| animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe |  185.178.208.138 | 200 OK | 747 B |
URL User Request GET HTTP/2animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe IP185.178.208.138:443
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeHTML document, ASCII text, with very long lines (747), with no line terminators Hash09e3f0596027519c12ed1ed716fea8af e3efb7b777d67e71ebc6a41a40d8557a498cd854 62d7de601e108ea0e4c50e165872efa95fef735c7a51481d513bb5b36a568cde
GET /play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:47 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddgid_=Ewfp01vW6lbyn14H; Domain=.animepahe.ru; HttpOnly; Path=/; Expires=Sat, 26-Apr-2025 03:09:47 GMT
__ddgmark_=dnTGyPUrI1CvKwBM; Domain=.animepahe.ru; HttpOnly; Path=/; Expires=Sat, 27-Apr-2024 03:09:47 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
content-length: 747
X-Firefox-Spdy: h2
|
|
| animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe | 185.178.208.138 | 200 OK | 568 B |
URL User Request GET HTTP/2animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe IP185.178.208.138:443
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators Hash2761b98db33884ab29711096ab315edb 8cea6e53464aea178b72e06a906205d040f14ca5 9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee
GET /play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Date: Fri, 26 Apr 2024 03:09:48 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Content-Type: text/html; charset=utf8
Content-Length: 568
|
|
| animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe | 185.178.208.138 | 200 OK | 747 B |
URL User Request GET HTTP/2animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe IP185.178.208.138:443
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeHTML document, ASCII text, with very long lines (747), with no line terminators Hash09e3f0596027519c12ed1ed716fea8af e3efb7b777d67e71ebc6a41a40d8557a498cd854 62d7de601e108ea0e4c50e165872efa95fef735c7a51481d513bb5b36a568cde
GET /play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-security-policy: upgrade-insecure-requests;
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
content-length: 747
X-Firefox-Spdy: h2
|
|
| animepahe.ru/.well-known/ddos-guard/js-challenge/index.css | 185.178.208.138 | | 3.0 kB |
URL animepahe.ru/.well-known/ddos-guard/js-challenge/index.css IP185.178.208.138:0
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeASCII text, with very long lines (2960) Hashdfd581c70ef05384bb8089ae87dfaad5 954ea9c66fa52c8546900d94482a72d366a18d0f 3bcbb22ed60fc8cac1887b4f7adbc62e578dc7c5e814768b9a8192decdc55137
GET /.well-known/ddos-guard/js-challenge/index.css HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-type: text/css
expires: Fri, 26 Apr 2024 04:09:48 GMT
content-length: 2961
X-Firefox-Spdy: h2
|
|
| animepahe.ru/.well-known/ddos-guard/js-challenge/view.js | 185.178.208.138 | | 44 kB |
URL animepahe.ru/.well-known/ddos-guard/js-challenge/view.js IP185.178.208.138:0
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (44252), with no line terminators Hash03e153375d4834cfd10eb8423cd00331 279f3249e066be4e61cf17710b87807bbbaf7de4 71158fa7308057865c78415e48ae462926774b56656c99bff642a0788ed5370f
GET /.well-known/ddos-guard/js-challenge/view.js HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-type: application/javascript
expires: Fri, 26 Apr 2024 04:09:48 GMT
content-length: 44401
X-Firefox-Spdy: h2
|
|
| animepahe.ru/.well-known/ddos-guard/js-challenge/index.js | 185.178.208.138 | | 145 kB |
URL animepahe.ru/.well-known/ddos-guard/js-challenge/index.js IP185.178.208.138:0
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65441) Size145 kB (144676 bytes) Hashd741b21f80781267d718b6fb7d7fb5b6 cfb8b34c1b2bf6a2ab2c1ba52af476e0dede3f91 1178bdeab6cbf37326ade037d83cca061c27e1a1ae463dedea7141702f526008
GET /.well-known/ddos-guard/js-challenge/index.js HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-type: application/javascript
expires: Fri, 26 Apr 2024 04:09:48 GMT
content-length: 144676
X-Firefox-Spdy: h2
|
|
| check.ddos-guard.net/check.js | 185.129.100.100 | | 152 B |
URL check.ddos-guard.net/check.js IP185.129.100.100:0
File typeJavaScript source, ASCII text, with no line terminators Hash4186f2f22ab3913b5672df9aea2a123d 17bce1feac79fa955b47bf15973ec02380548ba5 42fa602c00a45306cb1839cb0ed59b40f81fdd424a9767799c030775cfb47e4d
GET /check.js HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-type: application/javascript
expires: Sat, 26 Apr 2025 03:09:48 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: private, s-maxage=0, max-age=31536000
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
etag: l62zpRV2mjMQfunw
set-cookie: __ddg2=l62zpRV2mjMQfunw; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Sat, 26-Apr-2025 03:09:48 GMT
content-length: 152
X-Firefox-Spdy: h2
|
|
| animepahe.ru/.well-known/ddos-guard/id/l62zpRV2mjMQfunw | 185.178.208.138 | | 68 B |
URL animepahe.ru/.well-known/ddos-guard/id/l62zpRV2mjMQfunw IP185.178.208.138:0
