| flash1-turf.blogspot.com.es/ | 216.58.207.193 | 302 Found | 199 B |
URL User Request GET HTTP/2flash1-turf.blogspot.com.es/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text Hashdb21cf9816fbba7a53a436ba921004bf 6cdac69204803bcd27307148881b62a3e158023f bd998ae7b6253d239bafb272f0695f9b8ed1ecb16b7082f1219c5363ff3626fa
GET / HTTP/1.1
Host: flash1-turf.blogspot.com.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://flash1-turf.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:28:02 GMT
expires: Wed, 24 Apr 2024 17:28:02 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 199
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| flash1-turf.blogspot.com/ | 216.58.207.193 | 200 OK | 7.9 kB |
URL User Request GET HTTP/2flash1-turf.blogspot.com/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4123) Hash62b389ec726061df06561061f4df12c3 abef4b9981b638b334449390100f7b46d6da4a23 7ec653ba59c586c516759b5e6b52a7239e924c3af0e76a1c8735bc89134b4f1d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: flash1-turf.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 24 Apr 2024 17:28:03 GMT
date: Wed, 24 Apr 2024 17:28:03 GMT
cache-control: private, max-age=0
last-modified: Wed, 15 Nov 2023 17:50:23 GMT
etag: W/"a5e1c5dabe432a38c30959b5b4e6639869ea08ec48e76e5eccba5ebd6f061e9d"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 7949
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| flash1-turf.blogspot.com/js/cookienotice.js | 216.58.207.193 | 200 OK | 2.0 kB |
URL GET HTTP/3flash1-turf.blogspot.com/js/cookienotice.js IP216.58.207.193:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/cookienotice.js HTTP/1.1
Host: flash1-turf.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Wed, 24 Apr 2024 17:28:03 GMT
expires: Wed, 01 May 2024 17:28:03 GMT
cache-control: public, max-age=604800
last-modified: Wed, 24 Apr 2024 16:53:12 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| img.root-top.com/topsite/topturfjs/banner.gif | 104.21.234.26 | 200 OK | 4.4 kB |
URL GET HTTP/2img.root-top.com/topsite/topturfjs/banner.gif IP104.21.234.26:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerLet's Encrypt Subjectroot-top.com Fingerprint21:FF:D6:A7:80:70:1A:C9:16:DE:1F:CD:48:D4:62:3B:B5:B8:F0:56 ValidityWed, 24 Apr 2024 15:20:48 GMT - Tue, 23 Jul 2024 15:20:47 GMT
File typePNG image data, 90 x 28, 8-bit/color RGBA, non-interlaced Hashf8cd6de958ffc915712a4653e7ea9b18 4b56ff17bf232893d555f6b302431c3e37409670 597b8d67ab1ae1248dc69b6ef66b49d95eedc1ab74ae74234d86e3668d72e58e
GET /topsite/topturfjs/banner.gif HTTP/1.1
Host: img.root-top.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:28:03 GMT
content-type: image/png
content-length: 4424
etag: "1229025579"
last-modified: Tue, 29 Nov 2022 12:52:50 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 714
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TwHewsFdYbTMZ2NeJpdWKovIzNe7R6SLnMelBB8uAdScngDlqPyLGpAbOnvIfPvGXDd9uSFUQmKgtSs49LyP2uD1%2F4r%2F0CE0fZ3uAAD2vziz3zAgw5h7K%2BODBzNJ1x0p2hu4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797cebec9f8dd60-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.root-top.com/topsite/megaturf/banner.gif | 104.21.234.26 | 200 OK | 4.4 kB |
URL GET HTTP/2img.root-top.com/topsite/megaturf/banner.gif IP104.21.234.26:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerLet's Encrypt Subjectroot-top.com Fingerprint21:FF:D6:A7:80:70:1A:C9:16:DE:1F:CD:48:D4:62:3B:B5:B8:F0:56 ValidityWed, 24 Apr 2024 15:20:48 GMT - Tue, 23 Jul 2024 15:20:47 GMT
File typePNG image data, 90 x 28, 8-bit/color RGBA, non-interlaced Hashf8cd6de958ffc915712a4653e7ea9b18 4b56ff17bf232893d555f6b302431c3e37409670 597b8d67ab1ae1248dc69b6ef66b49d95eedc1ab74ae74234d86e3668d72e58e
GET /topsite/megaturf/banner.gif HTTP/1.1
