| challenges.cloudflare.com/turnstile/v0/api.js | 104.17.3.184 | 302 Found | 0 B |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/api.js IP104.17.3.184:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 07:59:20 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/ce7818f50e39/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffab89da377128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.138 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.138:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:09 GMT
expires: Fri, 02 May 2025 02:01:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 453491
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| topgan.top/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.222.245 | | 0 B |
URL topgan.top/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.222.245:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Tue, 07 May 2024 07:59:20 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NnVEhoX9oaC3K4mpRl9nfa5Z85yf838xzGWphUVmO3gl0VtMkT9fNDf9w8dRJyGq043SJRKTFoZs6cxyrnoaGZ8ngTu36J4GCMdIYnjDKqNxTA8HuDKncKKmnFJx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffab8bca860b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/jsd/r/87ffab8488d7569a | 172.67.222.245 | | 0 B |
URL topgan.top/cdn-cgi/challenge-platform/h/b/jsd/r/87ffab8488d7569a IP172.67.222.245:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/87ffab8488d7569a HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12378
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:21 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=NzEFoMUvWc.AVSlh_qKE2Xql8lVbypZEPqmmlhX6u7M-1715068761-1.0.1.1-9XyJjgK70zhr5t7gwuKJ.HpboO5nobMM08Uk.ebtsV6C3JKipoibbzGsUaBAnbSfpg05_RgzJJljVAdMvLmagg; path=/; expires=Wed, 07-May-25 07:59:21 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2hOPeFlqu%2Fi76GFKJ2z6euZpvXjdogX2EzyQhXl6EPP6WOvwivRVxFDiF0%2BeefVsgM%2B9QEvBy6jgte4AKHalqHfzuQKrZq7UQ%2BkS5i4xJ%2FTAWDwpoJZhq38lzUuD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffab8dfe090b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mfckf/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:21 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87ffab8e9dcb56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffab8c38e756a9/1715068761865/3f8928d396b173c1f98be198ad09e6c8e0858d40529e57fb236228e2b8c7d0ca/1ikWFzY2GPL7QMX | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffab8c38e756a9/1715068761865/3f8928d396b173c1f98be198ad09e6c8e0858d40529e57fb236228e2b8c7d0ca/1ikWFzY2GPL7QMX IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/87ffab8c38e756a9/1715068761865/3f8928d396b173c1f98be198ad09e6c8e0858d40529e57fb236228e2b8c7d0ca/1ikWFzY2GPL7QMX HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mfckf/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Tue, 07 May 2024 07:59:23 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gP4ko05axc8H5i-GYrQnmyOCFjUBSnlf7I2Io4rjH0MoAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAycESnW8nWijopFBbXs0ShsFXencIiaM4x8DmoYUMDVIj9LKs0W82Vt7SxGoLjV854ZLsONjPcD9gaNsV1U7ial-U1eHrh6bc6pi2_dUVK8NsyLnCLOtvOiP0SY8vabqRR4dPd6S61Y-diDWwToPoCSioJqJhohK4pCLZ5_YF-5VfEFiyMTtIeFQadCwQWCTWWHJgK8wlIzn3e6mBeQZJ1VsOf21BzIlCKUydJy4Pf1ah0N7KjgN2pp4S9j2sSUl0ZbfnPznB7zO130ijqjcDO7wydsvznYw_ApvEdn5mKTlOFBQM1jktH72KBkAGAS-M4Zko5MazCXVbKxK3oLAhkwIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tID-JKNOWsXPB-YvhmK0J5sjghY1AUp5X-yNiKOK4x9DKABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 87ffab9e5af256a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87ffab8c38e756a9/1715068761870/lrLlH8SWoRRUiQy | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87ffab8c38e756a9/1715068761870/lrLlH8SWoRRUiQy IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 30 x 97, 8-bit/color RGB, non-interlaced Hashc27faf712ded80ace26d18f8fe012433 c3aae9f1a25f5c3becf669f0ef3e7c8a8ce8153d 6412ecdea3df07a1c461224d3adcfe59fe895f5fe895c10b884c1df86a40c37c
GET /cdn-cgi/challenge-platform/h/b/i/87ffab8c38e756a9/1715068761870/lrLlH8SWoRRUiQy HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mfckf/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:24 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87ffaba35c6e56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffab8c38e756a9 | 172.67.222.245 | | 21 B |
URL topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffab8c38e756a9 IP172.67.222.245:0
Hash018598ff9794435b440d1bbf293cc10f 9129b0ca1a4febdf97636946a1fe7be8abf11890 898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063
POST /cdn-cgi/challenge-platform/h/b/rc/87ffab8c38e756a9 HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Content-Type: application/json
Content-Length: 596
