| assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css | 143.204.55.80 | 200 OK | 190 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (65524), with no line terminators Size190 kB (189840 bytes) Hash2a9b7ed9ea7b3dcad1cf775b5e87d10e 35e6e010448d0ab17dd405199bed8ee467c6b97c b1a6906e0fe6941fd7f951966c07d3ee75ceddcae411e45cfb996d2c4f451819
GET /6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 189840
date: Thu, 18 Apr 2024 15:31:22 GMT
last-modified: Thu, 18 Apr 2024 15:31:08 GMT
etag: "47b6f5f360d4c743d42833b1274b4d6a"
x-amz-server-side-encryption: AES256
cache-control: max-age=84600, must-revalidate
content-encoding: gzip
x-amz-version-id: YkX6K9dp3NGkvaP4chX9HHebcHUhp.Ht
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 4728
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zA7_5-2ZxuNEL3pBqtqY-u2SegdP8_jiyUSt1-qAUkYqiRSkffyE5A==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/js/discord-2022.32e254c64.js | 143.204.55.80 | 200 OK | 302 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/js/discord-2022.32e254c64.js IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42312) Size302 kB (301895 bytes) Hash32e254c645ad2f919415ce1fabd60e56 d25f0a0729e6922522cb8e349cceea77fac20d58 318509f469695d4ce67eaa1496a670b6643fe64fad08caaca56a266bed8fc739
GET /6257adef93867e50d84d30e2/js/discord-2022.32e254c64.js HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 301895
date: Thu, 18 Apr 2024 15:30:09 GMT
last-modified: Thu, 18 Apr 2024 15:29:57 GMT
etag: "823312bef464e0d2e0ac20b685986ac3"
x-amz-server-side-encryption: AES256
cache-control: max-age=84600, must-revalidate
content-encoding: gzip
x-amz-version-id: p9zSctEqDZqVy_1Vv1lc33MibLPaTRfE
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 4801
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iZDbhG2tQMwOiwgrfF4vNrf6IWbkS8gT7f2wUHWbtqAu8CDhIiEnXQ==
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js | 216.58.207.202 | 200 OK | 31 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP216.58.207.202:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 18:59:06 GMT
expires: Tue, 15 Apr 2025 18:59:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 251464
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js | 216.58.207.202 | 200 OK | 5.4 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP216.58.207.202:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (2134) Hash7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee
GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:37:07 GMT
expires: Tue, 15 Apr 2025 22:37:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 238383
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652736292cbf8363b43d077a_ggsans-Normal.woff2 | 143.204.55.62 | 200 OK | 32 kB |
URL GET HTTP/2assets.website-files.com/6257adef93867e50d84d30e2/652736292cbf8363b43d077a_ggsans-Normal.woff2 IP143.204.55.62:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31736, version 1.0 Hashef78ef4e179e7e1766882d2f044cb39d ff3734cda8426368beb9deee703344815817e987 88fba47546b0201525b02b5f65c8af1b09367d470fff48aca932e7b43e3fd67d
GET /6257adef93867e50d84d30e2/652736292cbf8363b43d077a_ggsans-Normal.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 31736
date: Tue, 16 Jan 2024 01:28:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "ef78ef4e179e7e1766882d2f044cb39d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: agtU.RiHNiUEYCZ7XSMt8TbraKajaRFo
accept-ranges: bytes
server: AmazonS3
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 8090477
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fHQZG026P0hUEcTwxFADwOVHLQt0khRIVJoT4y5pzilCU0FQ3VM0HA==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 | 143.204.55.62 | 200 OK | 33 kB |
URL GET HTTP/2assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 IP143.204.55.62:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 32952, version 1.0 Hash890a9ab504c3657183ff118b1aff212b 127609df5d04fc779da4a9e90d8d09bdbb390149 d472a71a0f92855881ce2c2334df77a333461f6936f1f0388f952fedb056fb3e
GET /6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32952
date: Tue, 16 Jan 2024 00:44:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "890a9ab504c3657183ff118b1aff212b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: WIOu3nzmwbn9so0iCvFU.l8wZizfTi6I
accept-ranges: bytes
server: AmazonS3
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 8093123
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 19qRd4C56mrnVisrKsFWXaDHIGDDtWVVd0isEv58NMjFRCZgVdS9Dw==
X-Firefox-Spdy: h2
|
|
| discord.com/webflow-scripts/landing.js | 162.159.137.232 | 200 OK | 1.5 kB |
URL GET HTTP/2discord.com/webflow-scripts/landing.js IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1712), with no line terminators Hash6873ba0d8e966bfe2f6428009c1f4255 4db49fba2d81920a64192997c693e94b857886ea 17184c99c6227c46e9e0550667946e3f55ad4bdd1999c05f4e3201083e9a5940
GET /webflow-scripts/landing.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 16:50:09 GMT
content-type: application/javascript
cf-ray: 876626fb6cbb56a4-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"6873ba0d8e966bfe2f6428009c1f4255"
last-modified: Thu, 21 Mar 2024 18:09:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HkgMVq7eWz8Ucl%2F1APlf45sdtIiI8yvOdDpmzqxRAeUMaHGRjR8cl%2BacsEzBqtiV6mCdiRGSOWNjksRACWu2Lpo1NE17EDENlEkKBoZP5byjkTzQT1Z5AHwaEI82"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=13c171bb68b4b9ac58b53d45ce66420321efe0cf-1713459009; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=LK22EPRv67D9K0112prAMWv7FwaBdzbK3AC6oHklayc-1713459009855-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/65273da62cbf8363b445b021_abcgintonord-800-extrabold.woff2 | 143.204.55.62 | 200 OK | 42 kB |
URL GET HTTP/2assets.website-files.com/6257adef93867e50d84d30e2/65273da62cbf8363b445b021_abcgintonord-800-extrabold.woff2 IP143.204.55.62:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 41872, version 1.6553 Hash3d07f5abf272fbb5670d02ed687453d0 5ba49c861917331a4d29d2a81ed4f93e94f62212 3afc8b61c01534f04c628962b34e53104e0487b010f197a54d2e9ce357bf9733
GET /6257adef93867e50d84d30e2/65273da62cbf8363b445b021_abcgintonord-800-extrabold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 41872
date: Tue, 16 Jan 2024 00:16:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:28:23 GMT
etag: "3d07f5abf272fbb5670d02ed687453d0"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: Ntbz1viACAtTV6OeKRAGMck.yUrF3AVv
accept-ranges: bytes
server: AmazonS3
