| pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ | 142.132.149.117 | 200 OK | 162 B |
URL User Request GET HTTP/2pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
NIDS | Severity | Alert | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to a *.qc .to Domain | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to a *.qc .to Domain |
GET /cosmic-values-of-pet-simulator-x/ HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 04 May 2023 23:34:11 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hashb18fb02cad0a7b7bf0906c8f4cc05154 d5bc73974391f4a48a92353de2997eab0baebf66 b6bf2e82bd814dc0e24f1971c1d2d82554e20d25150774733c1541a1ab24644f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 23:35:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| pet-sim-x-trading-values.qc.to/wp-includes/js/comment-reply.min.js?ver=6.2 | 142.132.149.117 | 200 OK | 1.8 kB |
URL GET HTTP/2pet-sim-x-trading-values.qc.to/wp-includes/js/comment-reply.min.js?ver=6.2 IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
Hash6752502bf3c1da82c44f909d79cea7f4 538f126677c8a90b3c35db613cf47c23dc40e864 ec8af6bf4a53ec116a2546f9f7dc0af4acf1e373948a9cb03627bc9f6181b433
GET /wp-includes/js/comment-reply.min.js?ver=6.2 HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 23:34:12 GMT
content-type: application/javascript
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
vary: Accept-Encoding
etag: W/"625095f6-ba5"
expires: Fri, 03 May 2024 23:34:12 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash60f8ea1a6b07eb8279e8cdc9b91ae061 9e28f47e68c6904cf549703f0e2530d691794256 70fbd2078171f54b059fd27bf2a6890c40af1f752d1b02349d1d830d6f15cd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 23:35:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash60f8ea1a6b07eb8279e8cdc9b91ae061 9e28f47e68c6904cf549703f0e2530d691794256 70fbd2078171f54b059fd27bf2a6890c40af1f752d1b02349d1d830d6f15cd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 23:35:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 | 216.58.207.227 | 200 OK | 36 kB |
URL GET HTTP/2fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 IP216.58.207.227:443
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data Hashc26b97e7f5bb7a34d190703522d75e16 69d9e5aea0544dbaf9b78c1b65139c03eceece8f 96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pet-sim-x-trading-values.qc.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 03 May 2023 16:35:19 GMT
expires: Thu, 02 May 2024 16:35:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
age: 111586
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ | 142.132.149.117 | 200 OK | 77 kB |
URL User Request GET HTTP/2pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
Hash0791501b3a4b9f431836e265df37c50b 7bf1d4364d5b812e900d672ac45dd3d8d175687e a42a2fc3271151444da626123099476ad37a608f8c3b70c3bcc196dfe5073878
NIDS | Severity | Alert | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to a *.qc .to Domain | suricata | medium | ET INFO DYNAMIC_DNS HTTP Request to a *.qc .to Domain |
GET /cosmic-values-of-pet-simulator-x/ HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 23:34:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://pet-sim-x-trading-values.qc.to/wp-json/>; rel="https://api.w.org/", <https://pet-sim-x-trading-values.qc.to/wp-json/wp/v2/posts/8>; rel="alternate"; type="application/json", <https://pet-sim-x-trading-values.qc.to/?p=8>; rel=shortlink
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash60f8ea1a6b07eb8279e8cdc9b91ae061 9e28f47e68c6904cf549703f0e2530d691794256 70fbd2078171f54b059fd27bf2a6890c40af1f752d1b02349d1d830d6f15cd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 04 May 2023 23:35:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mockingcard.com/225b5fb8d2a04a372d395c9fc773f210/invoke.js | 192.243.61.227 | 200 OK | 9.8 kB |
URL GET HTTP/1.1mockingcard.com/225b5fb8d2a04a372d395c9fc773f210/invoke.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectmockingcard.com Fingerprint98:7D:AF:51:DA:C2:36:73:7B:28:63:02:EA:34:F4:A8:A1:BC:F7:50 ValidityThu, 20 Apr 2023 06:36:06 GMT - Wed, 19 Jul 2023 06:36:05 GMT
File typeexported SGML document, ASCII text, with very long lines (26949), with no line terminators Hash02d78c545751857925fbcf3d484b51b5 78a48d226e6be76800029cc125d15a71e615edce f9028b9f2385a7a26bceac1c46896fb14125b7a7b288c0fffbbcd29aadb6ad6a
GET /225b5fb8d2a04a372d395c9fc773f210/invoke.js HTTP/1.1
