46 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (807), with CRLF line terminators
Hash ec5bb3bfe181c912bc96efbc74edf8b3
2a1a1c5149ab7c7c26fb1dfd7978afb9fcba3fb2
ffa07147cccc2a9cdb23f1f4b26c435ff0ad160e5a7b1ea3b96be5965b29e08f
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:42 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 13:18:51 GMT
Accept-Ranges: bytes
Content-Length: 45514
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
46 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (807), with CRLF line terminators
Hash ec5bb3bfe181c912bc96efbc74edf8b3
2a1a1c5149ab7c7c26fb1dfd7978afb9fcba3fb2
ffa07147cccc2a9cdb23f1f4b26c435ff0ad160e5a7b1ea3b96be5965b29e08f
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 13:18:51 GMT
Accept-Ranges: bytes
Content-Length: 45514
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/style.css
200 OK 99 B URL GET HTTP/1.1 salespays.org/temp/custom/style.css
IP
File type ASCII text, with CRLF line terminators
Hash b2af816e3e0f297e4774c60a643f8f22
e4f70cf0595544f4bcdcca9c4a22cb258c10426c
85ccf1ee0abdc48514cfae474c059c7a25674729d223033bfbef48078e8e2f99
GET /temp/custom/style.css HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:52:28 GMT
Accept-Ranges: bytes
Content-Length: 99
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
salespays.org/temp/custom/jquery.fancybox.min.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/temp/custom/jquery.fancybox.min.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /temp/custom/jquery.fancybox.min.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:34:36 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/aos/dist/aos.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/temp/custom/aos/dist/aos.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /temp/custom/aos/dist/aos.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:34:36 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/resource/views/home/home4/alert/css/fake-notification-min.css
200 OK 978 B URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/css/fake-notification-min.css
IP
File type ASCII text, with very long lines (643), with CRLF line terminators
Hash 0f46a238cbd11ecd4c34398cd88fe05d
904d82352b0f45cad8d98cc7416c265a0cf0e1be
27ef53faac17a2fcf938097d718cbf926cc54f9b35d79815c26ea0e219156d6b
GET /temp/custom/resource/views/home/home4/alert/css/fake-notification-min.css HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:54:10 GMT
Accept-Ranges: bytes
Content-Length: 978
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
salespays.org/translate.google.com/translate_a/elementa0d8.js
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/translate.google.com/translate_a/elementa0d8.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /translate.google.com/translate_a/elementa0d8.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:35:04 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
salespays.org/code.createjs.com/createjs-2015.11.26.min.js
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/code.createjs.com/createjs-2015.11.26.min.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /code.createjs.com/createjs-2015.11.26.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/temp/custom/js/jquery.min.js
200 OK 93 kB URL GET HTTP/1.1 salespays.org/temp/custom/js/jquery.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (65480)
Hash 0b6ecf17e30037994d3ffee51b525914
d09d3a99ed25d0f1fbe6856de9e14ffd33557256
f554d2f09272c6f71447ebfe4532d3b1dd1959bce669f9a5ccc99e64ef511729
GET /temp/custom/js/jquery.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:55:50 GMT
Accept-Ranges: bytes
Content-Length: 93435
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
46 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (807), with CRLF line terminators
Hash ec5bb3bfe181c912bc96efbc74edf8b3
2a1a1c5149ab7c7c26fb1dfd7978afb9fcba3fb2
ffa07147cccc2a9cdb23f1f4b26c435ff0ad160e5a7b1ea3b96be5965b29e08f
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 13:18:51 GMT
Accept-Ranges: bytes
Content-Length: 45514
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/resource/views/home/home4/alert/css/animate.min.css
200 OK 17 kB URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/css/animate.min.css
IP
File type ASCII text, with very long lines (16755)
Hash 7da1b41592f039eecd65d604482c10e1
e966ec2885d74306b80253ef057ea77546b2c149
0add8fcb5a583b1c16238fbe9d0de17c6272726b42be17fdcd9b4686ef5287d1
GET /temp/custom/resource/views/home/home4/alert/css/animate.min.css HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:54:16 GMT
Accept-Ranges: bytes
Content-Length: 16952
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
salespays.org/temp/custom/assets/css/app.css
200 OK 252 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/css/app.css
IP
File type ASCII text, with very long lines (41690)
Size 252 kB (251648 bytes)
Hash 5c1bbdf6873aa986ed18022a3d030cac
93985b83977918fb81eb8aea3a042710e791bfe9
d07b586d31e5d74b59ce8b0e4a278374ca089fc77a11207d4102cd13b760097a
GET /temp/custom/assets/css/app.css HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:59:28 GMT
Accept-Ranges: bytes
Content-Length: 251648
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