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 8094838
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: srXM3Jz8t0JyUPUGEVzWjMUfMM94PGw3e9KJMaM5-YQuj1hN5Q_Nqg==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 | 143.204.55.62 | 200 OK | 33 kB |
URL GET HTTP/2assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 IP143.204.55.62:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 32592, version 1.0 Hash6db712e9212169e71d90c9999b5d98f6 dac145a44f8530b801f8fa525742ebc93efce6ba d68a183592ac8ad34c6a0649690b01946cfd17762dc317e0ca31791e707a2d84
GET /6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32592
date: Tue, 16 Jan 2024 00:16:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "6db712e9212169e71d90c9999b5d98f6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: O.MN014CaJ7rpd0EYtYKL1gJt0CuPry8
accept-ranges: bytes
server: AmazonS3
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 8094838
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PDpkLPuvFFY7gNBYO-e1cxGZLNyjqo1hGv4qSilkfjNzq5qeB049dQ==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg | 143.204.55.80 | 403 Forbidden | 53 kB |
URL GET HTTP/2assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
Hash08cf973200a4853f04ed8ed131e3ab6b bbf153752a433165bb46ef18faba20ffa5e1fb25 b2b7ac4aea9ac15746048600c823482070db5dab6ff9fa741d6068c3f355dabc
GET /plugins/Basic/assets/placeholder.60f9b1840c.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 18 Apr 2024 16:50:10 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j1QlW5_6TAaG0zTcvV2TGsgYsFstwunDQvc1c-wyZsprULStX4PNHw==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4db9ca0a124b73d4b7_c40c84ca18d84633a9d86b4046a91437.svg | 143.204.55.80 | 200 OK | 84 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4db9ca0a124b73d4b7_c40c84ca18d84633a9d86b4046a91437.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashfdcdc8b988ed6ad1d6bf0285076d5328 4e6ab7136d2f3d5e87d31a95081036a8ba3efaaf 806e2489ed2d83c396b3026727a58c028af86f2b45a806edcb8a779989b0e386
GET /6257adef93867e50d84d30e2/644fab4db9ca0a124b73d4b7_c40c84ca18d84633a9d86b4046a91437.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 25 Jan 2024 19:29:53 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"c40c84ca18d84633a9d86b4046a91437"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: eVnh2jd6TOCLgbmA6vfynI_kV88A6GyZ
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7248018
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uJxWcKy7HCkVMmJOeaFFljEmPwFZNKnynUqH1NbOTr80UH5qHZ_zRQ==
X-Firefox-Spdy: h2
|
|
| discord.com/assets/oneTrust/v4/scripttemplates/otSDKStub.js | 162.159.137.232 | 403 Forbidden | 24 kB |
URL GET HTTP/2discord.com/assets/oneTrust/v4/scripttemplates/otSDKStub.js IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (4536) Hashd855d55b90ac72502215aeb6fc96f237 53bedbba14e8b74476c3c31d4e8e3e59698bda1b af2eaea1e24dd55dc3cedd62280dc218ca2f51422b9383999a6f16c36c389357
GET /assets/oneTrust/v4/scripttemplates/otSDKStub.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Cookie: __cfruid=13c171bb68b4b9ac58b53d45ce66420321efe0cf-1713459009; _cfuvid=TJLueuQJRdOkx.PB65e85q3rIvYDYFeOLCTz.ETYXug-1713459009858-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
date: Thu, 18 Apr 2024 16:50:10 GMT
content-type: text/html
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Thu, 18 Apr 2024 16:50:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2FkffFNYRYL3CQ4s0XqhZf%2FNBoHqlv9E2KPN70Mc7P7JC6wdL4d3oOmqzzyz8uDURWA%2FxmnNU7eg5cQtG%2B2IDsIwJ%2B2uQOYiQBJstEHUTT6SDRiS9SsXUBUegjcF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87662701bc880afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/632d9b371770507a4c801977_Icon%20-%20Download.svg | 143.204.55.80 | 200 OK | 399 B |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/632d9b371770507a4c801977_Icon%20-%20Download.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha5b531f679e3aaeeef5195f1c653ff0b ac05f6c7f113260cd919e554447c2086223c8246 9d35e368949f55bc97041eba8a70d97fcc1352f0c1d93f3a3589b330069a2469
GET /6257adef93867e50d84d30e2/632d9b371770507a4c801977_Icon%20-%20Download.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 399
date: Tue, 26 Mar 2024 16:33:37 GMT
last-modified: Fri, 23 Sep 2022 11:40:41 GMT
etag: "a5b531f679e3aaeeef5195f1c653ff0b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: MUirW0ivsS_DC1LoG2DsWiw0x633eOnt
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 1988195
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x-Dxm5TXC5LawCYKlwYPiZsB2P7sRILjIibPBmdto1HMQQeaDM9Jqw==
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-N7BVC2W>m_auth=GI0g9O-54_SitcgmxQKxlA>m_preview=env-2>m_cookies_win=x | 142.250.74.168 | 200 OK | 87 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-N7BVC2W>m_auth=GI0g9O-54_SitcgmxQKxlA>m_preview=env-2>m_cookies_win=x IP142.250.74.168:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2355) Hash8a9e8944db4b88527ff225c2bbff19fd bdd16fe832829ab4faebb8395e3f9d2f6fc1a748 fd315d011e2643b92679ffed030f715eea0a9972a8980ac492177322a87bdd7a
GET /gtm.js?id=GTM-N7BVC2W>m_auth=GI0g9O-54_SitcgmxQKxlA>m_preview=env-2>m_cookies_win=x HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: *
date: Thu, 18 Apr 2024 16:50:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86746
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| discord.com/webflow-scripts/head.js | 162.159.137.232 | 200 OK | 288 kB |
URL GET HTTP/2discord.com/webflow-scripts/head.js IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8260) Size288 kB (288493 bytes) Hash5f85c48349fcc177a601c0d2910e2b5b 58804d25e4cb6bc4a77506c6d36db87788ff6966 dd53642818deded757546d764295563addb95b0713b4f2352e7209d9f72942e0
GET /webflow-scripts/head.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 16:50:09 GMT
content-type: application/javascript
cf-ray: 876626fb6cc156a4-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"5f85c48349fcc177a601c0d2910e2b5b"
last-modified: Thu, 21 Mar 2024 18:09:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iwSMUk4t5z1aStDK01DBTaPyyalH9TXGEyS1Jxfw9ZRsq605rkI3tMyV0Sv7HaOJInoutH85gh24SI725Q2LbfNS5oHBhbFf9W01smop8tjskWp6dhWVeXUvme4V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=13c171bb68b4b9ac58b53d45ce66420321efe0cf-1713459009; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=TJLueuQJRdOkx.PB65e85q3rIvYDYFeOLCTz.ETYXug-1713459009858-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png | 143.204.55.80 | 200 OK | 557 B |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hashc309ae41848547064c2ddb7dc66b6215 6d9801822541e4be3ed25137c4e53a249c85ba2a 11848b5f1c8a7f294c6211c2f0d0dc83a8a28bfe1ef0829a8dacfdf475c5e5a2