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typePNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced Hashe679fbd466a2d656f194a5da4fa083cd 2aa795c7607aa6ea41313be88f1b7a9c1ab516b3 f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /.well-known/ddos-guard/id/l62zpRV2mjMQfunw HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
set-cookie: __ddg2_=l62zpRV2mjMQfunw; Domain=animepahe.ru; Path=/; HttpOnly; Expires=Sat, 26-Apr-2025 03:09:48 GMT
content-length: 68
X-Firefox-Spdy: h2
|
|
| check.ddos-guard.net/set/id/l62zpRV2mjMQfunw | 185.129.100.100 | | 68 B |
URL check.ddos-guard.net/set/id/l62zpRV2mjMQfunw IP185.129.100.100:0
File typePNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced Hashe679fbd466a2d656f194a5da4fa083cd 2aa795c7607aa6ea41313be88f1b7a9c1ab516b3 f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /set/id/l62zpRV2mjMQfunw HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: __ddg2=l62zpRV2mjMQfunw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: __ddg2=l62zpRV2mjMQfunw; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Sat, 26-Apr-2025 03:09:48 GMT
content-length: 68
X-Firefox-Spdy: h2
|
|
| animepahe.ru/favicon.ico | 185.178.208.138 | | 0 B |
IP185.178.208.138:0
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 26 Apr 2024 03:09:49 GMT
content-type: image/x-icon
content-length: 0
last-modified: Thu, 06 May 2021 07:14:31 GMT
expires: Fri, 03 May 2024 03:09:49 GMT
cache-control: max-age=604800, public, max-age=86400, must-revalidate
accept-ranges: bytes
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: __ddg1_=Mnxu9nMJ9bub8YFRpcif; Domain=.animepahe.ru; HttpOnly; Path=/; Expires=Sat, 26-Apr-2025 03:09:49 GMT
SERVERID=janna; path=/; HttpOnly; Secure
age: 0
ddg-cache-status: MISS
X-Firefox-Spdy: h2
|
|
| animepahe.ru/.well-known/ddos-guard/mark/ | 185.178.208.138 | | 0 B |
URL animepahe.ru/.well-known/ddos-guard/mark/ IP185.178.208.138:0
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/ddos-guard/mark/ HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
Content-Type: text/plain;charset=UTF-8
Content-Length: 52767
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
server: ddos-guard
date: Fri, 26 Apr 2024 03:09:48 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/fonts/QldONTRRphEb_-V7LB6xTA.woff2 | 185.178.208.138 | 200 OK | 22 kB |
URL GET HTTP/2animepahe.ru/app/fonts/QldONTRRphEb_-V7LB6xTA.woff2 IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21484, version 1.0 Hash3ecf3c6a911a1fdd91f0ff7add5c37d4 791a164da511dbe39e791eee071f224003aa7e52 cc65e70ccb7a7cf0792d2d15d6b3084d795edf7b19574003f41db0414c98d699
GET /app/fonts/QldONTRRphEb_-V7LB6xTA.woff2 HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 12:18:36 GMT
content-type: font/woff2
content-length: 21484
last-modified: Thu, 09 Nov 2023 07:02:46 GMT
expires: Wed, 09 Apr 2025 12:18:36 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: Origin,Range,Accept-Encoding,Referer,Cache-Control
access-control-expose-headers: Server,Content-Length,Content-Range,Date
accept-ranges: bytes
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1435875
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/css/bootstrap.min.css | 185.178.208.138 | 200 OK | 26 kB |
URL GET HTTP/2animepahe.ru/app/css/bootstrap.min.css IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeASCII text, with very long lines (65167) Hashaf0a99ecc8af000df371aed9af6be897 508f720be5522b5e0999993429051f9545ed6fc5 d7f4fe27e5d0ee4d09e30611f514227aff84006f1464911bb3116d982406f1e2
GET /app/css/bootstrap.min.css HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 20:43:41 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 25 Apr 2022 02:20:18 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 23170
content-length: 25669
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/css/style.css | 185.178.208.138 | 200 OK | 9.9 kB |
URL GET HTTP/2animepahe.ru/app/css/style.css IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeASCII text, with very long lines (3077) Hash501a16a54648d7f58411cc6841d256bb 6fd2df7c2c55b3a2a0cfea07235ec5d446a37d7e 35be825ff0830f9a857ae9297dac77dd79509401d2aaa732d17fe976ed754ce0
GET /app/css/style.css HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 07:17:20 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Feb 2023 16:08:45 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 71551
content-length: 9922
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/css/fork-awesome.min.css | 185.178.208.138 | 200 OK | 8.5 kB |
URL GET HTTP/2animepahe.ru/app/css/fork-awesome.min.css IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeASCII text, with very long lines (33801) Hash46f9a9e165adfbaff3549be4fa4480b4 3e57787d368284e44ff7801bdcd82308d13a7180 82c984a09030b3f29ddc28ee390ccb89ee50df2b2186f9a8ed836d046eda6846
GET /app/css/fork-awesome.min.css HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 11:38:44 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 28 Feb 2019 15:21:34 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 55867
