Report - hianime.to

Report Overview

Visited public
2024-06-18 23:27:07
Tags
URL
hianime.to
Finishing URL
hianime.to/
IP / ASN
172.67.128.56
#13335 CLOUDFLARENET
Title
Watch Anime Online, Free Anime Streaming Online on HiAnime.to Anime Website

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15 22:36:43	2024-06-18 22:08:33	449 B	160 kB	104.18.10.207
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2024-06-18 15:05:15	455 B	741 B	139.45.195.8
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-06-18 00:27:58	459 B	3.8 kB	142.250.74.106
hianime.to	unknown	unknown	2024-03-01 06:20:54	2024-06-06 12:39:18	3.9 kB	263 kB	104.21.0.192
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-18 18:12:56	1.6 kB	4.4 kB	23.36.77.32
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2024-06-18 17:11:32	425 B	31 kB	142.250.74.42
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-06-18 18:12:19	1.6 kB	26 kB	216.58.207.227
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2024-06-18 20:06:59	428 B	25 kB	104.18.10.207
otuajinemq.com	unknown	unknown	No data	No data	931 B	1.2 kB	139.45.197.165
waisheph.com	74994	2020-11-23	2020-12-10 01:25:39	2024-06-18 19:26:54	1.5 kB	41 kB	139.45.197.245
cdn.noitatnemucod.net	unknown	2024-02-26	2024-03-01 21:07:01	2024-06-06 12:38:50	2.8 kB	76 kB	104.21.11.161
use.fontawesome.com	942	2012-10-18	2017-01-30 05:43:25	2024-06-17 18:15:12	948 B	87 kB	172.67.142.245
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-06-18 06:04:44	867 B	179 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-18	medium	otuajinemq.com	Sinkholed
2024-06-18	medium	otuajinemq.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	ScriptElement	51 kB	2023-03-07	2025-05-02
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-02 03:59 Times Seen98395 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	waisheph.com/5/6534229	ScriptElement	95 kB	2024-08-19	2024-08-19
Pretty URL waisheph.com/5/6534229 IP 139.45.197.245 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:33 Last Seen2024-08-19 19:33 Times Seen1 Hash 0804f1e1f704d32ae294ed59e9daf74f 4ab9000712f6230e46d0b8dafa9caaa4b80bac52 7d1ee7cb355a4dd62f5c3252349e1d69c05fe66dedbaae8ab3e48d0765107fde Loading...

	hianime.to/sandbox%20eval%20code		147 B	2023-04-11	2025-05-02
Pretty URL hianime.to/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-02 04:52 Times Seen339914 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-02
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-02 04:52 Times Seen339127 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	hianime.to/	ScriptElement	153 B	2024-03-02	2025-02-22
Pretty URL hianime.to/ IP 104.21.0.192 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-02 02:08 Last Seen2025-02-22 06:17 Times Seen45 Hash 2dace561dc2d0fff9662a1409979bf19 557b40bf0bf5d69cebcd64185ea648cfd99250d7 221bcd7e76436496b638579c5ac7fc7d32b448a0bf3782465d6d2418d437e250 Loading...

	www.googletagmanager.com/gtag/js?id=G-R34F2GCSBW	ScriptElement	315 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-R34F2GCSBW IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:33 Last Seen2024-08-19 19:33 Times Seen1 Hash 60baa8414188dfa19a2a5e93bebde19a d8eb5de9fcfa70bf3e703899796c57dfe469b46c c1bec598060a47de3f34beb95b761b897971b5ba138cb7e70937e0a40af4830f Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-05-02
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-02 03:59 Times Seen56949 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	hianime.to/	ScriptElement	527 B	2023-07-11	2025-04-01
Pretty URL hianime.to/ IP 104.21.0.192 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-11 17:55 Last Seen2025-04-01 11:59 Times Seen58 Hash f115c01c34a64b2e26fe20e27f14fda1 c5d2b98cc65ab697d8185e6b349f49f68fa060d4 bd01d5686a6905574b4ff1fa0ef2fbc21460d1ab99ba4a71136f8e2f62df9a05 Loading...

	hianime.to/	ScriptElement	66 kB	2024-05-16	2025-01-28
Pretty URL hianime.to/ IP 104.21.0.192 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-16 01:27 Last Seen2025-01-28 05:11 Times Seen41 Hash 806036c21bbfaf2cd4b03c6de297ea38 1185c3e0da1cd8563dd3b9fa5657ca5db1acfe0d 0fdd2601f3a8d14b51c3cc1d6edfe235d6753c76937f713a051931dca9fda880 Loading...

	www.googletagmanager.com/gtag/js?id=UA-304498478-1&l=dataLayer&cx=c	ScriptElement	200 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=UA-304498478-1&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:33 Last Seen2024-08-19 19:33 Times Seen1 Hash cb141613b097197b7b7a29405d941906 fcb79a4b8060133a2c94f087c0e861597ca24ef8 cefd762a64c98f8f41bbd4e1ecfcff9686fed61c1439ba8cdfe2aa8b561e5f1d Loading...

	unknown	ScriptElement	172 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:33 Last Seen2024-08-19 19:33 Times Seen1 Hash adfec3cc52b13147cca9d3cf142974c0 ebb9ea0a0e24eb3923f7e0c8e0394ba27f48594a fce7a13caddc7e99f358d668c716cd08f991ba496b0b2dcc90553d7081c73d9c Loading...