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=NzEFoMUvWc.AVSlh_qKE2Xql8lVbypZEPqmmlhX6u7M-1715068761-1.0.1.1-9XyJjgK70zhr5t7gwuKJ.HpboO5nobMM08Uk.ebtsV6C3JKipoibbzGsUaBAnbSfpg05_RgzJJljVAdMvLmagg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:24 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=qTpGw2VlocBvTamgFZNbqqHbs0ksMDu.PSDqR5aQyAs-1715068764-1.0.1.1-Aem92CeLfGvXWq_0MmN3Frwdf3TdarN35_655AqfDwY_PnCfqlS2gkDI.mwjv21D2ng_9dzV3r3KbcjQ9NyjVg; path=/; expires=Wed, 07-May-25 07:59:24 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cd9qzdgjQ0GEGwF%2BvdMqcszIsz98fsgIA76w6WG7LkaAt%2FQE5qKQhx6ApgFGDLGdBFBHU9ZNkoL3JujYpRdOfCfEdnOgcy6cjxeKsLPNoheTIFuVSoNg%2FQjMAaaB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffaba4fe6a0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/715605903:1715065742:08UXx7QYQodbLTV2AgcueoBt0QFW55sEtIAc5J6ef5w/87ffab8c38e756a9/47c63a8c48ddb1f | 104.17.3.184 | | 4.2 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/715605903:1715065742:08UXx7QYQodbLTV2AgcueoBt0QFW55sEtIAc5J6ef5w/87ffab8c38e756a9/47c63a8c48ddb1f IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (4400), with no line terminators Hashbbe887cf341dfc763f1f9ac55dfab550 fbdb9cda840043568a4fdcfee66a62cde99fa4e9 2941c638732209f8c7589f79562ca61ec23535fe4def48657bc437be5c8255ac
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/715605903:1715065742:08UXx7QYQodbLTV2AgcueoBt0QFW55sEtIAc5J6ef5w/87ffab8c38e756a9/47c63a8c48ddb1f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mfckf/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 47c63a8c48ddb1f
Content-Length: 28071
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:24 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 2ugXsw40XVdeQRBZY0251A==$zD8se9m4pXNIVXafQPv3pQ==
cf-chl-out: JHkqqa78cPjtdi0Lp14crchl/2nOmfusAq0ZlbivHxyWt8whaJveHojhM6VHB+IwvJN/GGelOklgLdIsgKnUuI//w2MY/Zj+3HIxJkXByQaaapeAU6g/+GdzqMXoHKPO$gD95c5N+QUtReWCrOC7BGg==
vary: accept-encoding
server: cloudflare
cf-ray: 87ffaba46e4856a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.138 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.138:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:09 GMT
expires: Fri, 02 May 2025 02:01:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 453496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rh5b9/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:25 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87ffabaa280156a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/502586017:1715065695:wmGuQeNM2UDJD8YdtvcR_CNCqnhrI3bLj7jhRpH5MvA/87ffaba93e8b56a9/74da89d0d438355 | 104.17.3.184 | | 115 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/502586017:1715065695:wmGuQeNM2UDJD8YdtvcR_CNCqnhrI3bLj7jhRpH5MvA/87ffaba93e8b56a9/74da89d0d438355 IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size115 kB (115405 bytes) Hash2460d2cb0727d62c415aa5d5a54c2e7d 926c293caf5bf2fdd005330528e327fef4a73a4e b4b4632f6cb14e8f47146ed9e0df8e9c99decd346f7818a65f4e9b7743c63745
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/502586017:1715065695:wmGuQeNM2UDJD8YdtvcR_CNCqnhrI3bLj7jhRpH5MvA/87ffaba93e8b56a9/74da89d0d438355 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rh5b9/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 74da89d0d438355
Content-Length: 2885
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:26 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$XOqaAUT+JoUwVesnL/YuaQ==
vary: accept-encoding
server: cloudflare
cf-ray: 87ffabac4b9456a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/_rebelmoon_meta/functions/validate.php | 172.67.222.245 | | 2 B |
URL topgan.top/_rebelmoon_meta/functions/validate.php IP172.67.222.245:0
File typeASCII text, with no line terminators Hasha42608414e57197648377aaf910a74d2 bf6e9bb31273af0b2b8405738587f81f2fea216e 6682636f3234c54e5b4c436669805918d538ba93f66d307250ea0176f852e2f6
POST /_rebelmoon_meta/functions/validate.php HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=qTpGw2VlocBvTamgFZNbqqHbs0ksMDu.PSDqR5aQyAs-1715068764-1.0.1.1-Aem92CeLfGvXWq_0MmN3Frwdf3TdarN35_655AqfDwY_PnCfqlS2gkDI.mwjv21D2ng_9dzV3r3KbcjQ9NyjVg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q4OrdxAwJCAYTAvQhJIe3oMYxm9HSua30y4cgfUsvL0zjnJ8SPo8Rzb0FxVApPa8u0vy8z3HcKnF5FtzlXLlmV%2B2wi6NoKhf7pwc1FflPg%2FMaHzP1wnIk3AKonj6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffaba54ece0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffaba93e8b56a9 | 172.67.222.245 | | 21 B |
URL topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffaba93e8b56a9 IP172.67.222.245:0
Hash018598ff9794435b440d1bbf293cc10f 9129b0ca1a4febdf97636946a1fe7be8abf11890 898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063
POST /cdn-cgi/challenge-platform/h/b/rc/87ffaba93e8b56a9 HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Content-Type: application/json
