| www.racaty.net/xjxm4vm0bsvv |  172.67.145.12 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.racaty.net/xjxm4vm0bsvv IP172.67.145.12:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xjxm4vm0bsvv HTTP/1.1
Host: www.racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 21:51:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 22:51:26 GMT
Location: https://www.racaty.net/xjxm4vm0bsvv
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7sOdYR88w9m1zBnQCnBE9VPwcMXe6wULnToVbYfVIMEk9xoAo41PtntqvWzs3EZl4FSSFqJUIaGjjBpqrVJnq%2BCs3AB42zszZjXKynsk3QvakRzTec02gjHYfw5v0YoJPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746a6d0fd838b515-OSL
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.115 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash99b7d23c1748d0526782b9ff9ea45f09 eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 21:04:27 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9JmD8EiRvNyJYpKUUHh2J247HDwgiYGNKo7DbJt2zqsBHk36AEjkDw==
Age: 2819
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb9adda4796e3cda8d92753c46964621c 5f1eba1f6085b23dea088a91fe6f8947172f9f62 a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6008
Expires: Tue, 06 Sep 2022 23:31:34 GMT
Date: Tue, 06 Sep 2022 21:51:26 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.25 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.25:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HcuSCLJ_T1DBLK16yH5WVMhAi1Y5IjeBvJqgdlvG84aB0GJBfhTEpg==
age: 74169
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.115 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 21:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 21:45:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nUS4Rnr0AbJnIEifVBntTf3Ldrp4Ib29Q40ZiRU6-XwW4w0zALuC0Q==
Age: 789
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc0498832f97967e1fbaa64eba7c65094 2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7 63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| racaty.net/racaty_new/css/bootstrap.min.css | 172.67.145.12 | 200 OK | 29 kB |
URL HTTP/2racaty.net/racaty_new/css/bootstrap.min.css IP172.67.145.12:0
File typeASCII text, with very long lines (65324) Hash1ab52e096b74d5d8e668b01732afc326 1ce4cd0c8951c53c414abf9e31f256cee22b3760 95009ea8552c8ae9ac835ece772e042f500899c29a5355ef07ea722befe5bcdc
GET /racaty_new/css/bootstrap.min.css HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/racaty_new/css/style.min.css?v=3.7
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"2606e-5c4c633a141e9-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5276211
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CuyRz2BebAroyfqSrWmQcAsV0OFmSkIISw5MlT0HvAnRMsIObCsGWAfwJV4W1MaIOa8Lo77LfRSPS4IA49LPEQ280bzU54O5yLURlkf%2Flcnp6Lfq4eLS3n0V6pum"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d142921b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hasheb53024bbd41c1d8f88fa7b9becb704a c87f5ac53cff6e3436c15551f8092f1e0215cb79 f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash195accce5155b06c8155a77d9a93d052 5cda84923d0c591c65ba0f6f9b2d0975f5b23298 880b22b6e4fa06c20f09fa0e736386ffa6c62028bbd0b275ab5a0f8ee32c4941
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Last-Modified: Tue, 06 Sep 2022 20:03:59 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe8952752ad4a452a575522a7eb737217 c5554fa2af05d7a7117032b0f99352de08988346 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2122
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Last-Modified: Tue, 06 Sep 2022 21:16:06 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 | 142.250.74.163 | 200 OK | 13 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Hashb4a68b1e743ee317eaaf0bbadd131571 f24f7823d4e3830c7cfa5bcb33733d2897c00f13 ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://racaty.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:06:20 GMT
expires: Fri, 01 Sep 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 488707
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/css/webfonts/fa-solid-900.woff2 | 172.67.145.12 | 200 OK | 118 kB |
URL HTTP/2racaty.net/racaty_new/css/webfonts/fa-solid-900.woff2 IP172.67.145.12:0
File typeWeb Open Font Format (Version 2), TrueType, length 117616, version 329.31064\012- data Size118 kB (117616 bytes) Hash00d3012700332144ce43a62a3b7ec4f1 49524191161f278c89e03476289f9c2e3415375d 47c58e41e2f38d9813c39b6641c96e12408522bf774779cb58973f67303875a7
GET /racaty_new/css/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://racaty.net/racaty_new/css/style.min.css?v=3.7
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: font/woff2
content-length: 117616
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: "1cb70-5c4c6339e211d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2479
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=clGETUuEfLXsxuV5H3%2BlcsMvZYVz8e%2BHUzXKACowf64jdBLzPDd8BQXUFV%2FfuJmSQIt9qcrZ25Wl5NBWHuKHeYTUKlzSQBvXjPkmbQ2wBtVuPPYpAsYLpCq7VvqX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746a6d15fb89b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2FofficialRacaty%2F&width=670&layout=button_count&action=like&size=small&share=true&height=46&appId |  31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2FofficialRacaty%2F&width=670&layout=button_count&action=like&size=small&share=true&height=46&appId IP31.13.72.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2FofficialRacaty%2F&width=670&layout=button_count&action=like&size=small&share=true&height=46&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: Wg2bAO+LggFHTgZLSfG5jcAzcahARpeifWuMyoGqLFdkbB2InMOp1MsdmyRSYwx/wIe4TFGx9AboDRaiDy+Y0A==
content-length: 0
date: Tue, 06 Sep 2022 21:51:27 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 | 142.250.74.163 | 200 OK | 26 kB |
URL HTTP/2fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 25672, version 1.0\012- data Hashfe3e5be2baa0126122ba9367ebab73c8 40bec99106dfab5f3721ed725483eb618a9016cd 8b166007d6f54c33b3ea10ea23572bc3166f55f365840d3cbd6ef7b5dcf6674e
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://racaty.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:15:53 GMT
expires: Tue, 05 Sep 2023 21:15:53 GMT
cache-control: public, max-age=31536000
age: 88534
last-modified: Mon, 18 Jul 2022 19:12:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js |  104.17.24.14 | 200 OK | 14 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (57791) Hashf7ec1f608a6644d182a2aef3308d3fc1 504609ff13eb3af8a2364b6753f73bc3ad3b4e1b 398376b9590200f385c71475b834492c281ce9cd34bc137a57f087e7a65bd7fb
GET /ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 13537
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-e2d8"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13395084
expires: Sun, 27 Aug 2023 21:51:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zUb8L9ZmAtMswLsSWNdhiRgCOddZzGWKjMcRLd0cxMSoyNcgYpeTS%2BeI25u3gbXOHqtjuiw6GNPwmuEW3ApWBoFoRAimfdmaWkGjh9bcl7Cot3h1XX4R3IT%2FMHC9PKcR%2FWz8wD2K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746a6d16297fb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js | 104.17.24.14 | 200 OK | 6.6 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (20831) Hash368c425fc94c424e1688caadefbed981 13d24c22c199ef6668d758434819f44307a65094 ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2352340
expires: Sun, 27 Aug 2023 21:51:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BKEvZZnhsExU88n9GoKYXI4jm93Yws3lYlWcPiLa%2Bn%2FSYrYklT2eh1d5MEZOvAt94GE0Z6lB0QJWr2o0AHT6qJZqAS0YjHwzQ1qIBuWRmq6Hv8PpWuVYsYq5nPe3Qrdtu8ftOW1U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746a6d162985b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.4/clipboard.min.js | 104.17.24.14 | 200 OK | 3.0 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.4/clipboard.min.js IP104.17.24.14:0
File typeUnicode text, UTF-8 text, with very long lines (10645) Hash3a22bcc6c05a8cbf8909ede597f5367d a230ada58d7db9020ceed9d993b5c9925c162c94 e13ba0e04c4706a07074d16b322d76631e957685ec6d5ca7c5c43e1e84ec87a1
GET /ajax/libs/clipboard.js/2.0.4/clipboard.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 2976
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e29-2a02"
last-modified: Mon, 04 May 2020 16:09:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 236826