HTTP Transactions (35)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
12bf1a23e28f4b6996d92ef0ce981624
78899bea571ec8198e710c1e798a394f83c5b46b
c57667fc645403b94b531cbc75f5284ae4b4ab4410bf2afdd97619f7137ed6c5

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C57667FC645403B94B531CBC75F5284AE4B4AB4410BF2AFDD97619F7137ED6C5"
Last-Modified: Tue, 18 Jun 2024 01:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4615
Expires: Wed, 19 Jun 2024 00:43:34 GMT
Date: Tue, 18 Jun 2024 23:26:39 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
9d139a09a36fce99ece1fb963d49d2a9
a7d96d8755d02c7204c147daade1b1168a6ddb73
f9a59ebef1ee608c709b274e1c7be1320323232cdc79b17bdbf453a5a5aead09

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F9A59EBEF1EE608C709B274E1C7BE1320323232CDC79B17BDBF453A5A5AEAD09"
Last-Modified: Mon, 17 Jun 2024 11:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9964
Expires: Wed, 19 Jun 2024 02:12:43 GMT
Date: Tue, 18 Jun 2024 23:26:39 GMT
Connection: keep-alive

hianime.to/images/anw-min.webp?v=0.1

104.21.0.192

200 OK

98 kB

URL GET HTTP/3
hianime.to/images/anw-min.webp?v=0.1
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
RIFF (little-endian) data, Web/P image
Size
98 kB (98206 bytes)
Hash
6afcd5cc3add55c89bb977151f37a237
4116f225c22ab717d6d81f6e6a7dca9abe57587f
03a02f89b6edc8c00a5d6891c07c46cf415df43b020d16502e759ae0d27e1f8b

HTTP Headers

GET /images/anw-min.webp?v=0.1 HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/webp
content-length: 98206
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Wed, 28 Feb 2024 00:38:58 GMT
etag: W/"17f9e-18ded267bca"
cf-cache-status: HIT
age: 477288
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PochEI95c%2FRrLrf1ctTDRdSm0JTZ7tDYwZT4UqHbwRLKcNAoZ0d9EmqudgfaUNKXYyu2chGpmHyZSzKUSamGS5XwHlh%2FNwT4eZZZx55fXNIoPNB3REE7mf131F4X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 895f0baf6fa7b511-OSL
alt-svc: h3=":443"; ma=86400

hianime.to/images/logo.png?v=0.1

104.21.0.192

200 OK

12 kB

URL GET HTTP/3
hianime.to/images/logo.png?v=0.1
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
PNG image data, 823 x 200, 8-bit/color RGBA, non-interlaced
Size
12 kB (11692 bytes)
Hash
492a93ad00dcf6963fcbb9fb68f30e41
cda7d03d383c904b0c042e49b7ec87815c1623f2
3993c075ef585ca3b0d101603170a1e8b8e816598a6ba5e167560c11dfbfd4bd

HTTP Headers

GET /images/logo.png?v=0.1 HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/png
content-length: 11692
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Mon, 26 Feb 2024 18:23:04 GMT
etag: W/"2dac-18de6a7f848"
cf-cache-status: HIT
age: 485998
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EDzIzHAXh94eYJD4VzETmgpZDtnmb1s1Byb6CMOLpv4A7NWJNklrUoC8mXx5zbI47Fu5qXELXXLTPmCXxWaAFR3tr%2B%2FIxnqn38%2BAgksTcWGKavSNhoPbJuhftXE3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 895f0baf6fb1b511-OSL
alt-svc: h3=":443"; ma=86400

cdn.noitatnemucod.net/avatar/100x100/zoro_chibi/avatar-03.png

104.21.11.161

200 OK

14 kB

URL GET HTTP/2
cdn.noitatnemucod.net/avatar/100x100/zoro_chibi/avatar-03.png
IP
104.21.11.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectnoitatnemucod.net
Fingerprint82:15:25:6B:86:8C:8A:C3:AD:2A:50:EF:1F:BD:25:F2:DA:C5:E4:9E
ValidityThu, 25 Apr 2024 04:17:44 GMT - Wed, 24 Jul 2024 04:17:43 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, interlaced
Size
14 kB (14341 bytes)
Hash
bb457fbc5dd5b7a6351783f8fa826a9c
9bbcf05527bd17caf4392ea7c813901aec657355
623b417fd33b0730b6235a4cd4428b64bcbc41ff6ab063c3d1af24715234961f

HTTP Headers

GET /avatar/100x100/zoro_chibi/avatar-03.png HTTP/1.1
Host: cdn.noitatnemucod.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/png
content-length: 14341
last-modified: Wed, 16 Jun 2021 02:42:58 GMT
vary: Accept-Encoding
etag: W/"60c96532-b3cc"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 755
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JuAuxZosVHiVxyH9hND7Tjd9gatIMWwH8dvUikbOH53v6d8TzRUbhDHHy6u%2Bl23MFqHryJGmWiHDo%2BUKIIuQ6ePJdEG53kdJ5WKHHFM2K%2B%2B2BcMDc%2FAoqW%2Fo6lDZC62R3clEBcY5rAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb02afdb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.noitatnemucod.net/avatar/100x100/chainsaw/01.png