Host: mockingcard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 04 May 2023 23:35:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 61d63ad779f5e6553c512272ac48f6ad
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pet-sim-x-trading-values.qc.to/favicon.ico | 142.132.149.117 | 404 Not Found | 146 B |
URL GET HTTP/2pet-sim-x-trading-values.qc.to/favicon.ico IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /favicon.ico HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 04 May 2023 23:34:13 GMT
content-type: text/html
content-length: 146
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | | 471 B |
URL ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash286ad3af25908fdafc45c0858ab0140d bfb0b8ec660fa11dd2722470a45a5d9df35ff666 93134bc60a7d06c28c661b538793ffaa09bd93afa56fbeb7cb6f8325e06715d7
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150607
Date: Thu, 04 May 2023 23:35:06 GMT
Etag: "6453ddcc-1d7"
Expires: Sat, 06 May 2023 17:25:13 GMT
Last-Modified: Thu, 04 May 2023 16:31:08 GMT
Server: ECAcc (nya/78C0)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HOuoPxGIYx-0xE-SckUdlGypr0LoV4rKgHvjOc7cbnXx0mLW-hWuHg==
Age: 3245
|
|
| s10.histats.com/js15_as.js | 46.105.201.240 | 200 OK | 4.4 kB |
URL GET HTTP/2s10.histats.com/js15_as.js IP46.105.201.240:443
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjecthistats.com FingerprintF3:F6:9F:E3:A0:B3:22:C0:B2:93:4E:22:72:B6:D1:DA:40:BA:AE:9B ValidityWed, 15 Mar 2023 12:20:28 GMT - Tue, 13 Jun 2023 12:20:27 GMT
File typeHTML document, ASCII text, with very long lines (11440), with no line terminators Hashed192092c129db6123a3397855f42619 067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 04 May 2023 23:27:35 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 364185226
content-type: text/javascript
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 52.58.93.188 | 200 OK | 40 B |
URL GET HTTP/2simplewebanalysis.com/stats IP52.58.93.188:443
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerAmazon Subjectsimplewebanalysis.com FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07 ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash7f46910c410d2df242785d5bd683672c 86e19566c513acf50c28e6d8c6eb9b2cf01f0d49 6a038dc98473261927b9380f3a3e5c9444631da26b356382f3c131d682f440c7
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pet-sim-x-trading-values.qc.to
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 04 May 2023 23:35:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://pet-sim-x-trading-values.qc.to
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=f3d21369-3e0d-4333-97c4-04fd0f0da7f2:3:1; expires=Sun, 01 May 2033 23:35:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| s4.histats.com/stats/0.php?4751487&@f16&@g1&@h1&@i1&@j1683243318306&@k0&@l1&@mExplore%20the%20Cosmic%20Values%20of%20Pet%20Simulator%20X%202023&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-163229029&@b3:1683243318&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&@w | 149.56.240.129 | 200 OK | 50 B |
URL GET HTTP/1.1s4.histats.com/stats/0.php?4751487&@f16&@g1&@h1&@i1&@j1683243318306&@k0&@l1&@mExplore%20the%20Cosmic%20Values%20of%20Pet%20Simulator%20X%202023&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-163229029&@b3:1683243318&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&@w IP149.56.240.129:443
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjecthistats.com FingerprintF3:F6:9F:E3:A0:B3:22:C0:B2:93:4E:22:72:B6:D1:DA:40:BA:AE:9B ValidityWed, 15 Mar 2023 12:20:28 GMT - Tue, 13 Jun 2023 12:20:27 GMT
File typeASCII text, with no line terminators Hash642c90ed43a1e8d9b726d14be600b106 407402af57166e3b227c8ef1c32f95351e8e4e7b 0861601cee30bb7adc7dcee3b0c6128b5f5aa61220ca089d5c863f408d7ff1c8
GET /stats/0.php?4751487&@f16&@g1&@h1&@i1&@j1683243318306&@k0&@l1&@mExplore%20the%20Cosmic%20Values%20of%20Pet%20Simulator%20X%202023&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-163229029&@b3:1683243318&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 04 May 2023 23:35:06 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 50
Connection: close
|
|
| picketsubmission.com/watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1 | 192.243.59.13 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1picketsubmission.com/watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpicketsubmission.com Fingerprint76:CF:12:3A:8F:CC:71:FE:04:6D:9E:9F:A6:6D:FE:71:1C:E5:50:99 ValidityFri, 28 Apr 2023 01:17:59 GMT - Thu, 27 Jul 2023 01:17:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1 HTTP/1.1
