| racaty.net/pj4ef5sy9o8j | 172.67.145.12 | 301 Moved Permanently | 0 B |
IP172.67.145.12:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pj4ef5sy9o8j HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Sep 2022 20:32:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 21:32:21 GMT
Location: https://racaty.net/pj4ef5sy9o8j
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ZNqyXs5oveTYhyXSR%2Foo2g2Xb3IHwD4QQ4qFXUFD0wOEi5UDLFxeZZrS%2Br%2BYOoUNpBLtTuYOAAo5qDYRs2zJ9CoiQTo5%2BR%2FmjrIV6pDP0%2ByMOv4X5s04J1E7bBa"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74edcf385ab4b515-OSL
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.36 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 20:14:02 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K3COgJXXCsnDci9Hne5S9dsl22tJfCWDqvRpq0_GzbA0F7vSjxcFnQ==
Age: 1099
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha26d0784548ecab22f417f3d689daf23 8893b79366bbadeb5c8d587b8f023e310694df1c 35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3255
Expires: Thu, 22 Sep 2022 21:26:37 GMT
Date: Thu, 22 Sep 2022 20:32:22 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 11WUzj9608r7B-4RcpKLpuncQm8p2woZ6MTQlzwka1lTuGLd9y-txQ==
age: 57428
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/css/style.min.css?v=3.7 | 104.21.73.133 | 200 OK | 24 kB |
URL HTTP/2racaty.net/racaty_new/css/style.min.css?v=3.7 IP104.21.73.133:0
File typeASCII text, with very long lines (65536), with no line terminators Hashaae44abca2e0d6b6f9b433a3f5ff10c5 84394ae7b3d01d2558a7150d63c517bf0f87ccbb 603c19fa0c4c862bac280f86fdf506a3127877455463247cd3690ff084fe0a32
GET /racaty_new/css/style.min.css?v=3.7 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"1c941-5c4c6339fcae7-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6653866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C1ZiNtfr1363%2F7wMjc%2BB7AgO1jA4YwwPAV3OIKb3wdVwH40Y6rBfHLlZws62SDphfIQYBng%2BuBRtn2IIPyWroYWcoR7Vg6RTQU1bBTvBdYqUSAGxHYIJJLIYX2Hg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3c09eab509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb9893dbb93b5cc3cb8637b496ecd3c1c 007b31caa727ce627f6ba81a3f43326a1538181e b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashedd6c63988b69a64a51433c3fd91b0ba a0a41a5403a2c397d70cfa267c1d6407250df043 c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash088fd54c49c3761d7537bd8ceadf8af4 c450a99446fadeaa81f2426367b7d200d11ef67d 9e171b74ae7c3f96a03cf14f423b05ab0ad7329844061b9200d81f6bc381a561
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5684
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:22 GMT
Last-Modified: Thu, 22 Sep 2022 18:57:38 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 | 142.250.74.163 | 200 OK | 13 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Hashb4a68b1e743ee317eaaf0bbadd131571 f24f7823d4e3830c7cfa5bcb33733d2897c00f13 ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://racaty.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:06:20 GMT
expires: Fri, 22 Sep 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 51962
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.36 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 20:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 22 Sep 2022 20:17:18 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fr1CMr6tsSAsEI5L0eTClN0UxYPkw4J8E-IMF1HqIZ-PT8g2cIyZlQ==
Age: 1740
|
|
| racaty.net/racaty_new/css/webfonts/fa-solid-900.woff2 | 104.21.73.133 | 200 OK | 118 kB |
URL HTTP/2racaty.net/racaty_new/css/webfonts/fa-solid-900.woff2 IP104.21.73.133:0
File typeWeb Open Font Format (Version 2), TrueType, length 117616, version 329.31064\012- data Size118 kB (117616 bytes) Hash00d3012700332144ce43a62a3b7ec4f1 49524191161f278c89e03476289f9c2e3415375d 47c58e41e2f38d9813c39b6641c96e12408522bf774779cb58973f67303875a7
GET /racaty_new/css/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://racaty.net/racaty_new/css/style.min.css?v=3.7
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: font/woff2
content-length: 117616
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: "1cb70-5c4c6339e211d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 4816
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5nF%2B56rOBuVRtG7H06eSb7lb%2BroCP34s1wfy4UxtHbsLFuDyU7%2BoPgj5IZeZOHI4y0XGQ3tuQqJYY0pdzU7eBoF9qAKh7gqhwxqiuOHPYxl85kibNY8n04%2Fv3hXe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74edcf3dacebb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2FofficialRacaty%2F&width=670&layout=button_count&action=like&size=small&share=true&height=46&appId | 157.240.200.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2FofficialRacaty%2F&width=670&layout=button_count&action=like&size=small&share=true&height=46&appId IP157.240.200.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2FofficialRacaty%2F&width=670&layout=button_count&action=like&size=small&share=true&height=46&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: aIYrbcmmFwCoeRkBcNiyNSHvI4W/VYg3hl6Zc2kb0mBYnXWOMuOJ+IQAPH5HX8s86sNs5e0b0HBv5hId0pzI4g==
content-length: 0
date: Thu, 22 Sep 2022 20:32:22 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4797d6fd00b4884a9a2bd74ed01e2d1d 8d5e48550c7eb8c2f81ab8c126d452257e4d98ed 4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 | 142.250.74.163 | 200 OK | 26 kB |
URL HTTP/2fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 25672, version 1.0\012- data Hashfe3e5be2baa0126122ba9367ebab73c8 40bec99106dfab5f3721ed725483eb618a9016cd 8b166007d6f54c33b3ea10ea23572bc3166f55f365840d3cbd6ef7b5dcf6674e
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://racaty.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:15:54 GMT
expires: Tue, 19 Sep 2023 21:15:54 GMT
cache-control: public, max-age=31536000
age: 256588
last-modified: Mon, 18 Jul 2022 19:12:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/css/webfonts/fa-brands-400.woff2 | 104.21.73.133 | 200 OK | 72 kB |
URL HTTP/2racaty.net/racaty_new/css/webfonts/fa-brands-400.woff2 IP104.21.73.133:0
File typeWeb Open Font Format (Version 2), TrueType, length 72124, version 329.31064\012- data Hash99f3121dc63babcf368cb6aee3b535f6 b9699e182c5f9a6fb2ef744f3089e3a7960fd4ca a3eb2d0caf3502359966882d146b1a75e34bf933cbdace1c286395ea3fd1f567
GET /racaty_new/css/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://racaty.net/racaty_new/css/style.min.css?v=3.7
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: font/woff2
content-length: 72124
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:51 GMT