expires: Sun, 27 Aug 2023 21:51:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ynlaxrUHNaqk3oG0TKbJjdFJnFyHaODtq51X1Pp1MsDkhawyUt9cn719JeLyUd9G1V4AnOVJbZsD83Sm88GC%2Fb1TqaeTiZP2e8UviejxLbLguBjyVvA%2FoybVKBszMTi6wrx26ksH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746a6d162986b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hasheb53024bbd41c1d8f88fa7b9becb704a c87f5ac53cff6e3436c15551f8092f1e0215cb79 f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| racaty.net/racaty_new/css/webfonts/fa-brands-400.woff2 | 172.67.145.12 | 200 OK | 72 kB |
URL HTTP/2racaty.net/racaty_new/css/webfonts/fa-brands-400.woff2 IP172.67.145.12:0
File typeWeb Open Font Format (Version 2), TrueType, length 72124, version 329.31064\012- data Hash99f3121dc63babcf368cb6aee3b535f6 b9699e182c5f9a6fb2ef744f3089e3a7960fd4ca a3eb2d0caf3502359966882d146b1a75e34bf933cbdace1c286395ea3fd1f567
GET /racaty_new/css/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://racaty.net/racaty_new/css/style.min.css?v=3.7
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: font/woff2
content-length: 72124
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:51 GMT
etag: "119bc-5c4c6339bb403"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2479
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQnQvDTywW8coJQhKFpG7KoNE1PAfY%2B3jNmS39yg%2BM1kIu%2Fa%2BcBLGW1mjKyjvGQ4vhqo9pfTdrxvMcjjaFjaQUy9pQABwKsRwSrrUXuKmVa%2B97AQJF1ntqHg0Ebd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746a6d163bedb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery-backstretch/2.0.3/jquery.backstretch.min.js | 104.17.24.14 | 200 OK | 1.5 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery-backstretch/2.0.3/jquery.backstretch.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (3909) Hash1767f41cedce70298bf986847f55dbba 307c8be6864bc709e03c3163156aa9e2195de5f5 eb24bf2d83e4b6159f9d0a1732cd66904e66dba2d4bd8544d3385638196b62f3
GET /ajax/libs/jquery-backstretch/2.0.3/jquery.backstretch.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 1478
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-fcf"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 5544436
expires: Sun, 27 Aug 2023 21:51:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sFI2G3N9aE38Z5EUs78VWj7wyl5fuxhELXyVcYVM%2BhNY1iXqSsAW2EwMtDHHCQPJtNj0TRwh28gMTtfcf0eYotNNG8slWhJdGj7Cr3KT7l3eqIpb2WkfBQFB3APt1T2qrdQYOHkV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746a6d164994b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash00ae1242778e1ca9e4b3ef7ba10ac900 d41edecfafe781ea83b5075e8b1da4d4299179fc e3c39b5948bad0d51198f4a434dffe7ecb09becf7de2cb0330adda0eb3294609
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3C39B5948BAD0D51198F4A434DFFE7ECB09BECF7DE2CB0330ADDA0EB3294609"
Last-Modified: Tue, 06 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4445
Expires: Tue, 06 Sep 2022 23:05:32 GMT
Date: Tue, 06 Sep 2022 21:51:27 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash195accce5155b06c8155a77d9a93d052 5cda84923d0c591c65ba0f6f9b2d0975f5b23298 880b22b6e4fa06c20f09fa0e736386ffa6c62028bbd0b275ab5a0f8ee32c4941
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Last-Modified: Tue, 06 Sep 2022 20:03:59 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash00ae1242778e1ca9e4b3ef7ba10ac900 d41edecfafe781ea83b5075e8b1da4d4299179fc e3c39b5948bad0d51198f4a434dffe7ecb09becf7de2cb0330adda0eb3294609
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3C39B5948BAD0D51198F4A434DFFE7ECB09BECF7DE2CB0330ADDA0EB3294609"
Last-Modified: Tue, 06 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4445
Expires: Tue, 06 Sep 2022 23:05:32 GMT
Date: Tue, 06 Sep 2022 21:51:27 GMT
Connection: keep-alive
|
|
| cdn.fuseplatform.net/publift/tags/2/2053/fuse.js | 23.3.90.104 | 200 OK | 47 kB |
URL HTTP/2cdn.fuseplatform.net/publift/tags/2/2053/fuse.js IP23.3.90.104:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hashbd2da7705d65b4524eb157d54e65d770 10857d5757e358d08a08a62b79ba38cedeb7affc d38b3a3a04ad74c726a784c6499650200a641fd724bcf369efc25cc74f0b7e7e
GET /publift/tags/2/2053/fuse.js HTTP/1.1
Host: cdn.fuseplatform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "bd2da7705d65b4524eb157d54e65d770:1661488089.57241"
last-modified: Fri, 26 Aug 2022 04:28:09 GMT
server: AkamaiNetStorage
content-length: 46826
content-encoding: gzip
cache-control: max-age=1800
expires: Tue, 06 Sep 2022 22:21:27 GMT
date: Tue, 06 Sep 2022 21:51:27 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash521428b0e694b41561bc2ed785219929 45bf3b914325f9d646879bd16bb01feb8f29f2d4 9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash521428b0e694b41561bc2ed785219929 45bf3b914325f9d646879bd16bb01feb8f29f2d4 9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| louchees.net/tag.min.js | 139.45.197.236 | 200 OK | 23 kB |
IP139.45.197.236:0
File typeASCII text, with very long lines (65536), with no line terminators Hashbe63c388d567538b52da54af92341fd4 d6b53ecf63fd5c60961bb6810af5d590edcd75ff 67c8c82259890c03f120fb5a06f6ab72a79639f6d00c4a2988de8331c2410d56
GET /tag.min.js HTTP/1.1
Host: louchees.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: text/javascript; charset=utf-8
content-length: 22987
content-encoding: br
x-trace-id: 097b08ba458d8d3b35b5ab1966643315
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Tue, 06 Sep 2022 12:28:39 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.41.246.187 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.41.246.187:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: teG9fOsCmBjeBKi0YjxWhw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WSEZx6xhwQ+D0qFcvygA2dYpv48=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc4f112da21b8595a118d74c62a9ade71 e9d07c7b746ac1c3813c30eafcf3cb62b3767b91 b2d11eb11d46ae622a9728b453d24fe227ab15555156fe247d74f482b6d795ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2D11EB11D46AE622A9728B453D24FE227AB15555156FE247D74F482B6D795AD"
Last-Modified: Sun, 04 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4211
Expires: Tue, 06 Sep 2022 23:01:39 GMT
Date: Tue, 06 Sep 2022 21:51:28 GMT
Connection: keep-alive
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 471 B |
IP172.64.155.188:0
Hash912f9a32166cf6d4e458969545df501d 6cecdd7246361b80f2464910ba31ee1f4381ee7d 58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 21:51:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT
Expires: Mon, 12 Sep 2022 06:25:20 GMT
Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d"
Cache-Control: max-age=462231,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746a6d17fea2b512-OSL
|
|
| cdn.fuseplatform.net/prebid/prebid-9cbcb6f4920c081422575671a6900740.js | 23.3.90.104 | 200 OK | 73 kB |
URL HTTP/2cdn.fuseplatform.net/prebid/prebid-9cbcb6f4920c081422575671a6900740.js IP23.3.90.104:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65423) Hash001f78b26e08c47a9eca8ceb14449936 3de12b0d828f274bb078a2e68c31da66f7c3d4af 5b6cd392225ca4e87e0f7f39709c84b707d5d082f5bc9bdb5eecc99456caf16f
GET /prebid/prebid-9cbcb6f4920c081422575671a6900740.js HTTP/1.1
Host: cdn.fuseplatform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "001f78b26e08c47a9eca8ceb14449936:1661488089.479447"
last-modified: Fri, 26 Aug 2022 04:28:09 GMT
server: AkamaiNetStorage
content-length: 73300
content-encoding: gzip
cache-control: max-age=86400000
expires: Mon, 02 Jun 2025 21:51:28 GMT
date: Tue, 06 Sep 2022 21:51:28 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn.fuseplatform.net/telemetry/noconsent?v=1&ttm=1662501082133&cookie=true&res=1280x1024&device=desktop&browser=firefox&fuuid=3236524f-5a04-5f7f-8273-c49179078a1d&fid=2053&pubid=5&url=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&sid=eb61ed5ca296685bd172&srate=100&adserver=gpt&etm=1417&e=fuse-load | 23.3.90.104 | 200 OK | 1 B |
URL HTTP/2cdn.fuseplatform.net/telemetry/noconsent?v=1&ttm=1662501082133&cookie=true&res=1280x1024&device=desktop&browser=firefox&fuuid=3236524f-5a04-5f7f-8273-c49179078a1d&fid=2053&pubid=5&url=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&sid=eb61ed5ca296685bd172&srate=100&adserver=gpt&etm=1417&e=fuse-load IP23.3.90.104:0 ASN#20940 Akamai International B.V.