104.21.11.161

200 OK

9.6 kB

URL GET HTTP/2
cdn.noitatnemucod.net/avatar/100x100/chainsaw/01.png
IP
104.21.11.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectnoitatnemucod.net
Fingerprint82:15:25:6B:86:8C:8A:C3:AD:2A:50:EF:1F:BD:25:F2:DA:C5:E4:9E
ValidityThu, 25 Apr 2024 04:17:44 GMT - Wed, 24 Jul 2024 04:17:43 GMT

File type
PNG image data, 99 x 100, 8-bit/color RGBA, interlaced
Size
9.6 kB (9579 bytes)
Hash
1b207f6a2918832b0e26660cc8411ce1
27060ab98b2e616d565804d31cfcb29dc9652021
4f03ef9a962f7cf763ea20cf51f7354b4c92496282f6c764bd2819d8053e365d

HTTP Headers

GET /avatar/100x100/chainsaw/01.png HTTP/1.1
Host: cdn.noitatnemucod.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/png
content-length: 9579
last-modified: Sat, 27 Aug 2022 06:09:40 GMT
vary: Accept-Encoding
etag: W/"6309b524-23eed"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6877
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GqyvuEEuEfQsbiOA0zwIDLOJwX9k8vg830uswtTRSlyY3cnTy72Byw2KBI131NdeRvAJaYFaihJaC5i7hfoPJpLkDJtIAQ4oNYTVQPeRaS8YmOKVeOUnzS18v1HyEUEeevuGNvymnQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb02af8b4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.noitatnemucod.net/avatar/100x100/one_piece/user-08.jpeg

104.21.11.161

200 OK

13 kB

URL GET HTTP/2
cdn.noitatnemucod.net/avatar/100x100/one_piece/user-08.jpeg
IP
104.21.11.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectnoitatnemucod.net
Fingerprint82:15:25:6B:86:8C:8A:C3:AD:2A:50:EF:1F:BD:25:F2:DA:C5:E4:9E
ValidityThu, 25 Apr 2024 04:17:44 GMT - Wed, 24 Jul 2024 04:17:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 100x100, components 3
Size
13 kB (13383 bytes)
Hash
9518e7b109bfa037c236e1356b5950e9
4665377b18c4f61dcb9bc9cbf2b1dffb892a688a
008367c0305322f934186cf6eddced714a5d9089a60d9e0e4ad5e986ebe7d0a7

HTTP Headers

GET /avatar/100x100/one_piece/user-08.jpeg HTTP/1.1
Host: cdn.noitatnemucod.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/jpeg
content-length: 13383
last-modified: Thu, 17 Jun 2021 07:51:01 GMT
vary: Accept-Encoding
etag: W/"60cafee5-111be"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2034
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=49oixcAMOGQ%2BmJo1NO95FcLYr09TXjjwzMF7tawhda44YjPpjdCb2bbsB%2BMqP5jsQw4syleR6HygE4E8gFsTlBGttgQETPN7QijOPsYpfBKxqrqlQQ08YqodDrpi%2BNGA39%2FCusToFJg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb02afbb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.noitatnemucod.net/avatar/100x100/demon_splayer/File11.jpg

104.21.11.161

200 OK

9.9 kB

URL GET HTTP/2
cdn.noitatnemucod.net/avatar/100x100/demon_splayer/File11.jpg
IP
104.21.11.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectnoitatnemucod.net
Fingerprint82:15:25:6B:86:8C:8A:C3:AD:2A:50:EF:1F:BD:25:F2:DA:C5:E4:9E
ValidityThu, 25 Apr 2024 04:17:44 GMT - Wed, 24 Jul 2024 04:17:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 99x100, components 3
Size
9.9 kB (9871 bytes)
Hash
a01af8b738aa9c65a765ae5777a95a5c
4db2093ea75b107377c419ee2322ecdd508771dd
3b8808a4f946e0af73854e05cd55943dbbc7ac8f0f4d5dbf5973af41517725bf

HTTP Headers

GET /avatar/100x100/demon_splayer/File11.jpg HTTP/1.1
Host: cdn.noitatnemucod.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/jpeg
content-length: 9871
last-modified: Thu, 13 Oct 2022 02:09:50 GMT
vary: Accept-Encoding
etag: W/"6347736e-72ccf"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 755
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Np3a2BuwlgNqRa%2B1B4ttjga3gQvPJok111CuHnmRNG9bhO5JvHNPr4%2FsEbJ%2FofNCKEaP92pcIerqTdmFGvSa1HWZld9Jt1BQX8LmdGMJttTg1l3n80O3iLmLZqinaCU1bZ1uocudnAk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb02af9b4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.noitatnemucod.net/avatar/100x100/spy_family/07.png

104.21.11.161

200 OK

12 kB

URL GET HTTP/2
cdn.noitatnemucod.net/avatar/100x100/spy_family/07.png
IP
104.21.11.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectnoitatnemucod.net
Fingerprint82:15:25:6B:86:8C:8A:C3:AD:2A:50:EF:1F:BD:25:F2:DA:C5:E4:9E
ValidityThu, 25 Apr 2024 04:17:44 GMT - Wed, 24 Jul 2024 04:17:43 GMT

