Overview

URL xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
IP66.29.146.165
ASNNAMECHEAP-NET
Location United States
Report completed2022-09-25 16:02:37 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-25 2 xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@s (...) Phishing
2022-09-25 2 xpodeal.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/buil (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@s (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery. (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/css/frontend.css?ve (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/b (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/style.css?ver=6.0.2 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/fami-sales-popup/assets/js/frontend.js Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/js/frontend.js Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-ad (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/cs (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.s (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.pre (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mi (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.y (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/cs (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.co (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/yith-woocommerce-quick-view/assets/js/fronte (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/slick.min.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/bootstrap.min.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/jquery.growl.min.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/chosen.min.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/countdown.min.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/magnific-popup.min.js?ve (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/lazyload.min.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/js/functions.js?ver=1.5.8 Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/framework/includes/megamenu/js/frontend (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.j (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe. (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-v (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ve (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?v (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/Flaticon.woff Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/we (...) Phishing
2022-09-25 2 xpodeal.com/wp-content/themes/ecome/assets/fonts/Pe-icon-7-stroke.woff?d7yf1v Phishing
2022-09-25 2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/we (...) Phishing
2022-09-25 2 xpodeal.com/?wc-ajax=get_refreshed_fragments Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (14)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.sca1b.amazontrust.com (5) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-25 05:42:52 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-25 04:51:16 UTC 34.117.237.239
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-25 14:11:09 UTC 172.64.155.188
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-25 04:26:31 UTC 34.120.237.76
mnemonic passive DNS ecome.famithemes.com (10) 0 2018-12-10 11:07:29 UTC 2022-09-17 21:03:17 UTC 54.230.111.86 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-25 05:02:41 UTC 23.36.76.226
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-25 08:02:21 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-25 04:54:16 UTC 142.250.74.3
mnemonic passive DNS maps.googleapis.com (1) 33876 2014-10-18 12:00:16 UTC 2022-09-25 10:44:53 UTC 142.250.74.170
mnemonic passive DNS xpodeal.com (93) 0 2021-10-08 04:37:34 UTC 2022-09-25 16:02:20 UTC 66.29.146.165 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-25 05:07:25 UTC 35.82.48.240
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-25 11:00:52 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-25 11:34:24 UTC 143.204.55.27


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 66.29.146.165

Date UQ / IDS / BL URL IP
2022-10-08 21:15:19 +0000
0 - 0 - 6 agileprism.com/wp-content/themes/courselog/as (...) 66.29.146.165
2022-10-05 15:38:04 +0000
0 - 0 - 49 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:04 +0000
0 - 0 - 42 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:02 +0000
0 - 0 - 55 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-01 19:10:00 +0000
0 - 0 - 52 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165

Last 5 reports on ASN: NAMECHEAP-NET

Date UQ / IDS / BL URL IP
2022-11-26 23:32:07 +0000
0 - 0 - 1 beijing2022-winterolympics.com/ 162.255.119.164
2022-11-26 22:29:49 +0000
0 - 0 - 5 www.ukrainianwomen.website/ 162.255.119.41
2022-11-26 22:15:16 +0000
0 - 0 - 69 effexorbuy.com/mtn-n/ 66.29.132.103
2022-11-26 21:58:58 +0000
0 - 0 - 1 chcu.us/ 162.0.209.20
2022-11-26 21:44:59 +0000
0 - 0 - 1 olympicbeijing2022.com/ 162.255.119.179

Last 5 reports on domain: xpodeal.com

Date UQ / IDS / BL URL IP
2022-10-26 15:30:46 +0000
0 - 0 - 2 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 99.83.154.118
2022-10-05 15:38:04 +0000
0 - 0 - 49 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:04 +0000
0 - 0 - 42 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:02 +0000
0 - 0 - 55 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-01 19:10:00 +0000
0 - 0 - 52 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-05 15:38:02 +0000
0 - 0 - 55 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-01 19:10:00 +0000
0 - 0 - 52 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-09-17 13:12:32 +0000
0 - 0 - 56 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-09-17 10:20:08 +0000
0 - 0 - 104 xpodeal.com/wp-content/eMail/ali/li/ali1/ali/ (...) 66.29.146.165
2022-09-14 06:07:44 +0000
0 - 0 - 93 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165


JavaScript

Executed Scripts (62)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (131)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 15:15:01 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qr57tsh9QufqMjyRoKv3dHbknW_MKqYPn9MLsPwzmxomKIE52CKjsg==
Age: 2845


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4488
Expires: Sun, 25 Sep 2022 17:17:14 GMT
Date: Sun, 25 Sep 2022 16:02:26 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         66.29.146.165
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Sun, 25 Sep 2022 16:02:26 GMT
server: LiteSpeed
location: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2mR0wr09fam1zYVflniJz7URq6Eyha3SewKFUHQCoOTQJHU0NaK64Q==
age: 41232
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 25 Sep 2022 16:02:27 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 15:04:17 GMT
Expires: Sun, 25 Sep 2022 15:16:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vVbkPxh3GcN89Q5-li-ioBMZYaqVS9upQt3VcQ7JpUJFias2MGzTHQ==
Age: 3490