salespays.org/temp/custom/resource/views/home/home4/alert/css/font-awesome.min.css
200 OK 31 kB URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (30903)
Hash 13f3e974fe470232be804385973a5656
4c85497e3e30332ae77853dba6d0468991ab51f4
68612bb3020fbe3f2a38e8cd3ca87bc2eba998e2e437e2d2f03b44918d2d2eec
GET /temp/custom/resource/views/home/home4/alert/css/font-awesome.min.css HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:54:02 GMT
Accept-Ranges: bytes
Content-Length: 31065
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery.fake-notification.min.js
200 OK 3.6 kB URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery.fake-notification.min.js
IP
File type ASCII text, with very long lines (1999), with CRLF line terminators
Hash 13d39a7d682712fef9676e8ce3f6a8ce
1c04189c1270cde1219efea0c349b230990b9ff0
a2e77918046fe456ba3d874ccddd3d0bf40a9774c0ffe5d70b08e069b777e847
GET /temp/custom/resource/views/home/home4/alert/js/jquery.fake-notification.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:55:04 GMT
Accept-Ranges: bytes
Content-Length: 3570
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
salespays.org/temp/custom/assets/js/app.js
200 OK 568 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/js/app.js
IP
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 568 kB (567992 bytes)
Hash 1895ea244d126e89e43f651594e9cd5e
8b6472d42eb722742ebcf0b3e8a9237c78d8524e
3080edfd181c84e9a02b4b7c3de1445ff5e8c4d855500deb776b6615dc2a138f
GET /temp/custom/assets/js/app.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:00:36 GMT
Accept-Ranges: bytes
Content-Length: 567992
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
salespays.org/external.html?link=https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;700;800&display=swap
315 B URL salespays.org/external.html?link=https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;700;800&display=swap
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /external.html?link=https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;700;800&display=swap HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
kit.fontawesome.com/8674de77a4.js
200 OK 11 kB URL GET HTTP/2 kit.fontawesome.com/8674de77a4.js
IP
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File type ASCII text, with very long lines (17621)
Hash 01074ad4b2640e73ef6eb654070d91be
f73c891963e4df281e1ff8118014b3c4a2cd6c82
486a60f8c67b84b3e882c9dad42ea8900802a993189c5c1f25f9915dc30fa2fd
GET /8674de77a4.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:43 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F57glditrUz2cFTASRBB
cf-cache-status: MISS
server: cloudflare
cf-ray: 832597ecbe4556c4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
salespays.org/temp/custom/indexAnimate.js
200 OK 583 kB URL GET HTTP/1.1 salespays.org/temp/custom/indexAnimate.js
IP
File type Unicode text, UTF-8 text, with very long lines (4086)
Size 583 kB (583013 bytes)
Hash 74cf91334c59d5c76324849a971580c0
3b56fe6db9c73c3ad7a00341dc9cc4dfac8e64b2
b0ae81165dd22ea20a9dfe56e8d184a5b931fd484f8779fd0ca5c5da56d59f90
GET /temp/custom/indexAnimate.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:52:22 GMT
Accept-Ranges: bytes
Content-Length: 583013
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
salespays.org/storage/app/public/photos/photos/Nv6MZojh34tyRGB5CIGvEvhk3GjrNuP36Cte8Sy5.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/storage/app/public/photos/photos/Nv6MZojh34tyRGB5CIGvEvhk3GjrNuP36Cte8Sy5.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /storage/app/public/photos/photos/Nv6MZojh34tyRGB5CIGvEvhk3GjrNuP36Cte8Sy5.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:35:04 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/assets/images/cross-line.svg
200 OK 564 B URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/cross-line.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (564), with no line terminators
Hash fc886d14b1813bcfea91b800d17a1ca8
aee38eea607990f15b8b65f4a0f039c012394852
c272a901f9e24faa188ca95914b2f63c5a85972c363d2fc6d1606535028c467a
GET /temp/custom/assets/images/cross-line.svg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:04:44 GMT
Accept-Ranges: bytes
Content-Length: 564
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
salespays.org/temp/custom/assets/images/payments/payment.png
200 OK 31 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/payments/payment.png
IP
File type PNG image data, 572 x 472, 8-bit/color RGBA, non-interlaced\012- data
Hash e7e74180798a40edc45887a7b558ad7e
e559b43ae2ceeeb254743c6c74b7bd2167d5ad1f
a678b09ac6bb860198b42b8aa6bb4b295365daf56f6e10bb1a902a47d473b3f3
GET /temp/custom/assets/images/payments/payment.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:05:46 GMT
Accept-Ranges: bytes
Content-Length: 31354
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
salespays.org/temp/custom/assets/images/check-line.svg
200 OK 411 B URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/check-line.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (411), with no line terminators
Hash 28fa356a11fff74d64140cb096f92452
704751b97d9b52a740d7953dae1bc5dad6ebd36b
ed0d2290f4a394da990ccb55bb71e94a4d844bb4db0cdcd149c9d15df9990378
GET /temp/custom/assets/images/check-line.svg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:04:52 GMT