GET /6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 557
date: Wed, 10 Jan 2024 05:58:14 GMT
last-modified: Thu, 18 Aug 2022 06:41:20 GMT
etag: "c309ae41848547064c2ddb7dc66b6215"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: n3jtG2p1G.rx09TUNkUzzkpqc1_KeQPx
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 8592717
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gzk7r9vu6gXw6pigOI3wKSo5j_T3RC54VnO4At3WveI7KzrS9PWr9Q==
X-Firefox-Spdy: h2
|
|
| discord.com/api/v9/users/@me?with_analytics_token=true | 162.159.137.232 | 200 OK | 43 B |
URL OPTIONS HTTP/3discord.com/api/v9/users/@me?with_analytics_token=true IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash041912d109d349cf8c39ccccc812126a d677b242a21df8bb9d696998193de662b96a9ff0 774085c73d7aeecdd59894443d83d16b7e4e731c89420ca9f7356a5c9c928056
GET /api/v9/users/@me?with_analytics_token=true HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 16:50:11 GMT
content-type: application/json
content-length: 43
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=scZHgwSRBeaKphSsXgVDWLd29xGj2UWKqT1zsARlbcJJKcYCuM1IkOjrSsdVmvahvaGXVi2BKQLGWZRpu11pNDqr0nEK%2Byd3fIXkdI1Fp582CNIDK6AqV8%2FO5iyg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b8dcb852fda311ee8b3b8a4c6b2db6cd; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b8dcb852fda311ee8b3b8a4c6b2db6cdf4ff219fdb636d532c923ad55fe24731a926fdbba9670c9dd18a4ccee8b4f927; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=a1a85be393d4c6f7587a1a500de20bd02dcba719-1713459011; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=.zCYkdIr.jFpfNxIXXNLq.lsaqjkTpXwOVgk2DkWG8E-1713459011862-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8766270759170afa-OSL
|
|
| discord.com/api/v9/auth/location-metadata | 162.159.137.232 | 200 OK | 90 B |
URL GET HTTP/3discord.com/api/v9/auth/location-metadata IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashf71ec3213ab710dc4afb772bd43cbd42 1313b173096b575f70114924c70eebb1e60c473b 2375b57bdaa9c29a0f5864e080e637993143d2b61496f074183951fd4bc8d280
GET /api/v9/auth/location-metadata HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:11 GMT
content-type: application/json
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e6%2F%2FaiCiE1lXXI1mSYF25USUNXNCIKFxwCINgCBcxADRKTw6qdmqvdzWYPGxNcbr8oD82qzJyiyJhqPo92wks5kgryKwxBDj6ucGLZZskuR%2F1PvBoT0K205OOc0W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b8dcfcaefda311eebaffb29a056c9a0f; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b8dcfcaefda311eebaffb29a056c9a0f58ba374c4e76d5e58565dd12e980daa59a0fe9a4b738919400bd5c735df27dfd; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=a1a85be393d4c6f7587a1a500de20bd02dcba719-1713459011; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=kFKQ1MFzrgYkUO6Q_DSnyYXI6A851kvN7pbzTHC0Wus-1713459011866-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662707490f0afa-OSL
content-encoding: br
|
|
| discord.com/api/v9/science | 162.159.137.232 | 204 No Content | 0 B |
URL POST HTTP/3discord.com/api/v9/science IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
X-Fingerprint: 1230561028262199316.fHZviytxhwfgM-FngXAFplE1TBw
Content-Length: 230
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Thu, 18 Apr 2024 16:50:12 GMT
access-control-allow-origin: https://pics.lo476ni.workers.dev
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3Psf2ldxrIrjeGjd%2Fd5m0eQ%2BleyI4XQ2yhYzPUpFtvK2At%2BEykJntODvAoOgrOe20UAA4x62lkfRbD%2BtTZ7RFEXashhJVVzm4PGGociuLDXKudFclvkXTnvSv5Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __cfruid=55792571a4df43008c82add8153fabd9c1010518-1713459012; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=96lwq1jcdErNLq9XTpFg9QO_j1Diw2yLP.OA4ik._Q4-1713459012240-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662709aad10afa-OSL
|
|
| assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg | 143.204.55.80 | 403 Forbidden | 243 B |
URL GET HTTP/2assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeXML 1.0 document, ASCII text Hashc276a23b13d0317baf915e2a852c7ca7 1883fda38f3c4e7fcf4d81bb5dac2f4638bd81c3 fece65f9cf64fca10ce24e0eab74248a662d98414797d6c7dc7d3dd581715031
GET /plugins/Basic/assets/placeholder.60f9b1840c.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 18 Apr 2024 16:50:09 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S6HH26RmsWt6oFDsO4wPin7wSNKJSaaW2nwJMPPWNns01STHCtLquA==
X-Firefox-Spdy: h2
|
|
| discord.com/api/v9/users/@me?with_analytics_token=true | 162.159.137.232 | 200 OK | 504 B |
URL OPTIONS HTTP/3discord.com/api/v9/users/@me?with_analytics_token=true IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash75891068c2015ef9cd9e7b425c0142d0 348372c413c08bf8b6947bee32b5f62727024e66 a33ccfea83b5b4e29a5cc3b03c1075a51f62bc69df520c09c2d5948fcce513e6
OPTIONS /api/v9/users/@me?with_analytics_token=true HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-track
Referer: https://pics.lo476ni.workers.dev/
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:11 GMT
content-type: text/html; charset=utf-8
allow: PATCH, HEAD, OPTIONS, GET
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rjKMEWplNlnSs3bjjsKpf1tCmzdQH%2BunUPOfSQocqcWwQpUSCM%2F%2FCagoHUq4EKjt08ivsEDTU6WeEA8mNSlcoxBf70zq2lsFocWTaB53NCj%2F4FKIfGibEnpvD6R8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b8c71cccfda311eeba278a4c6b2db6cd; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b8c71cccfda311eeba278a4c6b2db6cd887993fd857830930a507852ab0d611e27316c3cf1b39756a262c7cfb74c8a10; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=a1a85be393d4c6f7587a1a500de20bd02dcba719-1713459011; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=USeRXdw.q7YrLHvnZuI1Jd4K85SFgnwM36joBP5wjfo-1713459011721-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662706685a0afa-OSL
content-encoding: br
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=LzLe-k3xUAqSZaHNbdyYNBqAZ0T2A5w7_Su55rbMfbA0b9_sqEsJB7nZfWC1WOXe_gCFBxjyPLvCz3yGQ2yhKctFPsQ5-e9k5-jgmH_uVxHvi-yuKxUfZXZM7Z65kU1G
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Thu, 18 Apr 2024 16:49:17 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 71
