%2Be5iqq9BFzNtUkxyCytx76joN%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dcb2a057129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/favicon.ico
104.26.0.83200 OK 1.2 kB URL GET HTTP/2 www8.gogoanime.me/assets/favicon.ico
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash b35b6d1fb3d0f9c64e2d1ce9ff4a44c2
43e15f41e347effe969ce39b83fe44627c51a346
8743617fdbd721ce7d949b61e9133762cfcc15ddce90afabd20dba2a300a438a
GET /assets/favicon.ico HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1; pp_main_37702aa9c5918dbdc2e88ba53571ba54=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: image/vnd.microsoft.icon
last-modified: Tue, 06 Jul 2021 14:11:44 GMT
etag: W/"47e-5c675006a6800"
x-varnish: 278084379
age: 155441
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0bRfcUeBt9zlpQU%2FsKlZtw7gRn5SSMIS4usdCzn2oRbIbopI6ivF4ZRVhfB90q6bsVTY%2BlF3goKCOXy3i6NA%2FZeGSnE0NDzfiGo8nTgtqNUmUqUnrwjK%2F5oW%2FKb4ob9AKe5U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dc0d830b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/js/script.js
188.114.97.1200 OK 386 B URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/js/script.js
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (399), with no line terminators
Hash 022602a468da44628060800173771da2
9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c
6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:24 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:48:15 GMT
etag: W/"65bbaf2f-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZ7D76AY%2Fvhb5z%2FmP2PHJyaxN1nb6pk3HRWZDh3fw7OBSoEAT9yComb3Xxhanzt6LDlNdFL1NYii4sG4cBAYQokZPmim%2FPSdGRNOsd4yXRrYHuz3I58ihH4ZeAcxOWFE6GhwgkqNWAj1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2e2aca4a7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/MyriadPro-Regular.ttf
104.26.0.83200 OK 364 kB URL GET HTTP/2 www8.gogoanime.me/assets/MyriadPro-Regular.ttf
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type TrueType Font data, 20 tables, 1st "GPOS", 23 names, Macintosh, � 1992, 1994, 1997, 2000, 2004 Adobe Systems Incorporated. All rights reserved. Protected by U.S
Size 364 kB (363680 bytes)
Hash aeaff3e02250b65d88887f2f28714836
5c2716a1235091f8fbf5dd1618ca928d4aa87fba
0b0d0464b4990b53fecec96ed57ac75e4de4d3bfe6a781c399e98876b22afd58
GET /assets/MyriadPro-Regular.ttf HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/assets/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/font-sfnt
last-modified: Sun, 11 Jul 2021 14:25:55 GMT
etag: W/"58ca0-5c6d9c85882c0"
x-varnish: 280955660
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aR6DUwTrpIzvCmFKEVeooU8B1ZdGh%2BJL1mkEZ2wcNcjZGMfgnxgSp8PkxhI6caS9iPuuOX48JG1iU4HSYLf8p%2FhGlR3bq1fKmbpCfBPBYXW4ubTBgb6dANwA932tjO%2FwCkzU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db9696bb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/jquery.js
104.26.0.83200 OK 266 kB URL GET HTTP/2 www8.gogoanime.me/assets/jquery.js
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text
Size 266 kB (266058 bytes)
Hash 7dbcb3ecc6d341657ec820452d114712
a9eb4cd339914bce075f18294f9747012e17fa91
d71848991a0c92d7f1aab3360cbe2d230d010fcd63061bd441bfd11429518b67
GET /assets/jquery.js HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: application/javascript
last-modified: Tue, 06 Jul 2021 16:14:19 GMT
etag: W/"40f4a-5c676b6ceccc0"
x-varnish: 278351769
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vaD1cPQFdrKLTKnIy7ZNE4MjSguSV75HzsNiBC9QWhIE%2FsUyi98loTMxwwtaN70pdzdIb4rd9B3bvhV6Wll8FzmzfvZhTS4D4CNqFnso4nMw4v5sW%2BzMWeNXGz4UvBTYEk01"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db67dfbb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js
188.114.97.1200 OK 386 B URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (399), with no line terminators
Hash 022602a468da44628060800173771da2
9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c
6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:09 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:55:06 GMT