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 16:02:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 04:33:11 GMT
Expires: Sat, 01 Oct 2022 04:33:10 GMT
Etag: "d910106fcbd7469efbd08d6c9d4db4a793f2444e"
Cache-Control: max-age=476442,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7504fbf8ce84fabc-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5660
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:27 GMT
Last-Modified: Sun, 25 Sep 2022 14:28:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fI5dKLHniPvKccMtfC2FMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.82.48.240
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qnFu8ZkqaPkXHd3jongCzkwlgZQ=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16202
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 16:02:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16202
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 16:02:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16202
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 16:02:29 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5179
x-amzn-requestid: 57451c31-0b96-4aa5-ae63-54f949ab3d68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQlGrRIAMFklA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2736-0bd483e47d880a837c7316ce;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEBChdfqreTTNtWpSQfl4Eqsjj--P1EoJsFESumBcVJHdFNGSpN7gQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:49:17 GMT
age: 65592
etag: "a7a6043178f05f547a08808ea8b34a6703154b42"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5179
Md5:    b4a034f8a3f2e69e852a69075d20b0e3
Sha1:   a7a6043178f05f547a08808ea8b34a6703154b42
Sha256: 8f1a045214d7049cb9f9a1ab2c55b6753907741b7cbfcb2e02f916f95a56ddcc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12087
x-amzn-requestid: 2779f1ce-50e8-4bdc-b8c2-6f87976a9daf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4WAYErZoAMFYrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd068-1f1831806dffda454e532ac8;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:15:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wsZ5UX2rbxGMECRjV6NR4fTFrfj-jK94RDMZn0_SKU-DDYKHl8JgMw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:14:56 GMT
age: 28053
etag: "96185aa90e560a4bd9462cef2e280561ee557413"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12087
Md5:    0b722574c0e6f63a78a19eff0f100ae4
Sha1:   96185aa90e560a4bd9462cef2e280561ee557413
Sha256: c5b1012f1fca39d949f4b70e69b94bc6e03521d93ab8c38bb30d2c9c43bac633
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LryqVGSkKbiNOwcqXMULY9FXbOuZBBenjgGPDME3NZLZOdp5divXmw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:02:29 GMT
age: 64800
etag: "358e74de395352a9529ff1c17856daf8900888c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6199
Md5:    714af732a9aa1db2b13ffb62810fd532
Sha1:   358e74de395352a9529ff1c17856daf8900888c5
Sha256: 1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5CzA52-o7GYViSJ4lna7ptv9dycJCUL-NLWOk-iCW-ZxDU_FQH_OoQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:51:18 GMT
age: 65471
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10032
Md5:    aa150280eb113504d61a25935c0f0127
Sha1:   ed04f74fbb4c77b21e2babc51a82857f5e23d169
Sha256: 07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5172
x-amzn-requestid: d366d3e0-71d7-404c-a93b-3267852824ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_T5F5PoAMFqWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f78e5-52362b5f0dc1ee8951eebc07;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ean91lOEJLzLQFKy3gBuqD_G-BVw3SMuED20W6ixdkKYvVcMatdGJA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:39:23 GMT
age: 66186
etag: "a881666627e1077859ed1941cee576caf600d798"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5172
Md5:    d7bd3afd3069904500c28e9bb16587e8
Sha1:   a881666627e1077859ed1941cee576caf600d798
Sha256: 78a7b0a2127c583aba569abace503cff376cde67d5faa9a346c1494d91e8f3cf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 66310
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/api/js?key=AIzaSyDKbHmwzL20wAxDfLRnTHeJ0I8uAq_hU_Y&ver=6.0.2 HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.170
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Sun, 25 Sep 2022 16:02:29 GMT
expires: Sun, 25 Sep 2022 16:32:29 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 54037
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2452)
Size:   54037
Md5:    1c9ef0451a82adc443baa8096a40c404
Sha1:   476976c25e6596135bdcbd4f2695dca39ff2d200
Sha256: 70d4a7203817e5efd22f25bb87fe47ff7ab3ecea2a89d37098ce47c5f04f5e84
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 04 Jul 2022 21:40:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   10946
Md5:    d45207ee05c1f0c57dfa075e61405ccd
Sha1:   a8d35143a2d828a739ea0fdde75f97d33621e7ec
Sha256: a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10435), with no line terminators
Size:   1754
Md5:    f7237084ac82ea6a4f5bf1448c3a2148
Sha1:   60457635a5e809ee1199c61090d8e33b91e8e1f2
Sha256: 18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20885
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   20885
Md5:    b949966fb1c62c392babd0eb97a080ca
Sha1:   68842cbc531c38a01569da81eff51b1d358f7734
Sha256: c7804b0b1571c1986e8661aef7343839d797bb368222a537c996b062f1d9f695

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         66.29.146.165
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://xpodeal.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 520_HTTP.404,520_404,520_URL.e26b59d909a0b63f716805705183b4c4,520_
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (20694), with CRLF, LF line terminators
Size:   35173
Md5:    2dffc8ab19e97c0d587625b0bcb3934f
Sha1:   f172e71326a3d2cd1599cb2c79f370c2aaee1bdc
Sha256: 08ae65e8d8110db4ccdefbb9beca3422703a78e8a4fcd1d101f19ce1648e5666

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Fri, 14 Aug 2020 14:33:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2630), with no line terminators
Size:   670
Md5:    6867f0990d852a8660a2d6f7a6675183
Sha1:   0240940bdf174107a14d132fa82b50b1445ff2f8
Sha256: 598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/css/frontend.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1569
Md5:    dfc156d6e3bcd35348d4298e76289570
Sha1:   2a68826831adcd377687888f7d10758405cd2be4
Sha256: f82b9e6e1953b7e0bbf48ad2e359ec69a6e98f4ead5c4cde179883fd45262160