Accept-Ranges: bytes
Content-Length: 411
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery-3.2.1.min.js
200 OK 87 kB URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery-3.2.1.min.js
IP
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /temp/custom/resource/views/home/home4/alert/js/jquery-3.2.1.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:55:10 GMT
Accept-Ranges: bytes
Content-Length: 86659
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
salespays.org/temp/custom/aos/dist/aos.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/temp/custom/aos/dist/aos.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /temp/custom/aos/dist/aos.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:34:36 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/assets/images/steps/1.png
200 OK 30 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/steps/1.png
IP
File type PNG image data, 600 x 233, 8-bit colormap, non-interlaced\012- data
Hash 7c7334408a7750bde8d6f5fab124d22d
b7077633931d6fa0a512d982853029518db94e52
d802ce8db43ae41e1e2cb5b9365b1f8586453a1bac39fe4d7204a8c8ffca518d
GET /temp/custom/assets/images/steps/1.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:05:26 GMT
Accept-Ranges: bytes
Content-Length: 29774
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
salespays.org/storage/app/public/photos/MAINLOGO.jpg
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/storage/app/public/photos/MAINLOGO.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /storage/app/public/photos/MAINLOGO.jpg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/temp/custom/assets/images/investment/notebook.png
200 OK 4.9 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/investment/notebook.png
IP
File type PNG image data, 781 x 455, 8-bit colormap, non-interlaced\012- data
Hash 497d4f2b7616990a18ea385c7ec43988
f8d42e3fb99e2765aaff3f835d01f3c00848ebad
f72c1bd8b5e68e603cf32a93e0f7f135dc183f03ffb03377bd77508aaa8816ef
GET /temp/custom/assets/images/investment/notebook.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:07:08 GMT
Accept-Ranges: bytes
Content-Length: 4938
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
salespays.org/temp/custom/assets/images/steps/agroproductcassava2.jpg
200 OK 174 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/steps/agroproductcassava2.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Size 174 kB (174339 bytes)
Hash 44ecc2b673889bfca4342759bbae4976
77a66d5e08d48b807bd60f00c989818332f9fe31
de6a856a50e3b624c60f2c9210323e15d4e0a6cc5fc6e50d7f1cd0204581fee3
GET /temp/custom/assets/images/steps/agroproductcassava2.jpg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 07:38:07 GMT
Accept-Ranges: bytes
Content-Length: 174339
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
salespays.org/temp/custom/assets/images/steps/agroproductpoultry.jpg
200 OK 55 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/steps/agroproductpoultry.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x422, components 3\012- data
Hash e7673ccb6efcb6f397a7ac72af217410
8fbb7c1cfac70acab4b3b5f37bae6fd40eb7bbf8
7c3764c7aa1c1b5b0f04ede58e10d3f0df89ac5e71bdbbaae09112d6a877b67d
GET /temp/custom/assets/images/steps/agroproductpoultry.jpg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 07:23:47 GMT
Accept-Ranges: bytes
Content-Length: 54850
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
salespays.org/public_html/__MACOSX/foxbit-traders.com/temp/custom/assets/icons/naira1.png
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/public_html/__MACOSX/foxbit-traders.com/temp/custom/assets/icons/naira1.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /public_html/__MACOSX/foxbit-traders.com/temp/custom/assets/icons/naira1.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/temp/custom/assets/images/waitloader.svg
200 OK 1.1 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/waitloader.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1092), with no line terminators
Hash d72074e9bb33673def60d2ca9558e5b7
c2e37973f51153c71ad7ef4013cfcefd5c5c5e5a
6653903542b84e1d7ec4645ddac776bf64da9d6d63c628336b991b9e0003446b
GET /temp/custom/assets/images/waitloader.svg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 05:11:26 GMT
Accept-Ranges: bytes
Content-Length: 1092
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
salespays.org/temp/custom/assets/images/steps/2.png
200 OK 23 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/steps/2.png
IP
File type PNG image data, 486 x 190, 8-bit colormap, non-interlaced\012- data
Hash c4ee3bdcd7966a0985d18a48af069469
e118f3741f983ee77a190b0eed2bd08b7d741400
1a48f6c4d84091ed3fcef8a5e2f65354dbb1c1b6dc3ccdb13afd8ed0eb020bd4
GET /temp/custom/assets/images/steps/2.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:05:22 GMT
Accept-Ranges: bytes
Content-Length: 23246
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
salespays.org/temp/custom/assets/images/steps/agroproductcow1.jpg
200 OK 272 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/steps/agroproductcow1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1600x915, components 3\012- data
Size 272 kB (272122 bytes)
Hash f000d16f772e66cffa63bbc586816cff
98d0d9bb1372d679123c5d47cfaa57556e6f8b50