Content-Length: 596
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=qTpGw2VlocBvTamgFZNbqqHbs0ksMDu.PSDqR5aQyAs-1715068764-1.0.1.1-Aem92CeLfGvXWq_0MmN3Frwdf3TdarN35_655AqfDwY_PnCfqlS2gkDI.mwjv21D2ng_9dzV3r3KbcjQ9NyjVg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:28 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=Kguezt3pmQxpFBF4gRE0ZyaV18F6u5kKS96k_qAR5BU-1715068768-1.0.1.1-rQL._eaMYwnjRoZUDLJCOXX.9XU1rZjlPil_3XvmjathesdIvtIAMLReflPyFUhbrkcwQuJNJyaOJURiq4ggzg; path=/; expires=Wed, 07-May-25 07:59:28 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UAv%2FF50IkgHMoLbBEjfuAlUuwSm8khwVWZxa%2FprnscE%2FxCAViIQNAqeDy%2BSaLL8AkH3mLQkA8InaWvH9NQLrgX%2FRDPQjo4Tfv7su5F%2FhjTBZ3iZxvfYnnEXGH3k1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabbc5f2a0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null | 172.67.222.245 | 200 OK | 418 B |
URL User Request GET HTTP/3topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null IP172.67.222.245:443
CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typeHTML document, ASCII text, with very long lines (783), with no line terminators Hash4ca8d76cb22b110e74968bccf76a4d01 d37207348c7695443ac81060ccd9107a861ca01d d8beb15504e540f5baaeece98d4153b0bf8c6c404808b5c60fe9d71c1b760b30
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=Kguezt3pmQxpFBF4gRE0ZyaV18F6u5kKS96k_qAR5BU-1715068768-1.0.1.1-rQL._eaMYwnjRoZUDLJCOXX.9XU1rZjlPil_3XvmjathesdIvtIAMLReflPyFUhbrkcwQuJNJyaOJURiq4ggzg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:29 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q3lqQpvHyndls2%2BKw55KdewDNWEE3bJLY0qJwLEo2eHU3RAotsqGTvVI%2FlW20G59%2BfDzynUBOV4uy9Qc%2BXbDJHhp5E4fXPtcDv0aWWt8s08FdiAZZQYyAmxRPEsV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabbd88d00b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.138 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.138:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:09 GMT
expires: Fri, 02 May 2025 02:01:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 453500
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/swfp1/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal | 104.17.3.184 | | 26 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/swfp1/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hashdb7df2cf2e0bd6edae922e2c81856aff 196f0cb0f1beef10628c9b4c1b38cfdbb4cea158 aceb1d8c2d02e445d25c13b9fd6d81d5d34b6393ff273efce51059e2ea49144d
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/swfp1/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:29 GMT
content-type: text/html; charset=UTF-8
cross-origin-resource-policy: cross-origin
referrer-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
document-policy: js-profiling
origin-agent-cluster: ?1
vary: accept-encoding
server: cloudflare
cf-ray: 87ffabbf1cd956a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/favicon.ico | 172.67.222.245 | 404 Not Found | 3.9 kB |
IP172.67.222.245:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typeHTML document, ASCII text Hash91bb4645ef06a33d5386c9533946dda3 b2b607a1e83c201bd8b703f65e36c9c215dc68f0 50a863e28178a78a6ad5933e33c9920bed8e20af02d5b7fc6a9d99a7f3789f00
GET /favicon.ico HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=Kguezt3pmQxpFBF4gRE0ZyaV18F6u5kKS96k_qAR5BU-1715068768-1.0.1.1-rQL._eaMYwnjRoZUDLJCOXX.9XU1rZjlPil_3XvmjathesdIvtIAMLReflPyFUhbrkcwQuJNJyaOJURiq4ggzg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 07 May 2024 07:59:29 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x4bWeVvHpI%2FUVAqmPS0xsKSDKMW8v%2FjySzUl%2ByI5rcYVuv1LU8fVhh7LHnzOA%2FZOFAOXp654%2FMe328Ibl12CY6MQi9s3H9wvb98VQbZVji8F%2FRMzIB8oG8USlsy7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabbefb130b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js | 104.17.3.184 | 200 OK | 14 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js IP104.17.3.184:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42565) Hasha5b92920e25651d2058f4982a108347b caeeadd68d38fdb681c52006c68880abc2e8a1a6 49a5abedf03eb8ad9a66eca7c5ccb8e59a440e06958e1e7b71d078f494178dc5