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/bootstrap.min.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18270
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   18270
Md5:    f8b5aa954f8c1610cf960ae8bcaf29ec
Sha1:   8f64d6aaa73e80e8099145753999d116bbf92c3d
Sha256: eca72e6abec248afebd85351f96dfffa00e30ff84fe868ad0d49abafe6f79a5a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.13.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Sun, 19 Jun 2022 18:19:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4583
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (29337), with no line terminators
Size:   4583
Md5:    d57b8bb9da5c87b07c0bbfbf68eedfde
Sha1:   d85a4b62617cef8db8476076d9a2c4b5def0e226
Sha256: 0eccad1a79bcc73c4bd29ff253cd618161eb102c60cc755f42c55f7b85a1b763
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 11 Oct 2021 13:40:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   848
Md5:    c962ba8e7d42ff9da18392b41dad5151
Sha1:   7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
Sha256: 322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 22 Dec 2021 00:24:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1863
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9281), with no line terminators
Size:   1863
Md5:    dc91028c24ac0d7a6f4872a1320fa5e8
Sha1:   508ce388de37cd7cf6eedcea816789880589479e
Sha256: c019b08c90cf3573e8ea887626853781059d1af59698f7929cdc94c84054bddf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-sales-popup/assets/css/frontend.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 475
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   475
Md5:    97cb75cfc1da711328ce7da1c5bb9f87
Sha1:   795186853bc79c95210889c599e36b0a828e63a9
Sha256: 5c4de4e57c001bd0268f6a51e3cc042a5a912679828d7cbb3f79dc6216689b35
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1060
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1060
Md5:    263b70217f905feda4c01edde0b2737a
Sha1:   5ee9d3538967433d441e6aa357bf166724200523
Sha256: 1c82d8152cb3112b7df9b40a89ac28db20e51562266c13d392e8530fc06cd5ce

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12482
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   12482
Md5:    dc07606c6f1719f22e60b5a66b6c83ee
Sha1:   0007da6b48940b57407d4345d997cdea4b062fc4
Sha256: dfc4458610794e60eb66675406a99ffbfc5ece7ac2b6cc172050c32621aaf31a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1683
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1683
Md5:    eafd532a9d530cbb91a75bd98d77b8db
Sha1:   9f90575082e9a0359928a277e681e467e20b02c7
Sha256: a023d8531a89d481d1892417a04d983a4315ab508d8bc31eff0b044984bb2f16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 563
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   563
Md5:    4a3f6bd8206873b5ec0e029498d0c7d9
Sha1:   7a9e00fcf8bf94c2608048536337a5a2982924e1
Sha256: 96749f5be9c5fd41ed7bfdfaa53b89e06a872524e076d4d008a0cd9a412dab58

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6583
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30758), with no line terminators
Size:   6583
Md5:    7bf2a039d8c1c8bdac9e771b009ad318
Sha1:   b70aae17d4b99d0ef67df4a21363423e1aff2543
Sha256: 7618d0c2a6b4303a9223b40b5d4757131b8413fc8ecc0a7dc5a07c3402a8cc63

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 628
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (2115), with no line terminators
Size:   628
Md5:    e3fd66bc807e1548cc7d82279332748e
Sha1:   9037100976dfdc33c17ee65265c982b5fdebac92
Sha256: 98c8fa66dc17a3dd0f94692815fe70b3df4440e355df5f1ea917bdea25211269

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 397
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1330), with no line terminators
Size:   397
Md5:    ac85c45abcc30f4d521928445ee2b369
Sha1:   66b69b56dfe4aebcdac67143b2a68af4e56af938
Sha256: deab7d6997b99829c6a9434002f551f70aa16b55186fa961e8803da53e3c5d3e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1823
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9686), with no line terminators
Size:   1823
Md5:    2958ae46507bb7ec8e452d96dfd883c8
Sha1:   80a4829d2bc8ebed50375dfd0d64551946a9f0f6
Sha256: 8f24dd1e8cc5cec76d59a20d82f5178c6a8859d9ab184335b076fb1999d95bbb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/magnific-popup.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1679
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1679
Md5:    ce4ce941a89517d4a19cf7cc266ae0d3
Sha1:   a7c0aad584b8941245d195702b17add09a76736e
Sha256: bbe19f2a0cae112988859afb12bed2ae6e494bb7608437d24273ceda23448503
                                        
                                            GET /wp-content/themes/ecome/style.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Sun, 16 May 2021 18:11:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 447
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (311)
Size:   447
Md5:    c21cce3033a53bf919417a764da2db46
Sha1:   10093a23a0a1df28a960dd2791f2fe933c4bbd0d
Sha256: aadd1e224f122cc9ed23a25dc48b93234a3ea37f236a2744844f6a7a07aa89cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2922
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (682)
Size:   2922
Md5:    a42096aa0bc38d9e5a8a16db3996faae
Sha1:   31f8ceb607349057299e0e7c429c70106582ea50
Sha256: 0f4c56205d31e27c4b7cdf71deb0ac34006a0a3cefff3a8261ae40f0ca18101d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/framework/includes/megamenu/css/frontend.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 820
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   820
Md5:    b9a0e86f0f568c9ce0e5afafd2187756
Sha1:   c2d8102638a5f3e7f50fd8c4d5fcbdc095921c0e
Sha256: 6810bf8f1fad263198bc93aa2bf238a5d4cd69cfaa653929b3513fcc161c488e
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 11 Mar 2021 01:37:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30273
Md5:    34f918ada1fe4f01c5a4b90065bbc37a
Sha1:   a731f6ce2d413805e39ae45994012b1bd5ea1e2b
Sha256: eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ecome-toolkit/includes/admin/live-search/live-search.js?ver=1.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1049
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (448), with CRLF line terminators
Size:   1049
Md5:    0fdf93ef794130a8ff86d9d37d3c79db
Sha1:   318c55f0470c22ea2851f91b8e0b7df2fe65274b
Sha256: 7795dae495cecc47118b46891c3a5875ad0a8ba4fde6dbae3c83dbf126da4b67
                                        