File typevery short file (no magic) Hash9dd4e461268c8034f5c8564e155c67a6 11f6ad8ec52a2984abaafd7c3b516503785c2072 2d711642b726b04401627ca9fbac32f5c8530fb1903cc4db02258717921a4881
GET /telemetry/noconsent?v=1&ttm=1662501082133&cookie=true&res=1280x1024&device=desktop&browser=firefox&fuuid=3236524f-5a04-5f7f-8273-c49179078a1d&fid=2053&pubid=5&url=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&sid=eb61ed5ca296685bd172&srate=100&adserver=gpt&etm=1417&e=fuse-load HTTP/1.1
Host: cdn.fuseplatform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 1
content-type: text/plain
etag: "9dd4e461268c8034f5c8564e155c67a6:1660131111.248793"
last-modified: Wed, 10 Aug 2022 11:31:51 GMT
server: AkamaiNetStorage
cache-control: max-age=1800
expires: Tue, 06 Sep 2022 22:21:28 GMT
date: Tue, 06 Sep 2022 21:51:28 GMT
access-control-allow-origin: https://racaty.net
vary: Origin
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/js/countdown.js?rand=dfgf1g | 172.67.145.12 | 200 OK | 325 B |
URL HTTP/2racaty.net/racaty_new/js/countdown.js?rand=dfgf1g IP172.67.145.12:0
Hashd9e6f0c3799df296579efe2f11d5a1d1 3697ff11e9ef4bfa004f02a88743695573b70955 08888c94e5808d3fea8594110c7706726d5528587201ad3d738a7ff983e2ee6a
GET /racaty_new/js/countdown.js?rand=dfgf1g HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=675
etag: W/"2a3-5c4c633a875b1-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5276209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KVUetlO7B0Sui4XgZEl%2FHIXI18Ec7YpP9c3CiFn6oN5LaHKkfXFP8BMTXZuNZP7g11iMgLHkm%2FutTWd7bwCo6qepHhLTp6dYMDeedPUL8jYAtPn0YAGYGAQMGUCw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d15cb5ab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash62c739a1335c5cf0fd4e783db6cdf14b 4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash10585eccdd73117e0bc71ecaf1cd02cb 7bda7ff7308cac8c8824a5a558097a15a2325f5e 6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ssl.google-analytics.com/ga.js | 142.250.74.104 | 200 OK | 17 kB |
URL HTTP/2ssl.google-analytics.com/ga.js IP142.250.74.104:0
File typeASCII text, with very long lines (1305) Hash01d5892e6e243b52998310c2925b9f3a 58180151b6a6ee4af73583a214b68efb9e8844d4 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 06 Sep 2022 20:17:11 GMT
expires: Tue, 06 Sep 2022 22:17:11 GMT
cache-control: public, max-age=7200
age: 5657
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| securepubads.g.doubleclick.net/tag/js/gpt.js | 142.250.74.66 | 200 OK | 28 kB |
URL HTTP/2securepubads.g.doubleclick.net/tag/js/gpt.js IP142.250.74.66:0
File typeASCII text, with very long lines (44969) Hashb094117043d8f6b5ae632d29afa3a212 885c88744b71ed683cde73162922eec7109b64b7 459b5c42456522d6add31d448d7139c602ddfb5601aa23e0701bb7fbc653da91
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 28548
date: Tue, 06 Sep 2022 21:51:28 GMT
expires: Tue, 06 Sep 2022 21:51:28 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1326 / 402 of 1000 / last-modified: 1662462430"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash62c739a1335c5cf0fd4e783db6cdf14b 4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash10585eccdd73117e0bc71ecaf1cd02cb 7bda7ff7308cac8c8824a5a558097a15a2325f5e 6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc9e7bfe6510fd6d8a802a97acff21a7 93c41b8c11c9ddea9571db3582cdb5755e7045a4 bab9b67b111815599e6118c35d186da6bff613856101d065117fa27c5a363b11
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BAB9B67B111815599E6118C35D186DA6BFF613856101D065117FA27C5A363B11"
Last-Modified: Sun, 04 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5342
Expires: Tue, 06 Sep 2022 23:20:30 GMT
Date: Tue, 06 Sep 2022 21:51:28 GMT
Connection: keep-alive
|
|
| tovanillitechan.com/42/38?z=3976876 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/42/38?z=3976876 IP139.45.197.239:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /42/38?z=3976876 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=e79cb255bb2f462db3b951fcb7bb14b8; oaidts=1662501088
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:28 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 82b0ea507b5a410fab80f1ad49e642e0
access-control-expose-headers: X-Sc
set-cookie: OAID=e79cb255bb2f462db3b951fcb7bb14b8; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
oaidts=1662501088; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| racaty.net/cdn-cgi/challenge-platform/h/b/cv/result/746a6d125ed6b50b | 172.67.145.12 | 200 OK | 131 kB |
URL HTTP/2racaty.net/cdn-cgi/challenge-platform/h/b/cv/result/746a6d125ed6b50b IP172.67.145.12:0
File typeASCII text, with no line terminators Size131 kB (131260 bytes) Hashb0c7bee868216a6dffebe301a09abfe6 1de0a2fbea48256973bbae8c7ffd80269e0e1ef0 e36cfa7f8fffbecdb847eb16e8920d78f4f4979cb0827deba4c012e1c0ed4a3b
POST /cdn-cgi/challenge-platform/h/b/cv/result/746a6d125ed6b50b HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12332
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273; bacookk=0.9991623847536949; bgStrech=0.7496704426518919
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:28 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=Bp6RrIXcFI3jbEsnUWrXNU8mYzOxdmt.GDT53xxBeU8-1662501088-0-ARM0eMIVgECSIDzV8Kl0NHHuOUO8G16DTQjFP/q0lU2zrXSq6lF4BvxS9DtGwUMDVlqiCD1qxelBqKpbx8XPKfbT04btPAKdAWIxnhj5jal3CQnGheXCcL89ZnTSOoYDBQ==; path=/; expires=Tue, 06-Sep-22 22:21:28 GMT; domain=.racaty.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bl1kDh1KTk1AaI%2B%2FY1CY%2B4VwyGrK%2FCfVrJEM77heKsDo0n5uqa0J3NuMghUud3DX9a%2FNC0a0VeqE8GuS5cLvWX3IxcTNcbXWUElvO7Gyy5B2ylR4dPTInt3dBaNl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d1a983fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/rcty/favs/favicon-16x16.png?v=algwbxEnAR | 172.67.145.12 | 200 OK | 46 kB |
URL HTTP/2racaty.net/rcty/favs/favicon-16x16.png?v=algwbxEnAR IP172.67.145.12:0
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Hash14f94f29a79dd129ba9ef5df753f90a3 fc1bd42fbcf60816c4b609a49e1824d9f46ac271 0978b6cfca257f1aba6a1272a311a7ec71e0601eb742533a95e9d0fa06ca960d
GET /rcty/favs/favicon-16x16.png?v=algwbxEnAR HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:46 GMT
etag: W/"2ff-5c4c63345e2e5-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:33:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5275071
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L57oZdJTY%2BUi0bsximOQbb14Yuz7%2BEIWTJJjWbpqRjlk8orAaXNNsBPaOGRRxq6NKeTXsGtMScWFV8olehODV2ZAUU9zYG986h1nsH76MaA9eeoOp2myN1pkCsyG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d172ca9b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| test.cmp.quantcast.com/GVL-v2/cmp-list.json | 143.204.55.126 | 200 OK | 2.5 kB |