dfb6065c6440fb00ab64c9058d93873417b2a0623339d68bad56fef089edd84a
GET /temp/custom/assets/images/steps/agroproductcow1.jpg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 07:49:24 GMT
Accept-Ranges: bytes
Content-Length: 272122
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
salespays.org/assets/icons/sprite.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/assets/icons/sprite.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /assets/icons/sprite.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:34:38 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html
salespays.org/translate.google.com/translate_a/elementa0d8.js
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/translate.google.com/translate_a/elementa0d8.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /translate.google.com/translate_a/elementa0d8.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:35:04 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html
ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-font-face.min.css?token=8674de77a4
200 OK 3.1 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-font-face.min.css?token=8674de77a4
IP
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (1560)
Hash cc84affe95dbdd9726525f57d20b4ea6
8cb9c48fba9752c5f6ee36cc3783aef322643b0c
6530f32fa70a330cd76547497f20048ae081dcc897af26befc84600357ba06be
GET /releases/v6.5.1/css/free-v4-font-face.min.css?token=8674de77a4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"cc84affe95dbdd9726525f57d20b4ea6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0f5bbd5df79d112fd797e0d8399395b2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: 5nqC0dSocBXvS-KyYsZ_A52Xil8HvqLH6PsTIQp-kgSytUyT_Ea5Ow==
age: 0
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vQOXBF33%2B6zdGZYta0HxM%2BzjU4YfVyVUva6Br6hu2Znfoj4Rsl%2FXCpFJ%2BuhuZHSGooDuaq%2Bux7NPK8jGIsXbJ40DlBL%2BkLKZwzPqq5DNMgPhPpOPeFrIYz1kQtO6a7xqiWmhGWjg4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 832597f50f1163f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.5.1/css/free-v5-font-face.min.css?token=8674de77a4
200 OK 74 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v5-font-face.min.css?token=8674de77a4
IP
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (608)
Hash 496965a55b1faa4d5c41073ef276afc0
6b0fa3f988c856f1d4599565403fe59a2c7ef65c
f581083ac72ae169a698cd0cb7f02d8bb2e079844bfad68cc98df5b3c4692408
GET /releases/v6.5.1/css/free-v5-font-face.min.css?token=8674de77a4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"496965a55b1faa4d5c41073ef276afc0"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 ca53f639bef01f344039a9cea8b984e6.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: vCKH7SMX-vn6KMOAv5xf132nWhDSSMoqmYM4VMj3KxP0uhuIGH0UlQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b0l2AgjX2gt6dNnZm2ii9rFt71QTJ%2Bq5hptTN4%2FzZbbjwqPiVNj%2BkT34XGc%2BkBUbak2JOj7%2FiP6MWalgrbWw%2Fn4WML8BC%2FU%2FMnLpv9y4MSTeWImNR2%2BEiJn0Cy6BsIM2CkG5Qr5dhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 832597f36c0563f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
salespays.org/temp/custom/assets/fonts/ProximaNova/ProximaNova-Regular.html
200 OK 315 B URL GET HTTP/1.1 salespays.org/temp/custom/assets/fonts/ProximaNova/ProximaNova-Regular.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
NIDS Severity Alert suricata medium ETPRO HUNTING HTTP 200 Stat Code with 404 in Body
GET /temp/custom/assets/fonts/ProximaNova/ProximaNova-Regular.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Tue, 04 Jul 2023 05:35:12 GMT
Accept-Ranges: bytes
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/assets/images/steps/agroproductyam.jpg
200 OK 932 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/steps/agroproductyam.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Size 932 kB (931636 bytes)
Hash c2634786c0d69f9b2c455f49f8ee6ce5
a5839c196f53003f0167f90fd5cf7817c928c8a3
7f502b5996f7ac1f91a667ad8da22bf6e9c79bb83e924485b5032f5b0f0c6dcd
GET /temp/custom/assets/images/steps/agroproductyam.jpg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 07:39:45 GMT
Accept-Ranges: bytes
Content-Length: 931636
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
salespays.org/temp/custom/assets/images/intro/finalimage.jpg
200 OK 770 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/intro/finalimage.jpg
IP
File type PNG image data, 534 x 683, 8-bit/color RGBA, non-interlaced\012- data
Size 770 kB (770185 bytes)
Hash 938e704bb18bc08b577da2fd93255b98
72e2a027b4d624260bce8b6b76f1050b751be720
903b26bf29f4699f0ac41977c4d04572200a6b789d2eb88155776b145cfae177
GET /temp/custom/assets/images/intro/finalimage.jpg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 06:29:39 GMT
Accept-Ranges: bytes
Content-Length: 770185
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=8674de77a4
200 OK 4.6 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=8674de77a4
IP
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (27377)
Hash 604d6da359831b0dc67e0f522f1ff94d
48b776b939a780fde0270dedf7cc163d25e28bb1
5031c11dd77875afefe4eeddfaa320af07fdccea327f7416a5ee8980674c9c76