etag: "119bc-5c4c6339bb403"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 4816
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V3RCpYCBiNcCzXUBCDB70UHCDOjKHDMIrdf5%2FlmWHMSw4NpWhT16uVtRK9JLYOVqUq%2BJfczMC6msqa3%2BCCOJ6IK3mZqah2Y0%2FZixpHc5K7f9YT2s8MDpL3Q9ZG8S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74edcf3e4dceb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js | 104.17.24.14 | 200 OK | 6.6 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (20831) Hash368c425fc94c424e1688caadefbed981 13d24c22c199ef6668d758434819f44307a65094 ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 686105
expires: Tue, 12 Sep 2023 20:32:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H4sc%2F%2FfgYjixXZyJejmOwVyR5Rtb5WMNYYKFGah9p1y61W8izuGIckhoSOsnhh6B8kDa5J1BfNI8dHKYJtbGc4WFBK7njfU8IVihWvrz27ds8rywV2VG4jRTpULr7AOJcvtbuIbG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74edcf3e7d78b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery-backstretch/2.0.3/jquery.backstretch.min.js | 104.17.24.14 | 200 OK | 1.5 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery-backstretch/2.0.3/jquery.backstretch.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (3909) Hash1767f41cedce70298bf986847f55dbba 307c8be6864bc709e03c3163156aa9e2195de5f5 eb24bf2d83e4b6159f9d0a1732cd66904e66dba2d4bd8544d3385638196b62f3
GET /ajax/libs/jquery-backstretch/2.0.3/jquery.backstretch.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 1478
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-fcf"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 6922091
expires: Tue, 12 Sep 2023 20:32:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hbywf55VhCbwV60dQDggGf8oXACMWMUTMjYzOJ5I21N8yVEMkt6OOoZ6gQhw%2BKGPGk373hCEDAlVHJabxN%2FF9Ti8h0JzNac9yJzXrjcJ73i7uCWgYOiOJ8UTj%2BlEKuaMmsocIU%2FJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74edcf3e8d90b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash088fd54c49c3761d7537bd8ceadf8af4 c450a99446fadeaa81f2426367b7d200d11ef67d 9e171b74ae7c3f96a03cf14f423b05ab0ad7329844061b9200d81f6bc381a561
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5684
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:22 GMT
Last-Modified: Thu, 22 Sep 2022 18:57:38 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js | 104.17.24.14 | 200 OK | 14 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (57791) Hashf7ec1f608a6644d182a2aef3308d3fc1 504609ff13eb3af8a2364b6753f73bc3ad3b4e1b 398376b9590200f385c71475b834492c281ce9cd34bc137a57f087e7a65bd7fb
GET /ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 13537
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-e2d8"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 14772739
expires: Tue, 12 Sep 2023 20:32:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VSTvgI41f%2BU7IAxcwZ4KwlJYVSHqaUO%2Fc3BlaoX89bRM2BATrT8LX7WPixidA8sOzNDD1AEbc21gayVoLfCL35%2FSPzz9OeE781h4VCwToX0wPKyUTjBiU2cJ85GEeQ9nDeC53eNx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74edcf3e8d8db50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.4/clipboard.min.js | 104.17.24.14 | 200 OK | 3.0 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.4/clipboard.min.js IP104.17.24.14:0
File typeUnicode text, UTF-8 text, with very long lines (10645) Hash3a22bcc6c05a8cbf8909ede597f5367d a230ada58d7db9020ceed9d993b5c9925c162c94 e13ba0e04c4706a07074d16b322d76631e957685ec6d5ca7c5c43e1e84ec87a1
GET /ajax/libs/clipboard.js/2.0.4/clipboard.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 2976
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e29-2a02"
last-modified: Mon, 04 May 2020 16:09:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1223463
expires: Tue, 12 Sep 2023 20:32:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=omwrKbX63en29vlSaMr2%2FWkDjvTKFzAL0SQMBHiqPKJtQZmXsY4gw8NWVlmEARPp3oi7ZZcennXf2qmJV9FYPQnCqqrY7UXPjCD6efw8UQhpxYN%2BLQ7DMq3A%2BopSwirBuoMMg8Lj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74edcf3e9d9eb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe3aad55b8213aaa6e382c55ec2b14cf c0affa437a54a940cf7f430327018f0e39fea954 7d7d1aaccb484a481bbc357a4fc6fe8900551be6b3917f37b14504c399ab49b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7D1AACCB484A481BBC357A4FC6FE8900551BE6B3917F37B14504C399AB49B5"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7391
Expires: Thu, 22 Sep 2022 22:35:33 GMT
Date: Thu, 22 Sep 2022 20:32:22 GMT
Connection: keep-alive
|
|
| cdn.fuseplatform.net/publift/tags/2/2053/fuse.js | 23.3.90.104 | 200 OK | 47 kB |
URL HTTP/2cdn.fuseplatform.net/publift/tags/2/2053/fuse.js IP23.3.90.104:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hashbd2da7705d65b4524eb157d54e65d770 10857d5757e358d08a08a62b79ba38cedeb7affc d38b3a3a04ad74c726a784c6499650200a641fd724bcf369efc25cc74f0b7e7e
GET /publift/tags/2/2053/fuse.js HTTP/1.1
Host: cdn.fuseplatform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "bd2da7705d65b4524eb157d54e65d770:1661488089.57241"
last-modified: Fri, 26 Aug 2022 04:28:09 GMT
server: AkamaiNetStorage
content-length: 46826
content-encoding: gzip
cache-control: max-age=1800
expires: Thu, 22 Sep 2022 21:02:22 GMT
date: Thu, 22 Sep 2022 20:32:22 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe3aad55b8213aaa6e382c55ec2b14cf c0affa437a54a940cf7f430327018f0e39fea954 7d7d1aaccb484a481bbc357a4fc6fe8900551be6b3917f37b14504c399ab49b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7D1AACCB484A481BBC357A4FC6FE8900551BE6B3917F37B14504C399AB49B5"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7391
Expires: Thu, 22 Sep 2022 22:35:33 GMT
Date: Thu, 22 Sep 2022 20:32:22 GMT
Connection: keep-alive
|
|
| louchees.net/tag.min.js | 139.45.197.236 | 200 OK | 23 kB |
IP139.45.197.236:0
File typeASCII text, with very long lines (65536), with no line terminators Hash5606099ee6b75d39d2a90dc883894028 1fbe0505ecb92927202708653ac3afbb12e7cddf 9c6b8ae6df5d95e61945b9208a3780ede0a0ae286d8200ea1e70bcdd24d9b265
GET /tag.min.js HTTP/1.1
Host: louchees.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: text/javascript; charset=utf-8
content-length: 22984
content-encoding: br
x-trace-id: 3d7daa370920391975fa8aa31cbdd039
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 08:55:35 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash86624f45fb3b7126dbe002f69c94dd86 30bcf274db5037122f989fb25dbf1e72c9ec417b 2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4652
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:22 GMT