URL HTTP/2test.cmp.quantcast.com/GVL-v2/cmp-list.json IP143.204.55.126:0
File typeJSON data\012- , ASCII text, with very long lines (9981), with no line terminators Hash4678d029ed499af30301117572ba4561 92b7a64d97dedbee2207d65c58d7035993b2c331 cc2d64281acc1c4e73a158be27f46b85a4671ff58c198903dc50970347f565fd
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Tue, 06 Sep 2022 03:00:41 GMT
last-modified: Thu, 01 Sep 2022 19:55:38 GMT
etag: W/"6956b949229e4f70c6801a6ba073ae1e"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7JVvY2BjkVZ63YlCse_n1XAdPqJrPXIl
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Kxgbzy_QejQfMEKS_vKy7THeqUvC68iwoTZLB-mctUEjutbS_lg8Xg==
age: 67848
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=8ed1cb50b9d3499d91300d0c8c2b6ff0 | 139.45.197.239 | 200 OK | 2.7 kB |
URL HTTP/2tovanillitechan.com/9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=8ed1cb50b9d3499d91300d0c8c2b6ff0 IP139.45.197.239:0
File typeJSON data\012- , ASCII text, with very long lines (6404), with no line terminators Hash6d9668a10b7620f8e92e2f7293df9aa3 9636e87832873434b69e7b51c4ea963703af84ef 52d2f501a930281298029df8222cef0c3a75a4c111ce1dd34f5247eecb19f225
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
POST /9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=8ed1cb50b9d3499d91300d0c8c2b6ff0 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 255
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=e79cb255bb2f462db3b951fcb7bb14b8; oaidts=1662501088
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:28 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: a766e0b81b64449de6b1af94f92de3ac
access-control-expose-headers: X-Sc
set-cookie: OAID=8ed1cb50b9d3499d91300d0c8c2b6ff0; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
oaidts=1662501088; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ad-delivery.net/px.gif?ch=2 | 172.67.69.19 | 200 OK | 43 B |
URL HTTP/2ad-delivery.net/px.gif?ch=2 IP172.67.69.19:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:28 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdt6VCtqtIBnBTdsF1vvDPQfLazGd9ibEd203R5L043lLiuyTx5erfdDBO4fPOmvTjQfhaq1ovVTvyGIn5JVehsmeQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sun, 04 Sep 2022 17:35:10 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 188412
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FuZ40vx2u%2Fz%2B1WZXBzGO2IMA9IkcGBuVJyB9mLvPx%2FadzJejKiZXTZrJcVng1R91sD19eGwBNdY8AizyIJQhpRG0aawCC67bsjnSrhir9yI%2FiBEU7vd3DHXijrZLK9imkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746a6d1e38340b41-OSL
X-Firefox-Spdy: h2
|
|
| ad-delivery.net/px.gif?ch=1&e=0.25300845010914597 | 172.67.69.19 | 200 OK | 43 B |
URL HTTP/2ad-delivery.net/px.gif?ch=1&e=0.25300845010914597 IP172.67.69.19:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.25300845010914597 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:29 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdt6VCtqtIBnBTdsF1vvDPQfLazGd9ibEd203R5L043lLiuyTx5erfdDBO4fPOmvTjQfhaq1ovVTvyGIn5JVehsmeQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sun, 04 Sep 2022 17:35:10 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 188413
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DfO272nOnzEZHcXNAZdA0Zi2XHgRSE4rUeDqBamvKBH3J98LIcYgqIV9Rb8rezyn2SBaivlGFRug0RBO7ifGiwDLCfZ9BwdwZwaHt7UiWBYNi%2BnH9aankxj34tmZF1T6kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746a6d1e38380b41-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc7bcca583a8ba61d9c53caac2ebef785 995c1a611093e37dab00236975629afc87697759 9e756b835b028b58a798294a63d6dfefa013107b9fb7633ba56df072ddb5e131
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E756B835B028B58A798294A63D6DFEFA013107B9FB7633BA56DF072DDB5E131"
Last-Modified: Mon, 05 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5822
Expires: Tue, 06 Sep 2022 23:28:31 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe27313c78bb1b4915b56819ea1681c89 aeea006638532562eb6d03ce71f1928f16a79e14 54f506e01b24da86d55bed7a799101e97f051c3ae9f40adb8627b28f611d4570
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 | 216.58.207.198 | 200 OK | 104 B |
URL HTTP/2ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 IP216.58.207.198:0
File typeMS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data Hash32ac8a9b81788b981a3a7e13c14082d4 fbfd48a2bfe8d4247a975176f88d18c3c2ad1952 00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 19:35:31 GMT
expires: Wed, 07 Sep 2022 19:35:31 GMT
cache-control: public, max-age=86400
age: 8158
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe27313c78bb1b4915b56819ea1681c89 aeea006638532562eb6d03ce71f1928f16a79e14 54f506e01b24da86d55bed7a799101e97f051c3ae9f40adb8627b28f611d4570
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4144
Expires: Tue, 06 Sep 2022 23:00:33 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4144
Expires: Tue, 06 Sep 2022 23:00:33 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4144
Expires: Tue, 06 Sep 2022 23:00:33 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4144
Expires: Tue, 06 Sep 2022 23:00:33 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4144
Expires: Tue, 06 Sep 2022 23:00:33 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg | 34.120.237.76 | 200 OK | 5.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1a87857b93f99eab3118aae97a1c9d22 3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80 97ce11c0e0efe83d6568f173f9235160157c52b4ab4299823d508c072f113ddc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5775
x-amzn-requestid: dc0a6d9c-5aec-44a3-be54-69cec17f9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxE0noAMFz0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-6c8ec4b03fc761d81c988132;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: z3WamVQsZqAoYnfPZ0rgyYXGzs1jsv56D1oF4Wzva-H-T8a-xPU8mg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:00:00 GMT
age: 85889
etag: "3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/css/style.min.css?v=3.7 | 172.67.145.12 | 200 OK | 36 kB |
URL HTTP/2racaty.net/racaty_new/css/style.min.css?v=3.7 IP172.67.145.12:0
File typeASCII text, with very long lines (65536), with no line terminators Hashdc49485948558acf0fa4e03c540f7b1c 00325f5843f7a35cca93b906b19abe27f12ab196 2efed73bf6c3e4d940a002edc0ffce48d27f102c3513faed071e424279324a7c
GET /racaty_new/css/style.min.css?v=3.7 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"1c941-5c4c6339fcae7-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5276211