GET /releases/v6.5.1/css/free-v4-shims.min.css?token=8674de77a4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"604d6da359831b0dc67e0f522f1ff94d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bfeef430c7cb0e2bec29d1eb96011e6a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: JZ5EAqjg5iGFHWRfZYMc3Z99QTyqLMY48qkaFgVBZXYGX-EXRNZtMg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8K%2FMhsK%2FxGwgMXIc17jbE57Pxl82bRjn1%2Fl%2F6wiFFV1a853G7nQ4V8Xh%2FzVdEMg%2BzsACapyiBT5EuajvIqfNbwESvHdrXFeD3al4Uh1ksvqxPqJrnW8JPE7bLmrGFrZDHvy2PX%2FhSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 832597f36c0b63f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/8674de77a4.js
200 OK 4.7 kB URL GET HTTP/2 kit.fontawesome.com/8674de77a4.js
IP
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 105b5ce41c1d3feb47e8d03bc6652c8c
09320a1fffa8c77e9d5dee3510e469a858a76f27
ce19dbc890e3877db3adfc67e0b603a5c0c2cc93f22214cdf9505272b880c97a
GET /8674de77a4.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F57glditrUz2cFTASRBB
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 832597f2fc9356c4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
salespays.org/code.createjs.com/createjs-2015.11.26.min.js
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/code.createjs.com/createjs-2015.11.26.min.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /code.createjs.com/createjs-2015.11.26.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/temp/custom/assets/images/intro/bremby.png
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/intro/bremby.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /temp/custom/assets/images/intro/bremby.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/temp/custom/assets/icons/box.svg
200 OK 577 B URL GET HTTP/1.1 salespays.org/temp/custom/assets/icons/box.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (577), with no line terminators
Hash 6e1800d7ce06ab8ad37757f015bf8c05
cd23cb71080351e7ef1a80d276550add654ed26e
e8123108cb4f9223e7f7a15e362fdd629ecfe4d8815b785f208ac9d2b142c766
GET /temp/custom/assets/icons/box.svg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:00:06 GMT
Accept-Ranges: bytes
Content-Length: 577
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
salespays.org/temp/custom/assets/images/investment/notebook-shadow.png
200 OK 3.3 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/investment/notebook-shadow.png
IP
File type PNG image data, 1014 x 31, 8-bit colormap, non-interlaced\012- data
Hash c527ed45584353c3c5b53fd6943049b9
259606d0c8cb9fc0cd431d9ca1a99abe85463574
4c4c044dddc599dbe4427a1dd8e4fef1d0a97dc8b55719f463f41054404203f0
GET /temp/custom/assets/images/investment/notebook-shadow.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:07:14 GMT
Accept-Ranges: bytes
Content-Length: 3329
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
salespays.org/temp/custom/assets/images/light1.png
200 OK 36 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/light1.png
IP
File type PNG image data, 923 x 935, 4-bit colormap, non-interlaced\012- data
Hash 396805e17da85a6ebb16319608eb4175
bc57986a68fc96139e31a05d9c99bdc4187b01eb
84e4c31f3f105397e084146d0659875bff20fb02e8c49008ade52b446697580a
GET /temp/custom/assets/images/light1.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:04:32 GMT
Accept-Ranges: bytes
Content-Length: 35686
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
salespays.org/temp/custom/assets/images/light2.png
200 OK 50 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/light2.png
IP
File type PNG image data, 786 x 1023, 8-bit colormap, non-interlaced\012- data
Hash bb0dad0f15f5b1d5f46c149c625dc688
452697f998b497778ee5376c2f900be0db4df057
4aa9fdb6f7054cd7f2bfca348d013a070c3b16cf6a7c9b5aecd03321e00078c2
GET /temp/custom/assets/images/light2.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:04:26 GMT
Accept-Ranges: bytes
Content-Length: 50537
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery-3.2.1.min.js
200 OK 87 kB URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery-3.2.1.min.js
IP
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /temp/custom/resource/views/home/home4/alert/js/jquery-3.2.1.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:55:10 GMT
Accept-Ranges: bytes
Content-Length: 86659
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
salespays.org/public_html/__MACOSX/foxbit-traders.com/temp/custom/assets/icons/naira1.png
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/public_html/__MACOSX/foxbit-traders.com/temp/custom/assets/icons/naira1.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /public_html/__MACOSX/foxbit-traders.com/temp/custom/assets/icons/naira1.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery.fake-notification.min.js
200 OK 3.6 kB URL GET HTTP/1.1 salespays.org/temp/custom/resource/views/home/home4/alert/js/jquery.fake-notification.min.js
IP
File type ASCII text, with very long lines (1999), with CRLF line terminators
Hash 13d39a7d682712fef9676e8ce3f6a8ce
1c04189c1270cde1219efea0c349b230990b9ff0
a2e77918046fe456ba3d874ccddd3d0bf40a9774c0ffe5d70b08e069b777e847
GET /temp/custom/resource/views/home/home4/alert/js/jquery.fake-notification.min.js HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 10:55:04 GMT
Accept-Ranges: bytes
Content-Length: 3570
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=8674de77a4
200 OK 603 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=8674de77a4
IP