Last-Modified: Thu, 22 Sep 2022 19:14:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9c0f0c54043eecab0f2e6a29aa554160 9f1244152256010709efadfbdb9cd415b279a26b 9d42f4f3d40785f153428139840eaed00faa07ada26d30da5e37ab8def8f36c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D42F4F3D40785F153428139840EAED00FAA07ADA26D30DA5E37AB8DEF8F36C7"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8592
Expires: Thu, 22 Sep 2022 22:55:35 GMT
Date: Thu, 22 Sep 2022 20:32:23 GMT
Connection: keep-alive
|
|
| louchees.net/apu.php?zoneid=3579972&oo=1 | 139.45.197.236 | 200 OK | 1.8 kB |
URL HTTP/2louchees.net/apu.php?zoneid=3579972&oo=1 IP139.45.197.236:0
Hash2c512509d726e32151d14687e0d35d73 bf8a2f7dbe266e3da4bbbaafd021dfd40b86949f 5a59e8027c38a921f5e94a4d43e647f802e28220ed67842daaa324c05c7cbe33
GET /apu.php?zoneid=3579972&oo=1 HTTP/1.1
Host: louchees.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/json
x-trace-id: 1268ee7d1c3203dfb75e0393adefabc1
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://racaty.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=54f631ca75de4f37867a12b9f399304d; expires=Fri, 22 Sep 2023 20:32:22 GMT; path=/; secure; SameSite=None
oaidts=1663878742; expires=Fri, 22 Sep 2023 20:32:22 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.fuseplatform.net/prebid/prebid-9cbcb6f4920c081422575671a6900740.js | 23.3.90.104 | 200 OK | 73 kB |
URL HTTP/2cdn.fuseplatform.net/prebid/prebid-9cbcb6f4920c081422575671a6900740.js IP23.3.90.104:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65423) Hash001f78b26e08c47a9eca8ceb14449936 3de12b0d828f274bb078a2e68c31da66f7c3d4af 5b6cd392225ca4e87e0f7f39709c84b707d5d082f5bc9bdb5eecc99456caf16f
GET /prebid/prebid-9cbcb6f4920c081422575671a6900740.js HTTP/1.1
Host: cdn.fuseplatform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "001f78b26e08c47a9eca8ceb14449936:1661488089.479447"
last-modified: Fri, 26 Aug 2022 04:28:09 GMT
server: AkamaiNetStorage
content-length: 73300
content-encoding: gzip
cache-control: max-age=86400000
expires: Wed, 18 Jun 2025 20:32:23 GMT
date: Thu, 22 Sep 2022 20:32:23 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn.fuseplatform.net/telemetry/noconsent?v=1&ttm=1663878742590&cookie=true&res=1280x1024&device=desktop&browser=firefox&fuuid=3236524f-5a04-5f7f-8273-c49179078a1d&fid=2053&pubid=5&url=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&sid=0db68ad2909ca5c590ce&srate=100&adserver=gpt&etm=1400&e=fuse-load | 23.3.90.104 | 200 OK | 1 B |
URL HTTP/2cdn.fuseplatform.net/telemetry/noconsent?v=1&ttm=1663878742590&cookie=true&res=1280x1024&device=desktop&browser=firefox&fuuid=3236524f-5a04-5f7f-8273-c49179078a1d&fid=2053&pubid=5&url=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&sid=0db68ad2909ca5c590ce&srate=100&adserver=gpt&etm=1400&e=fuse-load IP23.3.90.104:0 ASN#20940 Akamai International B.V.
File typevery short file (no magic) Hash9dd4e461268c8034f5c8564e155c67a6 11f6ad8ec52a2984abaafd7c3b516503785c2072 2d711642b726b04401627ca9fbac32f5c8530fb1903cc4db02258717921a4881
GET /telemetry/noconsent?v=1&ttm=1663878742590&cookie=true&res=1280x1024&device=desktop&browser=firefox&fuuid=3236524f-5a04-5f7f-8273-c49179078a1d&fid=2053&pubid=5&url=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&sid=0db68ad2909ca5c590ce&srate=100&adserver=gpt&etm=1400&e=fuse-load HTTP/1.1
Host: cdn.fuseplatform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 1
content-type: text/plain
etag: "9dd4e461268c8034f5c8564e155c67a6:1660131111.248793"
last-modified: Wed, 10 Aug 2022 11:31:51 GMT
server: AkamaiNetStorage
cache-control: max-age=1800
expires: Thu, 22 Sep 2022 21:02:23 GMT
date: Thu, 22 Sep 2022 20:32:23 GMT
access-control-allow-origin: https://racaty.net
vary: Origin
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/gid.js?userId=54f631ca75de4f37867a12b9f399304d | 139.45.195.8 | 200 OK | 65 B |
URL HTTP/2my.rtmark.net/gid.js?userId=54f631ca75de4f37867a12b9f399304d IP139.45.195.8:0
File typeJSON data\012- , ASCII text Hash41c2a91a3509ba79dd9eb1977ee5c4c8 0d9b3de947deaa544559b120a09d8ed6b2710587 678447292222b0fde33ca9a83df6c3fbc70efe9a7cf4702904032f647b6a5665
GET /gid.js?userId=54f631ca75de4f37867a12b9f399304d HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=54f631ca75de4f37867a12b9f399304d; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/img/onehund.min.png | 104.21.73.133 | 200 OK | 5.2 kB |
URL HTTP/2racaty.net/racaty_new/img/onehund.min.png IP104.21.73.133:0
File typePNG image data, 120 x 120, 8-bit colormap, non-interlaced\012- data Hash2b9c5e47854563c5c27844b7b2a901c0 4e7fce7539c5909141323dd24f161d5a8ff0ddea 7be6dae2f1041a8f692d13a0886bcab04ad8d88c8ac87b103428a933328a710f
GET /racaty_new/img/onehund.min.png HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:51 GMT
etag: W/"144c-5c4c633965ccd-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6653866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gpWxn%2BoGiSj4RFJ4OtYIQHpg1j3KYHyGlDrkBo0s2%2B9bYArWtp3j8uOWN7nOtYp4Ii1sMpvb%2BZ0mXFTbK1yCH029jc6T4YpR3435O3ETdiC41le3u9t%2B8VTEGgyB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3c1a41b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/js/main.js | 104.21.73.133 | 200 OK | 82 kB |
URL HTTP/2racaty.net/racaty_new/js/main.js IP104.21.73.133:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Hash93f3f3df9ccaa4ac2f5ce18deadaeb2d 5af12b32db50b4aa10976af9a5f84bb1afd0bd90 58b7e44e8125e02fff070600b3e0c0ff16ad24a78ab586a3666c12ad713e4926
GET /racaty_new/js/main.js HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=99128
etag: W/"18338-5c4c633a6d3b7-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 6653864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6HfxkATT5kt7roIPwxEpFoOFVl%2BiB%2Bdy7tsbRs8WmzJ8jVnhfyJ2uXACrV11p5Ix0828AhP0qV154lhlmasUx15l8lsCR%2BL45zuRZoHsS2xep%2BNlI1RFwt0h8Dmf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3d9cdcb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/img/background50273.jpg?v=0.045950382641582355 | 104.21.73.133 | 200 OK | 480 kB |
URL HTTP/2racaty.net/img/background50273.jpg?v=0.045950382641582355 IP104.21.73.133:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 4096x2160, components 3\012- data Size480 kB (480466 bytes) Hash2fffd16f51b18b2046fae6dda46f75b0 7497a224eaf53e44a469ff9f6ccb6874bb21c48a 957c0bf486d2c47a33738ce4c2219e7216a77e51ad43724b9804774b95deb3cf
GET /img/background50273.jpg?v=0.045950382641582355 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english; bacookk=0.08045734638378177; bgStrech=0.045950382641582355