                                            GET /wp-content/plugins/fami-sales-popup/assets/js/frontend.js HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1168
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1168
Md5:    a8540f20d16c7ed0a95fca629542f1c0
Sha1:   5ab2fe6aa08b3050b0e1d8b3561ccc160ef04e2e
Sha256: 113d6b2523198c8a921bc12fbb8262e27ebb5293d01c8e01a0f5c175c6e5a569

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy/jquery.lazy.min.js HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2206
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4890)
Size:   2206
Md5:    f4e74ab6f9031ba1a684515ededc6b69
Sha1:   63c0630bbafec0944be7711333836bc6d0cce63e
Sha256: ab2a7343e8743ec8ee62deb447aac87a1e528e92f1a609515b468907ab40b8c6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/js/frontend.js HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2538
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   2538
Md5:    3655a952f540b1aeed24d2019587b010
Sha1:   07de3e9836d30a9cb800e1a20ea4ea69260eb47c
Sha256: 83f8b53385240a52b8cbd01e2c085f245533cf7ca776221714fed5d9649bf493

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/style.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 08 Jun 2021 04:20:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36851
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (904)
Size:   36851
Md5:    c24ef7b09a3630fb50e8429a736c1235
Sha1:   976f993d3c37df224835a91459e3903a32acf91e
Sha256: 33a0ac1654e31a9c11fdeb731037870ff5a9c314ceedff8be6f35bc1fdc2efbb
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9115)
Size:   3245
Md5:    66c388e07cfb57895688b3347ab7290b
Sha1:   f23bd7a31995b3b19924575f2afa297a29257856
Sha256: 3971f3ab5179d1f4f91d2c102f27c2bf1dac2c04e2f62ff3eae3ebfa8c28494e
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 974
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   974
Md5:    fd8b126d3265cc6afc5b672273f78531
Sha1:   5058e579885cccf36c44bdeb5b7318bd75952af9
Sha256: 72da6709db061566cb5f67322f674a77f68acb69ac6181d37f9ca4a1bb7287b7
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   321
Md5:    159e4731a0ffba6862ee2a1bbcc8a805
Sha1:   7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
Sha256: c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 21 Oct 2020 03:38:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 857
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3287), with no line terminators
Size:   857
Md5:    f91b0cde1c3ae9c4865dbe50b94b7e96
Sha1:   26c7baee70eca5d442f5f30a7c0ccd0a6187c105
Sha256: 224aecccc666e90a5607c1ee584952f275cae6c6f8cad50f9d9834d7499c4bd9
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11779
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (56243)
Size:   11779
Md5:    bc62c79810f6d9ff2023a3ce01fb17e8
Sha1:   c176d3254f491913c5567d35c85d0d02c6c9300a
Sha256: abe49ff5c57ab5013f8eac78076ef149837282fce42df3f0f526cb440e3d155b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 11 Dec 2019 07:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1728
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7887), with no line terminators
Size:   1728
Md5:    494afef7fdbd631433fe8b40049c9733
Sha1:   e927f43e6ee2f70854247363612dab1107c514ad
Sha256: 54b56f475540254274fa193380ab680e39913768d9a227660bd571bba3456b7f
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 18 Feb 2021 16:35:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3500
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size:   3500
Md5:    8e3bd2af5dfce9709733e4adabb032ad
Sha1:   94aa210458d7103cecb401ef0a71100ea48c2ed7
Sha256: a24331f6cb5f0d263a8aa7a78e9105ec5956f82162f30d718fd23fb325d7b669

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 01 Sep 2022 12:44:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2799
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9680), with no line terminators
Size:   2799
Md5:    8a91034fce0e4a2464d2170d38d31382
Sha1:   f00c20cfcbd136ee9aa20d07085c10f470548fe4
Sha256: 1a8f0bcd2b76caf977b08ed30bdd29eb77405ca4c1fe2315b41f8fe2542f1528

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 24 Nov 2021 03:30:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   934
Md5:    cf25dd071a208312bdc07f34d2cee027
Sha1:   76119563119eaae392ecc8903c989d98d0b93002
Sha256: 8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5350
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (21310), with no line terminators
Size:   5350
Md5:    33081d75af44148dbfd85f7f8f4382ff
Sha1:   a2bac4c76a6a40839a6682df66eb40cd8c4d470d
Sha256: b8dad2c0f7d74cdfcf2b9f96a17f72886b64edab3e392f7d72df15e1c1ac3119

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 01 Sep 2022 12:44:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3689
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12211), with no line terminators
Size:   3689
Md5:    b3777786fbf0ac18aa59c687154a9db8
Sha1:   3f24b0cfae49dc3e70f149edaf203a661cd59c88
Sha256: 8e3993f3b5eb33611a7c40d80d1cb048b4329ebb9ad0d9e8eb583e48fda70bb5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 20 Jan 2021 04:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   899
Md5:    22d65ba38528349e705d912ce26bf8ac
Sha1:   c89ba006009043d93b88ff155b4fec8797330550
Sha256: 6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.13.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Sun, 19 Jun 2022 18:19:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6249
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (24951), with no line terminators
Size:   6249
Md5:    a8cadbc3c514fca4b31fd8d98bd99922
Sha1:   503b0d92ee27b87f4a7f9c5163d25bbadd90bd38
Sha256: 79bf34585f2d00399b1eb5020da9085931f5cb56fdfe643d4db3713959a2e2f0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3952
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34217)
Size:   3952
Md5:    e00926a3c189b2f2396d96d90ac77785
Sha1:   f61219b1a1e4924051c4e5c7acb70cd925173bdb
Sha256: 30a6fd0e5a3610d5074e2a634513348ff8a5a92510d45c6c2621d6bda6b2fd27