GET /turnstile/v0/b/ce7818f50e39/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:29 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabbeac2a56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabbf1cd956a9/1715068769598/c5c95b8bb6cc903418800833ae7913deec51432068585797ac058adf1f0f2387/5XOljOGbZ50C536 | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabbf1cd956a9/1715068769598/c5c95b8bb6cc903418800833ae7913deec51432068585797ac058adf1f0f2387/5XOljOGbZ50C536 IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/87ffabbf1cd956a9/1715068769598/c5c95b8bb6cc903418800833ae7913deec51432068585797ac058adf1f0f2387/5XOljOGbZ50C536 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/swfp1/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Tue, 07 May 2024 07:59:30 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gxclbi7bMkDQYgAgzrnkT3uxRQyBoWFeXrAWK3x8PI4cAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAycESnW8nWijopFBbXs0ShsFXencIiaM4x8DmoYUMDVIj9LKs0W82Vt7SxGoLjV854ZLsONjPcD9gaNsV1U7ial-U1eHrh6bc6pi2_dUVK8NsyLnCLOtvOiP0SY8vabqRR4dPd6S61Y-diDWwToPoCSioJqJhohK4pCLZ5_YF-5VfEFiyMTtIeFQadCwQWCTWWHJgK8wlIzn3e6mBeQZJ1VsOf21BzIlCKUydJy4Pf1ah0N7KjgN2pp4S9j2sSUl0ZbfnPznB7zO130ijqjcDO7wydsvznYw_ApvEdn5mKTlOFBQM1jktH72KBkAGAS-M4Zko5MazCXVbKxK3oLAhkwIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIMXJW4u2zJA0GIAIM655E97sUUMgaFhXl6wFit8fDyOHABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 87ffabc9697056a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabbf1cd956a9 | 172.67.222.245 | | 21 B |
URL topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabbf1cd956a9 IP172.67.222.245:0
Hash018598ff9794435b440d1bbf293cc10f 9129b0ca1a4febdf97636946a1fe7be8abf11890 898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063
POST /cdn-cgi/challenge-platform/h/b/rc/87ffabbf1cd956a9 HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Content-Type: application/json
Content-Length: 596
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=Kguezt3pmQxpFBF4gRE0ZyaV18F6u5kKS96k_qAR5BU-1715068768-1.0.1.1-rQL._eaMYwnjRoZUDLJCOXX.9XU1rZjlPil_3XvmjathesdIvtIAMLReflPyFUhbrkcwQuJNJyaOJURiq4ggzg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:32 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=WJbVFlesI.jDDbd1vAn8kNpXTxjX2R8z8UOedO9tltY-1715068772-1.0.1.1-okm2YJYRNqKUkPUS0NlvwhrJhN53ZJSQsymCIMKZ5bGArixeuBCC3tDyQtM69uObiwzb6Xi1vIoZIXpyQpxZpA; path=/; expires=Wed, 07-May-25 07:59:32 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sqNpwUlZm7KqwhhviqsNdZEDAHFRtVw8eiz5%2FLOb4AwFtl9ZBCDCngo2eq7mcm0SOjVYItrvw%2F%2Fwr5Q2V9CdiI5McH1kqo0%2FEjDN%2BxJwiCrpYluPbOx2XTUsVsOL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabd0eb0f0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/api.js | 104.17.3.184 | 302 Found | 0 B |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/api.js IP104.17.3.184:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Tue, 07 May 2024 07:59:32 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/ce7818f50e39/api.js
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabd30ba356a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/_rebelmoon_meta/functions/validate.php | 172.67.222.245 | | 31 kB |
URL topgan.top/_rebelmoon_meta/functions/validate.php IP172.67.222.245:0
Hashcd7bc652307ad520366f441f280c3841 6793c65d772047d2f94cae30b74e5e99266731a4 76fac969d2b0e07d21bf7f1c395d0a855abbf6559edb1cc13415db1811ec6187
POST /_rebelmoon_meta/functions/validate.php HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=WJbVFlesI.jDDbd1vAn8kNpXTxjX2R8z8UOedO9tltY-1715068772-1.0.1.1-okm2YJYRNqKUkPUS0NlvwhrJhN53ZJSQsymCIMKZ5bGArixeuBCC3tDyQtM69uObiwzb6Xi1vIoZIXpyQpxZpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:32 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LOvXXmmZFwSCs1MoorUqvodq8RijAht2eCp8H8mhw2uljv56WYvXX3kj%2FDnzdH41WJ1bZqLHW0nekTWubCN8Okrx0nsTvFAvDtEIyGgt%2FsyVkIVUfjorsJbkkSKv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabd11b4e0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null | 172.67.222.245 | 200 OK | 479 B |
URL User Request GET HTTP/3topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null IP172.67.222.245:443
CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typeHTML document, ASCII text, with very long lines (783), with no line terminators Hash4ca8d76cb22b110e74968bccf76a4d01 d37207348c7695443ac81060ccd9107a861ca01d d8beb15504e540f5baaeece98d4153b0bf8c6c404808b5c60fe9d71c1b760b30
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=WJbVFlesI.jDDbd1vAn8kNpXTxjX2R8z8UOedO9tltY-1715068772-1.0.1.1-okm2YJYRNqKUkPUS0NlvwhrJhN53ZJSQsymCIMKZ5bGArixeuBCC3tDyQtM69uObiwzb6Xi1vIoZIXpyQpxZpA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:32 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rps1F%2FTVPu5RZfFPulSO3pdeNczx%2Fl%2FfXcROMuzuPcRQAnlFvgK5pfcxqiCyrHi2cV8NHIRaaCxGyGJTxogEqXR5zZ%2BgQQ5fPmguEMGCoczNosiAGty82ImFksHq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabd20c720b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabd3acbb56a9/1715068772927/58a7d5440e729e0ba0454d0d078f8cb6e801cda776b5e39ee85c09221a10ba91/1zzlDeAWweEZncN | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabd3acbb56a9/1715068772927/58a7d5440e729e0ba0454d0d078f8cb6e801cda776b5e39ee85c09221a10ba91/1zzlDeAWweEZncN IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/87ffabd3acbb56a9/1715068772927/58a7d5440e729e0ba0454d0d078f8cb6e801cda776b5e39ee85c09221a10ba91/1zzlDeAWweEZncN HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/xkx64/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Tue, 07 May 2024 07:59:33 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gWKfVRA5yngugRU0NB4-MtugBzad2teOe6FwJIhoQupEAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAycESnW8nWijopFBbXs0ShsFXencIiaM4x8DmoYUMDVIj9LKs0W82Vt7SxGoLjV854ZLsONjPcD9gaNsV1U7ial-U1eHrh6bc6pi2_dUVK8NsyLnCLOtvOiP0SY8vabqRR4dPd6S61Y-diDWwToPoCSioJqJhohK4pCLZ5_YF-5VfEFiyMTtIeFQadCwQWCTWWHJgK8wlIzn3e6mBeQZJ1VsOf21BzIlCKUydJy4Pf1ah0N7KjgN2pp4S9j2sSUl0ZbfnPznB7zO130ijqjcDO7wydsvznYw_ApvEdn5mKTlOFBQM1jktH72KBkAGAS-M4Zko5MazCXVbKxK3oLAhkwIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIFin1UQOcp4LoEVNDQePjLboAc2ndrXjnuhcCSIaELqRABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 87ffabd9be7656a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/favicon.ico | 172.67.222.245 | 404 Not Found | 26 kB |
IP172.67.222.245:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typeHTML document, ASCII text Hash91bb4645ef06a33d5386c9533946dda3 b2b607a1e83c201bd8b703f65e36c9c215dc68f0 50a863e28178a78a6ad5933e33c9920bed8e20af02d5b7fc6a9d99a7f3789f00
GET /favicon.ico HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=WJbVFlesI.jDDbd1vAn8kNpXTxjX2R8z8UOedO9tltY-1715068772-1.0.1.1-okm2YJYRNqKUkPUS0NlvwhrJhN53ZJSQsymCIMKZ5bGArixeuBCC3tDyQtM69uObiwzb6Xi1vIoZIXpyQpxZpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 07 May 2024 07:59:32 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 11
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f5zjc0InFp07JBEcKN0w4abXpHIaGN4%2FBBnCMBsF8s7%2FRlUnpgS4SIGs4CNf6303Oi0mJsIuEl8HuVL8f8zyt8gb4CXyfiZRSHSLqSVvVoYTK17IhW9AEhERi2u7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabd38e370b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1834870104:1715065672:UhTlrT5FheTRJ7rCTty6jc3CKhT6A5ywqFmcowmrxao/87ffabd3acbb56a9/198b0a8e4a73030 | 104.17.3.184 | | 104 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1834870104:1715065672:UhTlrT5FheTRJ7rCTty6jc3CKhT6A5ywqFmcowmrxao/87ffabd3acbb56a9/198b0a8e4a73030 IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size104 kB (104454 bytes) Hashda7f64c5fcf6ad3034bcf932716a9fa4 c28e1935316c35bff665ce850119655fcf0a6bb6 70fd9e5cc5b6e4d7be2fdc188ade8a13d6e189a7976c7ff5085b1b7a993b1283
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1834870104:1715065672:UhTlrT5FheTRJ7rCTty6jc3CKhT6A5ywqFmcowmrxao/87ffabd3acbb56a9/198b0a8e4a73030 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/xkx64/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 198b0a8e4a73030
Content-Length: 2853
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:32 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: DV/shUWh7MulWNznNFtsOwg3X1K+n8hjwXKkhpLFuKY1h549LS2KIzv5eixkQsBXfEoTxQxsNegEDO435ILXTS3ESet57w/LPtwPR5RU8W2Lfvk+NhKUuexJp1mvJafRxxzQ/N3RK6lFgLHws47lCJfaSJ5IHy/pqeBCCvaIxAgiSCmNdR+3V2cpBFbXBEdBfKd0s+y2gD/Yk1E/yS/WPvRNqvwfudL1zBsJ6DnDeZoMu0cnaBna6y28LZscQHkr/xsuZl5QpH8TQ14M6exMtwePbp5ulQG62FQvKLgP8O9K6YMphMpoTvothQbaJtjmOeUxz5cQ+roZt/yCkyNUcHISkEaPPVKCA/O6Hdk+ykGCzCquR+jnMTiQoG+D76LHji6rzYje9iss+1+KNpHx3TMRb3UUw/f978o6sgRoH0E=$PttFnwrY5+3J6sUbGyR55Q==
vary: accept-encoding
server: cloudflare
cf-ray: 87ffabd6b9a756a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabd3acbb56a9 | 172.67.222.245 | | 21 B |
URL topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabd3acbb56a9 IP172.67.222.245:0
Hash018598ff9794435b440d1bbf293cc10f 9129b0ca1a4febdf97636946a1fe7be8abf11890 898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063
POST /cdn-cgi/challenge-platform/h/b/rc/87ffabd3acbb56a9 HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Content-Type: application/json
Content-Length: 596
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=WJbVFlesI.jDDbd1vAn8kNpXTxjX2R8z8UOedO9tltY-1715068772-1.0.1.1-okm2YJYRNqKUkPUS0NlvwhrJhN53ZJSQsymCIMKZ5bGArixeuBCC3tDyQtM69uObiwzb6Xi1vIoZIXpyQpxZpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:35 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=EryhFo.CSwKKYhgk2GpnKsaaHZW0zNxz2q8sieg0fuA-1715068775-1.0.1.1-Gc_hj1AHyWRn6ylk3w0CnDcTnxbIe.ggcGeJEsLQUouZ6t8MsKlsACaFp07AdlLRzM3Kw1IpnFqT_amWnUs0eg; path=/; expires=Wed, 07-May-25 07:59:35 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FNQlcEnYz9rzc9AqWKrlfKIFw7mx%2FIebPQG%2B%2BFp%2Bz%2BBjQX6O%2BXhYtRoGFbdy1Z1KgUuerVBJ6%2B8vnRVnvtqstj%2F6wt8fXpVqm1DzJv55kab4mKVY%2F%2FCQCK7JYcZ9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabe51e410b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.138 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.138:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:09 GMT