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pX%2BCulnmRFbsGy%2FAqxv9wMx%2F51Kgmm0vYCsBCjoXRyi0boMuCC4lwk3e9m%2BWQlfUfKssd3Y%2FH7YDwijWHXJm5eIDQDjtdkI%2FbBoQR8KWt1wdL1UpGRXQJ3a2Kchf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d1408e5b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg | 34.120.237.76 | 200 OK | 4.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc81f3df885bdee8cac46ea9495e6b63b fc766bca874a352a4acb569577d4cf6527f4f074 e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 08:35:06 GMT
age: 47783
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c23179b2131543088771e3fa84ff231 ae50ae4aecd962b698c19f2863857b51cea7fcec 660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 86055
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash983e705542fa78b4d5c876e0c1eada7e 5fc951e5236edd282d4975853ca35dab2e55fb17 fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Wrg-m_UnDr6IUcZKYuaoq8cfQxE7MvtL-hMCm83Q3B1lVNjsBkhH4A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:44:39 GMT
age: 410
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| racaty.net/img/background50273.jpg?v=0.7496704426518919 | 172.67.145.12 | 200 OK | 471 kB |
URL HTTP/2racaty.net/img/background50273.jpg?v=0.7496704426518919 IP172.67.145.12:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 4096x2160, components 3\012- data Size471 kB (471432 bytes) Hashe6541cde6b4210e34d7ac5d2e3fbd6c5 bd5a4e082495dc3f92eb81085969a11ee8067a54 4b370f084dceef39103e36dd2b752cb8272a6a6101616aaf58e1823937d554dd
GET /img/background50273.jpg?v=0.7496704426518919 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273; bacookk=0.9991623847536949; bgStrech=0.7496704426518919
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:28 GMT
content-type: image/jpeg
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:46 GMT
etag: W/"711c2-5c4c6334d1a95-gzip"
cache-control: max-age=31536000
expires: Wed, 06 Sep 2023 21:51:28 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i1F%2FxGGqzStkXTBrndKzpA%2B0JV72eXSaMzkhyiw%2F5eJ%2B8UeJ6BGewR78brKsKlA5Zh1dUOdftOsQBmYpdYy9cg1U%2Bdo474iaXdNmfbIBzEF2ouxRTmjUBSHAC05T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d17bd24b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/vfctweU0iRw | 142.250.74.3 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/vfctweU0iRw IP142.250.74.3:0
Hashc8a562497023b6819080cdd60fda1c48 3f187f18bf0cb89e6034a029e930e48d81255e03 e5cb3fff70ed298ab57086a0f5d31619b1fc225a1bc12b9f588c9515fb285448
POST /s/gts1d4/vfctweU0iRw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| interstitial-07.com/contents/s/f5/33/c9/3ff5b28ce50b1e6b9a5843d9f4/0744334562399.jpeg | 139.45.197.151 | 200 OK | 20 kB |
URL HTTP/2interstitial-07.com/contents/s/f5/33/c9/3ff5b28ce50b1e6b9a5843d9f4/0744334562399.jpeg IP139.45.197.151:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data Hashf533c93ff5b28ce50b1e6b9a5843d9f4 5483d2e7294716667f86cb07ad337e7b54409484 8037f98d491aa24e53a11eadf7cdc588d4a134b289955acca1f298379702ce81
GET /contents/s/f5/33/c9/3ff5b28ce50b1e6b9a5843d9f4/0744334562399.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=Asqcq4ULLN6a5CL&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D4222738534%26z%3D3976876%26b%3D14712567%26c%3D6052108%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D286%2526key%253Dd89a07eda2fcee8fdad966c85b07f5be%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaTA6KoOvCk3Hb_gFqbOTdW3O5iyDAGAVN2qdyyIrdKZ20GX7PfSfTtJM_vQAvY3k3lI_sHiv2tyfPDSGGt6YWxlZWiDkSN2MfQZ5hFtHytd1T_tiZzsbrtGViUoUYON0oszUNVydEa_WdrkbaZyQGwkyWC2ZTdCbijHTTytL8T3HQxAmNIMiaycgKz1aSVQ1PPT7x-4e1IXXITcXVNlOcPTvKack6zjR-eSUou35WgTvLM4_WdQomfnjNtd8d1gtBhTE2XwuD-ayYGb0eRpo8q3GDAhjRv1cyFxu1J44IyxWi3FJohk7IROXpC3O_XuMhDrtWOKdKaMv0nW2F0JPM6KSoKgiP2vuci0yM6UPfobb3ZFh_5J1WUkXwi0KVr3GvSJZWhk69nHoyx09ZNsy3g0CR85UvGo7MwRh3awYY1MMAygeovJCJKc_jjH4PhNfQw9BxUkFMUSul1XrCDw6mjtICX676IBGl1ccRS29Ovy8fQl1VKLU7B57qTdPmYnQznzr4vqMNlxmncmhfEC6aU1w1Hbj-Pl7EPTtmwJs_qRSvoSr9OQVXe4BKZI1ubADClrHLVSPVUp7AWwO8cLE_kqzuMzn74vmkOfiHM42mfpqeWwbepvw08HDQ49fboTd7i2JKFGMxTusRF9i%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcba7bb81-2d8a-4613-828b-00d8c3e0de4b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fracaty.net%252Fxjxm4vm0bsvv%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D4%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:29 GMT
content-type: image/jpeg
content-length: 20112
last-modified: Wed, 19 Jan 2022 15:54:56 GMT
etag: "61e83450-4e90"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22PRrmquD1Ggcb1%22%2C%22domain%22%3A%22racaty.net%22%2C%22publisher%22%3A%22Racaty%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.43%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22ObPxgSi0LmbV56wSSMefHA%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1662501083182%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-icjsa8die85ljlc01efr%22%7D |  18.184.40.219 | 200 OK | 2 B |
URL HTTP/2audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22PRrmquD1Ggcb1%22%2C%22domain%22%3A%22racaty.net%22%2C%22publisher%22%3A%22Racaty%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.43%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22ObPxgSi0LmbV56wSSMefHA%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1662501083182%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-icjsa8die85ljlc01efr%22%7D IP18.184.40.219:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%22PRrmquD1Ggcb1%22%2C%22domain%22%3A%22racaty.net%22%2C%22publisher%22%3A%22Racaty%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.43%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22ObPxgSi0LmbV56wSSMefHA%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1662501083182%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-icjsa8die85ljlc01efr%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:29 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6dc56472e7e937d95691c91149f92637 a4ec5345016cd49eabd3b39e5229cb341f1a1ce5 e60b408f4f2e9d1e4d7b52ed42eeccffc2a7d025628902229ac352a6c482a358
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E60B408F4F2E9D1E4D7B52ED42EECCFFC2A7D025628902229AC352A6C482A358"
Last-Modified: Tue, 06 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5130
Expires: Tue, 06 Sep 2022 23:16:59 GMT
Date: Tue, 06 Sep 2022 21:51:29 GMT
Connection: keep-alive
|
|
| interstitial-07.com/contents/s/5e/9b/98/c047812bb48d9b12a9d78bb7ba/0865874287824.jpeg | 139.45.197.151 | 200 OK | 52 kB |
URL HTTP/2interstitial-07.com/contents/s/5e/9b/98/c047812bb48d9b12a9d78bb7ba/0865874287824.jpeg IP139.45.197.151:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data Hash5e9b98c047812bb48d9b12a9d78bb7ba a55f54b8b3cc2cc1a76e9a13979e007961d59fa4 7410b691e0099ec4f7bf23af1234f23e6823b0fa973366ccb472844c4b782fdd