content-length: 8504
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/js/core.js | 185.178.208.138 | 200 OK | 2.6 kB |
URL GET HTTP/2animepahe.ru/app/js/core.js IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeJavaScript source, ASCII text, with very long lines (320) Hashf941e83edea287c3fef52b0c44b6d1d5 0dc9beccc367dce1aed179c2bbf2283d7000398d eea4def57168ee827d9fef73a3f37ee9646b883a4b92ccabb05e04bc66381724
GET /app/js/core.js HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 10:21:16 GMT
content-type: application/javascript
last-modified: Tue, 05 Jul 2022 12:50:10 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 60515
content-length: 2566
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/js/vendor/bootstrap.bundle.min.js | 185.178.208.138 | 200 OK | 64 kB |
URL GET HTTP/2animepahe.ru/app/js/vendor/bootstrap.bundle.min.js IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeJavaScript source, ASCII text, with very long lines (65294) Hash2cf21c79626f88c80273b2f0db50ce3a bfc68af2ce20689e6d3e0e16ec3a75db4feba8ee adcf8c93e8a205a4b20db9e57d474bb3b44030392715e8480c6fa1758679b2f4
GET /app/js/vendor/bootstrap.bundle.min.js HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 22:40:46 GMT
content-type: application/javascript
last-modified: Fri, 22 Apr 2022 20:28:05 GMT
vary: Accept-Encoding
expires: Fri, 25 Apr 2025 22:40:46 GMT
cache-control: max-age=31536000, public, max-age=86400, must-revalidate
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 16145
content-length: 64358
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/js/play2.js | 185.178.208.138 | 200 OK | 548 B |
URL GET HTTP/2animepahe.ru/app/js/play2.js IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeJavaScript source, ASCII text Hash02844179644af92183df8bb5ec42fcb3 8b64f426547baa35eec4d0a54eca2bec28461462 4ab4942dec5fc5d791104cccfa0548873de6906e6f8abdbc226a80f127fdd549
GET /app/js/play2.js HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 13:23:13 GMT
content-type: application/javascript
last-modified: Mon, 13 Feb 2023 19:32:25 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 49598
content-length: 548
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| midmaintee.com/rbQrL40Pi2wFYn4f/43058 |  188.42.247.196 | 200 OK | 20 B |
URL GET HTTP/1.1midmaintee.com/rbQrL40Pi2wFYn4f/43058 IP188.42.247.196:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectmidmaintee.com Fingerprint16:19:5B:CD:48:18:26:71:0C:13:E7:BA:9A:B2:BF:81:FD:28:BA:3D ValidityThu, 14 Mar 2024 23:18:11 GMT - Wed, 12 Jun 2024 23:18:10 GMT
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /rbQrL40Pi2wFYn4f/43058 HTTP/1.1
Host: midmaintee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 03:09:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://animepahe.ru
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 03:09:51 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 03:09:51 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| yernbiconic.com/1clkn/45246 |  23.109.170.75 | 200 OK | 26 B |
URL GET HTTP/1.1yernbiconic.com/1clkn/45246 IP23.109.170.75:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectyernbiconic.com Fingerprint4B:FC:92:FD:97:09:D4:DF:1F:CC:B3:8A:9E:9B:00:D1:F7:6F:97:C7 ValidityTue, 23 Apr 2024 23:15:08 GMT - Mon, 22 Jul 2024 23:15:07 GMT
File typeASCII text, with no line terminators Hash9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /1clkn/45246 HTTP/1.1
Host: yernbiconic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 03:09:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 03:09:51 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 03:09:51 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| pl16476238.profitablegatecpm.com/89/66/b6/8966b6c0380845137e2f0bc664baf7be.js |  172.240.253.132 | 200 OK | 16 kB |
URL GET HTTP/1.1pl16476238.profitablegatecpm.com/89/66/b6/8966b6c0380845137e2f0bc664baf7be.js IP172.240.253.132:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectprofitablegatecpm.com Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30 ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT
File typeJavaScript source, ASCII text, with very long lines (44134), with no line terminators Hashc0ff5f942fabc629b6daa74fdb0985b7 1f21415755158be2b629aa71038a9b31bc739013 253b43eaf5246f7065e30f328bfa536271ed121d6a7528bf092b869822eda8b3
GET /89/66/b6/8966b6c0380845137e2f0bc664baf7be.js HTTP/1.1
Host: pl16476238.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 03:09:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 53c1cd2fab1835475be84abed78c30a2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| animepahe.ru/app/fonts/forkawesome-webfont.woff2?v=1.1.7 | 185.178.208.138 | 200 OK | 92 kB |
URL GET HTTP/2animepahe.ru/app/fonts/forkawesome-webfont.woff2?v=1.1.7 IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 91624, version 1.0 Hash3a9e014c2469ffa65a0ea64a24e48b44 53fced558eee8058c40d2be2f5f886f5768ccce6 84422de97eb1cf27bcb9bca4f3fbb18f3ebc711647b09c68292f5f43c89d5064