expires: Fri, 02 May 2025 02:01:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 453506
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| challenges.cloudflare.com/turnstile/v0/api.js | 104.17.3.184 | 302 Found | 0 B |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/api.js IP104.17.3.184:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Tue, 07 May 2024 07:59:35 GMT
content-length: 0
location: /turnstile/v0/b/ce7818f50e39/api.js
access-control-allow-origin: *
cache-control: max-age=300, public
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabe73e5f56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1834870104:1715065672:UhTlrT5FheTRJ7rCTty6jc3CKhT6A5ywqFmcowmrxao/87ffabd3acbb56a9/198b0a8e4a73030 | 104.17.3.184 | | 30 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1834870104:1715065672:UhTlrT5FheTRJ7rCTty6jc3CKhT6A5ywqFmcowmrxao/87ffabd3acbb56a9/198b0a8e4a73030 IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (4400), with no line terminators Hash9b76737f6026857f3c838473f73e92a1 d377873b330ade521a24cb2cc64b7acf97871099 d41f87c58732ec313806f676c63ab82b7864567310b263eb442c56203cd32204
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1834870104:1715065672:UhTlrT5FheTRJ7rCTty6jc3CKhT6A5ywqFmcowmrxao/87ffabd3acbb56a9/198b0a8e4a73030 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/xkx64/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 198b0a8e4a73030
Content-Length: 27721
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:35 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: mL3ebgE56FJXVnHCIZv6QSZKh0ozRKaF9SINcT0MPcz4VrLjGDSrtAVIoel5c1SN+HgE2wqOEdK4a8GZiqjmgZHeUfgokztXdlIZgDQ+Rd0eIXnINCnLVXPwV83buL3d$8YM84q1CESrD/3INH3mXgg==
cf-chl-out-s: 88UzDyP1KWqRRoqebASNrw==$Qc9L+gTWkkzEqeSTt5AL2Q==
vary: accept-encoding
server: cloudflare
cf-ray: 87ffabe4a91456a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/favicon.ico | 172.67.222.245 | 404 Not Found | 286 B |
IP172.67.222.245:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typeHTML document, ASCII text Hash91bb4645ef06a33d5386c9533946dda3 b2b607a1e83c201bd8b703f65e36c9c215dc68f0 50a863e28178a78a6ad5933e33c9920bed8e20af02d5b7fc6a9d99a7f3789f00
GET /favicon.ico HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Cookie: cf_clearance=EryhFo.CSwKKYhgk2GpnKsaaHZW0zNxz2q8sieg0fuA-1715068775-1.0.1.1-Gc_hj1AHyWRn6ylk3w0CnDcTnxbIe.ggcGeJEsLQUouZ6t8MsKlsACaFp07AdlLRzM3Kw1IpnFqT_amWnUs0eg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 07 May 2024 07:59:35 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 14
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s1vF1EVRyKj54vbeEUZ4gPWMMrcXci6njTs%2BP7jZKHLhxmutm0N%2FRtB9NLp4Fv6yH6cKHq84z6rWt%2FKQQZfKex0B1cmv7e%2B9yILhi20Bb59cG7BeXQ68bUvJyFOO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabe7a9840b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabe7df8f56a9/1715068776127/4f7939314f21ea27be644e303f810c79981b1fc8611d9248d903fd834bc818be/mPas-rD3YyndwNr | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabe7df8f56a9/1715068776127/4f7939314f21ea27be644e303f810c79981b1fc8611d9248d903fd834bc818be/mPas-rD3YyndwNr IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/87ffabe7df8f56a9/1715068776127/4f7939314f21ea27be644e303f810c79981b1fc8611d9248d903fd834bc818be/mPas-rD3YyndwNr HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/ndfpb/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Tue, 07 May 2024 07:59:38 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gT3k5MU8h6ie-ZE4wP4EMeZgbH8hhHZJI2QP9g0vIGL4AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAycESnW8nWijopFBbXs0ShsFXencIiaM4x8DmoYUMDVIj9LKs0W82Vt7SxGoLjV854ZLsONjPcD9gaNsV1U7ial-U1eHrh6bc6pi2_dUVK8NsyLnCLOtvOiP0SY8vabqRR4dPd6S61Y-diDWwToPoCSioJqJhohK4pCLZ5_YF-5VfEFiyMTtIeFQadCwQWCTWWHJgK8wlIzn3e6mBeQZJ1VsOf21BzIlCKUydJy4Pf1ah0N7KjgN2pp4S9j2sSUl0ZbfnPznB7zO130ijqjcDO7wydsvznYw_ApvEdn5mKTlOFBQM1jktH72KBkAGAS-M4Zko5MazCXVbKxK3oLAhkwIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIE95OTFPIeonvmROMD-BDHmYGx_IYR2SSNkD_YNLyBi-ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 87ffabf71e0d56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null | 172.67.222.245 | 200 OK | 862 B |
URL User Request GET HTTP/3topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null IP172.67.222.245:443
CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typeHTML document, ASCII text, with very long lines (783), with no line terminators Hash4ca8d76cb22b110e74968bccf76a4d01 d37207348c7695443ac81060ccd9107a861ca01d d8beb15504e540f5baaeece98d4153b0bf8c6c404808b5c60fe9d71c1b760b30