File type
PNG image data, 99 x 100, 8-bit/color RGBA, interlaced
Size
12 kB (12444 bytes)
Hash
d8bdfdf5a5528f2b3d563dad9f256707
11c737dc0f1c5f769ed83657360580eaaed4612d
7f48a84edc74f24d70c80916f901e885f1482f0f2594adf3a6df60d815fdfd9a

HTTP Headers

GET /avatar/100x100/spy_family/07.png HTTP/1.1
Host: cdn.noitatnemucod.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/png
content-length: 12444
last-modified: Thu, 04 Aug 2022 05:35:22 GMT
vary: Accept-Encoding
etag: W/"62eb5a9a-2e848"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6521
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=516QAhhTfSDHXKvnQWnvLICP9K9SFYnUJSZdr8L4jYZyqvT2fa86sssCPtpUQ6HQhPRAEPqrz3pVMn2suKp61hvCB1SiR9noSQBIXOYW5sYGqev4lzTFSwjV4Fhu2J5VO7Ge84vUqNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb02afab4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.noitatnemucod.net/avatar/100x100/zoro_normal/av-zz-03.jpeg

104.21.11.161

200 OK

12 kB

URL GET HTTP/2
cdn.noitatnemucod.net/avatar/100x100/zoro_normal/av-zz-03.jpeg
IP
104.21.11.161:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectnoitatnemucod.net
Fingerprint82:15:25:6B:86:8C:8A:C3:AD:2A:50:EF:1F:BD:25:F2:DA:C5:E4:9E
ValidityThu, 25 Apr 2024 04:17:44 GMT - Wed, 24 Jul 2024 04:17:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 100x100, components 3
Size
12 kB (11629 bytes)
Hash
9518342da80600da3cecea3eadbfd4ce
742ad71a5fedb9d8cd5009b2a37dccf7d310f449
55e3bbd8cdccdb7ea178011e12a2be7320c7832e455bdd594e4d6e2eb5764c5f

HTTP Headers

GET /avatar/100x100/zoro_normal/av-zz-03.jpeg HTTP/1.1
Host: cdn.noitatnemucod.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: image/jpeg
content-length: 11629
last-modified: Thu, 17 Jun 2021 07:49:52 GMT
vary: Accept-Encoding
etag: W/"60cafea0-ecd5"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wFoqiyJP5Gej0BpsjHGDUSiudwZR9ztzkHX8L1iR2r4rN2smNuFd%2FekW6kwun%2FyrHUpTcax4aFc4a4J9uMYebsGqZ7Xw8vf3IsDG%2FPLQd9z7cdtUQLzjcGua1L4MECLWHS7BFhttdlo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb02afcb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-R34F2GCSBW

142.250.74.168

200 OK

105 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-R34F2GCSBW
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:2D:9B:5D:FC:63:04:40:77:0B:39:21:BE:1F:0A:0A:9F:C4:2F:52
ValidityMon, 27 May 2024 06:34:50 GMT - Mon, 19 Aug 2024 06:34:49 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
105 kB (104889 bytes)
Hash
60baa8414188dfa19a2a5e93bebde19a
d8eb5de9fcfa70bf3e703899796c57dfe469b46c
c1bec598060a47de3f34beb95b761b897971b5ba138cb7e70937e0a40af4830f

HTTP Headers

GET /gtag/js?id=G-R34F2GCSBW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Jun 2024 23:26:40 GMT
expires: Tue, 18 Jun 2024 23:26:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104889
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js

142.250.74.42

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintF2:70:F4:02:94:58:08:9B:B8:DA:5D:47:F4:4D:59:66:71:5E:34:8E
ValidityMon, 27 May 2024 07:29:09 GMT - Mon, 19 Aug 2024 07:29:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
30 kB (30399 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Jun 2024 22:57:26 GMT
expires: Tue, 17 Jun 2025 22:57:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 88154
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hianime.to/images/level-a-4.png

104.21.0.192

200 OK

4.0 kB

URL GET HTTP/3
hianime.to/images/level-a-4.png
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
4.0 kB (4019 bytes)
Hash
fe1ea733294942fe0bb3fd1596a0d3be
1956b8f46a43926e4fec41b18be2c0f757f6d139
e1f9910b0e0aeb0ce0e8e44eacb073b26cb18c32ab183b94f53100cac1410a84

HTTP Headers

GET /images/level-a-4.png HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/css/home.css?v=0.9
Cookie: _ga_R34F2GCSBW=GS1.1.1718753201.1.0.1718753201.0.0.0; _ga=GA1.1.1395146455.1718753201
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: image/png
content-length: 4019
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Sun, 25 Feb 2024 16:11:24 GMT
etag: W/"fb3-18de10912d8"
cf-cache-status: HIT
age: 482753
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q25JkRKEiv3D7nk4CBE9d5S52d7iepY7RDX2jj6Xc%2BmyRCydfLN4j1%2BVO8JhgZr0KebNBLxAgQMlJXZ5iYmp8y%2FaYytF%2FRj%2FDtlNpBVHbCO5g7nP4AhSvOAxZKF%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 895f0bb40a75b511-OSL
alt-svc: h3=":443"; ma=86400

hianime.to/images/level-a.png

104.21.0.192

200 OK

4.9 kB

URL GET HTTP/3
hianime.to/images/level-a.png
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
4.9 kB (4900 bytes)
Hash
201b54bf78ac2b6dbd90dc40393e3868
eff28d3711e8f20d68b1f2f2141d8b2301013ad5
53a0220443d4c644d8a704735609a5fe78fae8ce0248499a41089d85e7a6387e