GET /app/fonts/forkawesome-webfont.woff2?v=1.1.7 HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://animepahe.ru/app/css/fork-awesome.min.css
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 09:46:02 GMT
content-type: font/woff2
content-length: 91624
last-modified: Thu, 28 Feb 2019 15:21:34 GMT
expires: Wed, 09 Apr 2025 09:46:02 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: Origin,Range,Accept-Encoding,Referer,Cache-Control
access-control-expose-headers: Server,Content-Length,Content-Range,Date
accept-ranges: bytes
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
age: 1445030
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats |  35.158.46.84 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP35.158.46.84:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash6e6108b024e5086c80f0b5f79c51f444 e0a4829e0b4c5c42f19fa5071181d13a785f6a63 f4274eaf0c450326a50bf3ea63e71b6a51c8bfd1661e90cbfaed7523deef9f03
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:52 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://animepahe.ru
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; expires=Mon, 24 Apr 2034 03:09:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| animepahe.ru/app/images/apdoesnthavelogotheysaidapistooplaintheysaid.svg | 185.178.208.138 | 200 OK | 2.0 kB |
URL GET HTTP/2animepahe.ru/app/images/apdoesnthavelogotheysaidapistooplaintheysaid.svg IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeSVG Scalable Vector Graphics image Hash0aad91c156b46deae6f97f57d3d07545 32b5715bdf9a8ed21cb7b71ffb39edcc45dcef15 df66c69c92b1cf9ae09c668eecbed041419a4b69a4cfe7a928d52ca5ce2b0669
GET /app/images/apdoesnthavelogotheysaidapistooplaintheysaid.svg HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 17:43:44 GMT
content-type: image/svg+xml
last-modified: Thu, 06 May 2021 07:14:31 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 33968
content-length: 2029
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| i.animepahe.ru/posters/6aa4da97f1c71d9373d5c089910c22c8c45d9d211bd3cedfe772e0706782eb71.th.jpg | 188.114.96.1 | 200 OK | 40 kB |
URL GET HTTP/2i.animepahe.ru/posters/6aa4da97f1c71d9373d5c089910c22c8c45d9d211bd3cedfe772e0706782eb71.th.jpg IP188.114.96.1:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subjectanimepahe.ru Fingerprint63:EE:96:52:AB:9A:F6:92:F9:A5:C0:9C:F9:59:48:13:E7:3C:85:6F ValidityThu, 14 Mar 2024 10:25:09 GMT - Wed, 12 Jun 2024 10:25:08 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3 Hashd6a9b86a06851b786de6eb72d6f84d0e c084fa124b5f1233380687ccace775034006041f 321d318506be0b5db9322a9acb4fda85a4359c36cbfda1c7a99e4627e1cd0c12
GET /posters/6aa4da97f1c71d9373d5c089910c22c8c45d9d211bd3cedfe772e0706782eb71.th.jpg HTTP/1.1
Host: i.animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:52 GMT
content-type: image/jpeg
content-length: 40455
last-modified: Fri, 01 Mar 2024 14:35:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, no-transform
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: Origin,Range,Accept-Encoding,Referer,Cache-Control
access-control-expose-headers: Server,Content-Length,Content-Range,Date
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 14955
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=olk8TS7P3PSwTT9Q8WA69iiuwGTg0OsYk%2BAmCe5KxqzL56RDcivdpt5nDyuwoDq%2ByNH7GPec02t%2F%2BE%2FeKc4yIBmeE%2BG%2BgOUm1dyM7jUbI%2Ftu3SNTnQDtWyFomDomo4AEAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a360633a4956aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| animepahe.ru/apple-touch-icon.png | 185.178.208.138 | 200 OK | 27 kB |
URL GET HTTP/2animepahe.ru/apple-touch-icon.png IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash0da8624b2b2681c8a9280eddf03b30b1 5c6393829ebbcb92666bdf9d637c3cbbbe67c8bb 717392259ea0e84db09523208251ed5ac68b9488a954fe8aee203d904773c6c6
GET /apple-touch-icon.png HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=f0a88dd0-7061-4453-b735-d1d4acd87227%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 18:48:32 GMT
content-type: image/png
content-length: 26862
last-modified: Thu, 06 May 2021 07:14:31 GMT
accept-ranges: bytes
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 30080
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animepahe.ru/pikacon.ico | 185.178.208.138 | 200 OK | 4.4 kB |
IP185.178.208.138:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hasheb8380662b4bf6eb1e72397398c8011a cab8695413020e4801048fb6dd61a34513b4c6e3 bde4b6bca39c2cc7f61735eb32071c83de7d8ac30c6b2dd858d1f65b73ec805c
GET /pikacon.ico HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna; res=720; aud=jpn; av1=0; XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=f0a88dd0-7061-4453-b735-d1d4acd87227%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 25 Apr 2024 17:42:35 GMT
content-type: image/x-icon
last-modified: Thu, 06 May 2021 07:14:31 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: public, max-age=86400, must-revalidate
age: 34037
content-length: 4448