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.18.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1201
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4602), with no line terminators
Size:   1201
Md5:    6a5cf02c457796835cd28c6197b3b064
Sha1:   c58cdd6ea85cc624e313c7cfec9ed2d27e609703
Sha256: d596e6c774b8f750e18905d4279d8dc1adbe532b7b6faf90241e01eede68d44a
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4457
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11827)
Size:   4457
Md5:    ad837a8d18fb12f3db5d03cef2956caa
Sha1:   520179c7b4cd32f94386f4576e439e3689e18747
Sha256: b6618604f7dadbad0b877cf727356465919707ceec7965c340adeca61d824b36

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-quick-view/assets/js/frontend.min.js?ver=1.19.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 15 Apr 2021 13:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 875
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2014), with CRLF line terminators
Size:   875
Md5:    5720e01542059f32467265876b344f35
Sha1:   7c7fc90b634d60337fb4beb8fad6155bb0c0b276
Sha256: 61b47b87d57ef0ae60ad79e8c3f3cd7fa16768aeff18768bbdda1066bdaa7f8a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/slick.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10319
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46782), with no line terminators
Size:   10319
Md5:    42a176600acdaf90c34591ac79b597f2
Sha1:   26c44c764104877ab7c30e215cf62f39e5bc1ccf
Sha256: d6f2eb1e0dabc9199d469b3cec024a30a8609272e6841016fe9b23186f9eb18a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/bootstrap.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5300
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19231), with no line terminators
Size:   5300
Md5:    a947f50a94af5a31ca82dc99bc91385f
Sha1:   fcbbd45ed579b756148b399e5f6a2d7f1002314d
Sha256: aec0420871f0a41b23bb2b9848fa6c7b01b8281898209597786b06b3ff97698b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/jquery.scrollbar.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3892
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11879)
Size:   3892
Md5:    7630ab41f54e4ad0e1bf26dc8a1c04d9
Sha1:   ab7ede001162b62c69ec7c77d867575307968893
Sha256: e32b7e1e903512a39a7314abe133e7f978cf8ec0ed05d3f68753714fb477a820
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/jquery.growl.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1560
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (5797), with no line terminators
Size:   1560
Md5:    43a49723f88af3048eaa422ca65c5564
Sha1:   54c84dac91a0e25c7ef83a18370eb22dcaa877b1
Sha256: bb4bb00e62002a74c2df9e6c3a0bac265894c9a020891e23fe6017e1a2a213db

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/chosen.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6300
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (28882), with no line terminators
Size:   6300
Md5:    0e65af36588d1db51d60ae82283e4646
Sha1:   256f31af54d1de3357e9f558b30edbc231fc91de
Sha256: 05e0dcbc1718752d450480d3c8d36bf7c600609515871de9ce68c0da31c15f41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/countdown.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1590
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4136), with no line terminators
Size:   1590
Md5:    c3311ba759bff377a93be2da014be69f
Sha1:   a0a469c5be2f8fa35e94c2340499ed10f419b5f4
Sha256: 474684481430cc300f2641dec9acdb58f6d1557bb3781255ce3f0aa75d0e143d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/threesixty.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7483), with no line terminators
Size:   2422
Md5:    3d234ebc71b4ea68e11ed22f342fd1e4
Sha1:   125c27e8ae92594f53a48d193fdcc2d9312ea014
Sha256: 46736161821f04f57beb18ff6780bb8a9d52b981001ab549bb667f2d9e255dd6
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/magnific-popup.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6965
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20087), with no line terminators
Size:   6965
Md5:    5b52c86b5ffcd4a52589460441cccee6
Sha1:   ffd38d960569603b3bfa83aac25efb62ef6fb2ea
Sha256: e91168e8781c8fe362374bd4d4d267c0788964db1478c4a8fbea2129528d306a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/libs/lazyload.min.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3356
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4890), with CRLF line terminators
Size:   3356
Md5:    43394eb4b396cacdc154a374f039ee4a
Sha1:   79845381a5a3e9ed6c4a4af08ea6c0f5111c6737
Sha256: 525e7d16a1478db4a960a3038c58df70d2cdb508ef5a4d9e4225d6d5724bd2e6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/js/functions.js?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Fri, 21 May 2021 19:06:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8024
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   8024
Md5:    fc45eb3af3274451954800d1d1ca6e60
Sha1:   2803e1dadb514eae02bf049eb2e629d998beb6cb
Sha256: a9fd0e3a4b9ac5671243e3502d70156ddf326db2f3b699a20d6dc4b5c1043416