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: image/jpeg
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:46 GMT
etag: W/"711c2-5c4c6334d1a95-gzip"
cache-control: max-age=31536000
expires: Fri, 22 Sep 2023 20:32:23 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TeYj2r%2Bp3gCXoexTqnFg8%2BNgSm8Ka1b1lBIfaAWcT%2BicYn2bAL0mzO2jXZWuMLbqaqmeCVbtwvIwPAWtGbADSrgKYbFjaLz4E%2F0BFg9mNw%2B6rKHaZzjkaJrZqYUc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf400884b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe6561e23e9d181a4b18c7174cb89a590 221a300522f62c4bde7dd23420609a12ae3bd5b6 a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| securepubads.g.doubleclick.net/tag/js/gpt.js | 216.58.207.194 | 200 OK | 28 kB |
URL HTTP/2securepubads.g.doubleclick.net/tag/js/gpt.js IP216.58.207.194:0
File typeASCII text, with very long lines (45119) Hash5426fc3baa144fe735d8b34aacdb0429 34de11982c88dc815f33fa44c3699feee948e79d 9821b089567eb20337e63519f39fd4f5e2c243950ba498af7ac598933d316822
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27809
date: Thu, 22 Sep 2022 20:32:23 GMT
expires: Thu, 22 Sep 2022 20:32:23 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1342 / 388 of 1000 / last-modified: 1663845016"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash375756444a8871bbe816165e294fb262 2f9e18473daa3daae633a4df448a2230e77f8c33 c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe6561e23e9d181a4b18c7174cb89a590 221a300522f62c4bde7dd23420609a12ae3bd5b6 a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tovanillitechan.com/42/38?z=3976876 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/42/38?z=3976876 IP139.45.197.239:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /42/38?z=3976876 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=2c068b45e3424253876a9facef9a0b4c; oaidts=1663878743
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: dbb9cbc9e41d774e8e6d088202010618
access-control-expose-headers: X-Sc
set-cookie: OAID=2c068b45e3424253876a9facef9a0b4c; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
oaidts=1663878743; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=54f631ca75de4f37867a12b9f399304d | 139.45.197.239 | 204 No Content | 0 B |
URL HTTP/2tovanillitechan.com/9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=54f631ca75de4f37867a12b9f399304d IP139.45.197.239:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
OPTIONS /9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=54f631ca75de4f37867a12b9f399304d HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://racaty.net/
Origin: https://racaty.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/11?rnd=904036515&z=3976876&b=14566424&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=ZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU&ruid=ef275c88-123f-44e5-8bba-369ed10db051&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ot=80 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/11?rnd=904036515&z=3976876&b=14566424&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=ZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU&ruid=ef275c88-123f-44e5-8bba-369ed10db051&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ot=80 IP139.45.197.239:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /11?rnd=904036515&z=3976876&b=14566424&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=ZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU&ruid=ef275c88-123f-44e5-8bba-369ed10db051&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ot=80 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=54f631ca75de4f37867a12b9f399304d; oaidts=1663878743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 8ccd9773742f31540f4ea2cc2ab415e1
access-control-expose-headers: X-Sc
set-cookie: OAID=54f631ca75de4f37867a12b9f399304d; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
oaidts=1663878743; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash27918a7a61d7c4d90d66e4c783ab1d79 06b3c212199defca730b6d8ba852ed8ff891d527 a51c385c0e195e72f489954cdae59b4cdd869a63f366088e50a4e7513838953a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A51C385C0E195E72F489954CDAE59B4CDD869A63F366088E50A4E7513838953A"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8793
Expires: Thu, 22 Sep 2022 22:58:57 GMT
Date: Thu, 22 Sep 2022 20:32:24 GMT
Connection: keep-alive
|
|
| btloader.com/tag?h=publift-com&upapi=true | 104.26.7.139 | 200 OK | 49 kB |
URL HTTP/2btloader.com/tag?h=publift-com&upapi=true IP104.26.7.139:0
File typeASCII text, with very long lines (65536), with no line terminators Hash1f5062e7fd77e99d7836d95437811ead fb34ecdd19e6d6191967d8a84e2d5b6d5de01a60 c543bb1f389a2442d1726f0c454c5bafe8406d7c88eea1780854761be1fb8119
GET /tag?h=publift-com&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://racaty.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: application/javascript
cache-control: public, max-age=300, must-revalidate, stale-if-error=86400
etag: W/"2bc26b2ff44ac557d82cce90e9899b8f"
last-modified: Thu, 22 Sep 2022 20:32:02 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=up%2FGfqPTZsW5liizx%2FDNO0v9lG%2BPSAAQkyaSwH%2Bocl5YYS8nV3beEIHhbwwYM2O5qIqhUwVW5Z3SZ7UoDb9BUrDFXCdtZqIBOsD0bxdOUn%2FG6TZRTEBr5SEXhpCMPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf460f42b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ad-delivery.net/px.gif?ch=1&e=0.23663641637318855 | 104.26.2.70 | 200 OK | 43 B |
URL HTTP/2ad-delivery.net/px.gif?ch=1&e=0.23663641637318855 IP104.26.2.70:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.23663641637318855 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdt6VCtqtIBnBTdsF1vvDPQfLazGd9ibEd203R5L043lLiuyTx5erfdDBO4fPOmvTjQfhaq1ovVTvyGIn5JVehsmeQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sun, 04 Sep 2022 17:35:10 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 1566068
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PzIcbtpjamnUVdJXr5WWdZdkbttVbfKSDcFKcA%2BGNAjBy6feLQLnaU4GebGb3s9ROkI3rVC9MvqdbUTJsogl7Mmu29CRUIMWbOU47cN7TQ8b5F%2BlcWXbf06quYMiRwXdCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74edcf46ce30b4f7-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash5af22e39b225120461ea5dc341b14321 38a609c3fa222ded0cfe61ff6ed446561f92d10d ba3362176a7e67ea61abf9de1e8104df80614b02ce23ab7ab0ab75480b65fd38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 | 216.58.207.198 | 200 OK | 104 B |
URL HTTP/2ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 IP216.58.207.198:0