ddg-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=f0a88dd0-7061-4453-b735-d1d4acd87227&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8966b6c0380845137e2f0bc664baf7be&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 | 192.243.61.227 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=f0a88dd0-7061-4453-b735-d1d4acd87227&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8966b6c0380845137e2f0bc664baf7be&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=f0a88dd0-7061-4453-b735-d1d4acd87227&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8966b6c0380845137e2f0bc664baf7be&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 03:09:53 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1cceda764ec947451bf55878a550aa98
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| architecturecultivated.com/sbar.json?key=8966b6c0380845137e2f0bc664baf7be&uuid=f0a88dd0-7061-4453-b735-d1d4acd87227%3A3%3A1 | 192.243.59.20 | 200 OK | 6.8 kB |
URL GET HTTP/1.1architecturecultivated.com/sbar.json?key=8966b6c0380845137e2f0bc664baf7be&uuid=f0a88dd0-7061-4453-b735-d1d4acd87227%3A3%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
Hasha7bee5c56c09fd8659c7cb5a8f73fcf5 1fd28c4f12eaf7a0bf0ef03fb9d20138e66751a5 f2a0d60f2686382fa3b15eda1c9df731705cf19ca4036d2bb01e593a8f875ae8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=8966b6c0380845137e2f0bc664baf7be&uuid=f0a88dd0-7061-4453-b735-d1d4acd87227%3A3%3A1 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:53 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://animepahe.ru
Access-Control-Allow-Origin: https://animepahe.ru
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15795500; expires=Sat, 27 Apr 2024 03:09:53 GMT; secure; SameSite=None
uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; expires=Fri, 03 May 2024 03:09:53 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 27 Apr 2024 03:09:53 GMT; secure; SameSite=None
uncs=1; expires=Sat, 27 Apr 2024 03:09:53 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 27 Apr 2024 03:09:53 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 27 Apr 2024 03:09:53 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 63dc53fb4679f1c5c98e87525860f793
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| architecturecultivated.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYviqAuXhZhDh78sZl098x0z7gHMcZI2LhZdhX1JNVV1ZMy1V1NVff0JKfgiuxxDIjXzjfJBnUVvXhzkUnAw4KQ8TQHc%2FA%2FEGHPMmNw3Heo9773vaK%2B%2Bqo%2BPyjOiY%2BCTlbf1btSKbrcqru1lz%2F0vGu1DZkW%2FVq%2FHXwcNK%2FVTO%2F1TlB3X6m9I9i2XvZdz3U916utSSNi3V%2BekpDZ%2FY5X77j1pl%2F3Wk30zePYFg4sdcB75%2BQ5SD5ePHUuQ7IR0uSHVWG3c51dfTspFM21QY8fv59up7pMkczL2DiI0%2BOLaWh7tvYAOj2ayYXu%2FTcYyTFxfn2AKD2%2BEImodzjTGSmIFBF%2FCmVvBKFGkHQEpu9A8jMCMI4bm0iTeze0KenOvyydsmOy%2BOhvyHJMFv%2B4jDT5fkXJfu22VkUudWrRjyvI%2FgiyO0JWnCDfXYAsT8DyTyH5b2T50QbS5HDTKg3JJy%2FFLm23OXeXQjfwlprNVmMpChutJe7xJmW8Hfp%2BODNIyhFkPIISA1B7CYV1UEgHReygyBwkfFJjnueFLmfUbXcYa%2FBQRAF3PRrGHvXcoI2CTe8wQJ4NwNQAzOwhM3vYll%2BMCfnsT5jiF9itCpY7sDlBj1coBUFpCUpKUEqCMicoe9URV9a31T2ubBF5F9m%2FyI1qqPPuAT3SeVekBNQMYHh1kJ2TZ2cu%2FvXEVWyLSa3dCYIoYG6j7babLa8RCj92IxYEzYjGYSRgZQVpF0Ctg1159vwpMnn29AoiegKrTsDkC6DFi6BlBbpVYTf9jqYyERndEnWmE3BdIcsXke84B%2BqcXJkdf%2F2rLyHYQ3IRYKZCZip8Ik8Juuru8JYuyeEtXVry42aWy0Tu0ukD385pLp785rrYKbXh66t28PWbbEpMy%2FvvCZtv0JTLtGvJtyuSc2HWtGGC%2FLxuPxDRzcJurRQmLbKNm2%2BtrSeZEdZKnY5A5dlH%2B2ByTJ75aWP2c1%2BtTSDNCKaokBRzpVKPwLI92Gzes5rAqDmOMgdlUQ2NH82bShIoMcc0qmD%2Fh6N5PTR0upvK6sDeRdcsgOZ3kCYVeqZCT1WgagBbXBrmmXn4xu%2BNWSBSC8NImYXDSBm1PzN5uuzDykktbDRcGnRaXhhSEUZNvx0HHqfUbwZ%2BENAGcjuOX7vi%2FAMAAP%2F%2FAQAA%2F%2F%2FrdjkbkwQAAA%3D%3D | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1architecturecultivated.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYviqAuXhZhDh78sZl098x0z7gHMcZI2LhZdhX1JNVV1ZMy1V1NVff0JKfgiuxxDIjXzjfJBnUVvXhzkUnAw4KQ8TQHc%2FA%2FEGHPMmNw3Heo9773vaK%2B%2Bqo%2BPyjOiY%2BCTlbf1btSKbrcqru1lz%2F0vGu1DZkW%2FVq%2FHXwcNK%2FVTO%2F1TlB3X6m9I9i2XvZdz3U916utSSNi3V%2BekpDZ%2FY5X77j1pl%2F3Wk30zePYFg4sdcB75%2BQ5SD5ePHUuQ7IR0uSHVWG3c51dfTspFM21QY8fv59up7pMkczL2DiI0%2BOLaWh7tvYAOj2ayYXu%2FTcYyTFxfn2AKD2%2BEImodzjTGSmIFBF%2FCmVvBKFGkHQEpu9A8jMCMI4bm0iTeze0KenOvyydsmOy%2BOhvyHJMFv%2B4jDT5fkXJfu22VkUudWrRjyvI%2FgiyO0JWnCDfXYAsT8DyTyH5b2T50QbS5HDTKg3JJy%2FFLm23OXeXQjfwlprNVmMpChutJe7xJmW8Hfp%2BODNIyhFkPIISA1B7CYV1UEgHReygyBwkfFJjnueFLmfUbXcYa%2FBQRAF3PRrGHvXcoI2CTe8wQJ4NwNQAzOwhM3vYll%2BMCfnsT5jiF9itCpY7sDlBj1coBUFpCUpKUEqCMicoe9URV9a31T2ubBF5F9m%2FyI1qqPPuAT3SeVekBNQMYHh1kJ2TZ2cu%2FvXEVWyLSa3dCYIoYG6j7babLa8RCj92IxYEzYjGYSRgZQVpF0Ctg1159vwpMnn29AoiegKrTsDkC6DFi6BlBbpVYTf9jqYyERndEnWmE3BdIcsXke84B%2BqcXJkdf%2F2rLyHYQ3IRYKZCZip8Ik8Juuru8JYuyeEtXVry42aWy0Tu0ukD385pLp785rrYKbXh66t28PWbbEpMy%2FvvCZtv0JTLtGvJtyuSc2HWtGGC%2FLxuPxDRzcJurRQmLbKNm2%2BtrSeZEdZKnY5A5dlH%2B2ByTJ75aWP2c1%2BtTSDNCKaokBRzpVKPwLI92Gzes5rAqDmOMgdlUQ2NH82bShIoMcc0qmD%2Fh6N5PTR0upvK6sDeRdcsgOZ3kCYVeqZCT1WgagBbXBrmmXn4xu%2BNWSBSC8NImYXDSBm1PzN5uuzDykktbDRcGnRaXhhSEUZNvx0HHqfUbwZ%2BENAGcjuOX7vi%2FAMAAP%2F%2FAQAA%2F%2F%2FrdjkbkwQAAA%3D%