Host: img.root-top.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:28:03 GMT
content-type: image/png
content-length: 4424
etag: "1229025579"
last-modified: Tue, 29 Nov 2022 12:52:50 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4486
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0vNWS%2FEbaW%2BEqrWk2xrCty5TiyTLCtOebdqs04ESSdiYYhVKpoSI8hTmFnUiqeDG6kTBgcuGc6ozSM%2BNI9twEhEtfhejnS3G4KEEX1mUklKONYBePTf7dWSLwmtvr00pTKfA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797cebec9f7dd60-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.root-top.com/topsite/teambest/banner.gif | 104.21.234.26 | 200 OK | 4.4 kB |
URL GET HTTP/2img.root-top.com/topsite/teambest/banner.gif IP104.21.234.26:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerLet's Encrypt Subjectroot-top.com Fingerprint21:FF:D6:A7:80:70:1A:C9:16:DE:1F:CD:48:D4:62:3B:B5:B8:F0:56 ValidityWed, 24 Apr 2024 15:20:48 GMT - Tue, 23 Jul 2024 15:20:47 GMT
File typePNG image data, 90 x 28, 8-bit/color RGBA, non-interlaced Hashf8cd6de958ffc915712a4653e7ea9b18 4b56ff17bf232893d555f6b302431c3e37409670 597b8d67ab1ae1248dc69b6ef66b49d95eedc1ab74ae74234d86e3668d72e58e
GET /topsite/teambest/banner.gif HTTP/1.1
Host: img.root-top.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:28:03 GMT
content-type: image/png
content-length: 4424
etag: "1229025579"
last-modified: Tue, 29 Nov 2022 12:52:50 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 3176
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8j89goJdE%2FE5YB9miGkbx8fscqWXd%2FNIQQIciiyPc%2BXPtmIkIjPP%2FyPwdg4Km6YAhicxJPneoyQBg56BIkUQzDWdJbmyRI31k3r8PF6rzFxn5V4451UBv3Aw9fWAUNLNWP7W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797cebed9ffdd60-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.root-top.com/topsite/tofturf/banner.gif | 104.21.234.26 | 200 OK | 4.4 kB |
URL GET HTTP/2img.root-top.com/topsite/tofturf/banner.gif IP104.21.234.26:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerLet's Encrypt Subjectroot-top.com Fingerprint21:FF:D6:A7:80:70:1A:C9:16:DE:1F:CD:48:D4:62:3B:B5:B8:F0:56 ValidityWed, 24 Apr 2024 15:20:48 GMT - Tue, 23 Jul 2024 15:20:47 GMT
File typePNG image data, 90 x 28, 8-bit/color RGBA, non-interlaced Hashf8cd6de958ffc915712a4653e7ea9b18 4b56ff17bf232893d555f6b302431c3e37409670 597b8d67ab1ae1248dc69b6ef66b49d95eedc1ab74ae74234d86e3668d72e58e
GET /topsite/tofturf/banner.gif HTTP/1.1
Host: img.root-top.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:28:03 GMT
content-type: image/png
content-length: 4424
etag: "1229025579"
last-modified: Tue, 29 Nov 2022 12:52:50 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 2108
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qFzAmg%2BSYH6BNtT5rkDAWZIYIiPjCajGTePRTw%2FqaumXOg%2FE%2BhS2qFh5MP0h37xd8IaryEQWV1oVQv%2Fw3K2CoYoR1%2BGKw8hEdEEiVkNKjJuZNvqcEG8mIPzoKTP9NgyKThMp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8797cebec9f4dd60-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/848617736-widgets.js | 216.58.207.233 | 200 OK | 52 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/848617736-widgets.js IP216.58.207.233:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1941) Hash70285871f1f1d8f776a0c04a61d21d68 2c140498af2f9a4a8088950d16f675745e556a14 5cc556f7a1301c1c932b1b1f696cbfbc5e131209812b9573204f69b305f05b6c
GET /static/v1/widgets/848617736-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 01:57:58 GMT
expires: Tue, 22 Apr 2025 01:57:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 00:50:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 228605
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css | 216.58.207.233 | 200 OK | 7.8 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css IP216.58.207.233:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeASCII text, with very long lines (35959) Hash1e32420a7b6ddbdcb7def8b3141c4d1e a1be54d42ff1f95244c9653539f90318f5bc0580 a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2
GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:14:21 GMT
expires: Wed, 23 Apr 2025 07:14:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 12:53:14 GMT
content-type: text/css
vary: Accept-Encoding
age: 123222
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| flash1-turf.blogspot.com/favicon.ico | 216.58.207.193 | 200 OK | 412 B |
URL GET HTTP/3flash1-turf.blogspot.com/favicon.ico IP216.58.207.193:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeMS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel Hash59a0c7b6e4848ccdabcea0636efda02b 30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340 a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: flash1-turf.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Wed, 24 Apr 2024 17:28:04 GMT
date: Wed, 24 Apr 2024 17:28:04 GMT
cache-control: private, max-age=86400
last-modified: Wed, 15 Nov 2023 17:50:23 GMT
etag: W/"a5e1c5dabe432a38c30959b5b4e6639869ea08ec48e76e5eccba5ebd6f061e9d"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 | 185.119.26.1 | 200 OK | 2.4 kB |
URL GET HTTP/1.1payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 IP185.119.26.1:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (345) Hash7fd87c36964333e706acbd8ea4862bc5 fe75b5d607c208bcb5acdb45072d5d6e9c517d86 18208a6c98a2ced5873943d077cbd8ce1ee22b246ff61ecca4c1fc6ff1d356b7
GET /buy/buy.apu?ids=341434&idd=1498566 HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
P3P: CP='NON NID OTPa OUR NOR' policy-ref='http://payment.allopass.com/info/p3p/policy-references.xml'
Set-Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac; path=/; samesite=None; secure
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2424
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| www.blogger.com/dyn-css/authorization.css?targetBlogID=2275334842130486821&zx=faece900-78fd-426f-abee-cec6518514a2 | 216.58.207.233 | 200 OK | 21 B |
URL GET HTTP/2www.blogger.com/dyn-css/authorization.css?targetBlogID=2275334842130486821&zx=faece900-78fd-426f-abee-cec6518514a2 IP216.58.207.233:443
Requested byhttps://flash1-turf.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typevery short file (no magic) Hash68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=2275334842130486821&zx=faece900-78fd-426f-abee-cec6518514a2 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flash1-turf.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:28:04 GMT
last-modified: Wed, 24 Apr 2024 17:28:04 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NVK252XV | 142.250.74.72 | 200 OK | 65 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NVK252XV IP142.250.74.72:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2165) Hashb4596f900a39d17bef5792d634e791bd 027ee4381e82bb3080fc567e89d37cb54cb3a9e1 b749ff1accd2bc3956db16e85751c597409700286c8b76ea626ffc9ab236e201
GET /gtm.js?id=GTM-NVK252XV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 17:28:04 GMT
expires: Wed, 24 Apr 2024 17:28:04 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 16:37:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65422
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NVK252XV | 142.250.74.72 | 200 OK | 65 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NVK252XV IP142.250.74.72:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2165) Hash9d6a6da1ccf6b370882972b40ee13bd0 839bf9f682fcd9e2971183afe0768894573d88ae 68b26332965204fb15302ec65cba06ea04dad843259e823e20af011c4d131a71
GET /gtm.js?id=GTM-NVK252XV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 17:28:04 GMT