File typeMS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data Hash32ac8a9b81788b981a3a7e13c14082d4 fbfd48a2bfe8d4247a975176f88d18c3c2ad1952 00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 19:35:30 GMT
expires: Fri, 23 Sep 2022 19:35:30 GMT
cache-control: public, max-age=86400
age: 3414
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashd188a626af91c6a4befc510450fe80e2 b9fc12bd6da3b1c6580d9f3d3261b48e1d02ac71 429c4e9d31698b99d1d521e9fca1035cc7811fd977c6207b9f3f95be2100e1e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1d4/vfctweU0iRw | 142.250.74.3 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/vfctweU0iRw IP142.250.74.3:0
Hash0374098359286446ebb5765b2e435866 5f62d99e21111ff06f11c0d235095dda1a852d05 456767f9f4b68dfa6bd3d0c1b6e0183ebf2f5922bfc9133f6751699662d3f3f1
POST /s/gts1d4/vfctweU0iRw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:24 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22PRrmquD1Ggcb1%22%2C%22domain%22%3A%22racaty.net%22%2C%22publisher%22%3A%22Racaty%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.44%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22ObPxgSi0LmbV56wSSMefHA%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1663878743594%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-gyz045kl878wfznwjh4w%22%7D | 18.196.221.202 | 200 OK | 2 B |
URL HTTP/2audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22PRrmquD1Ggcb1%22%2C%22domain%22%3A%22racaty.net%22%2C%22publisher%22%3A%22Racaty%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.44%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22ObPxgSi0LmbV56wSSMefHA%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1663878743594%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-gyz045kl878wfznwjh4w%22%7D IP18.196.221.202:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%22PRrmquD1Ggcb1%22%2C%22domain%22%3A%22racaty.net%22%2C%22publisher%22%3A%22Racaty%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.44%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22ObPxgSi0LmbV56wSSMefHA%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1663878743594%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-gyz045kl878wfznwjh4w%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| interstitial-07.com/contents/s/59/18/87/696d730a6449b8b7387d630f8c/01605255030712.jpeg | 139.45.197.151 | 200 OK | 19 kB |
URL HTTP/2interstitial-07.com/contents/s/59/18/87/696d730a6449b8b7387d630f8c/01605255030712.jpeg IP139.45.197.151:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data Hash591887696d730a6449b8b7387d630f8c 6d3270da32d09e8456956eb63a22f4ddb8c7d1d1 bc664179d3ed921f7a6c959a125faf1cb25a03de68f0b19adf80c92560d0bae4
GET /contents/s/59/18/87/696d730a6449b8b7387d630f8c/01605255030712.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D190975630%26z%3D3976876%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU%26bag%3DrECJmtGDoFy5o1Vh6XUGUA%3D%3D%26ruid%3Def275c88-123f-44e5-8bba-369ed10db051%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fracaty.net%252Fpj4ef5sy9o8j%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D4%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: image/jpeg
content-length: 19158
last-modified: Tue, 10 May 2022 15:13:46 GMT
etag: "627a812a-4ad6"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9463b1f0125af203001a38504f3ecde3 e2a61097a93df97ef2546234045507012ca04894 36142e26a36e94bc09bc55099f31b71b94cd924972fd46c97869c394e95921b8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36142E26A36E94BC09BC55099F31B71B94CD924972FD46C97869C394E95921B8"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3594
Expires: Thu, 22 Sep 2022 21:32:18 GMT
Date: Thu, 22 Sep 2022 20:32:24 GMT
Connection: keep-alive
|
|
| interstitial-07.com/contents/s/82/c2/98/967e4b350bb719ede4040f63f0/0955806248559.jpeg | 139.45.197.151 | 200 OK | 32 kB |
URL HTTP/2interstitial-07.com/contents/s/82/c2/98/967e4b350bb719ede4040f63f0/0955806248559.jpeg IP139.45.197.151:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data Hash82c298967e4b350bb719ede4040f63f0 0a3678abbe2a94cb22f899adb63f857a129932d5 6ab4ac6861339a2383b43b01bfde795b1879792329b3121be0f332a96cd01f8e
GET /contents/s/82/c2/98/967e4b350bb719ede4040f63f0/0955806248559.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=p8NYtlbFpV62T4w&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D190975630%26z%3D3976876%26b%3D14566424%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU%26bag%3DrECJmtGDoFy5o1Vh6XUGUA%3D%3D%26ruid%3Def275c88-123f-44e5-8bba-369ed10db051%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fracaty.net%252Fpj4ef5sy9o8j%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D4%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: image/jpeg
content-length: 32256
last-modified: Tue, 10 May 2022 15:13:44 GMT
etag: "627a8128-7e00"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| api.btloader.com/pv?tid=pF4qn1BQ&w=4828219382431744&o=5708166709903360&cv=2.0.10-11-g48983ca&r=false&vr=1280x939&pageURL=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&upapi=true | 130.211.23.194 | 204 No Content | 0 B |
URL HTTP/2api.btloader.com/pv?tid=pF4qn1BQ&w=4828219382431744&o=5708166709903360&cv=2.0.10-11-g48983ca&r=false&vr=1280x939&pageURL=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&upapi=true IP130.211.23.194:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=pF4qn1BQ&w=4828219382431744&o=5708166709903360&cv=2.0.10-11-g48983ca&r=false&vr=1280x939&pageURL=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Thu, 22 Sep 2022 20:32:24 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| unphionetor.com/fv.js?t=72747&cb=1337404458 | 139.45.197.236 | 200 OK | 2.2 kB |
URL HTTP/2unphionetor.com/fv.js?t=72747&cb=1337404458 IP139.45.197.236:0
File typeASCII text, with very long lines (5213), with no line terminators Hash0254fb1dad74628b7ad0f97d304fac92 35f7af13a08eb87023ec7df4d3c35c21b2cde79d 47fb6ce428ca80ea69b772e4f66e4e5c622a4005db601746033d04511bd27536
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /fv.js?t=72747&cb=1337404458 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: c661b33d342aa762e6e4ae4ad6dcb8ce
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/vfctweU0iRw | 142.250.74.3 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/vfctweU0iRw IP142.250.74.3:0
Hash0374098359286446ebb5765b2e435866 5f62d99e21111ff06f11c0d235095dda1a852d05 456767f9f4b68dfa6bd3d0c1b6e0183ebf2f5922bfc9133f6751699662d3f3f1