etag: W/"65bbb0ca-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IK0TFy8%2BrUtf4YalKA8w8W0dB6phl%2B5gun%2F97vR9aAyAPNtLvURCM7I6fLVL%2BZGNWnTU6dZuoIyWRUNs3axfA4ofK5ey73%2FS8fw%2BqCigtIFVlnN0bc6jA99QOTSYt1AGydlUIDnoG4oT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dcb2a037129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
capaciousdrewreligion.com/advertisers.js
192.243.59.12200 OK 0 B URL GET HTTP/1.1 capaciousdrewreligion.com/advertisers.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC
ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 99b22575b28f694fcdc7b0538109fc97
Strict-Transport-Security: max-age=0; includeSubdomains
platform.bidgear.com/ads.php?domainid=6321&sizeid=29&zoneid=7484
172.67.74.36200 OK 3.0 kB URL GET HTTP/2 platform.bidgear.com/ads.php?domainid=6321&sizeid=29&zoneid=7484
IP 172.67.74.36:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectbidgear.com
Fingerprint3A:1B:89:53:D8:F9:FF:FC:DB:60:64:92:D3:A6:9D:C2:12:8D:AB:43
ValiditySat, 30 Mar 2024 23:48:28 GMT - Fri, 28 Jun 2024 23:48:27 GMT
File type JavaScript source, ASCII text, with very long lines (3160), with no line terminators
Hash f477090502de812aff7077b55658d709
373f20e3193e68ceabf381e8c2374cd35ed92add
4f4eeeb2c47baf9c2a82d0775816dc968a73bbeaf3d21a2c20ba7437bee18160
GET /ads.php?domainid=6321&sizeid=29&zoneid=7484 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZqudAHSqJlc1TMKhUm1iPIDUBiWLeRnppv2ALknwrc2Agg7yUR7r5DQ%2FQ2xa%2FRNgs79%2Fb2%2FcrLTWEdjcerCH%2BqsZBEki%2Fy45qQ2x0l881xzdckS%2F8wyXgII3zFVyejQH8T77yIzT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db8ae38b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
connectionsoathbottles.com/pixel/purst?dl=0&th=0&sc=0&rs=1090&rd=1090&fd=839&bv=24.4.6608&tmpl=70
192.243.59.13200 OK 0 B URL GET HTTP/1.1 connectionsoathbottles.com/pixel/purst?dl=0&th=0&sc=0&rs=1090&rd=1090&fd=839&bv=24.4.6608&tmpl=70
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectconnectionsoathbottles.com
Fingerprint68:98:0D:06:BB:2A:63:40:EA:C8:2E:9C:92:D5:28:92:1A:4A:FB:3B
ValidityTue, 16 Apr 2024 10:35:09 GMT - Mon, 15 Jul 2024 10:35:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1090&rd=1090&fd=839&bv=24.4.6608&tmpl=70 HTTP/1.1
Host: connectionsoathbottles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css
188.114.97.1200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:09 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
etag: W/"65bbb0c5-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hTXCrsqpSQyJmZj2Ap86hIYKaxQajm2dcqSzMr5iL0IWelAXuDbWyo8oFBU7wFjRX7%2BZuprblqfW0BwE15dkxl%2FcD1oGZnhRCtL46uNl6bBaJHoWZAgmndmmanBaY1O0o0yx0AT2ErZ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dcb2a017129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fcss%2Fstyle.css&l=3630&fd=303
192.243.59.12200 OK 0 B URL GET HTTP/1.1 grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fcss%2Fstyle.css&l=3630&fd=303
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fcss%2Fstyle.css&l=3630&fd=303 HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
bidgear.com/images/close-icon.png
172.67.74.36200 OK 1.7 kB URL GET HTTP/2 bidgear.com/images/close-icon.png
IP 172.67.74.36:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectbidgear.com
Fingerprint3A:1B:89:53:D8:F9:FF:FC:DB:60:64:92:D3:A6:9D:C2:12:8D:AB:43
ValiditySat, 30 Mar 2024 23:48:28 GMT - Fri, 28 Jun 2024 23:48:27 GMT
File type PNG image data, 84 x 84, 8-bit/color RGBA, non-interlaced
Hash 2e38f9e402d0fdd6d641a8139d477a26
5d7c14058fe02b27368206d38034ddba63ef0db6
e59b1cc34661e9cee79b60bd1785c2f02796f6611ba14819cbcda90c3b8e8816
GET /images/close-icon.png HTTP/1.1
Host: bidgear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
last-modified: Tue, 27 Jun 2023 07:17:59 GMT
vary: Accept-Encoding
etag: W/"649a8d27-6cb"
expires: Fri, 12 Apr 2024 15:33:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1572033
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6%2Fefws%2FGgYGO3%2FrKq3HC51WfXA0vk2tF9DNBZrs9Nfn5zS2BQGGgDQU99VgYnEBslxApAMzJ8RAeVIJcfHsLk1AthyTzctCRcnPq%2BNS8CpK31NQm1TF0z1YiFbAh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2dbc19f7b4ed-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/css/style.css