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=EryhFo.CSwKKYhgk2GpnKsaaHZW0zNxz2q8sieg0fuA-1715068775-1.0.1.1-Gc_hj1AHyWRn6ylk3w0CnDcTnxbIe.ggcGeJEsLQUouZ6t8MsKlsACaFp07AdlLRzM3Kw1IpnFqT_amWnUs0eg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:35 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kOA59phGOX1CU6B1Muz7UDFf5FDXaB%2BJk7T30FKRMU54J%2BGR%2BltFVGn09RcQy4JI5rzOS%2BINuLnLJuT9cZ5kFqxB5wXe5v5Vk1ZyqLwmV0gVYE8hkjrHFBBDouJv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabe63f910b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabe7df8f56a9 | 172.67.222.245 | | 21 B |
URL topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabe7df8f56a9 IP172.67.222.245:0
Hash018598ff9794435b440d1bbf293cc10f 9129b0ca1a4febdf97636946a1fe7be8abf11890 898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063
POST /cdn-cgi/challenge-platform/h/b/rc/87ffabe7df8f56a9 HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Content-Type: application/json
Content-Length: 596
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=EryhFo.CSwKKYhgk2GpnKsaaHZW0zNxz2q8sieg0fuA-1715068775-1.0.1.1-Gc_hj1AHyWRn6ylk3w0CnDcTnxbIe.ggcGeJEsLQUouZ6t8MsKlsACaFp07AdlLRzM3Kw1IpnFqT_amWnUs0eg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:38 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=_l12MuDdtFRxRMgVBd1LHCQ2W6gVX2dmtj7RstfBbnk-1715068778-1.0.1.1-f_ZCz0G8ss6UHKkJzNpCVXTy6j4sLa5ggLACDCl.O.Xmaw_dm8FeQT3vPu5yxEFhVYLf8wJ.1064aVNv7isoiw; path=/; expires=Wed, 07-May-25 07:59:38 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O4z%2FaYbMdKKWhs0K%2FR593Ml5RAFGyN3JxNXPDXsVHLieZDItBhpCA0vvnBu0SiWkvqjqc8whgbmFgq76AE3mGKyfzlaXZ4SW5KEaq03LZ0phyz%2FZ6ZS%2FPAak8HR9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffabf91a190b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js | 172.67.222.245 | | 7.8 kB |
URL topgan.top/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js IP172.67.222.245:0
File typeJavaScript source, ASCII text, with very long lines (7796), with no line terminators Hash130b9cf730bbbb2b2e738a49c78fb10b af5551b96a426ac1691a5ecb3fd9abaa32e421e9 42b41e232392e37e178219b8a5c606ce445ee0205ca73cb7feabf4186dada406
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:20 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kHid3nykpLWiv4n%2FFaMxA9dhAK63n59lCo%2FTXtxrbwz9jTzhej2m6dPm2vm9R74eBFy61c1Iym9ZJYb%2FRZSZmEa47W2ObGIrddrqxqUV62bCQghfxZjFVLGO%2BzhV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffab8bfad80b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.138 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.138:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:09 GMT
expires: Fri, 02 May 2025 02:01:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 453509
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:38 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87ffabfc881f56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabfbcea756a9/1715068779288/99dd4d99f9a83e0dc7293067824633be50e8580290eca79b5a0871fe8704f4a1/Hkp8e5peDyczNrr | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/87ffabfbcea756a9/1715068779288/99dd4d99f9a83e0dc7293067824633be50e8580290eca79b5a0871fe8704f4a1/Hkp8e5peDyczNrr IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/87ffabfbcea756a9/1715068779288/99dd4d99f9a83e0dc7293067824633be50e8580290eca79b5a0871fe8704f4a1/Hkp8e5peDyczNrr HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Tue, 07 May 2024 07:59:40 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gmd1NmfmoPg3HKTBngkYzvlDoWAKQ7KebWghx_ocE9KEAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAycESnW8nWijopFBbXs0ShsFXencIiaM4x8DmoYUMDVIj9LKs0W82Vt7SxGoLjV854ZLsONjPcD9gaNsV1U7ial-U1eHrh6bc6pi2_dUVK8NsyLnCLOtvOiP0SY8vabqRR4dPd6S61Y-diDWwToPoCSioJqJhohK4pCLZ5_YF-5VfEFiyMTtIeFQadCwQWCTWWHJgK8wlIzn3e6mBeQZJ1VsOf21BzIlCKUydJy4Pf1ah0N7KjgN2pp4S9j2sSUl0ZbfnPznB7zO130ijqjcDO7wydsvznYw_ApvEdn5mKTlOFBQM1jktH72KBkAGAS-M4Zko5MazCXVbKxK3oLAhkwIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIJndTZn5qD4NxykwZ4JGM75Q6FgCkOynm1oIcf6HBPShABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 87ffac039c1256a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87ffabfbcea756a9/1715068779292/JjmprupjVBRTVAI | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87ffabfbcea756a9/1715068779292/JjmprupjVBRTVAI IP104.17.3.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 86 x 57, 8-bit/color RGB, non-interlaced Hash3bb2a5e82b27ea922628b91acb95ad51 f973a8950d0fabab63ef59ee6a1dfe81784edf32 c9ab02b9b0f744555ce4fce9f12b411f33b247f77ee790e15547224696a3705e
GET /cdn-cgi/challenge-platform/h/b/i/87ffabfbcea756a9/1715068779292/JjmprupjVBRTVAI HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:40 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87ffac048dcc56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js | 104.17.3.184 | 200 OK | 18 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js IP104.17.3.184:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42565) Hasha5b92920e25651d2058f4982a108347b caeeadd68d38fdb681c52006c68880abc2e8a1a6 49a5abedf03eb8ad9a66eca7c5ccb8e59a440e06958e1e7b71d078f494178dc5