POST /s/gts1d4/vfctweU0iRw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 20:32:24 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tovanillitechan.com/11?rnd=904036515&z=3976876&b=14566424&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=ZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU&ruid=ef275c88-123f-44e5-8bba-369ed10db051&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/11?rnd=904036515&z=3976876&b=14566424&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=ZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU&ruid=ef275c88-123f-44e5-8bba-369ed10db051&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 IP139.45.197.239:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /11?rnd=904036515&z=3976876&b=14566424&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=ZvzrPE4EHPcguj96lzQg0Q37OddgyPrDHapm0IRnrdt0xH-WDFTj41d8O7tjzs9rOTcmfpWEztOfULpGk82fPtESK9wkhnhu7LfymQbXNyzUWnIfHe3EY8Ke2COAwr2Dw4XRzobR2GG0D3c6IheX-mv8YCuGqqpaVw1geRYWBYifWvhV4IA7eDMqnCMRDWgwZfD_AIrvyvKiKp8ldqOCa1vyfKXdys5C_X7I4GTvuHbFD5zsJZWerSfBtkaU40p8AhsvJz3fKbeV2MUMJ9HLupztZjsYrSguAo73iKJLaE930hwkdSg8TiloR6EI6KU4HrcMQ1lGlNS9uaijrsgm4FcD8eoEWO4rlisqB2LFfiKxIL2Y-K9luUEolcWdT83BeESYEM8dMF3xsiOOX_Vjz8fIXfyfTv_t5vzSG40bD8KVEsQfMgSb46QhtCusNHlOO8aLzfrnOGLGfSimAj3v7juHlMeLzMJF38kny49f2sKHwKoyJbJqoVevC5oVrxMzJcAvgqfb_1dqA6BcikGbJTsZmwKumm9vakaaEzASBkuoX4HwtQYdRwQZqK7DWIkBC46InI6slw-3_5cB6VQ2RlBrFId-AZgPYkPTtR2VchN6t6-rIWhc7a-hZYbqeB4s_hBYgzRpXOpccRmU&ruid=ef275c88-123f-44e5-8bba-369ed10db051&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=54f631ca75de4f37867a12b9f399304d; oaidts=1663878743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:24 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: dc35e1bb6add5c9bbe580731d141f015
access-control-expose-headers: X-Sc
set-cookie: OAID=54f631ca75de4f37867a12b9f399304d; expires=Fri, 22 Sep 2023 20:32:24 GMT; secure; SameSite=None
oaidts=1663878743; expires=Fri, 22 Sep 2023 20:32:24 GMT; secure; SameSite=None
oaidvc=1; expires=Fri, 22 Sep 2023 20:32:24 GMT; secure; SameSite=None
CNT=1_v1_GETeAAEAAAA5SyB9; expires=Thu, 22 Sep 2022 21:32:24 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined | 139.45.197.236 | 204 No Content | 0 B |
URL HTTP/2unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined IP139.45.197.236:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 22 Sep 2022 20:32:24 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: a280b8c91ffb4a2d8c8c3fb70eaef0ee
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8ebb267e443b81854ef9a01b3eb6489d b932e9e5679da5a9160da5429458041765509b52 4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6069
Expires: Thu, 22 Sep 2022 22:13:33 GMT
Date: Thu, 22 Sep 2022 20:32:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8ebb267e443b81854ef9a01b3eb6489d b932e9e5679da5a9160da5429458041765509b52 4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6069
Expires: Thu, 22 Sep 2022 22:13:33 GMT
Date: Thu, 22 Sep 2022 20:32:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8ebb267e443b81854ef9a01b3eb6489d b932e9e5679da5a9160da5429458041765509b52 4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6069
Expires: Thu, 22 Sep 2022 22:13:33 GMT
Date: Thu, 22 Sep 2022 20:32:24 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashda8b8819fc21dcfb224ce0e7ecdc6772 e460ad4376cd118a6fe8b6b050af9398117d9531 9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: bfdfb11f-7ec5-460b-8759-41033451e2a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1ueDEUOIAMFq5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bc459-6f8ebea8143c58f652dc61e8;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 02:11:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ln0EYmIyTWExYNLVEv-ZYhdCAYVju_Wu2S-_p5GfD_Kev99yrKwRcg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 18:56:48 GMT
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
age: 5736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc0201d377c57a684452c0d26372e674d 3829f81048cc63b5f0d1e82dfbe3b8e31646e733 efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: c5a03ce8-f695-4ad3-8c42-c3bfd47d6279
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1wLGqKIAMF-Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329699a-2b130d8b1a4b1b9131db8984;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:19:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: itH-GLLUay6dtfjGStUDeT3wOwVf-S3tWSY31HjriEFaRUiD8aFKNw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 17:06:02 GMT
age: 12382
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash62818de3c50f957b2e5680851a1768c9 80e48c9ae48c89598780736b089c98e22d58df9a 16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e5m6NaDUH_3GPDkxbk6iKhffSJzyYMA97Illy7mtg9um3jcYBR6TXQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:11:23 GMT
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
age: 80461
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaf5773255351157d72c28a670a355c60 c803e5866edbe6c9baec14e93677f610bdf09bff 3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -3bQG5Av1EDxj7_3i8MktwjlPSEU8WDdxt5M6TsrWaodLWgSf3vdEA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 82682
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9becda6e892a190dbbc63216ae697506 ba3369e1827d8f01ca10acb8648195847dd02ffd d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:16:03 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 80181
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash91c56f0b9810bfdd84e10a626b89e389 15d83e44d568938b6c9c87201e898cedb3edec0a 942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hp-WIGb9M8tEmNGOVjx6UQKx9E4-1oJmka0a6seG7inahqYByPmRAg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 82682
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=54f631ca75de4f37867a12b9f399304d | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=54f631ca75de4f37867a12b9f399304d IP139.45.197.239:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /9?z=3976876&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fracaty.net%2Fpj4ef5sy9o8j&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=4&sah=1002&drf=&hil=1&ist=0&oaid=54f631ca75de4f37867a12b9f399304d HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 257
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=2c068b45e3424253876a9facef9a0b4c; oaidts=1663878743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://racaty.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4605fc1a9b6d7e3e02c1fee7211f6881
access-control-expose-headers: X-Sc