188.114.97.1200 OK 3.6 kB URL GET HTTP/2 cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/css/style.css
IP 188.114.97.1:443
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (3854), with no line terminators
Hash 1ef6c40dc9237f64e46f930e4b26d112
7e94a725845a7101b17bfc0ff488e27c12060c1d
e23167c1f14d771e6eb40f86085c2f04f52010a5e934cff3f9e214aab984f4b4
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:24 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:48:12 GMT
etag: W/"65bbaf2c-e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mOBxJo9h8wdYMtpjVE52rBXcBjj8vQv2A%2Fr%2B%2FKmWn066o7oWDTQi7mHYz7NB6JDTEGWlMmKqdckx%2BzRNMy0TWfdtD7wDVLhxMicSOVwOmxXvFzOxMLWq7CfSRtCf0WZK0KhQRyP%2B78Xq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2e2aca487129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www8.gogoanime.me/assets/main.js
104.26.0.83200 OK 30 kB URL GET HTTP/2 www8.gogoanime.me/assets/main.js
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (405), with CRLF line terminators
Hash f70829278e67a4e5cbb5d47ee625a7d0
6d3a6b01ef10eb755bc81ee6ffa8fe27cd4c2f8c
9efbac9442e061bb7ead62b697685d8d63c4b9fda229292b60e06905979837e7
GET /assets/main.js HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: application/javascript
last-modified: Sat, 18 Sep 2021 14:51:59 GMT
etag: W/"75e9-5cc46309e21c0"
x-varnish: 280041278
age: 155440
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m7Wf8uqm5UtoK9fXg%2BTfb7RwXitWWlsGuY6WDGjTEUl2PiZXSNTxCRdxiunz1OzrhKS%2Fg9%2Fc6huFysTzH2daJEnNFwECxO308bC6FrsksEiPI4UVCmthft8Octs8q8G88LKP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db67dfdb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
18.185.247.192200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP 18.185.247.192:443
Requested by https://www8.gogoanime.me/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 228c0ba22e53c70222d99b6adb2a2492
3e0e610ee86901ebb6b16ed1ad51e384caba2580
6b6f6f6dbb05fc7c22ea854eb7ed97d2c6d70fe799cde5af9cc58602dc2e7d7f
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www8.gogoanime.me
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; expires=Mon, 17 Apr 2034 13:18:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=358
172.240.108.84200 OK 0 B URL GET HTTP/1.1 smallestspoutmuffled.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=358
IP 172.240.108.84:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectsmallestspoutmuffled.com
FingerprintAA:3C:11:5B:72:3D:1D:02:0D:9F:CC:C4:C9:91:5F:09:48:6C:F2:D9
ValidityTue, 16 Apr 2024 10:29:28 GMT - Mon, 15 Jul 2024 10:29:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=358 HTTP/1.1
Host: smallestspoutmuffled.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=17186393; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
104.26.0.83200 OK 26 kB URL User Request GET HTTP/2 IP 104.26.0.83:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.4.45
x-varnish: 281339247
age: 25605
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
last-modified: Fri, 19 Apr 2024 06:11:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m9gs6oaVZJoYkFEhyU6aeksvZJwtzHlsC40N6erhdWQx153IGb7Q3GM9hgPkUa%2BTYn%2FLGUf7cbrJEuB1nw47Ctz7nWQKG%2BqqZAxAmcfqhQA6zU6Or0SuXm%2B3oknXQdw5iwqP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db4ec01b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=84170ab3a49de24a68075871d2138d3a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
192.243.59.13200 OK 0 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=84170ab3a49de24a68075871d2138d3a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=84170ab3a49de24a68075871d2138d3a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ba5776e8dec4df6f22d7f49ac3444171
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=e63c2d9a0061707be059cbc444140775&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