HTTP Headers

GET /images/level-a.png HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/css/home.css?v=0.9
Cookie: _ga_R34F2GCSBW=GS1.1.1718753201.1.0.1718753201.0.0.0; _ga=GA1.1.1395146455.1718753201
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: image/png
content-length: 4900
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Sun, 25 Feb 2024 16:11:42 GMT
etag: W/"1324-18de1095705"
cf-cache-status: HIT
age: 482754
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LZOvQFBO0StkaxoHC3KaxMCHblQhm2LqSBLhx7rv5hLOWTuMWomRzELNbfDvvIQN2AI97YkSnVlVH2KNocuuCpuAZhG2iuKUB38fMdfePqxQHF2aNKBbHO2ETI6a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 895f0bb41a7cb511-OSL
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2

172.67.142.245

200 OK

67 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 67400, version 1.0
Size
67 kB (67400 bytes)
Hash
14a08198ec7d1eb96d515362293fed36
965d78c34637d1bdab6277805faecb6caa959669
ca3ea16761b7d443c64cfd99dd1cf8aa84790a25bb4709582935956fe71d014d

HTTP Headers

GET /releases/v5.3.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: font/woff2
content-length: 67400
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "14a08198ec7d1eb96d515362293fed36"
last-modified: Fri, 22 Sep 2023 01:45:31 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 482755
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PsKp0B0Ztz5X6OnnUs%2BkYRsfawGdzNAp%2BnBbDc%2FHUt9ghpA3U1Sa9PtZIjAuzbEaVY5SmKt0rarJDoZPNFj9X1RsUq0eGsOERrqJuvbUn6n79Nu%2BH5gnuzqkt21VC9MijBfFEbyc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb45c52b50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-304498478-1&l=dataLayer&cx=c

142.250.74.168

200 OK

72 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-304498478-1&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:2D:9B:5D:FC:63:04:40:77:0B:39:21:BE:1F:0A:0A:9F:C4:2F:52
ValidityMon, 27 May 2024 06:34:50 GMT - Mon, 19 Aug 2024 06:34:49 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
72 kB (72538 bytes)
Hash
cb141613b097197b7b7a29405d941906
fcb79a4b8060133a2c94f087c0e861597ca24ef8
cefd762a64c98f8f41bbd4e1ecfcff9686fed61c1439ba8cdfe2aa8b561e5f1d

HTTP Headers

GET /gtag/js?id=UA-304498478-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Jun 2024 23:26:41 GMT
expires: Tue, 18 Jun 2024 23:26:41 GMT
cache-control: private, max-age=900
last-modified: Tue, 18 Jun 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72538
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

use.fontawesome.com/releases/v5.3.1/css/all.css

172.67.142.245

200 OK

18 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.3.1/css/all.css
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (48464)
Size
18 kB (18486 bytes)
Hash
10519cfd3206802f58315b877a9beab5
03232d7095b4a14b88810a0ffe76ae50726c23c6
604dcf1f11698655f75046bb92f98aaa9477e1c16b01c5fc415e78794393ffb9

HTTP Headers

GET /releases/v5.3.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"10519cfd3206802f58315b877a9beab5"
last-modified: Fri, 22 Sep 2023 01:45:29 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 489486
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JhCadnVGcpCYQixHM9yB08QtDpHNKthuz3ykq%2Fn0EeNjcq6vsqP9gRair779L%2Bu7f2AHNXCnSNuWunSg5VCx%2BJq3zFVZlDVw0HAWCAYTR27OLphRd0YndYPvjB%2F5LzhsNwGGxvYu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb1ef8c7131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAF:F4:F6:EB:DF:C2:EE:A0:DE:57:2C:A6:2A:38:0A:B9:6B:0A:4C:D4
ValidityMon, 27 May 2024 07:29:09 GMT - Mon, 19 Aug 2024 07:29:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Jun 2024 04:49:02 GMT
expires: Sat, 14 Jun 2025 04:49:02 GMT
cache-control: public, max-age=31536000
age: 412659
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js

104.18.10.207

200 OK

24 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
gzip compressed data, from Unix
Size
24 kB (24288 bytes)
Hash
fd6c557b296102ea168ae6745297a656
10d1beffba52c355f859ea05543a3beaf3cbb9a7
454292cb99e6e3d59b87b93cee56f81ea56c81c3841736278be0bd0b4b72a362

HTTP Headers

GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"67176c242e1bdc20603c878dee836df3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 10/31/2023 18:58:40
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 96836f9a16ad736eafb4dde61f94079f
cdn-cache: HIT
cf-cache-status: HIT
age: 486303
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 895f0bb069095695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hianime.to/