set-cookie: OAID=54f631ca75de4f37867a12b9f399304d; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
oaidts=1663878743; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json | 143.204.55.17 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json IP143.204.55.17:0
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Thu, 22 Sep 2022 03:00:38 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 22 Sep 2022 03:00:34 GMT
etag: W/"e8f6486cbdf11a60d420ee29ef2df850"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w3O0VLKlC-yCtoHWtR-rxuxY7jPUZX0zEAU0xZSsDl3g0_AvTlrOPw==
age: 63107
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/js/scriptglobal.min.js?v=3 | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/racaty_new/js/scriptglobal.min.js?v=3 IP104.21.73.133:0
GET /racaty_new/js/scriptglobal.min.js?v=3 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"1fdf9-5c4c633a61836-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:37 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6653865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzSr1utRQhxK%2BnVtMwgKtV4N4smCOdwL7UcILFkA7AGleivbjXeqaG26PP9E1W1BOsiri5L4ZBra4mHJVTp0NRlJ4njmNVUoXjvm9B7njJ3CC7zbfd%2Fwpe09VNkb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3d8cceb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1663876800 | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1663876800 IP104.21.73.133:0
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1663876800 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript; charset=UTF-8
x-control-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3qVQ9aPQcQIDIuEw9C9nSUpTdyxLXLuQ0WE50FrZoiLglCpAnh0KnT85JLrVd8z%2B0e0nc7WhV5HTZ9U1nlUTtJTjW6WoeO0pLFXfgVFepvvXoHgg6g%2F0HU2obBat"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3e7e15b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/1?z=3976876 | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/1?z=3976876 IP139.45.197.239:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /1?z=3976876 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 8041a4827894e2b4aabd8ac8450c8d05
access-control-expose-headers: X-Sc
x-sc: qVBZrxj_igsFz9ltfvSUdRc1f5xg551nHvNCE1nyt_708yY1T4UrpIY74ZGe6RbEZ64dBvV6TLV0eGXEjCbEiCZf7B0=
set-cookie: scm=1; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
OAID=2c068b45e3424253876a9facef9a0b4c; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
oaidts=1663878743; expires=Fri, 22 Sep 2023 20:32:23 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| tovanillitechan.com/27/b7bd02994a2771796f8a835cfb750d4b | 139.45.197.239 | 200 OK | 0 B |
URL HTTP/2tovanillitechan.com/27/b7bd02994a2771796f8a835cfb750d4b IP139.45.197.239:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /27/b7bd02994a2771796f8a835cfb750d4b HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Cookie: scm=1; OAID=2c068b45e3424253876a9facef9a0b4c; oaidts=1663878743
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 22 Sep 2022 08:42:06 GMT
expires: Thu, 22 Oct 2082 08:42:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/tcfv2/cmp2.js?referer=racaty.net | 143.204.55.17 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/tcfv2/cmp2.js?referer=racaty.net IP143.204.55.17:0
GET /tcfv2/cmp2.js?referer=racaty.net HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Wed, 14 Sep 2022 18:13:49 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
date: Thu, 22 Sep 2022 20:32:09 GMT
cache-control: max-age=3600
etag: W/"6d50b90bdafc3d438c55bd915fd5301d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hcTx5L4VtoJHHc2doAEgIB2SWrXeDnZl65RvNZBVu3dPuxq4qUL6_A==
age: 16
X-Firefox-Spdy: h2
|
|
| test.cmp.quantcast.com/GVL-v2/cmp-list.json | 143.204.55.116 | 200 OK | 0 B |
URL HTTP/2test.cmp.quantcast.com/GVL-v2/cmp-list.json IP143.204.55.116:0
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Thu, 22 Sep 2022 03:00:44 GMT
last-modified: Fri, 16 Sep 2022 19:52:29 GMT
etag: W/"50fb7062a6b6a4e6efde705408cf32f0"
x-amz-server-side-encryption: AES256
x-amz-version-id: oUUwrY_6WJ4t3DAGrQVvhBXnrJz9w1fe
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3y9ZaqKR9KHr1rx0HPD1lfLuVGCObDCBkd1fMWR8fU2bbGP_gMPFTw==
age: 63100
X-Firefox-Spdy: h2
|
|
| racaty.net/cdn-cgi/challenge-platform/h/b/cv/result/74edcf3a6f78b509 | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/cdn-cgi/challenge-platform/h/b/cv/result/74edcf3a6f78b509 IP104.21.73.133:0
POST /cdn-cgi/challenge-platform/h/b/cv/result/74edcf3a6f78b509 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12326
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english; bacookk=0.08045734638378177; bgStrech=0.045950382641582355
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:23 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=gsNp7URVThzsOlQfkg7FUgzFaMTJbBccMNja_9P5k6E-1663878743-0-ASrPvs2d8UcbpYQ1SoX83Intjt3R+qD+PXsW+P96dUzWO4uDbKvGqvQgRLf3UVC4GFIL/pF1gyguNgNoeih1PUO+dkNOJKqDSLQ/W1qGnJK/cULh1iAJEJTJ//gw7KnClg==; path=/; expires=Thu, 22-Sep-22 21:02:23 GMT; domain=.racaty.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v31ZFfNwPVnfbKxTUT3nHLMEC%2BK6HgePSENZYzd7xtdc2mrvbKSvKocWkj81QcAPCThA5nUt8TsHMgO%2BoWnHwbDAEgjvy5mTD1OTgJ%2FmrhNCbWGiNcGdZVv9%2BLmf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf42dc42b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 | 143.204.55.17 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 IP143.204.55.17:0
GET /choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://racaty.net
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: https://racaty.net
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
last-modified: Fri, 15 Jul 2022 05:36:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Thu, 22 Sep 2022 20:32:23 GMT
cache-control: max-age=900
etag: W/"60d0e832d190fcb1615d3bb7e47dbf28"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Lamh5hqMw_XL1MH-qHJ8ifHe-8JFpKuhBKwraoAu-74XnAKIeUgt1g==
age: 16
X-Firefox-Spdy: h2
|
|
| racaty.net/rcty/favs/favicon-194x194.png?v=algwbxEnAR | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/rcty/favs/favicon-194x194.png?v=algwbxEnAR IP104.21.73.133:0
GET /rcty/favs/favicon-194x194.png?v=algwbxEnAR HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:46 GMT
etag: W/"e85-5c4c633464875-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:33:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6652726