192.243.59.13200 OK 0 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=e63c2d9a0061707be059cbc444140775&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=e63c2d9a0061707be059cbc444140775&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:09 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e5dcbadfd189c89b7b7efe7580d5b63b
Strict-Transport-Security: max-age=0; includeSubdomains
grinbettyreserve.com/sbar.json?key=e63c2d9a0061707be059cbc444140775&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
192.243.59.12200 OK 12 kB URL GET HTTP/1.1 grinbettyreserve.com/sbar.json?key=e63c2d9a0061707be059cbc444140775&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
Hash 02c6ed540128e40d82455cb8439af828
66bfa053cac31dd1cee7655bd8b1fcab29c3c3d2
29660ac44f5823c14b33cb1ac4d2be24de12be9449bb3b6fd2f226df290be666
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=e63c2d9a0061707be059cbc444140775&uuid=31413dcf-bdde-4f5c-b9e9-17e22f864135%3A2%3A1 HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:23 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www8.gogoanime.me
Access-Control-Allow-Origin: https://www8.gogoanime.me
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16884592; expires=Sat, 20 Apr 2024 13:18:23 GMT; secure; SameSite=None
uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; expires=Fri, 26 Apr 2024 13:18:23 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 20 Apr 2024 13:18:23 GMT; secure; SameSite=None
uncs=1; expires=Sat, 20 Apr 2024 13:18:23 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 20 Apr 2024 13:18:23 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 20 Apr 2024 13:18:23 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 57089acb20bfbbe80e555bd7cb7e19ea
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fcss%2Fanimate.css&l=79245&fd=24
192.243.59.12200 OK 0 B URL GET HTTP/1.1 grinbettyreserve.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fcss%2Fanimate.css&l=79245&fd=24
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www8.gogoanime.me/zenny/salapis3.html
Certificate IssuerLet's Encrypt
Subjectgrinbettyreserve.com
FingerprintC3:91:98:36:11:9B:98:C5:4E:71:62:A2:E4:23:3F:8E:6E:B1:8C:6C
ValidityTue, 16 Apr 2024 14:07:48 GMT - Mon, 15 Jul 2024 14:07:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F1%2Fcss%2Fanimate.css&l=79245&fd=24 HTTP/1.1
Host: grinbettyreserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Cookie: u_pl=16884592; uid_id2=31413dcf-bdde-4f5c-b9e9-17e22f864135:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 19 Apr 2024 13:18:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
platform.bidgear.com/ads.php?domainid=6321&sizeid=2&zoneid=6834
172.67.74.36200 OK 613 B URL GET HTTP/2 platform.bidgear.com/ads.php?domainid=6321&sizeid=2&zoneid=6834
IP 172.67.74.36:443
Requested by https://www8.gogoanime.me/zenny/3ol.html
Certificate IssuerLet's Encrypt
Subjectbidgear.com
Fingerprint3A:1B:89:53:D8:F9:FF:FC:DB:60:64:92:D3:A6:9D:C2:12:8D:AB:43
ValiditySat, 30 Mar 2024 23:48:28 GMT - Fri, 28 Jun 2024 23:48:27 GMT
File type HTML document, ASCII text, with very long lines (638), with no line terminators
Hash 74d9bc0a365f1034ba788b6a9bbbfc82
0cae1fafc90efc2f9bdaa8b21f2e59ec7fa5c7ac
2b4068eb81e4f7374fc489b254cc7872a0ee5e521fe273ca833efd461c192330
GET /ads.php?domainid=6321&sizeid=2&zoneid=6834 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/javascript
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aAp9vxwbhl25kMQ5FaYaIFy3RMWT69odnzTU%2FHdNmYp1PiJJ%2FVHZP%2B5PEKAm1Y7JymY1TX2ey5K7pPnG1%2BWnBSlk15Z41LqoCRp7zNjAaidJEvzCzAf3cUD1b%2Bv79Fuw%2BHjvK8VW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2db8ce59b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
ajax.gogocdn.net/anclytic-ajax.html?id=1&link_web=http://www8.gogoanime.me/
172.67.69.52200 OK 2.6 kB URL GET HTTP/2 ajax.gogocdn.net/anclytic-ajax.html?id=1&link_web=http://www8.gogoanime.me/
IP 172.67.69.52:443
Requested by https://www8.gogoanime.me/
Certificate IssuerLet's Encrypt
Subjectgogocdn.net
Fingerprint07:C3:CB:82:15:85:5A:F1:BD:D3:90:05:B6:14:96:64:3B:7D:80:0F