104.21.0.192

200 OK

0 B

URL User Request GET HTTP/2
hianime.to/
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Cookie: _ga_R34F2GCSBW=GS1.1.1718753201.1.0.1718753201.0.0.0; _ga=GA1.1.1395146455.1718753201
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LC%2BBvjrsHhytgxJPfj7mpQWWgPdEhNaP3MPxGBJ0RoMb1BPFwwLIpVXx%2F5pdsmPbaeF6uG%2BQTxjDva1YpmAiuiOaF3VMRz%2BsxYDVOIo2bSGtKRqRJawapJHiCDIc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0bb61bebb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

hianime.to/images/icons-512.png

104.21.0.192

200 OK

120 kB

URL GET HTTP/3
hianime.to/images/icons-512.png
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
120 kB (120169 bytes)
Hash
1c9db96287f5f34a216e5456cb67d0c0
25653c740f5edef076f8cae2cd718b7c16fb14d2
9045948928a3f44012fe6e4a4c38388185e7ffd945309c356ae3fda8ee62c8f9

HTTP Headers

GET /images/icons-512.png HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Cookie: _ga_R34F2GCSBW=GS1.1.1718753201.1.0.1718753201.0.0.0; _ga=GA1.1.1395146455.1718753201
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: image/png
content-length: 120169
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Sun, 25 Feb 2024 16:09:15 GMT
etag: W/"1d569-18de1071a7b"
cf-cache-status: HIT
age: 485998
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mCjKr%2FBdkpNISnDxhu1YEjo8i%2B78Kroc9M0B8Dv2%2BxO5sN3WGOdLIGT%2FT2fo53A%2FswnTRCP9fdx0c%2FYjKUCg6ui8X77ipRc%2BYwAXdnYOBz3NIHvlugt6SRLZQUJm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 895f0bb68c4fb511-OSL
alt-svc: h3=":443"; ma=86400

hianime.to/favicon-16x16.png

104.21.0.192

200 OK

1.1 kB

URL GET HTTP/3
hianime.to/favicon-16x16.png
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
1.1 kB (1087 bytes)
Hash
6e9c90e892d6a14567c3d8ddb38b1b26
ac809df2d7f201e9b0623783e99ba131444444ac
18b382173b2fca572515289f4582ae5e9a68cc327500a2d58fc3e2accda0f26d

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Cookie: _ga_R34F2GCSBW=GS1.1.1718753201.1.0.1718753201.0.0.0; _ga=GA1.1.1395146455.1718753201
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: image/png
content-length: 1087
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Sun, 25 Feb 2024 16:11:36 GMT
etag: W/"43f-18de10941ad"
cf-cache-status: HIT
age: 485998
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wrFtrlpxoMVSIm4HytgV5g%2BlL%2FJlBBqZZpkfCkYaHsYQHtZGynirM4zRL%2FO49QHgZtUpezCgvntBnY8BnFG%2FA4ce8d74D16vcYTE6ngNvy7GLVZ56BPoAm9Wjas0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 895f0bb68c50b511-OSL
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0f4564c975b0fcda7a2c156bfa8cdf33
0168974030d394fd378eaf00bdc7e9a90183b8fd
80681e7dfd4c6e516615b6d179cdaf0590e12a0fa4a41051562f4e4a2dd5c7ee

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "80681E7DFD4C6E516615B6D179CDAF0590E12A0FA4A41051562F4E4A2DD5C7EE"
Last-Modified: Tue, 18 Jun 2024 19:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19976
Expires: Wed, 19 Jun 2024 04:59:37 GMT
Date: Tue, 18 Jun 2024 23:26:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0f4564c975b0fcda7a2c156bfa8cdf33
0168974030d394fd378eaf00bdc7e9a90183b8fd
80681e7dfd4c6e516615b6d179cdaf0590e12a0fa4a41051562f4e4a2dd5c7ee

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "80681E7DFD4C6E516615B6D179CDAF0590E12A0FA4A41051562F4E4A2DD5C7EE"
Last-Modified: Tue, 18 Jun 2024 19:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19976
Expires: Wed, 19 Jun 2024 04:59:37 GMT
Date: Tue, 18 Jun 2024 23:26:41 GMT
Connection: keep-alive

otuajinemq.com/

139.45.197.165

200 OK

0 B

URL OPTIONS HTTP/2
otuajinemq.com/
IP
139.45.197.165:443
ASN
#9002 RETN Limited

Requested by
https://hianime.to/
Certificate
IssuerLet's Encrypt
Subjectotuajinemq.com
Fingerprint55:2E:C9:F8:A0:04:CB:40:4C:DF:BF:9D:96:71:1A:3F:BA:87:24:95
ValidityMon, 17 Jun 2024 10:51:42 GMT - Sun, 15 Sep 2024 10:51:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS / HTTP/1.1
Host: otuajinemq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: HEAD
Access-Control-Request-Headers: content-type
Referer: https://hianime.to/
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://hianime.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
X-Firefox-Spdy: h2

otuajinemq.com/

139.45.197.165

200 OK

0 B

URL OPTIONS HTTP/2
otuajinemq.com/
IP
139.45.197.165:443
ASN
#9002 RETN Limited

Requested by
https://hianime.to/
Certificate
IssuerLet's Encrypt
Subjectotuajinemq.com
Fingerprint55:2E:C9:F8:A0:04:CB:40:4C:DF:BF:9D:96:71:1A:3F:BA:87:24:95
ValidityMon, 17 Jun 2024 10:51:42 GMT - Sun, 15 Sep 2024 10:51:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