expires: Wed, 24 Apr 2024 17:28:04 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 16:37:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65422
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| payment.allopass.com/static/css/jBox/jBox.all.min.css | 185.119.26.1 | 200 OK | 3.6 kB |
URL GET HTTP/1.1payment.allopass.com/static/css/jBox/jBox.all.min.css IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (16599), with no line terminators Hash2cf51919a5366fbb599184a3397cedd0 a1cab781bea210eac43f3a463597cf34e3436ed0 16393c3e769e20445f7f78adf6a188dae9d932249842c1033dc2144bac1296ac
GET /static/css/jBox/jBox.all.min.css HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21985-40d7-6036ca56d02c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3631
Connection: close
Content-Type: text/css
|
|
| payment.allopass.com/onetime/scripts/general.js?03 | 185.119.26.1 | 200 OK | 1.6 kB |
URL GET HTTP/1.1payment.allopass.com/onetime/scripts/general.js?03 IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash03ff45da17107d10fbd77c702779c084 2ee7c7fb475bf3f782816392d4317607f3fc623a c1893b3f02db32e36ee562842bc299d27c047656416c204667abf42f04777d2a
GET /onetime/scripts/general.js?03 HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:26 GMT
ETag: "2090b-f37-6036ca55dc080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1593
Connection: close
Content-Type: application/javascript
|
|
| payment.allopass.com/static/css/apui.css?68 | 185.119.26.1 | 200 OK | 1.3 kB |
URL GET HTTP/1.1payment.allopass.com/static/css/apui.css?68 IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
Hash12aeb46940736329726d75549abfcf76 225f6a2afa9134996e9434a15219072691950f6d e5a58ed5875a02f2ce03630be77219bf6386f031b966c99907b8db89c56b7890
GET /static/css/apui.css?68 HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "40f4a-12af-6036ca56d02c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1263
Connection: close
Content-Type: text/css
|
|
| payment.allopass.com/static/js/ext/jquery-1.3.2.min.js | 185.119.26.1 | 200 OK | 20 kB |
URL GET HTTP/1.1payment.allopass.com/static/js/ext/jquery-1.3.2.min.js IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (39660) Hashbb381e2d19d8eace86b34d20759491a5 3dc9f7c2642efff4482e68c9d9df874bf98f5bcb c8370a2d050359e9d505acc411e6f457a49b21360a21e6cbc9229bad3a767899
GET /static/js/ext/jquery-1.3.2.min.js HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21722-dfa6-6036ca56d02c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19740
Connection: close
Content-Type: application/javascript
|
|
| payment.allopass.com/static/css/base.css?68 | 185.119.26.1 | 200 OK | 15 kB |
URL GET HTTP/1.1payment.allopass.com/static/css/base.css?68 IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeassembler source, Unicode text, UTF-8 text Hash6ed035e48eddd379d1f6062304058981 5f9e88174578ddaede2fc2df8e912da6cb9727cc af27b1d7a144889477834e517fae3ee7220474af968797e7ed1c7c7348546ee2
GET /static/css/base.css?68 HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Wed, 17 Apr 2024 09:54:53 GMT
ETag: "42391-143f4-61647d89e3540"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14740
Connection: close
Content-Type: text/css
|
|
| payment.allopass.com/static/js/ext/jquery-1.11.3.min.js | 185.119.26.1 | 200 OK | 33 kB |
URL GET HTTP/1.1payment.allopass.com/static/js/ext/jquery-1.11.3.min.js IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32038) Hash895323ed2f7258af4fae2c738c8aea49 276c87ff3e1e3155679c318938e74e5c1b76d809 ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8
GET /static/js/ext/jquery-1.11.3.min.js HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21721-176d5-6036ca56d02c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33279
Connection: close
Content-Type: application/javascript
|
|