ValiditySun, 10 Mar 2024 03:30:54 GMT - Sat, 08 Jun 2024 03:30:53 GMT
File type HTML document, ASCII text, with very long lines (2748), with no line terminators
Hash 12f84602118a480c8ecf426cc1fe8aca
f33ebe3dca925a1fc05f7667acdcfd2c90aff710
3b03f31fb81f19bd68c48200fc22e807d808aa0ccfbd7244e91dbf9b5ddcf857
GET /anclytic-ajax.html?id=1&link_web=http://www8.gogoanime.me/ HTTP/1.1
Host: ajax.gogocdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www8.gogoanime.me
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.13
set-cookie: gogoanime=0b5dcignl1qheg831alkdf3of0; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MRwF%2FHDwK2R3zfvRWk6DKI5snmeborNYerwI124YPdJXvfy4k6mLs273Ml9K0Ye81ppe4xigxEXGKiGSZg5FhrgA%2Bcef%2FXN3IVivKXkBzVvJr57mCsWumgGTw086BLqe8gY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876d2dbd7b6a56c3-OSL
content-encoding: br
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/6hp-six-hearts-princess.png
104.26.0.83200 OK 22 kB URL GET HTTP/2 www8.gogoanime.me/cover/6hp-six-hearts-princess.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x321, components 3
Hash 64f524decf32a9e456cad1dc020c1cb8
91db25cbca06a5e519131135e412e7b092954c20
78fc0962903cb0be4a1ba58949a051a4617283a855ea88a1cba502611b46f911
GET /cover/6hp-six-hearts-princess.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 21706
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=21788
etag: "551c-5d49a9b0691af"
last-modified: Sun, 02 Jan 2022 14:56:14 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280502716
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ECEUGrX43cNKRzCirPcWn8CPqNC1r9QtwHKV8imkY6P2qvsa3iq9yW6Bz0PC8T63tzYfu8OJ0yIhWavqqQO3YLaqhIo2%2F0kF6Vvi9oQQ06v%2FnPTrrILjO3cM7Asd7sJ4wgE%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba5a45b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/cover/martial-arts-master.png
104.26.0.83200 OK 11 kB URL GET HTTP/2 www8.gogoanime.me/cover/martial-arts-master.png
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x225, components 3
Hash 19062c7132b62e9972d15614a491836d
d93878db7de24474f8ccebd3ca52ef1aa60c7e58
17dc6d3a255922f249e435de1f2cc6c79e0c0164660f3a65015f8bd52328f1bb
GET /cover/martial-arts-master.png HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: image/png
content-length: 11051
age: 154765
cf-bgj: imgq:100,h2pri
cf-polished: origSize=11371
etag: "2c6b-5f84442d13d12"
last-modified: Sat, 01 Apr 2023 11:02:26 GMT
via: 1.1 varnish (Varnish/6.0)
x-varnish: 280041976
cache-control: max-age=172800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=flS1LhnJRASwOESFMDpk1zYF7uK3bXvnrGSEmE53QF3ErLmBwlFXBc4QC4Dar3A6LNUjGSURvujCgyveCMoyRUwO9HfJwyTS23DIe9Suyjbgog%2FpN0rjPRdOIbX7eN6eSa7h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2dba4a32b4eb-OSL
X-Firefox-Spdy: h2
www8.gogoanime.me/api/ongoing_series
104.26.0.83200 OK 109 kB URL GET HTTP/2 www8.gogoanime.me/api/ongoing_series
IP 104.26.0.83:443
Requested by https://www8.gogoanime.me/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint87:0E:9C:56:75:A3:FA:15:1D:4D:05:97:88:6A:9D:4A:BA:55:F8:F0
ValidityThu, 06 Jul 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
Size 109 kB (108838 bytes)
Hash 3760753cbdd5ed68aac475b6234d35aa
5249701de888f89d4604c62ab74ef86f461e618f
3d0408e4aaf056e6dd4d126565d19fc631dde76f1c9739d289765e401edc3c2b
GET /api/ongoing_series HTTP/1.1
Host: www8.gogoanime.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www8.gogoanime.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 13:18:06 GMT
content-type: application/json
x-powered-by: PHP/5.4.45
x-varnish: 278321431
age: 154766
via: 1.1 varnish (Varnish/6.0)
cache-control: max-age=172800
cf-cache-status: HIT
last-modified: Wed, 17 Apr 2024 18:18:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xv0G6ubn4gXXzMiIQvZQ64kyUPeEKN8D7C7H3%2BsTuyrESGAI9Ar3phchwhkB1iu97JrIC7onjHJ5yAYQet9u2FoU7Te6V1dh4i7aMebBtskkXVt9cL0fgoNgjA5FprfQK5B0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876d2db8a8b5b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2