HEAD / HTTP/1.1
Host: otuajinemq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: text/html
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 18 Jun 2024 23:26:41 GMT
content-type: text/html
x-trace-id: c5906bd9659fdd0d975bae8ef22d182f
vary: Accept-Encoding, Origin
access-control-allow-origin: https://hianime.to
access-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname
access-control-allow-credentials: true
pragma: no-cache
timing-allow-origin: *
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
x-application-key: byuxjksoOrcySem91x0wzcw8
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2

waisheph.com/5/6534229

139.45.197.245

200 OK

36 kB

URL GET HTTP/2
waisheph.com/5/6534229
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://hianime.to/
Certificate
IssuerLet's Encrypt
Subjectwaisheph.com
Fingerprint87:20:2F:7F:7F:64:B6:C9:FE:04:52:6F:29:D7:DE:99:D4:8B:38:CA
ValiditySun, 26 May 2024 05:11:15 GMT - Sat, 24 Aug 2024 05:11:14 GMT

File type
gzip compressed data, max speed, from Unix
Size
36 kB (36273 bytes)
Hash
ccfa22c0fdf31835620bb2073328dc32
490bcc337bc2c03df2af5024bd67d5a49263fe73
593ebbb112514918779b51aac8fbc3cb123b4dcccf79e69e490e5bfdf4a685c7

HTTP Headers

GET /5/6534229 HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 18 Jun 2024 23:26:42 GMT
content-type: application/javascript
x-trace-id: e453ecc496928dd8d18fca9133321548
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00807fe7219b4a45e083438642686f65; expires=Wed, 18 Jun 2025 23:26:42 GMT; path=/; secure; SameSite=None
oaidts=1718753202; expires=Wed, 18 Jun 2025 23:26:42 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

waisheph.com/?rb=YCvDFhvwxX2RZvgdp96N7b3qgBdlVvaaBrf6BtNjkAZray_HMKDZjKGCwMc6F9z-ia1guAV__-p0xaXM4RMh0r74y4zs87jMIEJPOjjTQWNz261mQVv77tAowZChSU5piE2Ghryocu5BD8S1iTRR8DtsTmYY9HJdqVQaaxQi__l035P_kKU4GX6qnDsU6ftsya5BsDtJ9Y4XuqUK21UlB6ckzzukbXUp5p7Q95Iolx5D4iAg3Ahpa_diZJHrvZO6mDgR2g%3D%3D&request_ab2=0&zoneid=6534229&js_build=iclick-v1.825.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fhianime.to%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.825.0&navlng=en-US&pnt=0&pnrc=0&bs=cff8987b-3092-4302-b3c8-bff0fa2910c2&wasm=1&userId=00807fe7219b4a45e083438642686f65&m=link

139.45.197.245

200 OK

2.5 kB

URL GET HTTP/2
waisheph.com/?rb=YCvDFhvwxX2RZvgdp96N7b3qgBdlVvaaBrf6BtNjkAZray_HMKDZjKGCwMc6F9z-ia1guAV__-p0xaXM4RMh0r74y4zs87jMIEJPOjjTQWNz261mQVv77tAowZChSU5piE2Ghryocu5BD8S1iTRR8DtsTmYY9HJdqVQaaxQi__l035P_kKU4GX6qnDsU6ftsya5BsDtJ9Y4XuqUK21UlB6ckzzukbXUp5p7Q95Iolx5D4iAg3Ahpa_diZJHrvZO6mDgR2g%3D%3D&request_ab2=0&zoneid=6534229&js_build=iclick-v1.825.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fhianime.to%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.825.0&navlng=en-US&pnt=0&pnrc=0&bs=cff8987b-3092-4302-b3c8-bff0fa2910c2&wasm=1&userId=00807fe7219b4a45e083438642686f65&m=link
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://hianime.to/
Certificate
IssuerLet's Encrypt
Subjectwaisheph.com
Fingerprint87:20:2F:7F:7F:64:B6:C9:FE:04:52:6F:29:D7:DE:99:D4:8B:38:CA
ValiditySun, 26 May 2024 05:11:15 GMT - Sat, 24 Aug 2024 05:11:14 GMT

File type
gzip compressed data, max speed, from Unix
Size
2.5 kB (2534 bytes)
Hash
cbc86892ea3777f682d59e67b94fd073
6036f6865842c59457b60d818fdee3bedbc50a54
64fdd6fab4fc13833dd0c57675c3e2024081357df4e2a4a3db66a6d656f9614a

HTTP Headers

GET /?rb=YCvDFhvwxX2RZvgdp96N7b3qgBdlVvaaBrf6BtNjkAZray_HMKDZjKGCwMc6F9z-ia1guAV__-p0xaXM4RMh0r74y4zs87jMIEJPOjjTQWNz261mQVv77tAowZChSU5piE2Ghryocu5BD8S1iTRR8DtsTmYY9HJdqVQaaxQi__l035P_kKU4GX6qnDsU6ftsya5BsDtJ9Y4XuqUK21UlB6ckzzukbXUp5p7Q95Iolx5D4iAg3Ahpa_diZJHrvZO6mDgR2g%3D%3D&request_ab2=0&zoneid=6534229&js_build=iclick-v1.825.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fhianime.to%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.825.0&navlng=en-US&pnt=0&pnrc=0&bs=cff8987b-3092-4302-b3c8-bff0fa2910c2&wasm=1&userId=00807fe7219b4a45e083438642686f65&m=link HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hianime.to/
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Cookie: OAID=00807fe7219b4a45e083438642686f65; oaidts=1718753202
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 18 Jun 2024 23:26:42 GMT
content-type: application/json
x-trace-id: 678e1006663f84fc0519fadc45a6686c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://hianime.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00807fe7219b4a45e083438642686f65; expires=Wed, 18 Jun 2025 23:26:42 GMT; path=/; secure; SameSite=None
oaidts=1718753202; expires=Wed, 18 Jun 2025 23:26:42 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 25 Jun 2024 23:26:42 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a4a98cb7858bfd671309bced772b0095
703c86e6784782333c82f615335a6b5d6826607e
224e289334c48e0048c8e7805fae8e7b485ea11d278ed892156c67ce21e8e04c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "224E289334C48E0048C8E7805FAE8E7B485EA11D278ED892156C67CE21E8E04C"
Last-Modified: Tue, 18 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11118
Expires: Wed, 19 Jun 2024 02:32:01 GMT
Date: Tue, 18 Jun 2024 23:26:43 GMT
Connection: keep-alive