| payment.allopass.com/static/js/ext/jBox.all.min.js | 185.119.26.1 | 200 OK | 13 kB |
URL GET HTTP/1.1payment.allopass.com/static/js/ext/jBox.all.min.js IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (52057), with no line terminators Hasha7478b2e1ce301148f93d0e4333735af e8d528468c5b85aafbd641dbf9d1fbd81e1cad4d d176bb09818fe74dc0e1d369c411c2e3ca68bbf64a8eb76b43ec306520229833
GET /static/js/ext/jBox.all.min.js HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:04 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "2171f-cb59-6036ca56d02c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12605
Connection: close
Content-Type: application/javascript
|
|
| payment.allopass.com/static/css/duration.css | 185.119.26.1 | 200 OK | 793 B |
URL GET HTTP/1.1payment.allopass.com/static/css/duration.css IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
Hash217d26de9194ed1becddb4167966f078 13fd24c60854683f49ec07c013541b155eb9cf7a b88598db6441341112078d3c81ea00ddf76e566ad9c68dcfec28a4d5100ca7b8
GET /static/css/duration.css HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/static/css/base.css?68
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:05 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "40f4f-b61-6036ca56d02c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 793
Connection: close
Content-Type: text/css
|
|
| gmu-apps.com/js/top.js | 52.52.133.124 | 200 OK | 5.8 kB |
IP52.52.133.124:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerAmazon Subjectgmu-apps.com Fingerprint1E:48:60:6A:83:8E:A3:21:FF:51:7A:6E:AC:DA:46:D6:42:AA:C0:D3 ValiditySat, 02 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (55534) Hashd2357cebdc2219aa854dadad1efe3c80 1d887e9194f8f2c5a2d2e413c353ea28eaa89832 cdca24fd19906ad7adbf066e55d3ee87750c3901e9b5d1beb538408274d32109
GET /js/top.js HTTP/1.1
Host: gmu-apps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:28:05 GMT
content-type: application/javascript
content-length: 5772
server: Apache
last-modified: Fri, 02 Apr 2021 20:31:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Sun, 8 Mar 1981 10:00:00 GMT
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=G-QG320G96PZ&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 105 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=G-QG320G96PZ&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Size105 kB (104631 bytes) Hash07465c0c7d14395ebdb255eff42e6b6b 8ba291e0a062d02f32e215f1c99e645a489de950 833609c971bc4758ed2ad87ec8bed7b93eed961ca6a53e080d4fdab8e3027db2
GET /gtag/destination?id=G-QG320G96PZ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 17:28:05 GMT
expires: Wed, 24 Apr 2024 17:28:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104631
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| payment.allopass.com/static/css/images/title-bg.png | 185.119.26.1 | 200 OK | 149 B |
URL GET HTTP/1.1payment.allopass.com/static/css/images/title-bg.png IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typePNG image data, 6 x 25, 8-bit/color RGB, non-interlaced Hashcc0e6b9d8943b264b01fc48e4e92a8e7 5508c77e7af4a04a715e3419ecdf71ffb967cfa6 750716e90cb06c250e70639d38c10acf01075cf96ae980a45f0d71f53836e0fa
GET /static/css/images/title-bg.png HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/static/css/base.css?68
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:05 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21679-95-6036ca56d02c0"
Accept-Ranges: bytes
Content-Length: 149
Connection: close
Content-Type: image/png
|
|
| payment.allopass.com/static/css/icons/secure-lock.gif | 185.119.26.1 | 200 OK | 181 B |
URL GET HTTP/1.1payment.allopass.com/static/css/icons/secure-lock.gif IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeGIF image data, version 89a, 7 x 10 Hashbd90c1902eaf3a8bd8edfbbcdc6bddd1 8b321733a71edc5917b615e64d21dd09ff1c248f b74d93c2e43195ed06c03dcc855663cce5faec3d82a53598eb84f0714bb5ced9