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/framework/includes/megamenu/js/frontend.js?ver=1.0.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1874
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1077)
Size:   1874
Md5:    51169af3f427311db33c1494ba8652c1
Sha1:   aad09e5ceb6b98f6e04cca6d1f4da7d1ff3d9fbf
Sha256: ca65a57f7288f276257ac139d778dee2d0d1e9588eaf7972c5d917e53fc6bfb1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ecome-toolkit/includes/admin/mailchimp/mailchimp.min.js?ver=1.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Mon, 01 Aug 2022 16:27:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 300
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (726), with no line terminators
Size:   300
Md5:    f4b15f0fedc3e96575f0bd1cae5ed54e
Sha1:   cd77595f9187513e9a2f53f663ca26dc700dac42
Sha256: d1a5c29582ad7cf999be8928e99afb42285f6310706531c84b7c4571c9b9faa9
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Sat, 26 Jun 2021 00:20:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 646
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   646
Md5:    6545e92af6fa2c33aed6fb1d0492af5e
Sha1:   b95b4d49921004f3a23ea8d057beadd4d45a6d74
Sha256: ef9475d7d2b07f279a49a8458afc74f865810087e299437ef355024b93929eb2
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5560
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20418)
Size:   5560
Md5:    c15318397253a9f8bc4e80fc9be51955
Sha1:   543b224eb0fce0d85b1290a1e20c3b2415be3a22
Sha256: 2d67bfb3628d93c140d563b4bc572f54da1e330fb8d54ff9035214607a5bde6d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1041
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2600)
Size:   1041
Md5:    58ae168dadba117e645a850bb22c9e48
Sha1:   b397d052c90ecf4b48209a86ecf72bbe90a0d87f
Sha256: 8adec06492eb0bb02580aef8f86d4a420997a8d56393d526785498e266d1af06

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11613
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30938)
Size:   11613
Md5:    26ee07c645a18d43b915f888356868e8
Sha1:   67afa92b2d66c314451378e692b6b3bf278f9c75
Sha256: 369ed192b03b104959e6c16572b663c9017658a6c8687cc88ffa7e441a7d02c8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3436
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13887), with no line terminators
Size:   3436
Md5:    25fb50f4945fa93ea85568456a86fa97
Sha1:   0ea82027ad4720f101de9715adf4ad963a326207
Sha256: c84cd16cc99c06eec7939713048efa3f35d176236b4c9740e3eb060c12791fb3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Thu, 28 Apr 2022 00:09:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7176
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18876)
Size:   7176
Md5:    8f44fac7de7704cc9c42ca9cf95071b8
Sha1:   1fa95065580a736700586a6c6ba1e0c3304d301c
Sha256: 89d8fb5c9897186f5d8295777f8eecd5c9a8ec5a40b0e01b9afe3e6ff851a4a1
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 12 Apr 2022 15:26:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4619
Md5:    0232689bd203f330529b36a437f41a68
Sha1:   9046583f7469ad38297969f10a9513eb895d5316
Sha256: feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1713
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (6322), with no line terminators
Size:   1713
Md5:    9c56675b1e3db79804c16b978c50f296
Sha1:   fb27a61dc9588565546c88e72a545323060fc21a
Sha256: 5dc76185932b04ad3ac26b69e8446ca5e2b123ae412aa82f2f13dbdf0c5cbf9d
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3432
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (9536)
Size:   3432
Md5:    eed261640a13b609653053d2a638f872
Sha1:   93cda65548c43a123c56258d2e8886f9b4a2c2b3
Sha256: 6a5412cadd9b2553341185b32a0614f4c45e400441a7852841a8d886fb0c2f6c
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45472
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42889)
Size:   45472
Md5:    7b6e082bde2cd00810b3413baa28da45
Sha1:   4b18394c3ab61e2dae4eae87b00cdc74f2339447
Sha256: 30fe548881461bdef9c96b8faf55eaeeb8759dcb83049beef418e939b9f965b0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/03/logo-1.png HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 03 Aug 2022 22:12:17 GMT
accept-ranges: bytes
content-length: 33352
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 429 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size:   33352
Md5:    8ea6ec0f426d44d0abc23c14dcfab852
Sha1:   c0e5b253f98c8d354afcce06e7a383601a72dbfd
Sha256: e5b55344d430e21f411d3344e5781369e278fa00a4d66da5e005ed835c94eab2
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 42005
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65358)
Size:   42005
Md5:    a42125daa1bf4835bd80f616b2f538ec
Sha1:   f6fbf48eec4c1e3d203d713ce29aa7e8a3742305
Sha256: cf455434a5ed07a1fafa1052cd1fb1fa750957d2d25cec8284743d41179c8040

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 91616
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64268)
Size:   91616
Md5:    b53538a16c908f348a97bd9418b8970b
Sha1:   29aec0d4185ab6cd2b9fd8ced8572a4ad0cb0d2e
Sha256: 94cf091b04cabc5a26f25c8a3bfbd23fcd08b6a0f6c13b0339ebecc4a663db2e
                                        
                                            GET /wp-content/uploads/2018/03/tv-video-1.jpg?id=1468 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         54.230.111.86
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/tv-video-1.jpg?id=1468
X-Cache: Redirect from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PzwlCJHX3P5-qdub9-A34rn5e8d7tHvnpkJPoiD3XiDpURaTPJ-hpA==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /wp-content/uploads/2018/03/Headphones.jpg?id=1445 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         54.230.111.86
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/Headphones.jpg?id=1445
X-Cache: Redirect from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1u_7brXgWwJy2bugF5BaKYsq5O5klob4IQ9r46Yy7o00tk-0It8FGA==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         54.230.111.86
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428
X-Cache: Redirect from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: niId11rEtN5_vK8pKFj4VXL4rkauUryAyK8yIaxmOQI3oS--69rjLQ==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         54.230.111.86
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817
X-Cache: Redirect from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cYrOuIxTkidf3SXdur3qYLYkHKBjIvUqsVtGO8D0IKHI9JY1HhHqeQ==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /wp-content/uploads/2018/03/footer-bg.jpg?id=1273 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         54.230.111.86
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/footer-bg.jpg?id=1273
X-Cache: Redirect from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uJrH6PnmWDuLFOw9fsYaK2pGm_kQb7k5lDXjlyNaehig-t4aIICgCg==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
                                        