Host: picketsubmission.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pet-sim-x-trading-values.qc.to
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 04 May 2023 23:35:06 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://pet-sim-x-trading-values.qc.to
Access-Control-Allow-Origin: https://pet-sim-x-trading-values.qc.to
Access-Control-Allow-Credentials: true
Location: https://picketsubmission.com/watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1&shu=4e00143cbbbfa1f2b75ddf5777d40818a55c75169ac43956abc96e2cbbb786182cdf85039a6b676970d205cdf766abf33cb347559b17341721f697877b3e4f21015644895c08999354fea47eef4dbb0fafaf729f0a5c9bc66c5b395535&pst=1683243366&rmtc=t
Set-Cookie: u_pl=17357892; expires=Fri, 05 May 2023 23:35:06 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.oxdax4Am7-96Iy87yrCfZLTT1K-PhRLjKAF8q2Bv5ps; expires=Thu, 04 May 2023 23:36:06 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6b069f89f715118c01d36f75b063f100
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| picketsubmission.com/watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1&shu=4e00143cbbbfa1f2b75ddf5777d40818a55c75169ac43956abc96e2cbbb786182cdf85039a6b676970d205cdf766abf33cb347559b17341721f697877b3e4f21015644895c08999354fea47eef4dbb0fafaf729f0a5c9bc66c5b395535&pst=1683243366&rmtc=t | 192.243.59.13 | 200 OK | 2.4 kB |
URL GET HTTP/1.1picketsubmission.com/watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1&shu=4e00143cbbbfa1f2b75ddf5777d40818a55c75169ac43956abc96e2cbbb786182cdf85039a6b676970d205cdf766abf33cb347559b17341721f697877b3e4f21015644895c08999354fea47eef4dbb0fafaf729f0a5c9bc66c5b395535&pst=1683243366&rmtc=t IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpicketsubmission.com Fingerprint76:CF:12:3A:8F:CC:71:FE:04:6D:9E:9F:A6:6D:FE:71:1C:E5:50:99 ValidityFri, 28 Apr 2023 01:17:59 GMT - Thu, 27 Jul 2023 01:17:58 GMT
File typeHTML document text\012- HTML document, ASCII text, with very long lines (3121) Hash0161bb7c9489bc901c71fa5a3a31914b 9e3224461da58d384e58b5974a3197f3ed92c653 7c88f757e7c65f611cd1fc0c40b093d24284efda88c617c8ec066e1d73427dab
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /watch.704233035966.js?key=225b5fb8d2a04a372d395c9fc773f210&kw=%5B%22explore%22%2C%22the%22%2C%22cosmic%22%2C%22values%22%2C%22of%22%2C%22pet%22%2C%22simulator%22%2C%22x%22%2C%222023%22%5D&refer=https%3A%2F%2Fpet-sim-x-trading-values.qc.to%2Fcosmic-values-of-pet-simulator-x%2F&tz=0&dev=e&res=12.2079&uuid=f3d21369-3e0d-4333-97c4-04fd0f0da7f2%3A3%3A1&shu=4e00143cbbbfa1f2b75ddf5777d40818a55c75169ac43956abc96e2cbbb786182cdf85039a6b676970d205cdf766abf33cb347559b17341721f697877b3e4f21015644895c08999354fea47eef4dbb0fafaf729f0a5c9bc66c5b395535&pst=1683243366&rmtc=t HTTP/1.1
Host: picketsubmission.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pet-sim-x-trading-values.qc.to
Referer: https://pet-sim-x-trading-values.qc.to/
Connection: keep-alive
Cookie: u_pl=17357892; ain=eyJhbGciOiJIUzI1NiJ9.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.oxdax4Am7-96Iy87yrCfZLTT1K-PhRLjKAF8q2Bv5ps
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 04 May 2023 23:35:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://pet-sim-x-trading-values.qc.to
Access-Control-Allow-Origin: https://pet-sim-x-trading-values.qc.to
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=f3d21369-3e0d-4333-97c4-04fd0f0da7f2:3:1; expires=Thu, 11 May 2023 23:35:07 GMT; secure; SameSite=None
iprcc5992351aa01639eec795dc632702456=3569683; expires=Fri, 05 May 2023 03:35:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 05 May 2023 23:35:07 GMT; secure; SameSite=None
uncs=1; expires=Fri, 05 May 2023 23:35:07 GMT; secure; SameSite=None
pdhtkv27=true; expires=Fri, 05 May 2023 23:35:07 GMT; secure; SameSite=None
uncs27=1; expires=Fri, 05 May 2023 23:35:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fbbaef8e1682215bc94663b754a2528f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.cloudimagesb.com/cti/a7/81/a3/a781a3f5b0f5e23bdd2dd0518e7f7682/1658915583.png | 45.133.44.9 | 200 OK | 59 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/a7/81/a3/a781a3f5b0f5e23bdd2dd0518e7f7682/1658915583.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT
File typePNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced\012- data Hasha8d87e991a22e21fd415f8484a2c798d 512ec0da7b33b71c73453271860fae0a0e23c627 a26bd031fca0ac99e2ee032b81812e714bb94834b7ca304fbdf2aafd5c192045