GET /contents/s/5e/9b/98/c047812bb48d9b12a9d78bb7ba/0865874287824.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=Asqcq4ULLN6a5CL&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D4222738534%26z%3D3976876%26b%3D14712567%26c%3D6052108%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D286%2526key%253Dd89a07eda2fcee8fdad966c85b07f5be%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DaTA6KoOvCk3Hb_gFqbOTdW3O5iyDAGAVN2qdyyIrdKZ20GX7PfSfTtJM_vQAvY3k3lI_sHiv2tyfPDSGGt6YWxlZWiDkSN2MfQZ5hFtHytd1T_tiZzsbrtGViUoUYON0oszUNVydEa_WdrkbaZyQGwkyWC2ZTdCbijHTTytL8T3HQxAmNIMiaycgKz1aSVQ1PPT7x-4e1IXXITcXVNlOcPTvKack6zjR-eSUou35WgTvLM4_WdQomfnjNtd8d1gtBhTE2XwuD-ayYGb0eRpo8q3GDAhjRv1cyFxu1J44IyxWi3FJohk7IROXpC3O_XuMhDrtWOKdKaMv0nW2F0JPM6KSoKgiP2vuci0yM6UPfobb3ZFh_5J1WUkXwi0KVr3GvSJZWhk69nHoyx09ZNsy3g0CR85UvGo7MwRh3awYY1MMAygeovJCJKc_jjH4PhNfQw9BxUkFMUSul1XrCDw6mjtICX676IBGl1ccRS29Ovy8fQl1VKLU7B57qTdPmYnQznzr4vqMNlxmncmhfEC6aU1w1Hbj-Pl7EPTtmwJs_qRSvoSr9OQVXe4BKZI1ubADClrHLVSPVUp7AWwO8cLE_kqzuMzn74vmkOfiHM42mfpqeWwbepvw08HDQ49fboTd7i2JKFGMxTusRF9i%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3Dcba7bb81-2d8a-4613-828b-00d8c3e0de4b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fracaty.net%252Fxjxm4vm0bsvv%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D4%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:29 GMT
content-type: image/jpeg
content-length: 51805
last-modified: Wed, 19 Jan 2022 15:54:55 GMT
etag: "61e8344f-ca5d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| api.btloader.com/pv?tid=zHtNGUDPL&w=4828219382431744&o=5708166709903360&cv=2.0.9-1-g2cac8e3&r=false&vr=1280x939&pageURL=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&upapi=true | 130.211.23.194 | 204 No Content | 0 B |
URL HTTP/2api.btloader.com/pv?tid=zHtNGUDPL&w=4828219382431744&o=5708166709903360&cv=2.0.9-1-g2cac8e3&r=false&vr=1280x939&pageURL=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&upapi=true IP130.211.23.194:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=zHtNGUDPL&w=4828219382431744&o=5708166709903360&cv=2.0.9-1-g2cac8e3&r=false&vr=1280x939&pageURL=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Tue, 06 Sep 2022 21:51:29 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| unphionetor.com/vctx?t=72747 | 139.45.197.236 | 204 No Content | 0 B |
URL HTTP/2unphionetor.com/vctx?t=72747 IP139.45.197.236:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 06 Sep 2022 21:51:29 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: f2d09bddbda437b90befd1cf193bfba4
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/vfctweU0iRw | 142.250.74.3 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/vfctweU0iRw IP142.250.74.3:0
Hashc8a562497023b6819080cdd60fda1c48 3f187f18bf0cb89e6034a029e930e48d81255e03 e5cb3fff70ed298ab57086a0f5d31619b1fc225a1bc12b9f588c9515fb285448
POST /s/gts1d4/vfctweU0iRw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 21:51:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined | 139.45.197.236 | 204 No Content | 0 B |
URL HTTP/2unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined IP139.45.197.236:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 06 Sep 2022 21:51:29 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: dcefe9f9944133db91de6c95f7718962
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/11?rnd=3628198132&z=3976876&b=14712567&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=aTA6KoOvCk3Hb_gFqbOTdW3O5iyDAGAVN2qdyyIrdKZ20GX7PfSfTtJM_vQAvY3k3lI_sHiv2tyfPDSGGt6YWxlZWiDkSN2MfQZ5hFtHytd1T_tiZzsbrtGViUoUYON0oszUNVydEa_WdrkbaZyQGwkyWC2ZTdCbijHTTytL8T3HQxAmNIMiaycgKz1aSVQ1PPT7x-4e1IXXITcXVNlOcPTvKack6zjR-eSUou35WgTvLM4_WdQomfnjNtd8d1gtBhTE2XwuD-ayYGb0eRpo8q3GDAhjRv1cyFxu1J44IyxWi3FJohk7IROXpC3O_XuMhDrtWOKdKaMv0nW2F0JPM6KSoKgiP2vuci0yM6UPfobb3ZFh_5J1WUkXwi0KVr3GvSJZWhk69nHoyx09ZNsy3g0CR85UvGo7MwRh3awYY1MMAygeovJCJKc_jjH4PhNfQw9BxUkFMUSul1XrCDw6mjtICX676IBGl1ccRS29Ovy8fQl1VKLU7B57qTdPmYnQznzr4vqMNlxmncmhfEC6aU1w1Hbj-Pl7EPTtmwJs_qRSvoSr9OQVXe4BKZI1ubADClrHLVSPVUp7AWwO8cLE_kqzuMzn74vmkOfiHM42mfpqeWwbepvw08HDQ49fboTd7i2JKFGMxTusRF9i&ruid=cba7bb81-2d8a-4613-828b-00d8c3e0de4b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/11?rnd=3628198132&z=3976876&b=14712567&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=aTA6KoOvCk3Hb_gFqbOTdW3O5iyDAGAVN2qdyyIrdKZ20GX7PfSfTtJM_vQAvY3k3lI_sHiv2tyfPDSGGt6YWxlZWiDkSN2MfQZ5hFtHytd1T_tiZzsbrtGViUoUYON0oszUNVydEa_WdrkbaZyQGwkyWC2ZTdCbijHTTytL8T3HQxAmNIMiaycgKz1aSVQ1PPT7x-4e1IXXITcXVNlOcPTvKack6zjR-eSUou35WgTvLM4_WdQomfnjNtd8d1gtBhTE2XwuD-ayYGb0eRpo8q3GDAhjRv1cyFxu1J44IyxWi3FJohk7IROXpC3O_XuMhDrtWOKdKaMv0nW2F0JPM6KSoKgiP2vuci0yM6UPfobb3ZFh_5J1WUkXwi0KVr3GvSJZWhk69nHoyx09ZNsy3g0CR85UvGo7MwRh3awYY1MMAygeovJCJKc_jjH4PhNfQw9BxUkFMUSul1XrCDw6mjtICX676IBGl1ccRS29Ovy8fQl1VKLU7B57qTdPmYnQznzr4vqMNlxmncmhfEC6aU1w1Hbj-Pl7EPTtmwJs_qRSvoSr9OQVXe4BKZI1ubADClrHLVSPVUp7AWwO8cLE_kqzuMzn74vmkOfiHM42mfpqeWwbepvw08HDQ49fboTd7i2JKFGMxTusRF9i&ruid=cba7bb81-2d8a-4613-828b-00d8c3e0de4b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 IP139.45.197.239:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /11?rnd=3628198132&z=3976876&b=14712567&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=aTA6KoOvCk3Hb_gFqbOTdW3O5iyDAGAVN2qdyyIrdKZ20GX7PfSfTtJM_vQAvY3k3lI_sHiv2tyfPDSGGt6YWxlZWiDkSN2MfQZ5hFtHytd1T_tiZzsbrtGViUoUYON0oszUNVydEa_WdrkbaZyQGwkyWC2ZTdCbijHTTytL8T3HQxAmNIMiaycgKz1aSVQ1PPT7x-4e1IXXITcXVNlOcPTvKack6zjR-eSUou35WgTvLM4_WdQomfnjNtd8d1gtBhTE2XwuD-ayYGb0eRpo8q3GDAhjRv1cyFxu1J44IyxWi3FJohk7IROXpC3O_XuMhDrtWOKdKaMv0nW2F0JPM6KSoKgiP2vuci0yM6UPfobb3ZFh_5J1WUkXwi0KVr3GvSJZWhk69nHoyx09ZNsy3g0CR85UvGo7MwRh3awYY1MMAygeovJCJKc_jjH4PhNfQw9BxUkFMUSul1XrCDw6mjtICX676IBGl1ccRS29Ovy8fQl1VKLU7B57qTdPmYnQznzr4vqMNlxmncmhfEC6aU1w1Hbj-Pl7EPTtmwJs_qRSvoSr9OQVXe4BKZI1ubADClrHLVSPVUp7AWwO8cLE_kqzuMzn74vmkOfiHM42mfpqeWwbepvw08HDQ49fboTd7i2JKFGMxTusRF9i&ruid=cba7bb81-2d8a-4613-828b-00d8c3e0de4b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=8ed1cb50b9d3499d91300d0c8c2b6ff0; oaidts=1662501088
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:29 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 772aebfb6013a713c0343c136b552ef4
access-control-expose-headers: X-Sc
set-cookie: OAID=8ed1cb50b9d3499d91300d0c8c2b6ff0; expires=Wed, 06 Sep 2023 21:51:29 GMT; secure; SameSite=None
oaidts=1662501088; expires=Wed, 06 Sep 2023 21:51:29 GMT; secure; SameSite=None
oaidvc=1; expires=Wed, 06 Sep 2023 21:51:29 GMT; secure; SameSite=None
CNT=1_v1_937gAAEAAAApSzk4; expires=Tue, 06 Sep 2022 22:51:29 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp | 34.120.237.76 | 200 OK | 6.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0efc32eccbf76ac0d89f324d09a7fd1f f8589eb3907582137d8b9373af745d80eddbf1bb ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Pp1IgWvJ7RvV5MWT2uYASZuEVsHT_cKMEg8niZdeF0VuCC2zsLGC5g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:47:07 GMT