GET /turnstile/v0/b/ce7818f50e39/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:38 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ffabfb6e1256a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1422075634:1715065837:MwNpJRiO5zI93duowQtwyGs2Ir5IcBvqoCfbrqYNlPY/87ffabfbcea756a9/56798e28992b109 | 104.17.3.184 | 200 OK | 100 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1422075634:1715065837:MwNpJRiO5zI93duowQtwyGs2Ir5IcBvqoCfbrqYNlPY/87ffabfbcea756a9/56798e28992b109 IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash3c4815f90b2b114de9f27cb76786af19 aa06f54b2cec8638714c5e8d5df091fe154f3ba9 58ef1b5e1d9647d05deaa6b265ceac2e54a057ed8648805f70e962add02ea432
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1422075634:1715065837:MwNpJRiO5zI93duowQtwyGs2Ir5IcBvqoCfbrqYNlPY/87ffabfbcea756a9/56798e28992b109 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 56798e28992b109
Content-Length: 2889
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:39 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: myigpDbQDeNek/R+LVCfoH/j0W+JbcsJoB3qNFA5OG0O7Taq2lcZvRjt7oivAsRzrr3vhkg2cUPILO6SOANyXHh1VF99ABzIK1HbkNydGn2vZAsnFQyQ7TzDo/uZvVeMgjJh9bD+6/EppEUPn1q+tYbDWM0gNA0Y/zSK3MWRXzTTGaoZaoBy/WvIfS8cOcMCTI9lKTh8IEB1lMRYPm90z7Y0Z+Z2Elpk7rDhu1WvZZIxiI4k+nx4MaYnBOUOOSwtxXO2Q/BxBr3tdoediqSA62kn2iUj3lrZmqtgfa/0zCPnT5MszGG8IOzOw2TGAqtyzq8MEFQ5PoY5E3xOOn4kNRBjFvzZdH52kR8U+oUCRqT2jgyoIUPb4uUcpRs80+tY1ipCv86NnSco3c+Ml6gHJvK5w5+vuE/zMEmk3QO3mf8=$EkTJhGp8XUkyLaL/3NO9sQ==
vary: accept-encoding
server: cloudflare
cf-ray: 87ffabfe7bc056a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.138 | 200 OK | 31 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.138:443
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://topgan.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:09 GMT
expires: Fri, 02 May 2025 02:01:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 453512
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/pmpxm/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:41 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87ffac0f4ac356a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87ffabfbcea756a9 | 104.17.3.184 | 200 OK | 431 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87ffabfbcea756a9 IP104.17.3.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size431 kB (430649 bytes) Hash8e2b2c061354c8e284b10bfef08c680c b77ac6d14991b916dc1e2e5e3d8726d5adf5b67c 597fd92a9b2a80a8d80c2f71efa161449c1258eddfb115f2c516ec7b00361876
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87ffabfbcea756a9 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/mxdt4/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:39 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 87ffabfc982b56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabfbcea756a9 | 0.0.0.0 | | 21 B |
URL POST topgan.top/cdn-cgi/challenge-platform/h/b/rc/87ffabfbcea756a9 IP0.0.0.0:0
Requested byhttps://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null CertificateIssuerGoogle Trust Services LLC Subjecttopgan.top Fingerprint56:04:B4:58:65:97:1B:EC:AB:A4:8C:6B:9F:69:56:BF:39:F4:D1:23 ValiditySat, 13 Apr 2024 08:36:43 GMT - Fri, 12 Jul 2024 08:36:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashc0d2dca2b5becefb4f548649b038a48a b5b4731244b590edbd2c9aa56bcc8c83af85b969 7a508c70d16bed7c8fa58b4a25f1c06c3186c6c042d45fcd7afd4355078af1b3
POST /cdn-cgi/challenge-platform/h/b/rc/87ffabfbcea756a9 HTTP/1.1
Host: topgan.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://topgan.top/_rebelmoon_meta/zure/7d9a0d11cb36e12a68817aff945390de/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=load&no_redrct=null&pcnt=null&no_psplash=null&pmax=null
Content-Type: application/json
Content-Length: 596
Origin: https://topgan.top
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=_l12MuDdtFRxRMgVBd1LHCQ2W6gVX2dmtj7RstfBbnk-1715068778-1.0.1.1-f_ZCz0G8ss6UHKkJzNpCVXTy6j4sLa5ggLACDCl.O.Xmaw_dm8FeQT3vPu5yxEFhVYLf8wJ.1064aVNv7isoiw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 07:59:41 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=XhyrjQArkMsT9fKKulwIStFJeMrjyTPJ0ohF2XrEAh8-1715068781-1.0.1.1-a2VjiX901W86_QI0wXXoyX3AUAfjfSKFfRRvUkxdKJLY3C7duyJcrN8XVmc7hev6PltjbGvgqNFDxrm.UQpMZw; path=/; expires=Wed, 07-May-25 07:59:41 GMT; domain=.topgan.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u9rUdsdBL5DnWGgFb8VUgHANKtb4yQSTXj5s%2BPo6o511nUSIMRKK60Ib2REKK1zIpZwfR6s5mHlXrexV55z7yZS6UGeBqm%2FHeR5PbMIhHuBYfi5bnFHVkS%2FZCFAn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ffac0b3b910b02-OSL
alt-svc: h3=":443"; ma=86400
|
|