GET /cti/a7/81/a3/a781a3f5b0f5e23bdd2dd0518e7f7682/1658915583.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 04 May 2023 23:35:07 GMT
content-type: image/png
content-length: 59343
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 09:53:11 GMT
etag: "62e10b07-e7cf"
expires: Sat, 06 May 2023 23:35:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pet-sim-x-trading-values.qc.to/wp-content/themes/superfast/style.css?ver=6.2 | 142.132.149.117 | 200 OK | 46 kB |
URL GET HTTP/2pet-sim-x-trading-values.qc.to/wp-content/themes/superfast/style.css?ver=6.2 IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
File typeASCII text, with very long lines (1995) Hash94e5ea1efc42b61612ff1caa67b129f0 c60b4610ac331e4447136e98194689f92dfaf34f 698a0a9ec46b00a5df6f41eb453773dce038e24cb813bce1f31843e67ca1e9c5
GET /wp-content/themes/superfast/style.css?ver=6.2 HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 23:34:12 GMT
content-type: text/css
last-modified: Mon, 20 Mar 2023 01:35:09 GMT
vary: Accept-Encoding
etag: W/"6417b84d-b274"
expires: Fri, 03 May 2024 23:34:12 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| pet-sim-x-trading-values.qc.to/wp-content/themes/superfast/js/customscript.js?ver=2.1.1 | 142.132.149.117 | 200 OK | 14 kB |
URL GET HTTP/2pet-sim-x-trading-values.qc.to/wp-content/themes/superfast/js/customscript.js?ver=2.1.1 IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
File typeASCII text, with very long lines (9360) Hash1c46d29705af459da365b6f82699c4c8 5f82a9bbf8c64ed4229965ca43f958ad7762219d dfa6d59d57e3b6ae87dfa5ce893036f4255a2b9d9dcc56898b41ee1091a2ca97
GET /wp-content/themes/superfast/js/customscript.js?ver=2.1.1 HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 23:34:12 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 01:35:09 GMT
vary: Accept-Encoding
etag: W/"6417b84d-36ac"
expires: Fri, 03 May 2024 23:34:12 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| pet-sim-x-trading-values.qc.to/wp-includes/css/dist/block-library/style.min.css?ver=6.2 | 142.132.149.117 | 200 OK | 98 kB |
URL GET HTTP/2pet-sim-x-trading-values.qc.to/wp-includes/css/dist/block-library/style.min.css?ver=6.2 IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2 HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 23:34:12 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 01:46:22 GMT
vary: Accept-Encoding
etag: W/"6424e9ee-17ced"
expires: Fri, 03 May 2024 23:34:12 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| pet-sim-x-trading-values.qc.to/wp-includes/css/classic-themes.min.css?ver=6.2 | 142.132.149.117 | 200 OK | 291 B |
URL GET HTTP/2pet-sim-x-trading-values.qc.to/wp-includes/css/classic-themes.min.css?ver=6.2 IP142.132.149.117:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerLet's Encrypt Subjectpet-sim-x-trading-values.qc.to Fingerprint4D:E6:1F:70:13:27:7E:17:54:52:40:71:58:EC:2B:F3:7F:4D:97:B5 ValiditySun, 19 Mar 2023 22:37:10 GMT - Sat, 17 Jun 2023 22:37:09 GMT
File typeASCII text, with no line terminators Hash2485a0fab337da61deb41cc4aa994c1b af1a1d4c6b7c287dc881dd4f46b6b547ac5a5353 7e0bdafc01d81aed845a69d0a32120145155f75aca4c603d8952de7ecc5c6410
GET /wp-includes/css/classic-themes.min.css?ver=6.2 HTTP/1.1
Host: pet-sim-x-trading-values.qc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 04 May 2023 23:34:12 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 01:46:21 GMT
vary: Accept-Encoding
etag: W/"6424e9ed-123"
expires: Fri, 03 May 2024 23:34:12 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Nunito%3Aregular%2C700%2C600%2C300%26subset%3Dlatin%2C&ver=2.1.1 | 142.250.74.106 | 200 OK | 6.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Nunito%3Aregular%2C700%2C600%2C300%26subset%3Dlatin%2C&ver=2.1.1 IP142.250.74.106:443
Requested byhttps://pet-sim-x-trading-values.qc.to/cosmic-values-of-pet-simulator-x/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60 ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT
File typeASCII text, with very long lines (6972), with no line terminators Hashf0c27c36d2b2a6d0164c9b97bce6f168 3bdff52538f47c8e4260916a4829c7d5f28adc1e 1bd301f43668bc3c70e253599182f66e1bab1475ef40c4cb3f1b71733ba44628
GET /css?family=Nunito%3Aregular%2C700%2C600%2C300%26subset%3Dlatin%2C&ver=2.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pet-sim-x-trading-values.qc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 04 May 2023 23:35:05 GMT
date: Thu, 04 May 2023 23:35:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|