age: 269
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/img/onehund.min.png | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/racaty_new/img/onehund.min.png IP172.67.145.12:0
GET /racaty_new/img/onehund.min.png HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:51 GMT
etag: W/"144c-5c4c633965ccd-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5276211
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FpztsyEd60oPjXY%2FFsXEgAZDgT9enUlQ5DVjvqr1vDrARmNF8S8YHIPUsldc6eq2lLYBw%2BVtIeiuyIOiKEXyIJdIm0N%2BgROg7mD1ihZXl%2BricFgl6IcWVOmmyMCj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d14392ab50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1662494400 | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1662494400 IP172.67.145.12:0
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1662494400 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-control-type-options: nosniff
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j62uAqnXzGMFL1%2BNHu6V6giZ6mKzeWUZF9Fqv7NibIubM0kL1%2FlU9wgZORsvsiRqpn0jPs5kE6Y81RfXxymSayqk1gybbJ90iREklX5xKIp6lqdkjzC2lSTugphS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d168c3bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| unphionetor.com/fv.js?t=72747&cb=1047128634 | 139.45.197.236 | 200 OK | 0 B |
URL HTTP/2unphionetor.com/fv.js?t=72747&cb=1047128634 IP139.45.197.236:0
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /fv.js?t=72747&cb=1047128634 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:29 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: bbf07c343e7f931db71377142a9799db
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.racaty.net/xjxm4vm0bsvv | 172.67.145.12 | 301 Moved Permanently | 0 B |
URL HTTP/2www.racaty.net/xjxm4vm0bsvv IP172.67.145.12:0
GET /xjxm4vm0bsvv HTTP/1.1
Host: www.racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: text/html; charset=iso-8859-1
location: https://racaty.net/xjxm4vm0bsvv
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A8ocClY5ist%2FqiRnNkPOqG8vGHPdin8mJ4wO%2BdON2xl8duzOjcvhXAgXPHC%2FimPK%2FGYqmWcKfPXOBRpl%2BrZyuH8GF5KOdu8aF5%2FiNIaLKw2XCqlCJXgWeSVm%2FWF5SdTGWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d11ade8b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/r_dep.js?v=1.5 | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/r_dep.js?v=1.5 IP172.67.145.12:0
GET /r_dep.js?v=1.5 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=2297
etag: W/"8f9-5c4c633751908-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:49 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5276209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B44D4vFGAJFgJuuYmZP6wTv3r1z52ELeTm4Rk63fvHqUJK9JXo850CmVEUVIMVZpefm%2BAtlttZW7ixsD87eb7SGp6Fin8fkrYGF3PX1dIbw%2BTyWyA56aLNDxipMU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d15cb5fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/1?z=3976876 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/1?z=3976876 IP139.45.197.239:0
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /1?z=3976876 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:28 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4c9036aaf17144c472db701220e812a4
access-control-expose-headers: X-Sc
x-sc: tIZdzyNBTfcNZ6Rjuj2wK3dnX4TDSUVb4l7EEL6HmEF7CEtNnbqcqSaQz2iKruamBRFHZhL-SCqdsTuEhVvEngX6_rk=
set-cookie: scm=1; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
OAID=e79cb255bb2f462db3b951fcb7bb14b8; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
oaidts=1662501088; expires=Wed, 06 Sep 2023 21:51:28 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| racaty.net/xjxm4vm0bsvv | 172.67.145.12 | 200 OK | 0 B |
IP172.67.145.12:0
GET /xjxm4vm0bsvv HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=0;includeSubDomains;
expires: Mon, 05 Sep 2022 21:51:27 GMT
set-cookie: lang=english; domain=.racaty.net; path=/
aff=50273; domain=.racaty.net; path=/; expires=Tue, 20-Sep-2022 21:51:27 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mBydt1aESSa%2BSmgfcHV5lojS3x217PxGIr9f5keb%2BpgHlLeU%2FAIMS6Fh4WnxRNaLw80G7fHQ5t0ICgLlHI8kZBixRLTUnlOz5MPrdf20p7tCpICxN0w2CUuXnLpC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d125ed6b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/racatyph.svg | 172.67.145.12 | 200 OK | 0 B |
IP172.67.145.12:0
GET /racatyph.svg HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: image/svg+xml
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"bef-5c4c633ab0dc4-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5276211
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IXhVloiUqbJQMSUNdVlGoKAvzHyCpnBaF4DPCHjCk6PITlpJfLHIm2BqKNHQ06PXsqK1XP%2BwW%2BU0Cfn5cc0Hqu4QqJhXnGbf%2FAoAUoKDVMx3Uc0Fmhq7P%2F%2FdukTz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d14392bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 | 143.204.55.88 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 IP143.204.55.88:0
GET /choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: https://racaty.net
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
last-modified: Fri, 15 Jul 2022 05:36:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Tue, 06 Sep 2022 21:51:28 GMT
cache-control: max-age=900
etag: W/"60d0e832d190fcb1615d3bb7e47dbf28"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yoj14aNIkvjooqPw1wwEGbQ01U9kAo6z9_rwgGkSFJAg4Zv_sORHGg==
age: 35
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json | 143.204.55.88 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json IP143.204.55.88:0
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Tue, 06 Sep 2022 03:00:47 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Tue, 06 Sep 2022 03:00:33 GMT
etag: W/"e3b01197d3c5fa12af2d7fb54c4ebbc9"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2ADEVgmvh8r1NCOCvtc01hrBwtPGUqjQma2nxI4EgfwxqOOESF_lCQ==
age: 67843
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 | 143.204.55.88 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 IP143.204.55.88:0
GET /choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 05:36:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
cache-control: max-age=900
date: Tue, 06 Sep 2022 21:50:55 GMT
etag: W/"60d0e832d190fcb1615d3bb7e47dbf28"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5v8X0HyjpNPm8Aqop7VpTK3txNco3ZqiFkMen1vGazz_ZIeH_xlIwA==
age: 34
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/tcfv2/google-atp-list.json | 143.204.55.88 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/tcfv2/google-atp-list.json IP143.204.55.88:0