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6582c18a9cff186bd3731704_Create%20an%20invite-only%20place%20where%20you%20belong.svg | 143.204.55.80 | 200 OK | 135 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/6582c18a9cff186bd3731704_Create%20an%20invite-only%20place%20where%20you%20belong.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size135 kB (135153 bytes) Hash6663c28b499d1b41349dd9ece236019d 255c673856a356b69a5fb350be10d820060e1daa 2ece3e7e6e793db094c668291381d080f313a263c7cd6a548511f6b75a57f1e5
GET /6257adef93867e50d84d30e2/6582c18a9cff186bd3731704_Create%20an%20invite-only%20place%20where%20you%20belong.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 18 Jan 2024 17:54:26 GMT
last-modified: Wed, 20 Dec 2023 10:27:23 GMT
etag: W/"6663c28b499d1b41349dd9ece236019d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 0Qdvngn3KrPl.t2A3gTQcgVBYrxsy1wD
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7858545
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ulXR4_ALObI_19sOtSXQXR5ujmGHN1D-xm2SI3JM7jR-NIKE2PW8kg==
X-Firefox-Spdy: h2
|
|
| www.youtube.com/iframe_api | 216.58.207.238 | 200 OK | 1.1 kB |
URL GET HTTP/2www.youtube.com/iframe_api IP216.58.207.238:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1087), with no line terminators Hash7636fb2fc6f1df302cf90faaed3040e0 e6414cbf10da9dfa1153dc36cc3d63e959aedffb 7583831ce9c67bce79b507015f84ab21449760656941b333809523ca4c9f3b31
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 18 Apr 2024 16:50:12 GMT
date: Thu, 18 Apr 2024 16:50:12 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=LF3YUM_D1k4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=LItMyZN22PU; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 16:50:12 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIBE%3D; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 16:50:12 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2 | 143.204.42.231 | 200 OK | 90 kB |
URL GET HTTP/2d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2 IP143.204.42.231:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2 HTTP/1.1
Host: d3e54v103j8qbb.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 20 Jul 2020 17:53:02 GMT
server: AmazonS3
content-encoding: br
date: Thu, 18 Apr 2024 05:55:10 GMT
cache-control: max-age=84600, must-revalidate
etag: W/"dc5e7f18c8d36ac1d3d4753a87c98d0a"
vary: Accept-Encoding
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
age: 39302
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UReQ6OYAwp0XtAQeSRTJD24gvHeD1QQJna4v1x8R6aHRjZaMt_6xLQ==
X-Firefox-Spdy: h2
|
|
| pics.lo476ni.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/index-react.js | 188.114.96.1 | 200 OK | 6.6 MB |
URL GET HTTP/3pics.lo476ni.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/index-react.js IP188.114.96.1:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectlo476ni.workers.dev Fingerprint54:C3:4A:7C:8E:E0:0E:02:DE:B4:E8:9C:73:00:67:13:4C:F9:74:38 ValidityThu, 14 Mar 2024 20:45:29 GMT - Wed, 12 Jun 2024 20:45:28 GMT
Size6.6 MB (6590513 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/index-react.js HTTP/1.1
Host: pics.lo476ni.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Cookie: __dcfduid=b7632a10fda311eea7043dece0952d38; __sdcfduid=b7632a11fda311eea7043dece0952d38803949472bfbbb17f099c76efed035a4af0ed2767218cf119adcfeaa94b8532e; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:10 GMT
content-type: application/javascript
cf-ray: 87662701eba35684-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: public, max-age=60
etag: W/"1e15f3981cb1741b8654b8621a0d3e17"
last-modified: Tue, 16 Apr 2024 17:52:22 GMT
set-cookie: _cfuvid=RHfzXkoCbw6XBOwiQz9bkLBxMYNi6iZZMqkP1VFknPI-1713459010950-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-build-id: b960ac7f559c3a04d18e7cce9de42c4b94a33dd4
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UK2Et95htZY5i8t4xO%2By98yEROcnA9ES%2FEr9bzW6pL5idFiVT82kRiVcRg6KIkB8BP58O5lZsS%2FCAZM5%2Fx%2Be4lfthSp7jI4rcsV6evrt%2FCzERjL400f63XucP9gwndq3AavqFEaAGbqaTxI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pics.lo476ni.workers.dev/ | 188.114.96.1 | 200 OK | 53 kB |
URL User Request GET HTTP/2pics.lo476ni.workers.dev/ IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectlo476ni.workers.dev Fingerprint54:C3:4A:7C:8E:E0:0E:02:DE:B4:E8:9C:73:00:67:13:4C:F9:74:38 ValidityThu, 14 Mar 2024 20:45:29 GMT - Wed, 12 Jun 2024 20:45:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET / HTTP/1.1
Host: pics.lo476ni.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 16:50:09 GMT
content-type: text/html
cf-ray: 876626f81cfeb51d-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: no-cache
last-modified: Thu, 18 Apr 2024 16:49:31 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'nonce-MTM2LDgwLDE3NCwyMzAsMjE1LDIzNSwyNDcsMjMy' https://discord.com https://www.googletagmanager.com https://connect.facebook.net https://www.google-analytics.com https://ssl.google-analytics.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://s.ytimg.com/yts/jsbin/ https://www.youtube.com/iframe_api https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location https://script.crazyegg.com https://*.website-files.com https://global.localizecdn.com https://d3e54v103j8qbb.cloudfront.net https://gist.github.com https://unpkg.com/@splinetool/runtime/build/runtime.js https://*.twitter.com https://cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js https://boards-api.greenhouse.io https://ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js https://cdn.finsweet.com/files/fscalendar/calendar-invite-v1.0.min.js 'sha256-mjdgHR9aXy-6OwAGlNS_XgNcYG1Uhd2U4pl8vi7-XCY=' 'sha256-gqG2LEZaHDwOL3S_CXJTuk_f3LimTEyruhOc_U0_QUY=' 'sha256-y0oGiuXZdmX7xRABTnY5cbHkfghDqbfX6JoerXLgVJc=' 'sha256-gBzDBwsujjXjXk6GLgdSlLIrvt5h0s3F_qF7Qt8TYwY=' 'sha256-TrY3AqlyKfZdsI3LYsy6u8GAhckLEXeyLcFK2gOe18U=' 'sha256-lVOL-gH47X0Li5QriWNZ69Hcr-71DsXFvGmQxN9TpBw=' 'sha256-j11ZNhk91nmUjPCBAIRcvJeEgnkbdJ9qNqoEMekilec=' 'sha256-1sQ9sTbc6Lumd2Frwf7IBwGG02gPTreTI8QBBW5kibM=' 'sha256-uh1p-Vy3_Cn66Ugk4Hak-gGr2Udg7yiI_5u5E_BdCRM=' 'sha256-7JHgDILwD7i_kvnHwJFF5WsHHmIc98tkBqDqbv47iFE=' 'sha256-KvstP_RIj6GGaE25Mqo-kIO0_WVEls1n5tnNhm8zmPA=' 'sha256-6xIDOlx5P0LKHv8fkot5ULOnB8ySdhjJi5r_ZP5EDPY=' 'sha256-jY_7jWrddtNUb-Y4CFKWaH-R2lrqgm_LAX72E8SLqKw=' 'sha256-MdICB9cW7ILT3ZeSxhN2YlpFxEsn5WHr03Ix-WVpHsw=' 'sha256-fUfByJGhChEFu7PE5HJfFwiYKySnP1H0iXvAxkauLNU=' 'sha256-xjkCDxBOM2TlIn5DpGQM4aJldb4AiHMKlRjfW46l-x0=' 'sha256-VOPfGBY-XgTDMwhG41S5eZyMKlu3gN60suwCPDWZ8MY=' 'sha256-tVeTMYknRG_IAdCHRGlDd9S2bX2_rX0e4HpaP9lgKWY=' 'sha256-kprfDg8ElCpUCFQAX5shnAPf3i59vVTSy02AjZXV3k0=' 'sha256-llLws8TR-U3nNRCIvJNVc-SGscqwyeO1IPgpbnWuZdc=' 'sha256-h9lm4cvrD7egZu1GTAE1h2IDy1K4fXgD-q_O7aEosuw=' 