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYviqAuXhZhDh78sZl098x0z7gHMcZI2LhZdhX1JNVV1ZMy1V1NVff0JKfgiuxxDIjXzjfJBnUVvXhzkUnAw4KQ8TQHc%2FA%2FEGHPMmNw3Heo9773vaK%2B%2Bqo%2BPyjOiY%2BCTlbf1btSKbrcqru1lz%2F0vGu1DZkW%2FVq%2FHXwcNK%2FVTO%2F1TlB3X6m9I9i2XvZdz3U916utSSNi3V%2BekpDZ%2FY5X77j1pl%2F3Wk30zePYFg4sdcB75%2BQ5SD5ePHUuQ7IR0uSHVWG3c51dfTspFM21QY8fv59up7pMkczL2DiI0%2BOLaWh7tvYAOj2ayYXu%2FTcYyTFxfn2AKD2%2BEImodzjTGSmIFBF%2FCmVvBKFGkHQEpu9A8jMCMI4bm0iTeze0KenOvyydsmOy%2BOhvyHJMFv%2B4jDT5fkXJfu22VkUudWrRjyvI%2FgiyO0JWnCDfXYAsT8DyTyH5b2T50QbS5HDTKg3JJy%2FFLm23OXeXQjfwlprNVmMpChutJe7xJmW8Hfp%2BODNIyhFkPIISA1B7CYV1UEgHReygyBwkfFJjnueFLmfUbXcYa%2FBQRAF3PRrGHvXcoI2CTe8wQJ4NwNQAzOwhM3vYll%2BMCfnsT5jiF9itCpY7sDlBj1coBUFpCUpKUEqCMicoe9URV9a31T2ubBF5F9m%2FyI1qqPPuAT3SeVekBNQMYHh1kJ2TZ2cu%2FvXEVWyLSa3dCYIoYG6j7babLa8RCj92IxYEzYjGYSRgZQVpF0Ctg1159vwpMnn29AoiegKrTsDkC6DFi6BlBbpVYTf9jqYyERndEnWmE3BdIcsXke84B%2BqcXJkdf%2F2rLyHYQ3IRYKZCZip8Ik8Juuru8JYuyeEtXVry42aWy0Tu0ukD385pLp785rrYKbXh66t28PWbbEpMy%2FvvCZtv0JTLtGvJtyuSc2HWtGGC%2FLxuPxDRzcJurRQmLbKNm2%2BtrSeZEdZKnY5A5dlH%2B2ByTJ75aWP2c1%2BtTSDNCKaokBRzpVKPwLI92Gzes5rAqDmOMgdlUQ2NH82bShIoMcc0qmD%2Fh6N5PTR0upvK6sDeRdcsgOZ3kCYVeqZCT1WgagBbXBrmmXn4xu%2BNWSBSC8NImYXDSBm1PzN5uuzDykktbDRcGnRaXhhSEUZNvx0HHqfUbwZ%2BENAGcjuOX7vi%2FAMAAP%2F%2FAQAA%2F%2F%2FrdjkbkwQAAA%3D%3D HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:53 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1efc9f5b0b41f98027b8b14111ebd840
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg |  104.21.70.253 | 200 OK | 28 kB |
URL GET HTTP/3cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg IP104.21.70.253:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3 Hashbd0c89fce24a7f947251ba177af6860b fae114743fd16313d63c5cc99a220831f88290e6 830443fe11ab663a8c20e09560e69a4a29c8d0266175efc235c3d9882123f209
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:09:53 GMT
content-type: image/jpeg
content-length: 28348
last-modified: Thu, 01 Feb 2024 14:55:05 GMT
etag: "65bbb0c9-6ebc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6181618
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nWViP2%2FpRoCFd5Qbs0OYcRXtrvghGZFd1%2FQI2H%2FFVIbpp9a8%2F%2F%2FQbq9omyqjTr5IY%2BQ2om07PyIY9LS6kDHOenK46POFnBlATR5KAoyMSJh9Zeo55zOMG2ZBj0Eps0cK8FWp6rSOVeNo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3606a1924b4f4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html | 104.26.7.19 | 200 OK | 420 B |
URL GET HTTP/2cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html IP104.26.7.19:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49 ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashf8f30ffb2a2a7d300f673a9c573ad94a 2160302bdf15e85c16400b0032a446d46c7f0b97 88197da554d2252c76a55a229216312e2ee61f78692f9d297358a1ee2b3fc155
GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:53 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 134267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ipsfhAlcjtXYYE7Skik0ifVzE3XBlM%2B%2FDQUUchRKAUkU9rfODo%2Bk4DNUk%2BYBOxJ63II8SpiJyWuhs6PAP9OpTFKvl%2BLf%2B2jRz8Gy2xVaidy82QIfREqRvWzPm62Fd96ZYlkMNRE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a36068fdf41c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=60 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=60 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=60 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=58 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=58 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=58 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=53 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=53 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=53 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe | 185.178.208.138 | 200 OK | 4.3 kB |
URL User Request GET HTTP/2animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe IP185.178.208.138:443
CertificateIssuerLet's Encrypt Subjectanimepahe.ru Fingerprint8B:FA:F2:9F:55:4C:7D:33:C3:AA:DC:A6:0F:9B:0A:72:AA:2D:54:B3 ValiditySun, 07 Apr 2024 00:07:53 GMT - Sat, 06 Jul 2024 00:07:52 GMT
File typegzip compressed data, from Unix Hash6ca5f6a267d8cbc305930c3e08cd11db 1edfac3208b58f53977d56c685c29a6203de0682 3dfbe4704c0f71ce828e9ee620aa60f950bbc069636c668fe3be136f446e4f6e
GET /play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe HTTP/1.1
Host: animepahe.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddgid_=Ewfp01vW6lbyn14H; __ddgmark_=dnTGyPUrI1CvKwBM; __ddg2_=l62zpRV2mjMQfunw; __ddg1_=Mnxu9nMJ9bub8YFRpcif; SERVERID=janna
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: res=720; expires=Sat, 26 Apr 2025 03:09:51 GMT; Max-Age=31536000; path=/
aud=jpn; expires=Sat, 26 Apr 2025 03:09:51 GMT; Max-Age=31536000; path=/
av1=0; expires=Sat, 26 Apr 2025 03:09:51 GMT; Max-Age=31536000; path=/
XSRF-TOKEN=eyJpdiI6IjA5RWZMcG9LZVV1dER6WnBtWW9rTUE9PSIsInZhbHVlIjoiMVRRNVFjOGFkZDJnWGVsTlkybkVMT1dnNlB6UlZyZ1FQQ00vanEwVDFEUnRjR0cwMjBjdjhsVVVFRUZyRWM2blhMZnZsdVJIL3VpalQ1ZkRqMHpRMCt0eWdKU1orRDNXcEwrWEdTOEZsRTJHWnY1ckt3dzhKY25nSFVFKzFUUVAiLCJtYWMiOiJhOTNjYWE0M2M2NjBlMWFkNTg4MTE0NDc5Mzk1NTE2OTBiZmRjMWZmYjBjMmNiOTI3NTIzZWU1MzgxZjVmZWViIiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 05:09:51 GMT; Max-Age=7200; path=/; secure