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.10.207

200 OK

160 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/15/2022 07:48:39
cdn-edgestorageid: 845
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: fd6978b6ded9117f937e7967366cd7c0
cdn-cache: HIT
content-encoding: gzip
cf-cache-status: HIT
age: 487706
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 895f0bafd8b05695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=00807fe7219b4a45e083438642686f65

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=00807fe7219b4a45e083438642686f65
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://hianime.to/
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint90:47:5A:A5:5F:5F:FA:E6:7C:6F:AB:D2:06:D1:D9:BD:F3:54:9E:6E
ValiditySat, 11 May 2024 20:51:41 GMT - Fri, 09 Aug 2024 20:51:40 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
9c3e271480c3d0c721c04109ad349562
aa0a74b7eef4669ea95cb320c39641689040033e
90ac72b8c8312d9c1c9253c0c804fb6e18ae418ab200a9383a409d7a7f3f18c1

HTTP Headers

GET /gid.js?userId=00807fe7219b4a45e083438642686f65 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 18 Jun 2024 23:26:42 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://hianime.to
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00807fe7219b4a45e083438642686f65; expires=Wed, 18 Jun 2025 23:26:42 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAF:F4:F6:EB:DF:C2:EE:A0:DE:57:2C:A6:2A:38:0A:B9:6B:0A:4C:D4
ValidityMon, 27 May 2024 07:29:09 GMT - Mon, 19 Aug 2024 07:29:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Jun 2024 03:03:48 GMT
expires: Wed, 18 Jun 2025 03:03:48 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 73373
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600&display=swap

142.250.74.106

200 OK

3.1 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintF2:70:F4:02:94:58:08:9B:B8:DA:5D:47:F4:4D:59:66:71:5E:34:8E
ValidityMon, 27 May 2024 07:29:09 GMT - Mon, 19 Aug 2024 07:29:08 GMT

File type
ASCII text, with very long lines (3220), with no line terminators
Size
3.1 kB (3148 bytes)
Hash
c4a1b7d9442074c5d77bee5940a774e3
4163a858b18b6919ecd317eab86ca08a2e0cda0c
0a0ac76b53045c51e8f7dd6988fe0d89bd1b3949b9c480ec5302bca0cd30a75b

HTTP Headers

GET /css2?family=Poppins:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 18 Jun 2024 23:26:41 GMT
date: Tue, 18 Jun 2024 23:26:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.227

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAF:F4:F6:EB:DF:C2:EE:A0:DE:57:2C:A6:2A:38:0A:B9:6B:0A:4C:D4
ValidityMon, 27 May 2024 07:29:09 GMT - Mon, 19 Aug 2024 07:29:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hianime.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Jun 2024 19:20:39 GMT
expires: Wed, 18 Jun 2025 19:20:39 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 14762
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hianime.to/css/home.css?v=0.9

104.21.0.192

200 OK

15 kB

URL GET HTTP/3
hianime.to/css/home.css?v=0.9
IP
104.21.0.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hianime.to/
Certificate
IssuerGoogle Trust Services LLC
Subjecthianime.to
Fingerprint89:44:73:AA:CB:5F:E4:FA:94:55:E9:3E:36:4E:CF:BD:94:01:2B:56
ValidityWed, 24 Apr 2024 15:01:36 GMT - Tue, 23 Jul 2024 15:01:35 GMT

File type
ASCII text
Size
15 kB (15297 bytes)
Hash
11ec89890ec4ed1b6f2fe2fb6a87b020
b3c9cea0a9156afa60fad66b8cbf104e1ff2d91c
db14fe70ee08912456e6c4af495615e93ba490ecb67e6736f636f554e148a6b3

HTTP Headers

GET /css/home.css?v=0.9 HTTP/1.1
Host: hianime.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hianime.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Jun 2024 23:26:40 GMT
content-type: text/css; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=31536000
last-modified: Wed, 28 Feb 2024 00:38:35 GMT
etag: W/"3bc1-18ded262247"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 477289
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EKkxF9SZMH1l5mr40QTU%2BXgTU88nEwWcS8PC5H7JZl%2Bz6D%2FvFf4Ey%2BbmjkIb5hKH3aCj7ao9vnrcEHtLgIW91TnyzFh0zsoeDX%2BwM97hY0aLW4YQNxolfEC1t2me"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 895f0baf6fa2b511-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by