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (27377)
Size 603 kB (602847 bytes)
Hash 604d6da359831b0dc67e0f522f1ff94d
48b776b939a780fde0270dedf7cc163d25e28bb1
5031c11dd77875afefe4eeddfaa320af07fdccea327f7416a5ee8980674c9c76
GET /releases/v6.5.1/css/free-v4-shims.min.css?token=8674de77a4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"604d6da359831b0dc67e0f522f1ff94d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bfeef430c7cb0e2bec29d1eb96011e6a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: JZ5EAqjg5iGFHWRfZYMc3Z99QTyqLMY48qkaFgVBZXYGX-EXRNZtMg==
age: 0
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OrkTmiKNHT1jSab2zXq7V5Wp5orXXKwc2%2BMNhRcri94SfLezz6PNQzulgB7pKlVx8dL7cnxgfL473OurFrB2A5DIXgLEKVFahVw%2B1T5GtzshW6ZZtxLyjSSFHElcroJUMpmUaXL%2FLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 832597f4ff0163f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.getbutton.io/widget-send-button/js/init.js
302 Found 145 B URL GET HTTP/1.1 static.getbutton.io/widget-send-button/js/init.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0e0a408f3009ae4498e7f3ffc9c5fa7b
113078a9c13645b225d88d5e306709f8994ea817
e3a16c76764dacf8ea25637976a03595564530a9fce185c2145f7c1903f2707b
GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 08 Dec 2023 14:10:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BGQrhGBtRQfpnkpTIpnt6grqa3nCSmboIdaFHGXSLdN2om1DOH9aMB5nrJutNBkiT6jrLgb350wyoP%2Fi5Do5CAjbvj%2BvqQZWbigV%2BS9Ec6YBl62uR4US1kwT8w33oxhQkx3jPBk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 832597fa7b92b512-OSL
alt-svc: h2=":443"; ma=60
code.jivosite.com/script/widget/config/rMGYwS3nj4
200 OK 676 B URL GET HTTP/2 code.jivosite.com/script/widget/config/rMGYwS3nj4
IP
ASN #57416 LLC South Internet
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
File type JSON data\012- , ASCII text, with very long lines (1320), with no line terminators
Hash 1164ec673333e829fce75b07d61af3b5
e559234da2362cada58fc8f24c15f37d6ae19869
891e69deaf99a162f871b6e9a3fe1dd649ebb4eb5921a8ccacf577485f55bf10
GET /script/widget/config/rMGYwS3nj4 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 14:10:45 GMT
content-type: application/x-javascript
content-length: 676
access-control-allow-origin: *
cache-control: max-age=7200
content-encoding: gzip
expires: Fri, 08 Dec 2023 16:10:45 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: MISS
x-node: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2
salespays.org/storage/app/public/photos/QdKEyMcH167GY17gRemDxDvmJwch7NV9fJVoxVcf.html
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/storage/app/public/photos/QdKEyMcH167GY17gRemDxDvmJwch7NV9fJVoxVcf.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /storage/app/public/photos/QdKEyMcH167GY17gRemDxDvmJwch7NV9fJVoxVcf.html HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
node-ya-5.jivosite.com/widget/status/2259688/rMGYwS3nj4?rnd=0.9452194116240548
200 OK 80 B URL GET HTTP/2 node-ya-5.jivosite.com/widget/status/2259688/rMGYwS3nj4?rnd=0.9452194116240548
IP
ASN #200350 Yandex.Cloud LLC
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 138b55adbe6222d71e95cf4e1d1918ef
55f0af823d53fc2206e4df8b3b02fada5898cf1d
6a9394d558eeac5f3a3d04fe4a1223dd994f292cdf3e33171478f29c232f64c7
GET /widget/status/2259688/rMGYwS3nj4?rnd=0.9452194116240548 HTTP/1.1
Host: node-ya-5.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-max-age: 1728000
access-control-allow-origin: http://salespays.org
access-control-expose-headers: X-Geoip, X-Botmode
cache-control: no-cache, no-store, must-revalidate
content-security-policy: frame-ancestors 'none';
content-type: application/json; charset=utf-8;
date: Fri, 08 Dec 2023 14:10:45 GMT
pragma: no-cache
server: foxy/3.2
x-botmode: no
x-frame-options: DENY
x-geoip: NO;03;Oslo (Alna District)
content-length: 80
X-Firefox-Spdy: h2
code.jivosite.com/js/bundle_en_US.js?rand=1701964553
200 OK 238 kB URL GET HTTP/2 code.jivosite.com/js/bundle_en_US.js?rand=1701964553
IP
ASN #57416 LLC South Internet
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
File type Unicode text, UTF-8 text, with very long lines (65511), with no line terminators
Size 238 kB (237560 bytes)
Hash ae32b920b4736f415394b8ac65052eaa
d87d6f5bab6960a9f5dd241bb294ded43fd74530
e8090639c3eea6cfdb36a36aced34e588d98d0942cd6347de134f345d7d894a7
GET /js/bundle_en_US.js?rand=1701964553 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 14:10:46 GMT
content-type: application/javascript
content-length: 237560
access-control-allow-origin: *
cache-control: max-age=86400
content-encoding: br
etag: "656df061-39ff8"
last-modified: Mon, 04 Dec 2023 15:29:37 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-08T13:24:27+00:00
x-node: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2
code.jivosite.com/css/5db333c/widget.css
200 OK 46 kB URL GET HTTP/1.1 code.jivosite.com/css/5db333c/widget.css
IP
ASN #57416 LLC South Internet
File type ASCII text, with very long lines (65536), with no line terminators
Hash b946128fb8c65d604c566f3c47566362
511bf9dcf766c9c244b877f82d9c7fc3feced39e
88af56fb639ad82e4fb0b35c35761db8166e1ce2a5e3768c49e04283e3bdfbb2
GET /css/5db333c/widget.css HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 08 Dec 2023 14:10:46 GMT
Content-Type: text/css
Content-Length: 45991