laravel_session=eyJpdiI6IkdVVm1zQTJ3Mnp2cTJlQmkvbGxaY0E9PSIsInZhbHVlIjoiazlSeE43TVVnb28vb2luKzVEVVdOamFiWWJSaUhmQkQ5dXJaVDdXcjFyRVgySzZpSExGVFNSWC9YVkVxVEE4MGgwRDYraDFUVVFBSVpSUXFSUFluaUloWU5GVXVBWHpqWWFiQ1BRK004MzRkbzlaMTVjSkE4MW1HQldjU012R3YiLCJtYWMiOiIyZmFkZGY3ZTFmNTBhMWI5YTI2NjU2MWY1Mjk0YmY5MDUzZjBjZjI2MWJlMjBkODg2NjAyYmMzOTQzYWQ0YWRiIiwidGFnIjoiIn0%3D; expires=Fri, 26-Apr-2024 05:09:51 GMT; Max-Age=7200; path=/; secure; httponly
cache-control: no-cache
date: Fri, 26 Apr 2024 03:09:51 GMT
expires: Thu, 01 Jan 1970 00:00:01 GMT
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: Origin,Range,Accept-Encoding,Referer,Cache-Control
access-control-expose-headers: Server,Content-Length,Content-Range,Date
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000;includeSubDomains;preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| architecturecultivated.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuuzub3uyiCunhZhDl48GMz6Z7vuAcxrpGwcbPsKupJ6qsnZaq7mqqu6UlOwRXZ4xgQr51nkg3qKnrx5iKTgIcFIeNpDubgfyDCnmXG4Oh7qPd93uct6qmn6tMDf05q8HRy%2FW2zq7Smy81qWHnx%2FSi6VtlQqe9X%2Bp3Wh63GtYrtvbrSqoYvVd6SfNss18IoDKMwqqwpK2PTX56SUNmDlai6ElYbtWrUbKBv%2F4udD%2BBoANE7J89AifHiaXAZio%2BQJt9dl247N9nVNxOvaW4seuL43XQ7NUWKZF7GNkCcHl9Mw7iztYcw6dFMLkzvn0GmxiT4%2BSFYenwhEqx3ONPJNGQKJp5A0RtB6hEUHYGbu1DijABc4OYm0uT%2BTWMLuvM3S6fsmCw%2B%2FhOqGJPF3y4jTb5d1apfuWO0z5VJHfpxCdUfQXVHyPwJ8t0FqOIEPP8YSvxClh9vIE0ON502UGLyQhzSTkeIcKkdtqKlRqNZX2LtenNJRKJBuei0a7X2zCClRlDxCFoOQN0leBfAqwA%2BDuCzAImYVHgURe1QcBp2Vjivi7ZkLRFGtB1HNApbHXg%2BvcMAeTYA1wNwu4fM7mFbfTYm5JPfYf1PcFslnAjgcoKeKFFIgsIRFJSgUARFTlD0yiOhXc2V94V2nkUXuXaR6%2BXQ5N0DemTyrkwJqB3AivIgOydPz1z8439XsS0nlc5Kq8VaPKx3wk6jGdXbshaHjLdaDUbjNpNwqoRyC6AuwK46e%2FYUmTp7chWMnsDpE3D1HKh%2FHrQoQbdK7Kbf0FQlMqNbsspNAmFKZPki8p3gQJ%2BTK7Pjb3zxOSR%2FRC4C3JbIbImP1ClBV98b3jYFObxtCke%2B38xylahdOn3gOznN5f%2B%2FuiF3CmPF%2BnU3%2BPJ1PiWm5YN3pMs3aCpU2nXk61UlhLRrxnJJflx370l2y7utVW9Tn23cemNtPcmsdE6ZdASqzj7YB1dj8tQPG7Of%2B3JlAmVHsL5E4udKlRmBZ3tw2bznDIHVc8yyAIUvh7bG5k2tCLScY8pKuH9hNq%2BHlk53U1UeuHvo2gXQ%2FC7SpETPlujpElQP4PylYZ7ZR6%2F9Wp8FmF4YMm0XDpm2en9m8nTZh1OTSj0UbSZj2Way0WzEkgvWbLKQx5zVRafDkbtx%2FMqV4C8AAAD%2F%2FwEAAP%2F%2Fa6Ls85MEAAA%3D | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1architecturecultivated.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuuzub3uyiCunhZhDl48GMz6Z7vuAcxrpGwcbPsKupJ6qsnZaq7mqqu6UlOwRXZ4xgQr51nkg3qKnrx5iKTgIcFIeNpDubgfyDCnmXG4Oh7qPd93uct6qmn6tMDf05q8HRy%2FW2zq7Smy81qWHnx%2FSi6VtlQqe9X%2Bp3Wh63GtYrtvbrSqoYvVd6SfNss18IoDKMwqqwpK2PTX56SUNmDlai6ElYbtWrUbKBv%2F4udD%2BBoANE7J89AifHiaXAZio%2BQJt9dl247N9nVNxOvaW4seuL43XQ7NUWKZF7GNkCcHl9Mw7iztYcw6dFMLkzvn0GmxiT4%2BSFYenwhEqx3ONPJNGQKJp5A0RtB6hEUHYGbu1DijABc4OYm0uT%2BTWMLuvM3S6fsmCw%2B%2FhOqGJPF3y4jTb5d1apfuWO0z5VJHfpxCdUfQXVHyPwJ8t0FqOIEPP8YSvxClh9vIE0ON502UGLyQhzSTkeIcKkdtqKlRqNZX2LtenNJRKJBuei0a7X2zCClRlDxCFoOQN0leBfAqwA%2BDuCzAImYVHgURe1QcBp2Vjivi7ZkLRFGtB1HNApbHXg%2BvcMAeTYA1wNwu4fM7mFbfTYm5JPfYf1PcFslnAjgcoKeKFFIgsIRFJSgUARFTlD0yiOhXc2V94V2nkUXuXaR6%2BXQ5N0DemTyrkwJqB3AivIgOydPz1z8439XsS0nlc5Kq8VaPKx3wk6jGdXbshaHjLdaDUbjNpNwqoRyC6AuwK46e%2FYUmTp7chWMnsDpE3D1HKh%2FHrQoQbdK7Kbf0FQlMqNbsspNAmFKZPki8p3gQJ%2BTK7Pjb3zxOSR%2FRC4C3JbIbImP1ClBV98b3jYFObxtCke%2B38xylahdOn3gOznN5f%2B%2FuiF3CmPF%2BnU3%2BPJ1PiWm5YN3pMs3aCpU2nXk61UlhLRrxnJJflx370l2y7utVW9Tn23cemNtPcmsdE6ZdASqzj7YB1dj8tQPG7Of%2B3JlAmVHsL5E4udKlRmBZ3tw2bznDIHVc8yyAIUvh7bG5k2tCLScY8pKuH9hNq%2BHlk53U1UeuHvo2gXQ%2FC7SpETPlujpElQP4PylYZ7ZR6%2F9Wp8FmF4YMm0XDpm2en9m8nTZh1OTSj0UbSZj2Way0WzEkgvWbLKQx5zVRafDkbtx%2FMqV4C8AAAD%2F%2FwEAAP%2F%2Fa6Ls85MEAAA%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuuzub3uyiCunhZhDl48GMz6Z7vuAcxrpGwcbPsKupJ6qsnZaq7mqqu6UlOwRXZ4xgQr51nkg3qKnrx5iKTgIcFIeNpDubgfyDCnmXG4Oh7qPd93uct6qmn6tMDf05q8HRy%2FW2zq7Smy81qWHnx%2FSi6VtlQqe9X%2Bp3Wh63GtYrtvbrSqoYvVd6SfNss18IoDKMwqqwpK2PTX56SUNmDlai6ElYbtWrUbKBv%2F4udD%2BBoANE7J89AifHiaXAZio%2BQJt9dl247N9nVNxOvaW4seuL43XQ7NUWKZF7GNkCcHl9Mw7iztYcw6dFMLkzvn0GmxiT4%2BSFYenwhEqx3ONPJNGQKJp5A0RtB6hEUHYGbu1DijABc4OYm0uT%2BTWMLuvM3S6fsmCw%2B%2FhOqGJPF3y4jTb5d1apfuWO0z5VJHfpxCdUfQXVHyPwJ8t0FqOIEPP8YSvxClh9vIE0ON502UGLyQhzSTkeIcKkdtqKlRqNZX2LtenNJRKJBuei0a7X2zCClRlDxCFoOQN0leBfAqwA%2BDuCzAImYVHgURe1QcBp2Vjivi7ZkLRFGtB1HNApbHXg%2BvcMAeTYA1wNwu4fM7mFbfTYm5JPfYf1PcFslnAjgcoKeKFFIgsIRFJSgUARFTlD0yiOhXc2V94V2nkUXuXaR6%2BXQ5N0DemTyrkwJqB3AivIgOydPz1z8439XsS0nlc5Kq8VaPKx3wk6jGdXbshaHjLdaDUbjNpNwqoRyC6AuwK46e%2FYUmTp7chWMnsDpE3D1HKh%2FHrQoQbdK7Kbf0FQlMqNbsspNAmFKZPki8p3gQJ%2BTK7Pjb3zxOSR%2FRC4C3JbIbImP1ClBV98b3jYFObxtCke%2B38xylahdOn3gOznN5f%2B%2FuiF3CmPF%2BnU3%2BPJ1PiWm5YN3pMs3aCpU2nXk61UlhLRrxnJJflx370l2y7utVW9Tn23cemNtPcmsdE6ZdASqzj7YB1dj8tQPG7Of%2B3JlAmVHsL5E4udKlRmBZ3tw2bznDIHVc8yyAIUvh7bG5k2tCLScY8pKuH9hNq%2BHlk53U1UeuHvo2gXQ%2FC7SpETPlujpElQP4PylYZ7ZR6%2F9Wp8FmF4YMm0XDpm2en9m8nTZh1OTSj0UbSZj2Way0WzEkgvWbLKQx5zVRafDkbtx%2FMqV4C8AAAD%2F%2FwEAAP%2F%2Fa6Ls85MEAAA%3D HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:54 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b121288856be1d5f1f2216baad1a1f0a