'sha256-_cdQbTQzcfSt2_aCceUvkUmLh1WMdvlKbi1BBG7u8Jg=' 'sha256-U0jHWhsvIpjnwYKeJS_-2pe9ROsYnck5ZB2aXNyKWq8=' 'sha256-rB4G_-e_bAPU7rKI_9HC1lBZ0XEa_nHDH6hXFz4GIh4=' 'sha256-N02bP-slnHB-OYEN6imRqCHcHLN5DvBouRmyO2qcQYU=' 'sha256-QHiY6i8ql9SJTaFXzUhm08ZWuNz0QarKruf0Omd9-OQ=' 'sha256-s4OBHcHJnkGxjEyNJhU5BQt4qlt6MH07rG/j/hFOUnE=' 'sha256-s4OBHcHJnkGxjEyNJhU5BQt4qlt6MH07rG_j_hFOUnE=' 'sha256-mjdgHR9aXy+6OwAGlNS/XgNcYG1Uhd2U4pl8vi7+XCY=' 'sha256-jY/7jWrddtNUb+Y4CFKWaH+R2lrqgm/LAX72E8SLqKw=' 'sha256-lVOL+gH47X0Li5QriWNZ69Hcr+71DsXFvGmQxN9TpBw=' 'sha256-/cdQbTQzcfSt2/aCceUvkUmLh1WMdvlKbi1BBG7u8Jg=' 'sha256-N02bP+slnHB+OYEN6imRqCHcHLN5DvBouRmyO2qcQYU=' 'sha256-gqG2LEZaHDwOL3S/CXJTuk/f3LimTEyruhOc/U0/QUY=' 'sha256-llLws8TR+U3nNRCIvJNVc+SGscqwyeO1IPgpbnWuZdc=' 'sha256-gBzDBwsujjXjXk6GLgdSlLIrvt5h0s3F/qF7Qt8TYwY=' 'sha256-6xIDOlx5P0LKHv8fkot5ULOnB8ySdhjJi5r/ZP5EDPY=' 'sha256-7JHgDILwD7i/kvnHwJFF5WsHHmIc98tkBqDqbv47iFE=' 'sha256-VOPfGBY+XgTDMwhG41S5eZyMKlu3gN60suwCPDWZ8MY='; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.hcaptcha.com https://hcaptcha.com https://*.website-files.com https://*.githubassets.com; img-src 'self' https://www.google-analytics.com https://www.googletagmanager.com https://www.facebook.com https://cdn.discordapp.com https://hackerone-api.discord.workers.dev/user-avatars/ https://safety.discord.com https://discordmoderatoracademy.zendesk.com https://assets-global.website-files.com data: https://*.website-files.com https://global.localizecdn.com https://*.ytimg.com https://uploads-ssl.webflow.com; font-src 'self' https://fonts.gstatic.com https://fonts.gstatic.com https://*.website-files.com; connect-src 'self' https://discordapp.com https://discord.com https://connect.facebook.net https://api.greenhouse.io https://api.github.com https://sentry.io https://www.google-analytics.com https://hackerone-api.discord.workers.dev https://*.hcaptcha.com https://hcaptcha.com https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location ws://127.0.0.1:* http://127.0.0.1:* https://global.localizecdn.com https://*.website-files.com https://webflow.com/api/ https://script.crazyegg.com https://assets-tracking.crazyegg.com https://pagestates-tracking.crazyegg.com https://tracking.crazyegg.com; media-src 'self' https://cdn.discordapp.com/assets/; frame-src https://discordapp.com/domain-migration https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://*.hcaptcha.com https://hcaptcha.com https://www.youtube.com/embed/ https://hackerone.com/631fba12-9388-43c3-8b48-348f11a883c0/ https://10851314.fls.doubleclick.net/ https://*.twitter.com https://*.vimeo.com;
permissions-policy: interest-cohort=()
set-cookie: __dcfduid=b7632a10fda311eea7043dece0952d38; Expires=Tue, 17 Apr 2029 16:50:09 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
__sdcfduid=b7632a11fda311eea7043dece0952d38803949472bfbbb17f099c76efed035a4af0ed2767218cf119adcfeaa94b8532e; Expires=Tue, 17 Apr 2029 16:50:09 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
_cfuvid=iq0nXInEKWHSKbG3uBACRstnp2bzoH0QI2BGKm1oxGc-1713459009332-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JVNYvogGrbiZXd7j5xvaTnD3OWwaMe%2Be2t4VU%2BqDhIkN3GCKS3T0TctBRewdlnlXnC4F7LP6vEqhhs9kYB6HTy4YXMWZzVnEXLwoY15jjvZZFCEfJVKVPYnT773CJdPrARRuSsKnnTj9%2BPQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg | 143.204.55.80 | 200 OK | 6.4 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash495a3fcd9fa1dccdbf779ed80dedd838 9f36d02ab56ba8d0da22890a411732cad9a1e068 de1ea8360175fe0ccb23fbc3b78850543c36824a02d7afa004963672d2317a26
GET /6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 20 Sep 2023 23:23:23 GMT
last-modified: Thu, 14 Apr 2022 07:50:22 GMT
etag: W/"af172fc4474c781e2dd37c0bf905e86a"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: L3xb6VYoQ.AotyKi_Z9N2_J5hV1m9MOY
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 18206808
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fzT3nYX6EGlpA6YUnD0zHJtyuvEjg7mr-lXdVReZV-j4tn999n2R-w==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff | 143.204.55.62 | 200 OK | 63 kB |
URL GET HTTP/2assets.website-files.com/6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff IP143.204.55.62:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 62768, version 0.0 Hash746a4f241e03deffc59b08c5650cf458 16569eaca9910e7538f31bc3c1460c2761eb5ca3 12954218db16e3a3c86a6ee84e41be8bb35cee983ffd5233b37c7e094f9dcf11
GET /6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-font-woff
content-length: 62768
date: Thu, 30 Nov 2023 20:07:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:57:22 GMT
etag: "746a4f241e03deffc59b08c5650cf458"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: jA5XmHZ6LxEy4IR9.UBRjDzTvaXkKSaO
accept-ranges: bytes
server: AmazonS3
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 12084166
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wWvJ5MnMXjtBuAVIuS_FJBY3bREJlfgoYISFhXgkQAi-phG7HGLR8A==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg | 143.204.55.80 | 200 OK | 13 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashe6d57714479874c665b36c7adee76b1d 7d548455122292f8272c5672303fc786d2d3000f 8a22b3884eb5d0750875b97c8192cba5465ec2c8a438c92378a9650804607c76
GET /6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 13 Feb 2024 07:55:07 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"e6d57714479874c665b36c7adee76b1d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 4azmGLkHqXDQcQhsKUX3YgfaRjryrV9s
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 5648104
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y1b_pCXKkEvT63d8RJls_yLM8h-GljklL1Y_fqFfqDDOJ7JbHkCNVg==
X-Firefox-Spdy: h2
|
|
| pics.lo476ni.workers.dev/cdn-cgi/challenge-platform/scripts/jsd/main.js | 188.114.96.1 | 404 Not Found | 20 kB |
URL GET HTTP/3pics.lo476ni.workers.dev/cdn-cgi/challenge-platform/scripts/jsd/main.js IP188.114.96.1:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectlo476ni.workers.dev Fingerprint54:C3:4A:7C:8E:E0:0E:02:DE:B4:E8:9C:73:00:67:13:4C:F9:74:38 ValidityThu, 14 Mar 2024 20:45:29 GMT - Wed, 12 Jun 2024 20:45:28 GMT
File typeHTML document, ASCII text, with very long lines (13068) Hash9b16cb59710fd34b0f3c8865c942b56d 6a123d880ba89c787a3de8a598979fe59d7a4378 fdb257504c764d8e98827091b47e3735f5d01c1bfad23b940b043c50a228c50b