GET /static/css/icons/secure-lock.gif HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/static/css/base.css?68
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:05 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21947-b5-6036ca56d02c0"
Accept-Ranges: bytes
Content-Length: 181
Connection: close
Content-Type: image/gif
|
|
| payment.allopass.com/static/css/images/contact-icons-sprite.png | 185.119.26.1 | 200 OK | 1.1 kB |
URL GET HTTP/1.1payment.allopass.com/static/css/images/contact-icons-sprite.png IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typePNG image data, 16 x 48, 8-bit/color RGBA, non-interlaced Hash853d682f24c7a7cb69fc30f18888c7fe b0ed96ce11ce0354e3a9cb3b73c9f9e84c5a0df7 56f50dac1b60b046f01283c8798fe78b6fcd81da8bbaccebdd7dea3a4c87581f
GET /static/css/images/contact-icons-sprite.png HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/static/css/base.css?68
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:05 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21742-43c-6036ca56d02c0"
Accept-Ranges: bytes
Content-Length: 1084
Connection: close
Content-Type: image/png
|
|
| payment.allopass.com/static/css/images/title-icons-sprite.png | 185.119.26.1 | 200 OK | 7.2 kB |
URL GET HTTP/1.1payment.allopass.com/static/css/images/title-icons-sprite.png IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typePNG image data, 32 x 160, 8-bit/color RGBA, non-interlaced Hashe66cf3e80b04d43323354b56cf244af6 79b50b9a883696b2b6fb7c7782d0c90592b020e8 b689fc0b2c889855b8f4b63b225eff2e259fb61fd08887077d89b5d729ecec41
GET /static/css/images/title-icons-sprite.png HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/static/css/base.css?68
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:05 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21980-1bfe-6036ca56d02c0"
Accept-Ranges: bytes
Content-Length: 7166
Connection: close
Content-Type: image/png
|
|
| payment.allopass.com/static/css/images/allopass-logo-small.svg | 185.119.26.1 | 200 OK | 119 kB |
URL GET HTTP/1.1payment.allopass.com/static/css/images/allopass-logo-small.svg IP185.119.26.1:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerSectigo Limited Subject*.allopass.com Fingerprint61:E1:AD:9E:9D:03:08:9D:66:D1:20:F1:64:87:8A:4C:A3:E7:25:9A ValidityFri, 06 Oct 2023 00:00:00 GMT - Mon, 07 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size119 kB (118628 bytes) Hash5402d28a4c93cb45d49a02d6f50a838e 9df942a3441d01f115a211754a4c42dc38b8b04e a82d1b3a85473bad87120c7d6b42782c0b5132e88feab8d6bd22a65ac85f70d4
GET /static/css/images/allopass-logo-small.svg HTTP/1.1
Host: payment.allopass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/static/css/base.css?68
Cookie: ShopSessionId=322ffcc3-2198-4bd7-a8e9-fdf6404280ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:28:05 GMT
Server: Apache
Last-Modified: Mon, 21 Aug 2023 10:50:27 GMT
ETag: "21646-1cf64-6036ca56d02c0"
Accept-Ranges: bytes
Content-Length: 118628
Connection: close
Content-Type: image/svg+xml
|
|
| gmu-apps.com/chk.php | 52.52.133.124 | 200 OK | 0 B |
IP52.52.133.124:443
Requested byhttps://payment.allopass.com/buy/buy.apu?ids=341434&idd=1498566 CertificateIssuerAmazon Subjectgmu-apps.com Fingerprint1E:48:60:6A:83:8E:A3:21:FF:51:7A:6E:AC:DA:46:D6:42:AA:C0:D3 ValiditySat, 02 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /chk.php HTTP/1.1
Host: gmu-apps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 53
Origin: https://payment.allopass.com
DNT: 1
Connection: keep-alive
Referer: https://payment.allopass.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:28:06 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|