Connection: keep-alive
Cache-Control: max-age=864000
Content-Encoding: gzip
Etag: "656df060-b3a7"
Expires: Mon, 18 Dec 2023 13:26:26 GMT
Last-Modified: Mon, 04 Dec 2023 15:29:36 GMT
Vary: Accept-Encoding
Via: 1.1 sharxy
X-Geo-Shard: ya
Cache: HIT
X-Cached-Since: 2023-12-08T13:26:26+00:00
X-Node: fr5-up-gc15
Accept-Ranges: bytes
static.getbutton.io/widget/bundle.js
200 OK 114 kB URL GET HTTP/2 static.getbutton.io/widget/bundle.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectgetbutton.io
Fingerprint33:01:8C:4F:31:EF:74:D6:93:89:8F:EF:73:59:C5:D1:E6:2D:7C:D5
ValidityWed, 15 Nov 2023 03:46:05 GMT - Tue, 13 Feb 2024 03:46:04 GMT
File type Unicode text, UTF-8 text, with very long lines (65475)
Size 114 kB (114240 bytes)
Hash 9aa25813160df1f9cc5f336c0f0c5b2d
79f78c0b2c2e3784c3564fe5868f42f9abcd191e
3b0e19778f4f241a89e34976958b6678a29a5fd6a26ac61a621e8c8f61242395
GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:45 GMT
content-type: application/javascript
last-modified: Tue, 05 Dec 2023 09:39:27 GMT
etag: W/"656eefcf-5d807"
expires: Fri, 08 Dec 2023 16:35:24 GMT
cache-control: max-age=14400
access-control-allow-origin: *
cf-cache-status: HIT
age: 2121
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G16jiUU7bEB1XECQiQohHcrv5qXAd1OXRccymW%2BzZnJP%2FilLuvTBmFKQ8iPTJRICHZqBCzMumBQUrePaoTSZxgVcHz9yDl7I56HG%2FPbYwSJxrTDwMWxiE%2FZO6Mxja%2B6zE1IJ%2F0k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 832597fafe207128-OSL
content-encoding: br
X-Firefox-Spdy: h2
code.jivosite.com/sounds/notification.mp3
206 Partial Content 5.8 kB URL GET HTTP/2 code.jivosite.com/sounds/notification.mp3
IP
ASN #57416 LLC South Internet
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 9aa341af370c4e59155717260ba0f282
0c1216ecead8d1409557c843d96202c063f3f252
1112436abea08c851302bba4d4e37a27e25e5ec26b20474667a3369d41154bab
GET /sounds/notification.mp3 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 08 Dec 2023 14:10:46 GMT
content-type: audio/mpeg
content-length: 5808
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "656df061-16b0"
expires: Sun, 07 Jan 2024 13:27:04 GMT
last-modified: Mon, 04 Dec 2023 15:29:37 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-08T13:27:04+00:00
x-node: fr5-up-gc15
content-range: bytes 0-5807/5808
X-Firefox-Spdy: h2
code.jivosite.com/sounds/outgoing_message.mp3
206 Partial Content 5.0 kB URL GET HTTP/2 code.jivosite.com/sounds/outgoing_message.mp3
IP
ASN #57416 LLC South Internet
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash 7bf3e4962a5ecf1f8cbcc2ff3428f531
f75c694461a643d2e096ae8d0f6c1a9d19602eee
d44244617bf21df7a137694fa762d5cab3b82cb9fae8f33de5917977b02b2a11
GET /sounds/outgoing_message.mp3 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 08 Dec 2023 14:10:46 GMT
content-type: audio/mpeg
content-length: 5014
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "656df061-1396"
expires: Sun, 07 Jan 2024 13:27:32 GMT
last-modified: Mon, 04 Dec 2023 15:29:37 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-08T13:27:32+00:00
x-node: fr5-up-gc15
content-range: bytes 0-5013/5014
X-Firefox-Spdy: h2
telemetry.jivosite.com/w
204 No Content 0 B IP
ASN #208677 Cloud technology Limited (Ltd.)
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /w HTTP/1.1
Host: telemetry.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 281
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: JivoTelemetry/0.9.4
Date: Fri, 08 Dec 2023 14:10:47 GMT
ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=8674de77a4
200 OK 103 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=8674de77a4
IP
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (65321)
Size 103 kB (103173 bytes)
Hash edc53d8d44037708e54122b9e30bb2a1
7210b158d88b1e463ba0b08d26835a9fd4e6c57e
b2bfe99e2e78f71c88eb00c49e1392a15531fb6486d0d0c2ea71937dda34deab
GET /releases/v6.5.1/css/free.min.css?token=8674de77a4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:52 GMT
etag: W/"edc53d8d44037708e54122b9e30bb2a1"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 64fe15439df273f1f7429f1dfac4f792.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: Pm0ksAmggGy-KrLZFMv5c7j4ftMBv5LhDezyv7OcjjS6_vsH4_Qy5g==
age: 0
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R3L0RHdze6SmJWgoeyjeLqwW7YtwPiJGc%2FRMZEyJ7X0kPAPtqC2f3xl1SRA1sOL2LIYdaGfKxQvT8zurtffb0jP1mqsrv5xWMi%2B1jQnFe69V4dpbDk%2B51EF5t%2FJNfa1JRdEJsM6nHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 832597f4fefb63f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jivosite.com/widget/rMGYwS3nj4
200 OK 18 kB URL GET HTTP/1.1 code.jivosite.com/widget/rMGYwS3nj4
IP
ASN #57416 LLC South Internet
File type ASCII text, with very long lines (17621), with no line terminators
Hash 594268ca98b7212df8e7a97bc62e40f2
dbf607222a5221900a163110cf5fc5cb62b15d12
eb94169a7557a8d64fb38a58ed6c6e50d9a252b59f8f2e0a93f425299bebc079
GET /widget/rMGYwS3nj4 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 08 Dec 2023 14:10:44 GMT
Content-Type: application/javascript
Content-Length: 6886
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=7200
Content-Encoding: gzip
Etag: "656df061-1ae6"
Expires: Fri, 08 Dec 2023 16:10:44 GMT
Last-Modified: Mon, 04 Dec 2023 15:29:37 GMT
Vary: Accept-Encoding
Via: 1.1 sharxy
X-Geo-Shard: ya