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: pics.lo476ni.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __dcfduid=b7632a10fda311eea7043dece0952d38; __sdcfduid=b7632a11fda311eea7043dece0952d38803949472bfbbb17f099c76efed035a4af0ed2767218cf119adcfeaa94b8532e; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 16:50:11 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t%2BHNo2ehYAg%2BxYlaK62UffLwtTXIPEBDW43OJREPPF2wygKvBf4T56xWhkJTXPRUcYkwjNE90uQwwBaYPTKMqDqnYx6m6o4jQ8uLWkeKQrZt4V5FTK73WuPKguvALdjxlqld7p%2F3IOFGYsY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87662702ecb85684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png | 143.204.55.80 | 200 OK | 288 B |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hashe6d6b255259ac878d00819a9555072ad 6beb12d36acbad79743495aef581891a1ff4f5f5 21d34772ed80c8be7ab9e7338498bdfe2f66c77b61542cc48e103fd77ecd7f60
GET /6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 288
date: Sun, 28 Jan 2024 21:58:47 GMT
last-modified: Thu, 14 Apr 2022 06:30:37 GMT
etag: "e6d6b255259ac878d00819a9555072ad"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: PZH8cHkflELFvoWAWDsIAZ.EvOoTJUd0
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 6979884
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Qmi386nOgKQfXCW6Yo_tX2l8ylsu6npccxR69smlVJ5pnDnoqL8F1w==
X-Firefox-Spdy: h2
|
|
| discord.com/api/v9/experiments | 162.159.137.232 | 200 OK | 4.3 kB |
URL GET HTTP/3discord.com/api/v9/experiments IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (4260), with no line terminators Hash10fd4a49ae5fec7411b6566970c8434a 6e0edb5897b99cf5d6a0ad803e58ecc694d00224 c7b71d67d846f4d0f3826f6098d723fe2f158b1234202fa6ac09d14c95aef21a
GET /api/v9/experiments HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:11 GMT
content-type: application/json
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v0qWolOpITBJYP0E%2FcnD%2BnJx0YbZrEHuElC%2BAJe1RmE8sjW2Zb4km%2FHy8%2FHv1JmKkSlCu5%2BiRg0OU9RPVn7zSemiGofvbMBDJF5tmgPVDx2WBzVfDPiZN0POX7sX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b8e8d36cfda311eeb033aa6c09d2c52d; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b8e8d36cfda311eeb033aa6c09d2c52d2f5e8cb8467e8590ee408ef66e529265574ee2abcacca0ad3c1ea033d2c14507; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=a1a85be393d4c6f7587a1a500de20bd02dcba719-1713459011; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=igwV8QPxTXOl1UAGqxV1s3_P31qvAEn1HOqFufR8Gkc-1713459011945-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662707490c0afa-OSL
content-encoding: br
|
|
| discord.com/api/v9/track/ott | 162.159.137.232 | 204 No Content | 0 B |
URL POST HTTP/3discord.com/api/v9/track/ott IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v9/track/ott HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
X-Fingerprint: 1230561028262199316.fHZviytxhwfgM-FngXAFplE1TBw
Content-Length: 18
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Thu, 18 Apr 2024 16:50:12 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uqIvJVkO312YtwAkIQtB%2Fx331kTJTZUQKBN217TagUjr%2Btv80j1dqKZdKuGXIbDgEpCsN0m%2FdlW2jAhn80jPXpZ9Y7Ux49Zs%2FWOCEZxgsGz1A8Of09Khv9DsDM4N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b91839e0fda311eeb7cc36c63de8c53c; Expires=Tue, 17-Apr-2029 16:50:12 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b91839e0fda311eeb7cc36c63de8c53cc1e844a43bc5cbff5d910ba6c7e49a8d8776065ba156771a5eb9f1d11f7191b3; Expires=Tue, 17-Apr-2029 16:50:12 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=55792571a4df43008c82add8153fabd9c1010518-1713459012; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=6EqLTrHbNc4VUjij9YSTThncJ50Rl_YRohBiao1.vY0-1713459012256-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662709badd0afa-OSL
|
|
| global.localizecdn.com/localize.js | 104.18.5.175 | 200 OK | 63 kB |
URL GET HTTP/2global.localizecdn.com/localize.js IP104.18.5.175:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerLet's Encrypt Subjectglobal.localizecdn.com Fingerprint0E:E8:07:11:41:11:37:A7:94:9C:B4:AF:9A:F4:50:87:FA:14:B8:CA ValidityFri, 15 Mar 2024 17:06:03 GMT - Thu, 13 Jun 2024 17:06:02 GMT
File typeJavaScript source, ASCII text, with very long lines (63114), with no line terminators Hash3be6398804eeab2124f4b83c4f33c1aa 4f46201052f4a4c856d99e1a31d05a45082d5109 cbd7cc3a254b7639e03a2ccb89f9ec2b0287c74d41b684863167558973c740dd
GET /localize.js HTTP/1.1
Host: global.localizecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 16:50:09 GMT
content-type: application/javascript
cache-control: public, max-age=259200
cf-bgj: minify
etag: W/"3be6398804eeab2124f4b83c4f33c1aa"
last-modified: Thu, 04 Apr 2024 15:28:15 GMT
vary: Accept-Encoding
via: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)
x-amz-cf-id: pgAq_LSV91CleMM3_K6YveyNluFo_UMzwBtV3e-s7sJK9QYHy5iy4w==
x-amz-cf-pop: ARN56-P2
x-amz-meta-x-amz-meta-v: 483
x-amz-server-side-encryption: AES256
x-amz-version-id: ZMs98.l0d_4bnX1T9jXjHHaT0X8dgz40
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 81778
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876626fb5e04b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pics.lo476ni.workers.dev/w/loader/loader.js | 188.114.96.1 | 200 OK | 1.3 kB |
URL GET HTTP/3pics.lo476ni.workers.dev/w/loader/loader.js IP188.114.96.1:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectlo476ni.workers.dev Fingerprint54:C3:4A:7C:8E:E0:0E:02:DE:B4:E8:9C:73:00:67:13:4C:F9:74:38 ValidityThu, 14 Mar 2024 20:45:29 GMT - Wed, 12 Jun 2024 20:45:28 GMT
File typeASCII text, with very long lines (1383), with no line terminators Hash1908f8c82d3fb65721c524bef0d98813 b0b58fa861e8b6d32678de853b9a818ac39622e0 fadd9190c0ef3a6b766ad2a4ea6c10d1b9ba1d6eb501e16a04be1c7e7ed899e6
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /w/loader/loader.js HTTP/1.1
Host: pics.lo476ni.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Cookie: __dcfduid=b7632a10fda311eea7043dece0952d38; __sdcfduid=b7632a11fda311eea7043dece0952d38803949472bfbbb17f099c76efed035a4af0ed2767218cf119adcfeaa94b8532e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:09 GMT
content-type: application/javascript
cf-ray: 876626fabb9e5684-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: public, max-age=60
etag: W/"2b6567c4839ffce11de931762cdc87fe"
last-modified: Tue, 16 Apr 2024 17:52:24 GMT