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css | 104.21.70.253 | 200 OK | 21 kB |
URL GET HTTP/2cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css IP104.21.70.253:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash80047eaa13ebd50c50e8a9753621e430 9c503e07d130572a0eaf51f7c02cbd4cf6213fe3 3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:53 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
etag: W/"65bbb0c5-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1710431
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QxxULDYzWmtnEiV4HATXMnL%2BjLnBKXHl1LV4dclM1lRbyEUyvXk%2BM0FKyz17Bz5SOgc61095pNdMI%2BXklkKyg1IdA2qzbc0ryBHAVQbSnCDozgdBXFpJygqUa0wc4VExIpQi6%2BecDV0X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a360699e131c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| architecturecultivated.com/pixel/sbs?c=1 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1architecturecultivated.com/pixel/sbs?c=1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css | 104.21.70.253 | 200 OK | 17 kB |
URL GET HTTP/2cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css IP104.21.70.253:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash9b388680bb9d9cf0d8e7e4dad7b39ac5 393a2393f3b96b727a3114d249fffb35bf34d9f5 758934b1fbbad9e578664b4efbb5ee3303482d0d37ec7837b4bb2fa4915be70f
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:53 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:03 GMT
etag: W/"65bbb0c7-e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 687444
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3UWtCpMF83NyRKJanOgEX5izyD2Kgpnr8CWioDUWLpowC6wEiPlxjLwy7nXfXN8PRNtoMQm6imdL6CkRvftAcR85uXF62vallAYfzxcvtzfsddBl9mfkoev9Fy0Ez1KJUWEAUBy6SHu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a360699e151c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| architecturecultivated.com/13/89/28/138928dd95461e33e8958f75368c0aaa.js | 192.243.59.12 | 200 OK | 31 kB |
URL GET HTTP/1.1architecturecultivated.com/13/89/28/138928dd95461e33e8958f75368c0aaa.js IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash6a811964efc7a63d01bb8aced5e15ede 7fa90f84775f695b2387cf359d729284c9a02732 10265a51ff4f84819cabf0f7009297b9268a7c71b2b30620b33b30857a823af1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /13/89/28/138928dd95461e33e8958f75368c0aaa.js HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3a360e66c9b071147f35357703d040d4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js | 104.21.70.253 | 200 OK | 386 B |
URL GET HTTP/2cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js IP104.21.70.253:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (399), with no line terminators Hash022602a468da44628060800173771da2 9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c 6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:53 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:55:06 GMT
etag: W/"65bbb0ca-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 823298
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H5dmQx3OQkFYYo46ny5xpjtZ6FAwWA%2FlHDxFwrVfYhlNMJJODnNolHv%2Bo1NSJT7j7dG%2B1Zg3xqJKO%2FR9HA3iYAAa4l5S065%2FcUkSth0%2FqvKXyqA4H%2BYiMLl2ALnll33a2qGNbvV46hHV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a360699e141c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:09:52 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 62042efd250fa4d240468b13a79a9ba0
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 1
last-modified: Fri, 26 Apr 2024 03:09:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4tLjZwZ1umV04tj1%2BijU5osFaKceKOj2wULcsrJQocgFx9NrH6mpIuwEyajEEqMXHjJcR9Fk8ayVVkiEUx3%2FWHWMGHoDEmG%2FzxgLj4UF%2F98W8%2BhJBMKtiZhkXf0tPPABoGYwuRAku%2FCaZb2QuoDeYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a360627e185688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 263723
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 03:09:53 GMT
date: Fri, 26 Apr 2024 03:09:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://animepahe.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 211336
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=32 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1architecturecultivated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=32 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://animepahe.ru/play/90446c40-81d6-8c14-c2c6-5ac4bbbcb1b9/0419368896b7ce68cb12413b42bc906899e71b4255309196af99ca909e2d0efe CertificateIssuerLet's Encrypt Subjectarchitecturecultivated.com Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92 ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=32 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://animepahe.ru/
Cookie: u_pl=15795500; uid_id2=f0a88dd0-7061-4453-b735-d1d4acd87227:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 03:09:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|