                                            GET /wp-content/themes/ecome/assets/images/select-arrow.png HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 153
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 40 x 40, 4-bit colormap, non-interlaced\012- data
Size:   153
Md5:    e8d09d5a457ced998ca1a9b84170c021
Sha1:   0e126d8206a554e700b560d4027fdc7e33830c20
Sha256: eb5780b5781a430db9ff9061e9457161b5b507e55cfddf13cb346516267be8d6
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/flaticon/Flaticon.woff HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/woff
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 7832
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 7832, version 0.0\012- data
Size:   7832
Md5:    82218c29486a1d0f5c6475dceb46a6e0
Sha1:   f0ebbfd17c449bd6472bf6c0f3aa4c3694c85532
Sha256: 90159dcfb2e0dd4d1eea0321496bb4feea642d977b0b04bef0e43bb69a34db68

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jnUmt3cEUijkwqlcQHULHoAwEeBspJ6crrv6us8HM53nvTeBkFPQqQ==

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 145R8ws8Pk0VwQ1kE7LzwCogCOKl2sY1ysoVIV_sQBiWYPZ_iOF2AA==

                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-length: 75760
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Size:   75760
Md5:    832f6e62aaf3909d6b94c8a9c1e4dd51
Sha1:   4a06418cb56a66af5a1c0f59791469dea1dc87fa
Sha256: 8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Roman.otf?v=1.0.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/otf
                                        
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 29044
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  OpenType font data\012- data
Size:   29044
Md5:    c50cafe27126364ceb9f08dfd666645f
Sha1:   611ec84275a93082e935456ab679e3f5c59f3124
Sha256: ee554630913ac7b7359ea477479234f7366c546bbe9a1494ae686f24727701f7
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Md.otf?v=1.0.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/otf
                                        
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 29148
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  OpenType font data\012- data
Size:   29148
Md5:    db8b90d6037c4eef42c5a2ea7fec4071
Sha1:   a45cac9e1837eb45dd7a02efdcf83e4b69f96d9d
Sha256: 72ccad6dfae41007c5a11bc419d276971f54ffeac0af9ddc4402f486fc7bea26
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Lt.otf?v=1.0.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/otf
                                        
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 28980
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  OpenType font data\012- data
Size:   28980
Md5:    4f27a4e5a731a020f10179da42fd4df2
Sha1:   eff7122718f03dbc8f13085ce4d3589e1e4ea503
Sha256: 4f6a454460e1cbc10c50d4cc9c556bb7e5cf36bebacd6eff87a22fa3ef35eafe
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sjH_ZsbUDRiNbWlJAtE4F2YB7VmiEbWqjrFn5n6q_jPkh7-icmNI6Q==

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xooGZt8Ic1Ofa__Bxcxy4xKSU9i-f8HsMWy2bu1hqzgvBljtUEzJ9A==

                                        
                                            GET /wp-content/uploads/2018/03/footer-bg.jpg?id=1273 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.86
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 15750
last-modified: Wed, 20 Jul 2022 19:49:55 GMT
x-amz-version-id: JTdaLEokqgzu.zEnloPobPbmpsnJ1jlZ
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:31 GMT
etag: "84b168daad5bd05562223d1fe29eb6e5"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 46TPWOlmJ6NYWHHelzmiKAKkhiCoL7ZfDjM1rNAfiTr8C7Ywepo6dg==
age: 51521
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1899x562, components 3\012- data
Size:   15750
Md5:    84b168daad5bd05562223d1fe29eb6e5
Sha1:   0d811834ca06d3c97ff852bc6395940b73941915
Sha256: fb599fcd11041f9424b2f67b5516a008236a90454e342512396e066f31e1f226
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 77160
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13564
Md5:    e7d4bfa72a1f7d352fa6605501a3e2f2
Sha1:   afd94b571eff9da7d85490bdb4c9874419cd260d
Sha256: d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
                                        
                                            GET /wp-content/uploads/2018/03/tv-video-1.jpg?id=1468 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.86
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 32489
last-modified: Wed, 20 Jul 2022 19:49:56 GMT
x-amz-version-id: SVepS7YXb9YnGBlN3gsJEGMQPrfpoElX
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:31 GMT
etag: "2ee4773ec8d286e773ae323ecad86a52"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6kpPiu5MTPBHixsoBkcUQbHnoLg4Pm0DIvfy-HbrRiOZBcW65ckTTw==
age: 26965
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 721x469, components 3\012- data
Size:   32489
Md5:    2ee4773ec8d286e773ae323ecad86a52
Sha1:   1b3d6a7ede87c97b13199dd92478d83c833982ff
Sha256: c6b80cbf0a6e4bebfc434cad3b85f0cd098c8447d302240b6c56cd6403377fa3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BphtuRr3XDnpXkcNGud2-MyBh1SY911DbhKkhngfBK635TQTxtPCLw==

                                        
                                            GET /wp-content/themes/ecome/assets/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/woff
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 58556
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Size:   58556
Md5:    b38ef310874bdd008ac14ef3db939032
Sha1:   7e544bb11b7655998db6f324c612f7ffbf0ab66e
Sha256: 6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-length: 75368
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 75368, version 330.32636\012- data
Size:   75368
Md5:    859c4002d9954718cac1ddea5555698f
Sha1:   2392ce297c92bcf2c7d5a4c461a582dadc8039c8
Sha256: 5054ab369966fea3657ac6af00c3bc47bdc9e7b5114e61d1764be06213ca9781