set-cookie: _cfuvid=OmAi2_rViYfdYxSpf2hLkISDgxidyxvT1setzOl3CY0-1713459009741-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'nonce-MTE0LDE1OSwxODgsMTkzLDE4Miw3NiwxMDIsOTI=' https://discord.com https://www.googletagmanager.com https://connect.facebook.net https://www.google-analytics.com https://ssl.google-analytics.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://s.ytimg.com/yts/jsbin/ https://www.youtube.com/iframe_api https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.hcaptcha.com https://hcaptcha.com; img-src 'self' https://www.google-analytics.com https://www.googletagmanager.com https://www.facebook.com https://cdn.discordapp.com https://hackerone-api.discord.workers.dev/user-avatars/ https://safety.discord.com https://discordmoderatoracademy.zendesk.com https://assets-global.website-files.com data:; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://discordapp.com https://discord.com https://connect.facebook.net https://api.greenhouse.io https://api.github.com https://sentry.io https://www.google-analytics.com https://hackerone-api.discord.workers.dev https://*.hcaptcha.com https://hcaptcha.com https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location ws://127.0.0.1:* http://127.0.0.1:*; media-src 'self' https://cdn.discordapp.com/assets/; frame-src https://discordapp.com/domain-migration https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://*.hcaptcha.com https://hcaptcha.com https://www.youtube.com/embed/ https://hackerone.com/631fba12-9388-43c3-8b48-348f11a883c0/ https://10851314.fls.doubleclick.net/;
permissions-policy: interest-cohort=()
x-build-id: b960ac7f559c3a04d18e7cce9de42c4b94a33dd4
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2ByNu6HSXpjNo1GZuEVwAZ3yz1TCI9OM896XkxYoxuxtaMB7J5HcpyuIwWJPu3fEBt65TH2Ciz58zvfTdfcwgmL3nziiopwn9itP%2Fpy4fq6E5xo4SEFoK9I9Sn%2BNHRoARYYZrOmmPXKDPAeg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pics.lo476ni.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.js | 188.114.96.1 | 200 OK | 2.8 kB |
URL GET HTTP/3pics.lo476ni.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.js IP188.114.96.1:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectlo476ni.workers.dev Fingerprint54:C3:4A:7C:8E:E0:0E:02:DE:B4:E8:9C:73:00:67:13:4C:F9:74:38 ValidityThu, 14 Mar 2024 20:45:29 GMT - Wed, 12 Jun 2024 20:45:28 GMT
File typeASCII text, with very long lines (2988), with no line terminators Hash519b1d69f48b707a1c18ca16a0f03847 64a1d9dd73e82fbba02f52c3115345cd28c82cc4 4a95a8a7ffd34c43765feb34c266cdb4ebe1d245228b42eb91940507d9e399e0
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.js HTTP/1.1
Host: pics.lo476ni.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Cookie: __dcfduid=b7632a10fda311eea7043dece0952d38; __sdcfduid=b7632a11fda311eea7043dece0952d38803949472bfbbb17f099c76efed035a4af0ed2767218cf119adcfeaa94b8532e; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:10 GMT
content-type: application/javascript
cf-ray: 87662701eba85684-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: public, max-age=60
etag: W/"8118665f482e569895664807fa264a30"
last-modified: Tue, 16 Apr 2024 17:52:23 GMT
set-cookie: _cfuvid=2lVVdnbq4JK1o.fxODHlEbzEcGaxVXjfbOMqWFJobMs-1713459010889-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-build-id: b960ac7f559c3a04d18e7cce9de42c4b94a33dd4
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QzmzogBGDWK%2F0ZDsX0kCEE8Vq83fR%2BsSyJm6ZU0GlujkFddXZRXgsbT0huN1w1kwtOk3GrhIkFhGgBSRGg8aIjGkM1V%2FADVVva6o8jtkQmunrEbFfpO6QrprzUXPYcLV%2F5fEGrtooM33qj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| discord.com/api/v9/track/ott | 162.159.137.232 | 200 OK | 0 B |
URL OPTIONS HTTP/3discord.com/api/v9/track/ott IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v9/track/ott HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-fingerprint,x-track
Referer: https://pics.lo476ni.workers.dev/
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:12 GMT
content-type: text/html; charset=utf-8
allow: POST, OPTIONS
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FtejJJd7yVeNRuBEBCynMMd6Hc5QlRTk3dt%2F6E604wKk11C9t2E8sOfcOMbIdtgbl%2BbeygBkM7ouskW013YG9x8lNTbGrWOWR5fTeu8PHtwDpKHQlv93fSr7qvaf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b901e0a0fda311eea1f8aa6c09d2c52d; Expires=Tue, 17-Apr-2029 16:50:12 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b901e0a0fda311eea1f8aa6c09d2c52dd3db44dc32fe67bf00eff563d3bb6f42373a2e7dae6b3c3b186ad9a3cbec3dfd; Expires=Tue, 17-Apr-2029 16:50:12 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=55792571a4df43008c82add8153fabd9c1010518-1713459012; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=9_zdvnGhnTT2CggCYI.L.3qJbtKKr8Thx0XVx8b7hjw-1713459012106-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662708ca1a0afa-OSL
content-encoding: br
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 | 143.204.55.62 | 200 OK | 32 kB |
URL GET HTTP/2assets.website-files.com/6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 IP143.204.55.62:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 32540, version 1.0 Hashdb6b320298071092b190ca887d06e95c 8016461ca1131ea676cff368c4405d79f52c7867 9f97ff47d66b2f3cdd1aa40988382749ef90ac9051d1a548b12a1260d10c1e6e
GET /6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32540
date: Thu, 07 Dec 2023 15:36:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:16 GMT
etag: "db6b320298071092b190ca887d06e95c"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: ZA.NEdTV8MFcZm5wwoKrA5eTikBcQl_s
accept-ranges: bytes
server: AmazonS3
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 11495646
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d797HDXmmkN4yI05D0PyYrAxdra1_qkCi8x5wpCe51d3QhabEy7y1w==
X-Firefox-Spdy: h2
|
|
| discord.com/webflow-scripts/bodyEnd.js | 162.159.137.232 | 200 OK | 12 kB |
URL GET HTTP/2discord.com/webflow-scripts/bodyEnd.js IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /webflow-scripts/bodyEnd.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 16:50:09 GMT
content-type: application/javascript
cf-ray: 876626fb5cb056a4-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"cf1fcdb5511493e70497b458944e1358"
last-modified: Thu, 21 Mar 2024 18:09:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VKlfF9t%2FebDvj46jFAb%2F79T4WuudeHZi%2BdVKIzFanPThxSuSaHE5FlhCtDOuybV6p1qnCOUx6b1WYnEiaEdxLdn1ANbfpmaGxJpFe8HEDbeJGW%2FcVBpklxvy6J0F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=13c171bb68b4b9ac58b53d45ce66420321efe0cf-1713459009; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=cUJA2HIydQwNSZQ0B6hDx_jgCzKhWtIC1XoDICC3U44-1713459009843-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6266bc493fb42d4e27bb8393_847541504914fd33810e70a0ea73177e.ico | 143.204.55.80 | 200 OK | 286 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/6266bc493fb42d4e27bb8393_847541504914fd33810e70a0ea73177e.ico IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size286 kB (285478 bytes) Hash847541504914fd33810e70a0ea73177e 84b82d07b293907113d9d4dafd29bfa170bbf9b6 0ff2884845f93cd730470ad755f5c38d334e6976ad59c8016b1353b8e30e64f8