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hy56m%2BT27EA2Z6zT50Z0z5C%2FWt5TT1rR0frEhKpvWHy1f%2FhQ3HAqoEAaogSkzh3AbZH8NRwWlt3fPZrJPV%2Be5MLp0%2Bc3%2BXxFrh5zmSsxgj%2BaviT8Qx0%2FPLDF4gEr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3f6f64b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| publift-com.videoplayerhub.com/galleryplayer.js | 104.26.9.50 | 301 Moved Permanently | 0 B |
URL HTTP/2publift-com.videoplayerhub.com/galleryplayer.js IP104.26.9.50:0
GET /galleryplayer.js HTTP/1.1
Host: publift-com.videoplayerhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 22 Sep 2022 20:32:23 GMT
location: https://btloader.com/tag?h=publift-com&upapi=true
cache-control: max-age=3600
expires: Thu, 22 Sep 2022 21:32:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zJsJuWvMKdKn7QAUx953SJNyh8eLk0Q6%2BGGkKD2nkCfU0ztYhTfTL2gIj2L0GDvofrH7V5RoqzDiZdCX0mV1HJ75Jr%2FZgU0%2FFITa%2BS%2BJOM4V5sKk93trlMDxRqVC3s6HQDf4PDMEZAakR4Ugg3oEdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74edcf45c8f4b509-OSL
X-Firefox-Spdy: h2
|
|
| racaty.net/racatyph.svg | 104.21.73.133 | 200 OK | 0 B |
IP104.21.73.133:0
GET /racatyph.svg HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: image/svg+xml
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
etag: W/"bef-5c4c633ab0dc4-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:14:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6653866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s3c3BSzZJkPYpzPh9Bo2or65POe579pDwRAa6m5d80rrFqbiPT4cj0Xl2ZfU8jdjoNURRlvhZXX34ANy%2BlmmIps06ON78xxBLm7Mq2NxKm%2F7ejfuDKnZ%2F%2Fx0QxJo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3c1a43b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/r_dep.js?v=1.5 | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/r_dep.js?v=1.5 IP104.21.73.133:0
GET /r_dep.js?v=1.5 HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=2297
etag: W/"8f9-5c4c633751908-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:49 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 6653864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8SswryjAs7bzE0TXg76tLN4SVGDBQQ%2B%2F8Qb2ejTuP1w13vYHnHydt0E8mZ8xEH1Pm9u%2FJHbAYG6%2BwHWGCexOrQMbObx%2Fvaz6XlzmfYgb%2FqjVOzl8nMAwuZBEvsfl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3d9cd9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 | 143.204.55.17 | 200 OK | 0 B |
URL HTTP/2cmp.quantcast.com/choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 IP143.204.55.17:0
GET /choice/PRrmquD1Ggcb1/racaty.net/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 05:36:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Thu, 22 Sep 2022 20:32:23 GMT
cache-control: max-age=900
etag: W/"60d0e832d190fcb1615d3bb7e47dbf28"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tOJd2CfjTOVUN3yrC3Rb02nj99KfX4P0tr03R4vd1e3ECEqTdlYymQ==
age: 16
X-Firefox-Spdy: h2
|
|
| racaty.net/rcty/favs/favicon-16x16.png?v=algwbxEnAR | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/rcty/favs/favicon-16x16.png?v=algwbxEnAR IP104.21.73.133:0
GET /rcty/favs/favicon-16x16.png?v=algwbxEnAR HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
last-modified: Tue, 15 Jun 2021 04:13:46 GMT
etag: W/"2ff-5c4c63345e2e5-gzip"
cache-control: max-age=31536000
expires: Fri, 07 Jul 2023 20:33:36 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6652726
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8uPU2ymXlzlLMzzEbhvxQtDK5eKRxSfl7yDfYtI5hlgERb%2FHBh4Y%2Bi4JM%2BGRG8wPFDaWekOCh3es1On29gkQlZRI%2Fz8gIsEYmxzlKKMqgnByG%2BikTKJuSaLu2PK8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3f6f6bb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/pj4ef5sy9o8j | 104.21.73.133 | 200 OK | 0 B |
IP104.21.73.133:0
GET /pj4ef5sy9o8j HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=0;includeSubDomains;
expires: Wed, 21 Sep 2022 20:32:22 GMT
set-cookie: aff=50273; domain=.racaty.net; path=/; expires=Thu, 06-Oct-2022 20:32:22 GMT
lang=english; domain=.racaty.net; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qL2IRzl39uE%2FuPKQ6peX%2BTswLIv8RCA0KxYeIDCUBffA1H%2BXNe9jVh6ObOQGx3wIJI20qJ2nHhK%2F93DJRuKBIhOsWwDRTDTayck4lRAKsuB4brgg5pCGcdfyg%2F7f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3a6f78b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP104.21.73.133:0
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 14:16:51 GMT
etag: W/"6329cb53-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VTAghYvAQDxBxfDGV61f0%2FSAGOs19OuH6gLomyI5XUkhI97t%2BFlqYDCMrqCy4tp%2BMV0bIOH7SaXNJbK5bzyGhB1XG12uz6UU264R%2BzlxCR4UgQmzhpV7%2B2coiSKj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74edcf3c7b32b509-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 24 Sep 2022 20:32:22 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Montserrat|Quicksand:400,500,700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Montserrat|Quicksand:400,500,700&display=swap IP142.250.74.10:0
GET /css?family=Montserrat|Quicksand:400,500,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 20:32:22 GMT
date: Thu, 22 Sep 2022 20:32:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| racaty.net/racaty_new/js/countdown.js?rand=dfgf1g | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/racaty_new/js/countdown.js?rand=dfgf1g IP104.21.73.133:0
GET /racaty_new/js/countdown.js?rand=dfgf1g HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=675
etag: W/"2a3-5c4c633a875b1-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:52 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 6653864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3YSkVW9kve60gSpgMiwDm0mBOIrBllM2Rcw%2BknzKyZIT%2FLn4to8nf5yCIguNCF1O9fzkEHG%2F37RONfh5q5NdNygs%2F2yTAZkcH9YsvUuVKPrtalN6gILmivpG2Kdd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3d8cd1b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| racaty.net/js/ctooltip.js | 104.21.73.133 | 200 OK | 0 B |
URL HTTP/2racaty.net/js/ctooltip.js IP104.21.73.133:0
GET /js/ctooltip.js HTTP/1.1
Host: racaty.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://racaty.net/pj4ef5sy9o8j
Cookie: aff=50273; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 20:32:22 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=1738
etag: W/"6ca-5c4c633ae45ff-gzip"
expires: Fri, 07 Jul 2023 20:14:38 GMT
last-modified: Tue, 15 Jun 2021 04:13:53 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 6653864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OsElBEE2%2FvsBVmN2DWYvqjdJDAOyubFt8mtDhma%2Fj9VNx9efYJNYfFUFeoau%2BJ0wJwe5cCHM%2FddoRtjv%2FVdCXWOhxAvGN1EpzFPuhf%2BkLo%2F543GjpiyUKLy5c7DX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74edcf3d8cd3b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|