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.86
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1099
last-modified: Wed, 20 Jul 2022 19:49:19 GMT
x-amz-version-id: Fn0r4nql6KAFFtMAVFNbebF2slw8KVwT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:32 GMT
etag: "1c74ee34c3bae47628389db79fb62632"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: thQbcSQQ8mrbA2v_JXz7s2i9cCIkcAy2gfDecfxUL5GZVghN75GlUg==
age: 39644
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   1099
Md5:    1c74ee34c3bae47628389db79fb62632
Sha1:   87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
Sha256: f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
                                        
                                            GET /wp-content/uploads/2018/03/Headphones.jpg?id=1445 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.86
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1099
last-modified: Wed, 20 Jul 2022 19:49:19 GMT
x-amz-version-id: Fn0r4nql6KAFFtMAVFNbebF2slw8KVwT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:32 GMT
etag: "1c74ee34c3bae47628389db79fb62632"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rvqejHihF-bzgFFzq3q7VfGhJmKg6pKCBFJa96caYrqEYbnUBO4ZlQ==
age: 39644
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   1099
Md5:    1c74ee34c3bae47628389db79fb62632
Sha1:   87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
Sha256: f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://xpodeal.com
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
x-pingback: https://xpodeal.com/xmlrpc.php
access-control-allow-origin: https://xpodeal.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: 520_HTTP.200,520_HTTP.200
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-length: 622
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (622), with no line terminators
Size:   622
Md5:    79b83b532499d28a6fc4b6c0ddb09e2a
Sha1:   9a27ddfaeeccd494fca0af7628a2e8b0bd48e921
Sha256: 3c43404f3b393d3645a6d0d7eeb0f2e33fc040c6a9db3642b569c1a16b5882a9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 404 Not Found
content-type: text/html
                                        
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-length: 1238
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1238
Md5:    0bde7d4b3da67537eaf9188e6f8049cf
Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a
Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
                                        
                                            GET /wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817 HTTP/1.1 
Host: ecome.famithemes.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.86
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1099
last-modified: Wed, 20 Jul 2022 19:49:19 GMT
x-amz-version-id: Fn0r4nql6KAFFtMAVFNbebF2slw8KVwT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:32 GMT
etag: "1c74ee34c3bae47628389db79fb62632"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ODfmAa8y_KD5AaF0kgd7bNXUGq3tdgBOmLTKPGTUOhv3EcO8NtIYCg==
age: 39644
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   1099
Md5:    1c74ee34c3bae47628389db79fb62632
Sha1:   87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
Sha256: f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
                                        
                                            GET /wp-content/uploads/2018/03/Banner-top-1-1.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:09:02 GMT
accept-ranges: bytes
content-length: 1099
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   1099
Md5:    1c74ee34c3bae47628389db79fb62632
Sha1:   87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
Sha256: f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
                                        
                                            GET /wp-content/uploads/2018/03/logo.png HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:07:48 GMT
accept-ranges: bytes
content-length: 3524
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 36, 8-bit colormap, non-interlaced\012- data
Size:   3524
Md5:    c6ee3cc793939cf3fe495034350f4846
Sha1:   b2d5171dfece1809b8b0c4bbfcea2b3909229a26
Sha256: 01fe16390b7907b7ece17e6152eb782482f00cc0c84166f8b59f339f40514cdb
                                        
                                            GET /wp-content/uploads/2018/03/menu-cat1.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 4161
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Size:   4161
Md5:    4f77cf2418bc80095d282b0911e6e18b
Sha1:   4982952a471e651995d0b877847b33cab34289c3
Sha256: 2af9ed181994fd03b4fcc3de6234e5214946fb75b29b1524a61c910c7785cfe2
                                        
                                            GET /wp-content/uploads/2018/03/menu-cat4-1.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 4973
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Size:   4973
Md5:    9e1a41597500f5ba461936b18e1488b1
Sha1:   36b829f0608fec11e6b745ca992e46e38dcedd97
Sha256: eee19a365a1c9f83d75dfdd9881d214696acd893317e4bb61a3ddf7cce6de5c6
                                        
                                            GET /wp-content/uploads/2018/03/menu-cat2.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 3020
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Size:   3020
Md5:    72b0451dc92f4b402dccea52e058c351
Sha1:   d29f80d6b2df24aced0224eea18c57865d1a7246
Sha256: 1a6e814cba0bd2a953378aef1971a2fb5042fdd6ce0cf15b866b1c3c5f115cb5
                                        
                                            GET /wp-content/uploads/2018/03/menu-cat5-1.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 3269
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Size:   3269
Md5:    04b36d147dd9b3428509f91564dbc4ac
Sha1:   0d4cb7900711cfc357ab4b6185d4f680ed2742e6
Sha256: 0a9f3e18875771d2a94d27289fb9f62dd7c00d187041360b00799bbe009af815
                                        
                                            GET /wp-content/uploads/2018/03/menu-cat3-1.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 4133
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Size:   4133
Md5:    c03d6b86a5a2658e4ca02d0cd94d0c37
Sha1:   153dd445f53c59de283b38ef16f242f1f1fbc7bd
Sha256: 82ff81c0563b28161b00f29ae6af5c6f77e9fa3a26006a9bb607578756f66ea9
                                        
                                            GET /wp-content/uploads/2018/03/menu-cat6.jpg HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 3196
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Size:   3196
Md5:    a6f3a4e7dcc8b4190f8feb312bb78c1f
Sha1:   0556485cad5a0a7fe7eca11ee8bef7b6a65a4d22
Sha256: 8cb6f1759549cb0f725a0696081813d2f9f189eeda7811d820beac030684904e
                                        
                                            GET /css?family=Rubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CLato%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CRoboto%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 16:02:29 GMT
date: Sun, 25 Sep 2022 16:02:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---