GET /6257adef93867e50d84d30e2/6266bc493fb42d4e27bb8393_847541504914fd33810e70a0ea73177e.ico HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
content-length: 285478
date: Tue, 03 Oct 2023 16:30:54 GMT
last-modified: Thu, 18 Aug 2022 06:39:10 GMT
etag: "847541504914fd33810e70a0ea73177e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: mW2.2AZmx60AbtKEbat_fy6.zokRl1ju
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 17108358
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FXbkJjj7NcNPDnclhKi12cBTvVv45UUzei7G_4kTI2jkdiLX3kfgeQ==
X-Firefox-Spdy: h2
|
|
| discord.com/api/v9/experiments | 162.159.137.232 | 200 OK | 0 B |
URL OPTIONS HTTP/3discord.com/api/v9/experiments IP162.159.137.232:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v9/experiments HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-track
Referer: https://pics.lo476ni.workers.dev/
Origin: https://pics.lo476ni.workers.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:11 GMT
content-type: text/html; charset=utf-8
allow: OPTIONS, HEAD, GET
access-control-allow-origin: https://pics.lo476ni.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AM3KSOhUkGWubv%2BLLak79z4k%2F5uqiPOE92gVO1xVoyK7ELAGxNe6JnI3gGnM73wUe96AP0OOLVtA0dIyccF6UFoaPjGZfP0h2Mnh8la%2F0BvWYWIdJ8U0sZ%2BG6PME"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=b8c6a72efda311ee8afe36c63de8c53c; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=b8c6a72efda311ee8afe36c63de8c53c644e45448d111f56a03d417b508c7afcfa3aa46d91f06219c5dcf713ee4ab1a7; Expires=Tue, 17-Apr-2029 16:50:11 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=a1a85be393d4c6f7587a1a500de20bd02dcba719-1713459011; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=_DF3rqyypiVFtsieaGmAiOIr6Siuh01V95j7l6JVmU4-1713459011718-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87662706583d0afa-OSL
content-encoding: br
|
|
| pics.lo476ni.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.css | 188.114.96.1 | 200 OK | 151 kB |
URL GET HTTP/3pics.lo476ni.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.css IP188.114.96.1:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subjectlo476ni.workers.dev Fingerprint54:C3:4A:7C:8E:E0:0E:02:DE:B4:E8:9C:73:00:67:13:4C:F9:74:38 ValidityThu, 14 Mar 2024 20:45:29 GMT - Wed, 12 Jun 2024 20:45:28 GMT
Size151 kB (150777 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.css HTTP/1.1
Host: pics.lo476ni.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Cookie: __dcfduid=b7632a10fda311eea7043dece0952d38; __sdcfduid=b7632a11fda311eea7043dece0952d38803949472bfbbb17f099c76efed035a4af0ed2767218cf119adcfeaa94b8532e; locale=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 16:50:10 GMT
content-type: text/css
cf-ray: 87662701eba45684-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: public, max-age=60
etag: W/"37c018fd94824ad0fb006a69b8441796"
last-modified: Tue, 16 Apr 2024 17:52:23 GMT
set-cookie: _cfuvid=WV1znGjQYQyB1Q904vkSOvRZvAj266qi87RiZ5BJx6M-1713459010887-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-build-id: b960ac7f559c3a04d18e7cce9de42c4b94a33dd4
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FzBRDum0T1RYnmxErGNfWyFfuWhlWosurFXtyd%2FiTYvUoNjDAPll%2FEAaxyLygkszA%2FBEgMcEyIwOm6SYUYxbtT4KfCk%2BW0GhQ28NyOlX5T4DoinYjy57ALWIlF9xbb23fClVz47XzS3LHWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4df2dc8d7a9a081ebd_8a8375ab7908384e1fd6efe408284203.svg | 143.204.55.80 | 200 OK | 62 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4df2dc8d7a9a081ebd_8a8375ab7908384e1fd6efe408284203.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash8a8375ab7908384e1fd6efe408284203 c860bf9ebb02c0110e452b0d27b21d50083dd165 0863f0e2352e91b8f69c16eb1896aa0cc802ad66efca43f07ad6810da239025a
GET /6257adef93867e50d84d30e2/644fab4df2dc8d7a9a081ebd_8a8375ab7908384e1fd6efe408284203.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 05 Nov 2023 12:25:38 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"8a8375ab7908384e1fd6efe408284203"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: YNA2LFAIbq2g4FOlDDqfRHFxqlA2SfR_
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 14271873
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u-dfU7aAblq2VmffFjz6NU6dkEhB2pig078Y1mdq07DYMWpEErPjFQ==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg | 143.204.55.80 | 200 OK | 814 B |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashebd21d6d09a2796b5c6dffb3b8b7f79c 3e8109624f0271e4732004e8b2a00eef303aa245 5c7c360e2666ed30843681651954e2da84662e4be3ac7f5e51808f3480fc6cb7
GET /6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.2a9b7ed9e.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 814
date: Wed, 24 Jan 2024 06:03:22 GMT
last-modified: Wed, 20 Dec 2023 09:22:43 GMT
etag: "8b196637ae590a18d9cf2f5bb692ae73"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: Qzr6LIeIFRKthbSvTy9usKiqu1qEgDXI
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7382809
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sbrRS0Tzi9SYxJ1HI8A10uGQ6_FXx8tbTvxQAeG_aQ0QuL5NYZPz4g==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6582c1b717efff2306ef179e_Where%20hanging%20out%20is%20easy.svg | 143.204.55.80 | 200 OK | 172 kB |
URL GET HTTP/2assets-global.website-files.com/6257adef93867e50d84d30e2/6582c1b717efff2306ef179e_Where%20hanging%20out%20is%20easy.svg IP143.204.55.80:443
Requested byhttps://pics.lo476ni.workers.dev/ CertificateIssuerAmazon Subject*.website-files.com Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size172 kB (171453 bytes) Hasha22034070de371342ad1044d66386e10 0d559d7adf675cd33295d7d03361959bfaf3d73e ec214111a51a29fd7df667ea1f9b6998e84621873672671d030e88dd92372d60
GET /6257adef93867e50d84d30e2/6582c1b717efff2306ef179e_Where%20hanging%20out%20is%20easy.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pics.lo476ni.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 18 Jan 2024 17:54:26 GMT
last-modified: Wed, 20 Dec 2023 10:28:08 GMT
etag: W/"a22034070de371342ad1044d66386e10"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: efh4guWbNZVkbXrUU6H8DcePzFm1l6cb
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7858545
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P19hjCakTTX1lTZNU0z-KsKfneM2YTtm9cyFUxtHGWfJJ7OUSqKl7g==
X-Firefox-Spdy: h2
|
|