Cache: MISS
X-Node: fr5-up-gc15
Accept-Ranges: bytes
salespays.org/temp/custom/assets/images/auth.png
200 OK 598 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/auth.png
IP
File type PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 598 kB (598515 bytes)
Hash 31d4f65c0335c11181c8091a502eea31
b0c1d84dd3f438ea8cda2e970298844b2e4ab1c5
8ccb0271715dfe00fc0138194c139343f25ccbb2560163b5db6cc4eebe8ff85b
GET /temp/custom/assets/images/auth.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:04:56 GMT
Accept-Ranges: bytes
Content-Length: 598515
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
code.jivosite.com/sounds/agent_message.mp3
206 Partial Content 3.8 kB URL GET HTTP/2 code.jivosite.com/sounds/agent_message.mp3
IP
ASN #57416 LLC South Internet
Certificate IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash 8e9a165c4cb185ffd0b2658fa088e43b
195873e5e8bbb2f5ecc32d95f90d6fb75817a649
ff81aad05612f90cf97c238f219765884e5cbf49351d8dc96a4a063c598c3f43
GET /sounds/agent_message.mp3 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Fri, 08 Dec 2023 14:10:46 GMT
content-type: audio/mpeg
content-length: 3760
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "656df061-eb0"
expires: Sun, 07 Jan 2024 13:22:07 GMT
last-modified: Mon, 04 Dec 2023 15:29:37 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-08T13:22:07+00:00
x-node: fr5-up-gc15
content-range: bytes 0-3759/3760
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=8674de77a4
200 OK 103 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=8674de77a4
IP
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (65321)
Size 103 kB (103173 bytes)
Hash edc53d8d44037708e54122b9e30bb2a1
7210b158d88b1e463ba0b08d26835a9fd4e6c57e
b2bfe99e2e78f71c88eb00c49e1392a15531fb6486d0d0c2ea71937dda34deab
GET /releases/v6.5.1/css/free.min.css?token=8674de77a4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://salespays.org/
Origin: http://salespays.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 14:10:44 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:52 GMT
etag: W/"edc53d8d44037708e54122b9e30bb2a1"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 64fe15439df273f1f7429f1dfac4f792.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: Pm0ksAmggGy-KrLZFMv5c7j4ftMBv5LhDezyv7OcjjS6_vsH4_Qy5g==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XsA%2FVbvMMl0pX%2FyIKkqjseNKGy9XNXnueQff1lmx6AMAI%2BAV9TBougi6GmiGZRRUm0ZfTRllhoVrbYxyESQxjdNLcGtrg9LwYuuJA3gCrjM%2BYv2n43j3fdKF9eeq9Xn7E9v1fBfoxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 832597f36c0a63f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
salespays.org/temp/custom/assets/images/logo/slogan-bg.png
200 OK 2.5 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/images/logo/slogan-bg.png
IP
File type PNG image data, 285 x 66, 8-bit colormap, non-interlaced\012- data
Hash 156a7bad7f67926d7dac3cf24ecbc0aa
bbf590f81333d5df8d33c1ae1c9a78b74af65662
92d9a45f530f1401ed84926d12d6f33d442a3efcffea91f7532019b5c3020e60
GET /temp/custom/assets/images/logo/slogan-bg.png HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Mon, 20 Mar 2023 11:06:38 GMT
Accept-Ranges: bytes
Content-Length: 2488
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
salespays.org/
200 OK 46 kB IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:43 GMT
Server: Apache
Last-Modified: Fri, 08 Dec 2023 13:18:51 GMT
Accept-Ranges: bytes
Content-Length: 45514
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html
salespays.org/temp/custom/assets/icons/sprite.svg
200 OK 50 kB URL GET HTTP/1.1 salespays.org/temp/custom/assets/icons/sprite.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (50209), with no line terminators
Hash 82cd27193a7004498a22c5481045d17e
153e87dd1e5eefee4d546452d6e66a001a6e27c0
e76d2ca9da28e340036f24f8406a389fa31c9ca94bdcad9dd7d88b8108953b6f
GET /temp/custom/assets/icons/sprite.svg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Last-Modified: Thu, 23 Mar 2023 15:30:54 GMT
Accept-Ranges: bytes
Content-Length: 50209
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml
salespays.org/assets/icons/sprite.svg
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/assets/icons/sprite.svg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (326), with no line terminators
Hash 97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
GET /assets/icons/sprite.svg HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:45 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
salespays.org/external.html?link=https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;700;800&display=swap
404 Not Found 315 B URL GET HTTP/1.1 salespays.org/external.html?link=https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;700;800&display=swap
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (326), with no line terminators
Hash 97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
GET /external.html?link=https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;700;800&display=swap HTTP/1.1
Host: salespays.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://salespays.org/temp/custom/assets/css/app.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 08 Dec 2023 14:10:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
131.153.147.98
5.101.37.37
104.18.40.68