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Tue, 06 Sep 2022 03:01:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Tue, 06 Sep 2022 03:01:29 GMT
etag: W/"483e3c223f50692e326e740a4b72be5b"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KGqXpTV0NqclElTaIMBXdj4fMA8VYw1qHFpya-HX3yaBkv0sX-pScw==
age: 67799
X-Firefox-Spdy: h2
|
|
| racaty.net/rcty/favs/favicon-194x194.png?v=algwbxEnAR | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/rcty/favs/favicon-194x194.png?v=algwbxEnAR IP172.67.145.12:0
GET /rcty/favs/favicon-194x194.png?v=algwbxEnAR HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:46 GMT
etag: W/"e85-5c4c633464875-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:33:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5275071
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aFAmqrMMp2idl42LOFLbyYsUYgQ4bYueoGSOAvcStemZoRiakV8OirC6y%2B8XiosGVFasb4MSHKGqqBRlW5JGi5skEZD9LjRFuYyrGe32TfXr9WIuzHLM287OPZl3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d172ca6b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| onmarshtompor.com/?rb=bX0gqiC-nN-SHU-7LNKOjGPi5pOfur2t1nzAi4tSkV4QqncbWJfE__eYLS3PZXkf8jVhRs7kT3iVhzfSwsaiP4Pe8zqfAohEPtF2cJLHRAB41XyYiCsdUrqNyw4shcR3YVpdwF3qAh4zYb8ZVT86i4sQx0rIqHZkramJZxswpi2EU_ERnSCswsw9LNg69rK1ppE-57viiYNXir3pY1nLrl3iRe0%3D&request_ab2=0&zoneid=3579972&js_build=iclick-v1.423.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.423.0&bs=b0ed8e67-3e47-41b2-bfde-b6c87d6bde00&userId=8ed1cb50b9d3499d91300d0c8c2b6ff0&m=link | 139.45.197.243 | 200 OK | 0 B |
URL HTTP/2onmarshtompor.com/?rb=bX0gqiC-nN-SHU-7LNKOjGPi5pOfur2t1nzAi4tSkV4QqncbWJfE__eYLS3PZXkf8jVhRs7kT3iVhzfSwsaiP4Pe8zqfAohEPtF2cJLHRAB41XyYiCsdUrqNyw4shcR3YVpdwF3qAh4zYb8ZVT86i4sQx0rIqHZkramJZxswpi2EU_ERnSCswsw9LNg69rK1ppE-57viiYNXir3pY1nLrl3iRe0%3D&request_ab2=0&zoneid=3579972&js_build=iclick-v1.423.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.423.0&bs=b0ed8e67-3e47-41b2-bfde-b6c87d6bde00&userId=8ed1cb50b9d3499d91300d0c8c2b6ff0&m=link IP139.45.197.243:0
GET /?rb=bX0gqiC-nN-SHU-7LNKOjGPi5pOfur2t1nzAi4tSkV4QqncbWJfE__eYLS3PZXkf8jVhRs7kT3iVhzfSwsaiP4Pe8zqfAohEPtF2cJLHRAB41XyYiCsdUrqNyw4shcR3YVpdwF3qAh4zYb8ZVT86i4sQx0rIqHZkramJZxswpi2EU_ERnSCswsw9LNg69rK1ppE-57viiYNXir3pY1nLrl3iRe0%3D&request_ab2=0&zoneid=3579972&js_build=iclick-v1.423.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fracaty.net%2Fxjxm4vm0bsvv&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.423.0&bs=b0ed8e67-3e47-41b2-bfde-b6c87d6bde00&userId=8ed1cb50b9d3499d91300d0c8c2b6ff0&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://racaty.net/
Origin: https://racaty.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:28 GMT
content-type: application/json
x-trace-id: ad4ddc3dfb1ddd0991aab24075264228
access-control-allow-origin: https://racaty.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=8ed1cb50b9d3499d91300d0c8c2b6ff0; expires=Wed, 06 Sep 2023 21:51:28 GMT; path=/; secure; SameSite=None
oaidts=1662501088; expires=Wed, 06 Sep 2023 21:51:28 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 13 Sep 2022 21:51:28 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/js/scriptglobal.min.js?v=3 | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/racaty_new/js/scriptglobal.min.js?v=3 IP172.67.145.12:0
GET /racaty_new/js/scriptglobal.min.js?v=3 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"1fdf9-5c4c633a61836-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:37 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 5276210
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NdvBeOBh0lY90xlts%2BtN5qcQOafMooqfVWoo4w64LSZkmiiIFER8zG2Xxyjo5pSoSgiRGc5Dfx7a3S2F2HXd4bYBAYHuhxVjlfS8rR7uTdE1%2F9hxyDCF8tJdGDp4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d15cb55b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Montserrat|Quicksand:400,500,700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Montserrat|Quicksand:400,500,700&display=swap IP142.250.74.10:0
GET /css?family=Montserrat|Quicksand:400,500,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 21:51:27 GMT
date: Tue, 06 Sep 2022 21:51:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| racaty.net/js/ctooltip.js | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/js/ctooltip.js IP172.67.145.12:0
GET /js/ctooltip.js HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=1738
etag: W/"6ca-5c4c633ae45ff-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:53 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5276209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8l6SBer3AY%2FL%2Fy9RKk03VO3C8q7mVj%2FR4WXau2BX6crW8fFxjmmXtO%2FaahKirjxxFCTe2C05W4M5W%2F1yRReR8uY3oswQ1YSjEsAvS7DSsjBRGg24lISj3be9Q9Vs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d15cb5cb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/js/main.js | 172.67.145.12 | 200 OK | 0 B |
URL HTTP/2racaty.net/racaty_new/js/main.js IP172.67.145.12:0
GET /racaty_new/js/main.js HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/xjxm4vm0bsvv
Cookie: lang=english; aff=50273
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=99128
etag: W/"18338-5c4c633a6d3b7-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5276209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zub5ZwuPvYcE97hnlOultSdDqeoLJyTGYVqjCCsvsdURjWVeQEkSVabljSbjnaOd1Vn0L%2FQUeyJe2VWwBuqityIBjRKC%2FkufAivXG0CWoHNof0Hwgy13HU3dKy49"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746a6d15eb7cb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| louchees.net/apu.php?zoneid=3579972&oo=1 | 139.45.197.236 | 200 OK | 0 B |
URL HTTP/2louchees.net/apu.php?zoneid=3579972&oo=1 IP139.45.197.236:0
GET /apu.php?zoneid=3579972&oo=1 HTTP/1.1
Host: louchees.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 21:51:27 GMT
content-type: application/json
x-trace-id: 09d3762f55c088737c42a45ee76df242
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://racaty.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=8ed1cb50b9d3499d91300d0c8c2b6ff0; expires=Wed, 06 Sep 2023 21:51:27 GMT; path=/; secure; SameSite=None
oaidts=1662501087; expires=Wed, 06 Sep 2023 21:51:27 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/tcfv2/43/cmp2ui-en.js | 143.204.55.88 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/tcfv2/43/cmp2ui-en.js IP143.204.55.88:0
GET /tcfv2/43/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 02 Aug 2022 14:10:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
cache-control: max-age=172800
date: Mon, 05 Sep 2022 08:02:28 GMT
etag: W/"cdd513c37d4fc734e0fb03e5d9e813a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a3c65e8JrZo_2NRrKj9EOdkivk51ho6J0txgFdrUmCmduf40rFLXJA==
age: 136142
X-Firefox-Spdy: h2
|
|